Migrating Postgres from AsyncResource to Diagnostics Channel (#6189)

* migrating pg away from async resource:

* PR to PR: Fixing pg appsec tests (#6225)

Author: crysmags

packages/datadog-instrumentations/src/pg.js

@@ -2,8 +2,7 @@
 
 const {
   channel,
-  addHook,
-  AsyncResource
+  addHook
 } = require('./helpers/instrument')
 const shimmer = require('../../datadog-shimmer')
 
@@ -33,8 +32,6 @@ function wrapQuery (query) {
       return query.apply(this, arguments)
     }
 
-    const callbackResource = new AsyncResource('bound-anonymous-fn')
-    const asyncResource = new AsyncResource('bound-anonymous-fn')
     const processId = this.processID
 
     const pgQuery = arguments[0] !== null && typeof arguments[0] === 'object'
@@ -46,34 +43,34 @@ function wrapQuery (query) {
     const stream = typeof textPropObj.read === 'function'
 
     // Only alter `text` property if safe to do so. Initially, it's a property, not a getter.
+    let originalText
     if (!textProp || textProp.configurable) {
-      const originalText = textPropObj.text
+      originalText = textPropObj.text
 
       Object.defineProperty(textPropObj, 'text', {
         get () {
           return this?.__ddInjectableQuery || originalText
         }
       })
     }
-
-    return asyncResource.runInAsyncScope(() => {
-      const abortController = new AbortController()
-
-      startCh.publish({
-        params: this.connectionParameters,
-        query: textPropObj,
-        processId,
-        abortController,
-        stream
-      })
-
-      const finish = asyncResource.bind(function (error, res) {
-        if (error) {
-          errorCh.publish(error)
-        }
-        finishCh.publish({ result: res?.rows })
-      })
-
+    const abortController = new AbortController()
+    const ctx = {
+      params: this.connectionParameters,
+      query: textPropObj,
+      originalText,
+      processId,
+      abortController,
+      stream
+    }
+    const finish = (error, res) => {
+      if (error) {
+        ctx.error = error
+        errorCh.publish(ctx)
+      }
+      ctx.result = res?.rows
+      return finishCh.publish(ctx)
+    }
+    return startCh.runStores(ctx, () => {
       if (abortController.signal.aborted) {
         const error = abortController.signal.reason || new Error('Aborted')
 
@@ -121,10 +118,10 @@ function wrapQuery (query) {
       }
 
       if (newQuery.callback) {
-        const originalCallback = callbackResource.bind(newQuery.callback)
-        newQuery.callback = function (err, res) {
-          finish(err, res)
-          return originalCallback.apply(this, arguments)
+        const originalCallback = newQuery.callback
+        newQuery.callback = function (err, ...args) {
+          finish(err, ...args)
+          return finishCh.runStores(ctx, originalCallback, this, err, ...args)
         }
       } else if (newQuery.once) {
         newQuery
@@ -139,40 +136,33 @@ function wrapQuery (query) {
 
       try {
         return retval
-      } catch (err) {
-        errorCh.publish(err)
+      } catch (error) {
+        ctx.error = error
+        errorCh.publish(ctx)
       }
     })
   }
 }
-
+const finish = (ctx) => {
+  finishPoolQueryCh.publish(ctx)
+}
 function wrapPoolQuery (query) {
   return function () {
     if (!startPoolQueryCh.hasSubscribers) {
       return query.apply(this, arguments)
     }
 
-    const asyncResource = new AsyncResource('bound-anonymous-fn')
-
     const pgQuery = arguments[0] !== null && typeof arguments[0] === 'object' ? arguments[0] : { text: arguments[0] }
+    const abortController = new AbortController()
 
-    return asyncResource.runInAsyncScope(() => {
-      const abortController = new AbortController()
-
-      startPoolQueryCh.publish({
-        query: pgQuery,
-        abortController
-      })
-
-      const finish = asyncResource.bind(function () {
-        finishPoolQueryCh.publish()
-      })
+    const ctx = { query: pgQuery, abortController }
 
+    return startPoolQueryCh.runStores(ctx, () => {
       const cb = arguments[arguments.length - 1]
 
       if (abortController.signal.aborted) {
         const error = abortController.signal.reason || new Error('Aborted')
-        finish()
+        finish(ctx)
 
         if (typeof cb === 'function') {
           cb(error)
@@ -184,7 +174,7 @@ function wrapPoolQuery (query) {
 
       if (typeof cb === 'function') {
         arguments[arguments.length - 1] = shimmer.wrapFunction(cb, cb => function () {
-          finish()
+          finish(ctx)
           return cb.apply(this, arguments)
         })
       }
@@ -193,9 +183,9 @@ function wrapPoolQuery (query) {
 
       if (retval?.then) {
         retval.then(() => {
-          finish()
+          finish(ctx)
         }).catch(() => {
-          finish()
+          finish(ctx)
         })
       }
 

packages/datadog-plugin-pg/src/index.js

@@ -8,7 +8,8 @@ class PGPlugin extends DatabasePlugin {
   static operation = 'query'
   static system = 'postgres'
 
