Merge branch 'master' into kr-igor/dsm-tt-v0

Author: kr-igor

.claude/settings.json

@@ -1,4 +1,7 @@
 {
+  "env": {
+    "OTEL_RESOURCE_ATTRIBUTES": "repo.owner=DataDog,repo.name=dd-trace-dotnet"
+  },
   "extraKnownMarketplaces": {
     "datadog-claude-plugins": {
       "source": {

.github/dependabot.yml.disabled .github/dependabot.yml.github/dependabot.yml.disabled renamed to .github/dependabot.yml

@@ -29,6 +29,8 @@ updates:
         update-types: ["version-update:semver-patch"]
 
   # Mocked projects for integration dependency notifications
+    cooldown:
+      default-days: 2
   - package-ecosystem: "nuget"
     directory: "/tracer/dependabot/integrations"
     registries: "*"
@@ -41,6 +43,8 @@ updates:
 
   # Azure functions explicit testing - we can't include these with our "normal" process checks
   # Because they aren't compatible with the dotnet msbuild approach we're using
+    cooldown:
+      default-days: 2
   - package-ecosystem: "nuget"
     directory: "/tracer/test/test-applications/azure-functions/Samples.AzureFunctions.V4Isolated"
     registries: "*"
@@ -54,6 +58,8 @@ updates:
         update-types: ["version-update:semver-patch"]
 
   # Src libraries
+    cooldown:
+      default-days: 2
   - package-ecosystem: "nuget"
     directory: "/tracer/src"
     # This is a hacky way to get Dependabot to care primarily about
@@ -93,6 +99,8 @@ updates:
       # Lock Microsoft.Build.Framework for widest compatibility when instrumenting builds
       - dependency-name: "Microsoft.Build.Framework"
 
+    cooldown:
+      default-days: 2
   - package-ecosystem: "github-actions"
     directories:
       - "/"
@@ -104,3 +112,5 @@ updates:
       gh-actions-packages:
         patterns:
           - "*"
+    cooldown:
+      default-days: 2

.gitlab/one-pipeline.locked.yml

@@ -1,5 +1,5 @@
 # DO NOT EDIT THIS FILE MANUALLY
 # This file is auto-generated by automation.
 include:
-  - remote: https://gitlab-templates.ddbuild.io/libdatadog/one-pipeline/ca/9b407f3b149c0a0f93d0f07211ab0ebeeadc08dee67429d0756597313e8ea1ca/one-pipeline.yml
+  - remote: https://gitlab-templates.ddbuild.io/libdatadog/one-pipeline/ca/9cf7d7609ff62e4723c9cbc061ca2a25345ce5d6055b9acad9a13dbf736261f0/one-pipeline.yml
 

tracer/src/Datadog.Trace/.editorconfig

@@ -44,7 +44,7 @@ dotnet_diagnostic.CA1846.severity = error # Prefer AsSpan over Substring
 dotnet_diagnostic.CA1848.severity = error # Use the LoggerMessage delegates
 # dotnet_diagnostic.CA1849.severity = error # Call async methods when in an async method - this likely would make sense to enable, except in most cases currently it's not an issue and intentional
 dotnet_diagnostic.CA1850.severity = error # Prefer static HashData method over ComputeHash - we should add it, but should be added separately
-# dotnet_diagnostic.CA1851.severity = error # Possible multiple enumerations of IEnumerable collection - violation in ASM they should address
+dotnet_diagnostic.CA1851.severity = error # Possible multiple enumerations of IEnumerable collection
 dotnet_diagnostic.CA1853.severity = error # Unnecessary call to Dictionary.ContainsKey(key)
 dotnet_diagnostic.CA1854.severity = error # Prefer IDictionary.TryGetValue
 dotnet_diagnostic.CA1855.severity = error # Use Span<T>.Clear() instead of Span<T>.Fill()

tracer/src/Datadog.Trace/AppSec/WafEncoding/Encoder.cs

@@ -281,6 +281,7 @@ private static unsafe DdwafObjectStruct ProcessIEnumerable(ref EncoderContext co
             }
             else
             {
+#pragma warning disable CA1851 // Possible multiple enumeration of collections - This _should_ be fixed, unless we verify that only non-IEnumerable types are provided
                 var childrenCount = 0;
                 // Let's enumerate first.
                 foreach (var val in enumerable)
@@ -321,6 +322,7 @@ private static unsafe DdwafObjectStruct ProcessIEnumerable(ref EncoderContext co
                     ddwafObjectStruct.NbEntries = (ulong)childrenCount;
                     context.Buffers.Add(childrenData);
                 }
+#pragma warning restore CA1851 // Possible multiple enumeration of collections
             }
 
             return ddwafObjectStruct;
@@ -476,6 +478,7 @@ string GetItemsAsString()
             }
             else
             {
+#pragma warning disable CA1851 // Possible multiple enumeration of collections - This _should_ be fixed, unless we verify that only non-IEnumerable types are provided
                 var itemData = childrenData;
                 var maxChildrenCount = childrenCount;
 
