feat: add per process composer package sampling

bduranleau-nr · bduranleau-nr · commit 37ad626aa248 · 2025-06-05T12:18:53.000-05:00
diff --git a/agent/lib_composer.c b/agent/lib_composer.c
@@ -7,6 +7,7 @@
 #include "fw_hooks.h"
 #include "fw_support.h"
 #include "nr_txn.h"
+#include "php_globals.h"
 #include "util_logging.h"
 #include "util_memory.h"
 #include "util_syscalls.h"
@@ -136,6 +137,13 @@ static void nr_execute_handle_autoload_composer_get_packages_information(
                      __func__);
     return;
   }
+
+  if (NR_PHP_PROCESS_GLOBALS(composer_api_per_process_detection)) {
+    // set the per-process flag to true to avoid re-running composer api
+    // detection when the per-process detection is enabled.
+    NR_PHP_PROCESS_GLOBALS(composer_packages_detected) = 1;
+  }
+
   if (IS_ARRAY == Z_TYPE(retval)) {
     zend_string* package_name = NULL;
     zval* package_version = NULL;
diff --git a/agent/php_globals.h b/agent/php_globals.h
@@ -75,6 +75,12 @@ typedef struct _nrphpglobals_t {
   int apache_threaded; /* 1 if a threaded MPM is in use, 0 otherwise */
   int preload_framework_library_detection; /* Enables preloading framework and
                                               library detection */
+  int composer_api_per_process_detection;  /* Enables per-process VM package
+                                              detection when Composer API is also
+                                              enabled */
+  int composer_packages_detected; /* Flag to indicate that Composer package
+                                    detection has run. Used in conjunction with
+                                    composer_api_per_process_detection. */
   char* docker_id; /* 64 byte hex docker ID parsed from /proc/self/mountinfo */
 
   /* Original PHP callback pointer contents */
diff --git a/agent/php_minit.c b/agent/php_minit.c
@@ -456,6 +456,7 @@ PHP_MINIT_FUNCTION(newrelic) {
       = nr_php_check_for_upgrade_license_key();
   NR_PHP_PROCESS_GLOBALS(high_security) = 0;
   NR_PHP_PROCESS_GLOBALS(preload_framework_library_detection) = 1;
+  NR_PHP_PROCESS_GLOBALS(composer_packages_detected) = 0;
   nr_php_populate_apache_process_globals();
   nr_php_api_distributed_trace_register_userland_class(TSRMLS_C);
   /*
diff --git a/agent/php_nrini.c b/agent/php_nrini.c
@@ -537,6 +537,28 @@ static PHP_INI_MH(nr_preload_framework_library_detection_mh) {
   return SUCCESS;
 }
 
+static PHP_INI_MH(nr_composer_per_process_detection_mh) {
+  int val;
+
+  (void)entry;
+  (void)NEW_VALUE_LEN;
+  (void)mh_arg1;
+  (void)mh_arg2;
+  (void)mh_arg3;
+  (void)stage;
+  NR_UNUSED_TSRMLS;
+
+  val = nr_bool_from_str(NEW_VALUE);
+
+  if (-1 == val) {
+    return FAILURE;
+  }
+
+  NR_PHP_PROCESS_GLOBALS(composer_api_per_process_detection) = val ? 1 : 0;
+
+  return SUCCESS;
+}
+
 static PHP_INI_MH(nr_loglevel_mh) {
   nr_status_t rv;
 
@@ -2055,6 +2077,17 @@ PHP_INI_ENTRY_EX("newrelic.preload_framework_library_detection",
                  nr_preload_framework_library_detection_mh,
                  0)
 
+/*
+ * Enables per-process Composer API package detection and reporting. Depends on
+ * newrelic.vulnerability_management.composer_api.enabled.
+ */
+PHP_INI_ENTRY_EX(
+    "newrelic.vulnerability_management.composer_api.per_process_detection",
+    "1",
+    NR_PHP_SYSTEM,
+    nr_composer_per_process_detection_mh,
+    0)
+
 /*
  * Daemon
  */