-  start ({ params = {}, query, processId, stream }) {
+  bindStart (ctx) {
+    const { params = {}, query, processId, stream } = ctx
     const service = this.serviceName({ pluginConfig: this.config, params })
     const originalStatement = this.maybeTruncate(query.text)
 
@@ -25,13 +26,15 @@ class PGPlugin extends DatabasePlugin {
         'out.host': params.host,
         [CLIENT_PORT_KEY]: params.port
       }
-    })
+    }, ctx)
 
     if (stream) {
       span.setTag('db.stream', 1)
     }
 
     query.__ddInjectableQuery = this.injectDbmQuery(span, query.text, service, !!query.name)
+
+    return ctx.currentStore
   }
 }
 

packages/dd-trace/src/appsec/iast/analyzers/sql-injection-analyzer.js

@@ -16,15 +16,18 @@ class SqlInjectionAnalyzer extends StoredInjectionAnalyzer {
   onConfigure () {
     this.addSub('apm:mysql:query:start', ({ sql }) => this.analyze(sql, undefined, 'MYSQL'))
     this.addSub('datadog:mysql2:outerquery:start', ({ sql }) => this.analyze(sql, undefined, 'MYSQL'))
-    this.addSub('apm:pg:query:start', ({ query }) => this.analyze(query.text, undefined, 'POSTGRES'))
+    this.addSub(
+      'apm:pg:query:start',
+      ({ originalText, query }) => this.analyze(originalText || query.text, undefined, 'POSTGRES')
+    )
 
     this.addBind(
       'datadog:sequelize:query:start',
       ({ sql, dialect }) => this.getStoreAndAnalyze(sql, dialect.toUpperCase())
     )
     this.addSub('datadog:sequelize:query:finish', () => this.returnToParentStore())
 
-    this.addSub('datadog:pg:pool:query:start', ({ query }) => this.setStoreAndAnalyze(query.text, 'POSTGRES'))
+    this.addBind('datadog:pg:pool:query:start', ({ query }) => this.getStoreAndAnalyze(query.text, 'POSTGRES'))
     this.addSub('datadog:pg:pool:query:finish', () => this.returnToParentStore())
 
     this.addSub('datadog:mysql:pool:query:start', ({ sql }) => this.setStoreAndAnalyze(sql, 'MYSQL'))

packages/dd-trace/src/appsec/iast/taint-tracking/plugin.js

@@ -139,12 +139,12 @@ class TaintTrackingPlugin extends SourceIastPlugin {
   addDatabaseSubscriptions () {
     this.addSub(
       { channelName: 'datadog:sequelize:query:finish', tag: SQL_ROW_VALUE },
-      ({ result }) => this._taintDatabaseResult(result, 'sequelize')
+      ({ result }) => this._taintDatabaseResult(result, 'sequelize', getIastContext(storage('legacy').getStore()))
     )
 
     this.addSub(
       { channelName: 'apm:pg:query:finish', tag: SQL_ROW_VALUE },
-      ({ result }) => this._taintDatabaseResult(result, 'pg')
+      ({ result, currentStore }) => this._taintDatabaseResult(result, 'pg', getIastContext(currentStore))
     )
   }
 
@@ -263,7 +263,7 @@ class TaintTrackingPlugin extends SourceIastPlugin {
     this.taintUrl(req, iastContext)
   }
 
-  _taintDatabaseResult (result, dbOrigin, iastContext = getIastContext(storage('legacy').getStore()), name) {
+  _taintDatabaseResult (result, dbOrigin, iastContext, name) {
     if (!iastContext) return result
 
     if (this._rowsToTaint === 0) return result

packages/dd-trace/test/appsec/iast/analyzers/sql-injection-analyzer.spec.js

@@ -64,20 +64,20 @@ describe('sql-injection-analyzer', () => {
   sqlInjectionAnalyzer.configure(true)
 