@@ -497,6 +500,7 @@ string GetItemsAsString()
                     *(DdwafObjectStruct*)itemData = Encode(ref context, remainingDepth, elementKey, getValue(element));
                     itemData += ObjectStructSize;
                 }
+#pragma warning restore CA1851 // Possible multiple enumeration of collections
             }
 
             ddWafObjectMap.Array = childrenData;

tracer/src/Datadog.Trace/ClrProfiler/AutoInstrumentation/IbmMq/IbmMqHelper.cs

@@ -68,12 +68,13 @@ internal static IbmMqHeadersAdapterNoop GetHeadersAdapter(IMqMessage message)
 
             var operationName = settings.Schema.Messaging.GetOutboundOperationName(MessagingSchema.OperationType.IbmMq);
             var (serviceName, serviceNameSource) = settings.Schema.Messaging.GetServiceNameMetadata(MessagingSchema.ServiceType.IbmMq);
-            var tags = settings.Schema.Messaging.CreateIbmMqTags(SpanKinds.Consumer);
+            var tags = settings.Schema.Messaging.CreateIbmMqTags(SpanKinds.Producer);
             var queueName = SanitizeQueueName(queue.Name);
             tags.TopicName = queueName;
 
             scope = tracer.StartActiveInternal(
                 operationName,
+                tags: tags,
                 serviceName: serviceName,
                 serviceNameSource: serviceNameSource,
                 finishOnClose: true);
@@ -84,7 +85,6 @@ internal static IbmMqHeadersAdapterNoop GetHeadersAdapter(IMqMessage message)
             var span = scope.Span;
             span.Type = SpanTypes.Queue;
             span.ResourceName = resourceName;
-            span.SetTag(Tags.SpanKind, SpanKinds.Producer);
 
             var context = new PropagationContext(span.Context, Baggage.Current);
             tracer.TracerManager.SpanContextPropagator.Inject(context, GetHeadersAdapter(message));
@@ -135,7 +135,7 @@ internal static IbmMqHeadersAdapterNoop GetHeadersAdapter(IMqMessage message)
             }
 
             var (serviceName, serviceNameSource) = settings.Schema.Messaging.GetServiceNameMetadata(MessagingSchema.ServiceType.IbmMq);
-            var tags = settings.Schema.Messaging.CreateIbmMqTags(SpanKinds.Producer);
+            var tags = settings.Schema.Messaging.CreateIbmMqTags(SpanKinds.Consumer);
             var queueName = SanitizeQueueName(queue.Name);
             tags.TopicName = queueName;
             scope = tracer.StartActiveInternal(
@@ -152,7 +152,6 @@ internal static IbmMqHeadersAdapterNoop GetHeadersAdapter(IMqMessage message)
             var span = scope.Span;
             span.Type = SpanTypes.Queue;
             span.ResourceName = resourceName;
-            span.SetTag(Tags.SpanKind, SpanKinds.Consumer);
         }
         catch (Exception ex)
         {

tracer/src/Datadog.Trace/Iast/Propagation/StringModuleImpl.cs

@@ -214,17 +214,39 @@ public static string OnStringJoin<T>(string result, string delimiter, IEnumerabl
             var delimiterRanges = PropagationModuleImpl.GetTainted(taintedObjects, delimiter)?.Ranges;
             var delimiterHasRanges = delimiterRanges?.Length > 0;
             var delimiterLength = delimiter?.Length ?? 0;
-            var valuesCount = values.Count();
 
-            int i = 0;
-            foreach (var element in values)
+            using (var e = values.GetEnumerator())
             {
-                if (i >= startIndex && (count < 0 || i < startIndex + count))
+                if (e.MoveNext())
                 {
-                    pos = GetPositionAndUpdateRangesInStringJoin(taintedObjects, newRanges, pos, delimiterRanges, delimiterLength, element?.ToString() ?? string.Empty, delimiterHasRanges && i < valuesCount - 1);
-                }
+                    var element = e.Current;
+                    var i = 0;
 
