sync latest changelog from master

jackshirazi · web-flow · commit ff23e910a224 · 2021-12-22T15:03:17.000Z
for the branched update, we'll just have a synced changelog
diff --git a/CHANGELOG.asciidoc b/CHANGELOG.asciidoc
@@ -20,17 +20,165 @@ endif::[]
 
 === Unreleased
 
+[[release-notes-1.28.4]]
+==== 1.28.4 - YYYY/MM/DD
+
+[float]
+===== Bug fixes
+
+[[release-notes-1.x]]
+=== Java Agent version 1.x
+
+[[release-notes-1.28.3]]
+==== 1.28.3 - 2021/12/22
+
+[float]
+===== Dependency updates
+* Update Log4j to 2.12.3
+* Update ecs-logging-java to 1.3.0
+
+[float]
+===== Potentially breaking changes
+* If the agent cannot discover a service name, it now uses `unknown-java-service` instead of `my-service` - {pull}2325[#2325]
+
+[float]
+===== Bug fixes
+* Gracefully handle JDBC drivers which don't support `Connection#getCatalog` - {pull}2340[#2340]
+* Fix using JVM keystore options for communication with APM Server - {pull}2362[#2362]
+
+[[release-notes-1.28.2]]
+==== 1.28.2 - 2021/12/16
+
+[float]
+===== Dependency updates
+* Update Log4j to 2.12.2
+
+[float]
+===== Bug fixes
+* Fix module loading errors on J9 JVM - {pull}2341[#2341]
+* Fixing log4j configuration error - {pull}2343[#2343]
+
+[[release-notes-1.28.1]]
+==== 1.28.1 - 2021/12/10
+
+[float]
+===== Security 
+* Fix for "Log4Shell" RCE 0-day exploit in log4j https://nvd.nist.gov/vuln/detail/CVE-2021-44228[CVE-2021-44228] - {pull}2332[#2332]
+
+[float]
+===== Features
+* Added support to selectively enable instrumentations - {pull}2292[#2292]
+
+[float]
+===== Bug fixes
+* Preferring controller names for Spring MVC transactions, `use_path_as_transaction_name` only as a fallback - {pull}2320[#2320]
+
+[[release-notes-1.28.0]]
+==== 1.28.0 - 2021/12/07
+
+[float]
+===== Features
+* Adding experimental support for <<aws-lambda, AWS Lambda>> - {pull}1951[#1951]
+* Now supporting tomcat 10 - {pull}2229[#2229]
+
+[float]
+===== Bug fixes
+* Fix error with parsing APM Server version for 7.16+ - {pull}2313[#2313]
+
+[[release-notes-1.27.1]]
+==== 1.27.1 - 2021/11/30
+
+[float]
+===== Security
+* Resolves Local Privilege Escalation issue https://discuss.elastic.co/t/apm-java-agent-security-update/291355[ESA-2021-30] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37942[CVE-2021-37942]
+
+[float]
+===== Features
+* Add support to Jakarta EE for JSF - {pull}2254[#2254]
+
+[float]
+===== Bug fixes
+* Fixing missing Micrometer metrics in Spring boot due to premature initialization - {pull}2255[#2255]
+* Fixing hostname trimming of FQDN too aggressive - {pull}2286[#2286]
+* Fixing agent `unknown` version - {pull}2289[#2289]
+* Improve runtime attach configuration reliability - {pull}2283[#2283]
+
 [[release-notes-1.27.0]]
-==== 1.27.0 - YYYY/MM/DD
+==== 1.27.0 - 2021/11/15
+
+[float]
+===== Security
+* Resolves Local Privilege Escalation issue https://discuss.elastic.co/t/apm-java-agent-security-update/289627[ESA-2021-29] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37941[CVE-2021-37941]
+
+[float]
+===== Potentially breaking changes
+* `transaction_ignore_urls` now relies on full request URL path - {pull}2146[#2146]
+** On a typical application server like Tomcat, deploying an `app.war` application to the non-ROOT context makes it accessible with `http://localhost:8080/app/`
+** Ignoring the whole webapp through `/app/*` was not possible until now.
+** Existing configuration may need to be updated to include the deployment context, thus for example `/static/*.js` used to
+exclude known static files in all applications might be changed to `/app/static/*.js` or `*/static/*.js`.
+** It only impacts prefix patterns due to the additional context path in pattern.
+** It does not impact deployment within the `ROOT` context like Spring-boot which do not have such context path prefix.
+* The metrics `transaction.duration.sum.us`, `transaction.duration.count` and `transaciton.breakdown.count` are no longer recorded - {pull}2194[#2194]
+* Automatic hostname discovery mechanism had changed, so the resulted `host.name` and `host.hostname` in events reported
+by the agent may be different. This was done in order to improve the integration with host metrics in the APM UI.
 