   it('should subscribe to mysql, mysql2 and pg start query channel', () => {
-    expect(sqlInjectionAnalyzer._subscriptions).to.have.lengthOf(10)
+    expect(sqlInjectionAnalyzer._subscriptions).to.have.lengthOf(9)
     expect(sqlInjectionAnalyzer._subscriptions[0]._channel.name).to.equals('apm:mysql:query:start')
     expect(sqlInjectionAnalyzer._subscriptions[1]._channel.name).to.equals('datadog:mysql2:outerquery:start')
     expect(sqlInjectionAnalyzer._subscriptions[2]._channel.name).to.equals('apm:pg:query:start')
     expect(sqlInjectionAnalyzer._subscriptions[3]._channel.name).to.equals('datadog:sequelize:query:finish')
-    expect(sqlInjectionAnalyzer._subscriptions[4]._channel.name).to.equals('datadog:pg:pool:query:start')
-    expect(sqlInjectionAnalyzer._subscriptions[5]._channel.name).to.equals('datadog:pg:pool:query:finish')
-    expect(sqlInjectionAnalyzer._subscriptions[6]._channel.name).to.equals('datadog:mysql:pool:query:start')
-    expect(sqlInjectionAnalyzer._subscriptions[7]._channel.name).to.equals('datadog:mysql:pool:query:finish')
-    expect(sqlInjectionAnalyzer._subscriptions[8]._channel.name).to.equals('datadog:knex:raw:start')
-    expect(sqlInjectionAnalyzer._subscriptions[9]._channel.name).to.equals('datadog:knex:raw:finish')
-
-    expect(sqlInjectionAnalyzer._bindings).to.have.lengthOf(1)
+    expect(sqlInjectionAnalyzer._subscriptions[4]._channel.name).to.equals('datadog:pg:pool:query:finish')
+    expect(sqlInjectionAnalyzer._subscriptions[5]._channel.name).to.equals('datadog:mysql:pool:query:start')
+    expect(sqlInjectionAnalyzer._subscriptions[6]._channel.name).to.equals('datadog:mysql:pool:query:finish')
+    expect(sqlInjectionAnalyzer._subscriptions[7]._channel.name).to.equals('datadog:knex:raw:start')
+    expect(sqlInjectionAnalyzer._subscriptions[8]._channel.name).to.equals('datadog:knex:raw:finish')
+
+    expect(sqlInjectionAnalyzer._bindings).to.have.lengthOf(2)
     expect(sqlInjectionAnalyzer._bindings[0]._channel.name).to.equals('datadog:sequelize:query:start')
+    expect(sqlInjectionAnalyzer._bindings[1]._channel.name).to.equals('datadog:pg:pool:query:start')
   })
 
   it('should not detect vulnerability when no query', () => {
@@ -206,23 +206,23 @@ describe('sql-injection-analyzer', () => {
     it('should call analyze on apm:mysql:query:start', () => {
       const onMysqlQueryStart = sqlInjectionAnalyzer._subscriptions[0]._handler
 
-      onMysqlQueryStart({ sql: 'SELECT 1', name: 'apm:mysql:query:start' })
+      onMysqlQueryStart({ sql: 'SELECT 1' })
 
       expect(analyze).to.be.calledOnceWith('SELECT 1')
     })
 
     it('should call analyze on apm:mysql2:query:start', () => {
-      const onMysql2QueryStart = sqlInjectionAnalyzer._subscriptions[0]._handler
+      const onMysql2QueryStart = sqlInjectionAnalyzer._subscriptions[1]._handler
 
-      onMysql2QueryStart({ sql: 'SELECT 1', name: 'apm:mysql2:query:start' })
+      onMysql2QueryStart({ sql: 'SELECT 1' })
 
       expect(analyze).to.be.calledOnceWith('SELECT 1')
     })
 
     it('should call analyze on apm:pg:query:start', () => {
-      const onPgQueryStart = sqlInjectionAnalyzer._subscriptions[0]._handler
+      const onPgQueryStart = sqlInjectionAnalyzer._subscriptions[2]._handler
 
-      onPgQueryStart({ sql: 'SELECT 1', name: 'apm:pg:query:start' })
+      onPgQueryStart({ originalText: 'SELECT 1', query: { text: 'modified-query SELECT 1' } })
 
       expect(analyze).to.be.calledOnceWith('SELECT 1')
     })

packages/dd-trace/test/appsec/iast/taint-tracking/sources/sql_row.pg.plugin.spec.js

@@ -108,6 +108,6 @@ describe('db sources with pg', () => {
           res.end('OK')
         }, 'COMMAND_INJECTION', null, 'Should not detect COMMAND_INJECTION with database source')
       })
-    })
+    }, undefined, ['pg'])
   })
 })

packages/dd-trace/test/appsec/iast/utils.js

@@ -239,7 +239,7 @@ function checkVulnerabilityInRequest (
   }
 }
 
-function prepareTestServerForIast (description, tests, iastConfig) {
+function prepareTestServerForIast (description, tests, iastConfig, pluginsToConfigure = []) {
   describe(description, () => {
     const config = {}
     let http
@@ -254,7 +254,7 @@ function prepareTestServerForIast (description, tests, iastConfig) {
     })
 
     before(() => {
-      return agent.load('http', undefined, { flushInterval: 1 })
+      return agent.load(['http', ...pluginsToConfigure], { client: false }, { flushInterval: 1 })
         .then(() => {
           http = require('http')
         })
@@ -308,7 +308,14 @@ function prepareTestServerForIast (description, tests, iastConfig) {
   })
 }
 
-function prepareTestServerForIastInExpress (description, expressVersion, loadMiddlewares, tests, iastConfig) {
+function prepareTestServerForIastInExpress (
+  description,
+  expressVersion,
+  loadMiddlewares,
+  tests,
+  iastConfig,
+  pluginsToConfigure = []
+) {
   if (arguments.length === 3) {
     tests = loadMiddlewares
     loadMiddlewares = undefined
@@ -319,7 +326,7 @@ function prepareTestServerForIastInExpress (description, expressVersion, loadMid
     let listener, app, server
 
     before(() => {
-      return agent.load(['express', 'http'], { client: false }, { flushInterval: 1 })
+      return agent.load(['express', 'http', ...pluginsToConfigure], { client: false }, { flushInterval: 1 })
     })
 
     before(() => {