-                i++;
+                    while (true)
+                    {
+                        var hasNext = e.MoveNext();
+
+                        if (i >= startIndex && (count < 0 || i < startIndex + count))
+                        {
+                            pos = GetPositionAndUpdateRangesInStringJoin(
+                                taintedObjects,
+                                newRanges,
+                                pos,
+                                delimiterRanges,
+                                delimiterLength,
+                                element?.ToString() ?? string.Empty,
+                                delimiterHasRanges && hasNext);
+                        }
+
+                        if (!hasNext)
+                        {
+                            break;
+                        }
+
+                        element = e.Current;
+                        i++;
+                    }
+                }
             }
 
             if (newRanges.Count > 0)

tracer/src/Datadog.Trace/LifetimeManager.cs

@@ -27,6 +27,10 @@ internal sealed class LifetimeManager
         private static LifetimeManager? _instance;
         private readonly ConcurrentQueue<object> _shutdownHooks = new();
 
+        // Signaled when RunShutdownTasks finishes. Subsequent callers wait on this
+        // instead of returning early, preventing the runtime from tearing down the process prematurely.
+        private readonly ManualResetEventSlim _shutdownComplete = new(false);
+
         // We can be triggered by multiple shutdown paths (ProcessExit, CancelKeyPress, signal handlers, etc).
         // This flag ensures shutdown hooks run at most once.
         private int _shutdownStarted;
@@ -136,35 +140,18 @@ public void RunShutdownTasks(Exception? exception = null)
             // Ensure shutdown runs once even if multiple events fire.
             if (Interlocked.Exchange(ref _shutdownStarted, 1) != 0)
             {
+                // Shutdown already started — wait for it to finish instead of returning immediately.
+                // This prevents the runtime from tearing down the process (e.g. after ProcessExit returns)
+                // before hooks have completed.
+                _shutdownComplete.Wait();
                 return;
             }
 
-#if NET6_0_OR_GREATER
-            // Unregister our termination handlers once shutdown begins (best-effort).
-            // This avoids re-entrancy and keeps the intent clear: after shutdown starts, we don't want to
-            // initiate additional termination paths.
-            try
-            {
-                _sigtermRegistration?.Dispose();
-                _sigtermRegistration = null;
-            }
-            catch (Exception ex)
-            {
-                // Best-effort: logging during shutdown should never prevent shutdown from continuing.
-                Log.Warning(ex, "Failed to dispose SIGTERM termination signal handler registration.");
-            }
-
-            try
-            {
-                _sighupRegistration?.Dispose();
-                _sighupRegistration = null;
-            }
-            catch (Exception ex)
-            {
-                // Best-effort: logging during shutdown should never prevent shutdown from continuing.
-                Log.Warning(ex, "Failed to dispose SIGHUP termination signal handler registration.");
-            }
-#endif
+            // Note: we intentionally do NOT dispose signal registrations here.
+            // They must stay alive so that duplicate signals arriving during shutdown
+            // are still handled (and canceled) by our handler, preventing the OS from
+            // killing the process before hooks finish. They'll be cleaned up by the
+            // GC/finalizer when the process exits.
 
             try
             {
@@ -210,6 +197,10 @@ public void RunShutdownTasks(Exception? exception = null)
             {
                 // Swallow as there's nothing we can with it anyway
             }
+            finally
+            {
+                _shutdownComplete.Set();
+            }
 
             static void SetSynchronizationContext(SynchronizationContext? context)
             {
@@ -263,49 +254,27 @@ private void TryRegisterTerminationSignalHandlers()
 
         private void TerminationSignalHandler(PosixSignalContext context)
         {
-            // Ensure this handler initiates termination at most once.
             if (Interlocked.Exchange(ref _terminationExitInitiated, 1) != 0)
             {
-                // Another signal already initiated termination; do nothing.
+                // Duplicate signal while shutdown is in progress.
+                // Wait for the first handler to finish running shutdown tasks.
+                _shutdownComplete.Wait();
                 return;
             }
 