 [float]
 ===== Features
+* Improved capturing of logged exceptions when using Log4j2 - {pull}2139[#2139]
+* Update to async-profiler 1.8.7 and set configured `safemode` at load time though a new system property - {pull}2165[#2165]
+* Added support to capture `context.message.routing-key` in rabbitmq, spring amqp instrumentations - {pull}1767[#1767]
+* Breakdown metrics are now tracked per service (when using APM Server 8.0) - {pull}2208[#2208]
+* Add support for Spring AMQP batch API - {pull}1716[#1716]
+* Add the (current) transaction name to the error (when using APM Server 8.0) - {pull}2235[#2235]
+* The JVM/JMX metrics are reported for each service name individually (when using APM Server 8.0) - {pull}2233[#2233]
+* Added <<config-span-stack-trace-min-duration,`span_stack_trace_min_duration`>> option.
+ This replaces the now deprecated `span_frames_min_duration` option.
+ The difference is that the new option has more intuitive semantics for negative values (never collect stack trace) and zero (always collect stack trace). - {pull}2220[#2220]
+* Add support to Jakarta EE for JAX-WS - {pull}2247[#2247]
+* Add support to Jakarta EE for JAX-RS - {pull}2248[#2248]
+* Add support for Jakarta EE EJB annotations `@Schedule`, `@Schedules` - {pull}2250[#2250]
+* Add support to Jakarta EE for Servlets - {pull}1912[#1912]
+* Added support to Quartz 1.x - {pull}2219[#2219]
+
+[float]
+===== Performance improvements
+* Disable compression when sending data to a local APM Server
+* Reducing startup contention related to instrumentation through `ensureInstrumented` - {pull}2150[#2150]
 
 [float]
 ===== Bug fixes
+* Fix k8s metadata discovery for containerd-cri envs - {pull}2126[#2126]
+* Fixing/reducing startup delays related to `ensureInstrumented` - {pull}2150[#2150]
+* Fix runtime attach when bytebuddy is in application classpath - {pull}2116[#2116]
+* Fix failed integration between agent traces and host metrics coming from Beats/Elastic-Agent due to incorrect hostname
+discovery - {pull}2205[#2205]
+* Fix infinitely kept-alive transactions in Hikari connection pool - {pull}2210[#2210]
+* Fix few Webflux exceptions and missing reactor module - {pull}2207[#2207]
 
-[[release-notes-1.x]]
-=== Java Agent version 1.x
+[float]
+===== Refactorings
+* Loading the agent from an isolated class loader - {pull}2109[#2109]
+* Refactorings in the `apm-agent-plugin-sdk` that may imply breaking changes for beta users of the external plugin mechanism
+** `WeakMapSupplier.createMap()` is now `WeakConcurrent.buildMap()` and contains more builders - {pull}2136[#2136]
+** `GlobalThreadLocal` has been removed in favor of `DetachedThreadLocal`. To make it global, use `GlobalVariables` - {pull}2136[#2136]
+** `DynamicTransformer.Accessor.get().ensureInstrumented` is now `DynamicTransformer.ensureInstrumented` - {pull}2164[#2164]
+** The `@AssignTo.*` annotations have been removed.
+   Use the `@Advice.AssignReturned.*` annotations that come with the latest version of Byte Buddy.
+   If your plugin uses the old annotations, it will be skipped.
+   {pull}2171[#2171]
+* Switching last instrumentations (`trace_methods`, sparkjava, JDK `HttpServer` and Struts 2) to
+`TracerAwareInstrumentation` - {pull}2170[#2170]
+* Replace concurrency plugin maps to `SpanConcurrentHashMap` ones - {pull}2173[#2173]
+* Align User-Agent HTTP header with other APM agents - {pull}2177[#2177]
+
+[[release-notes-1.26.1]]
+==== 1.26.1 - 2021/12/22
+
+[float]
+===== Dependency updates
+* Update Log4j to 2.12.3
+* Update ecs-logging-java to 1.3.0
 
 [[release-notes-1.26.0]]
 ==== 1.26.0 - 2021/09/14
@@ -39,6 +187,10 @@ endif::[]
 * If you rely on Database span subtype and use Microsoft SQL Server, the span subtype has been changed from `sqlserver`
 to `mssql` to align with other agents.
 
+[float]
+===== Breaking changes
+* Stop collecting the field `http.request.socket.encrypted` in http requests - {pull}2136[#2136]
+
 [float]
 ===== Features
 * Improved naming for Spring controllers - {pull}1906[#1906]
@@ -50,6 +202,7 @@ to `mssql` to align with other agents.
 * Add `-download-agent-version` to the agent <<setup-attach-cli-usage-options, attach CLI tool options>>, allowing the
 user to configure an arbitrary agent version that will be downloaded from maven and attached - {pull}1959[#1959]
 * Add extra check to detect improper agent setup - {pull}2076[#2076]
+* In redis tests - embedded RedisServer is replaced by testcontainers - {pull}2221[#2221]
 
 [float]
 ===== Performance improvements