+            // Calling Environment.Exit(0); caused an issue in Microsoft Orleans (look https://github.com/DataDog/dd-trace-dotnet/issues/8165)
+            // The Posix signals registration mechanism doesn't use a normal MulticastDelegate kind of list; it's using a HashSet<Token> internally.
+            // meaning that the call order is not deterministic, creating a flaky behavior between all the handlers.
+            // The fact that there's no way to guarantee that we are the last handler means that we cannot force the exit of the process to raise
+            // the finalization events calls because that means other handlers will not be called, for that reason we will just proceed with a manual
+            // cleanup of our tasks without forcing the exit so other handlers can be executed as well.
+
+            // First signal: run shutdown tasks synchronously before the handler returns.
+            // We intentionally do NOT set context.Cancel here — after the handler returns,
+            // the runtime/OS will perform the default action (terminate the process with
+            // exit code 143), which is the desired behavior once hooks have completed.
             try
             {
-                // On Unix, Cancel prevents the OS default handler from immediately terminating the process.
-                // (On Windows, SIGTERM/SIGHUP can't be canceled.)
-                if (!OperatingSystem.IsWindows())
-                {
-                    // See PosixSignalRegistration.Create remarks:
-                    // https://learn.microsoft.com/en-us/dotnet/api/system.runtime.interopservices.posixsignalregistration.create
-                    context.Cancel = true; // Keep the process alive long enough to take the managed shutdown path.
-                }
-            }
-            catch (Exception ex)
-            {
-                // Best-effort. If we can't cancel default handling, still attempt a managed exit.
-                Log.Warning(ex, "Failed to cancel default termination signal handling. Graceful shutdown may not run.");
-            }
-
-            // Intentionally do NOT call RunShutdownTasks() directly here.
-            //
-            // Reason: pre-.NET 10 behavior was "termination signal => graceful managed exit => ProcessExit event".
-            // Our existing shutdown flow is attached to AppDomain.CurrentDomain.ProcessExit (CurrentDomain_ProcessExit),
-            // so we initiate a managed shutdown and let ProcessExit invoke RunShutdownTasks just like before.
-            //
-            // Supporting runtime source references:
-            // - Environment.Exit is an internal runtime call:
-            //   https://github.com/dotnet/runtime/blob/main/src/coreclr/System.Private.CoreLib/src/System/Environment.CoreCLR.cs
-            // - ProcessExit is raised by the runtime via AppDomain.OnProcessExit():
-            //   https://github.com/dotnet/runtime/blob/main/src/libraries/System.Private.CoreLib/src/System/AppDomain.cs
-            try
-            {
-                // Calling Environment.Exit(0); caused an issue in Microsoft Orleans (look https://github.com/DataDog/dd-trace-dotnet/issues/8165)
-                // The Posix signals registration mechanism doesn't use a normal MulticastDelegate kind of list; it's using a HashSet<Token> internally.
-                // meaning that the call order is not deterministic, creating a flaky behavior between all the handlers.
-                // The fact that there's no way to guarantee that we are the last handler means that we cannot force the exit of the process to raise
-                // the finialization events calls because that means other handlers will not be called, for that reason we will just proceed with a manual
-                // cleanup of our tasks without forcing the exit so other handlers can be executed as well.
                 RunShutdownTasks();
             }
             catch (Exception ex)

tracer/src/Datadog.Trace/TracerManager.cs

@@ -783,13 +783,14 @@ private static async Task RunShutdownTasksAsync(TracerManager instance, Timer he
                         await instance.Telemetry.DisposeAsync().ConfigureAwait(false);
                     }
 
+                    Log.Debug("Disposing RuntimeMetrics");
                     instance.RuntimeMetrics?.Dispose();
 
-                    // Fire-and-forget: on master the old sync Dispose() was already
-                    // fire-and-forget internally (Task.Run). DisposeAsync flushes buffers
-                    // and drains worker threads which can take several seconds, longer than
-                    // the window between repeated termination signals on .NET 10.
-                    instance.Statsd?.DisposeAsync().ContinueWith(t => Log.Error(t.Exception, "Error waiting for StatsD disposal"), TaskContinuationOptions.OnlyOnFaulted);
+                    if (instance.Statsd is { } statsd)
+                    {
+                        Log.Debug("Disposing StatsdManager");
+                        await statsd.DisposeAsync().ConfigureAwait(false);
+                    }
 
                     Log.Debug("Finished waiting for disposals.");
                 }

tracer/test/Datadog.Trace.ClrProfiler.IntegrationTests/LifetimeManager/TerminationSignalTests.cs

@@ -13,7 +13,7 @@
 using Xunit;
 using Xunit.Abstractions;
 
-#if NET10_0_OR_GREATER
+#if NET8_0_OR_GREATER
 
 namespace Datadog.Trace.ClrProfiler.IntegrationTests.LifetimeManager;
 
@@ -28,7 +28,7 @@ public TerminationSignalTests(ITestOutputHelper output)
     {
     }
 
-    [SkippableFact(Skip = "There are timing issues in the shutdown after adding DisposeAsync")]
+    [SkippableFact]
     public async Task SigtermTriggersShutdownOnce_WhenRepeated()
     {
         await RunSigtermTestAsync(signalCount: 2, usePublishWithRid: false);
@@ -74,6 +74,7 @@ private async Task RunSigtermTestAsync(int signalCount, bool usePublishWithRid)
 
         SetEnvironmentVariable("DD_LIFETIME_READY_FILE", readyFile);
         SetEnvironmentVariable("DD_LIFETIME_SHUTDOWN_FILE", shutdownFile);
+        SetEnvironmentVariable("DD_LIFETIME_SHUTDOWN_DELAY_MS", "1000");
 
         using var process = await StartSample(agent, "--wait", packageVersion: string.Empty, aspNetCorePort: 0, usePublishWithRID: usePublishWithRid);
         using var helper = new ProcessHelper(process);