feat(crashtracking): Redact register mapping

Author: bric3

dd-java-agent/agent-crashtracking/src/main/java/datadog/crashtracking/parsers/HotspotCrashLogParser.java

@@ -104,8 +104,7 @@ public HotspotCrashLogParser() {
   // find(), which would otherwise match the lowercase "sp"/"pc" tokens embedded in those lines.
   private static final Pattern REGISTER_LINE_START =
       Pattern.compile("^\\s*[A-Za-z][A-Za-z0-9]*\\s*=\\s*0x");
-  private static final Pattern SUBSECTION_TITLE =
-      Pattern.compile("^\\s*[A-Za-z][\\w ]*:.+$");
+  private static final Pattern SUBSECTION_TITLE = Pattern.compile("^\\s*[A-Za-z][\\w ]*:.+$");
   private static final Pattern COMPILED_JAVA_ADDRESS_PARSER =
       Pattern.compile("@\\s+(0x[0-9a-fA-F]+)\\s+\\[(0x[0-9a-fA-F]+)\\+(0x[0-9a-fA-F]+)\\]");
 
@@ -599,6 +598,7 @@ public CrashLog parse(String uuid, String crashLog) {
     Metadata metadata = new Metadata("dd-trace-java", VersionInfo.VERSION, "java", null);
     Integer parsedPid = safelyParseInt(pid);
     ProcInfo procInfo = parsedPid != null ? new ProcInfo(parsedPid) : null;
+    registerToMemoryMapping.replaceAll((k, v) -> RedactUtils.redactRegisterToMemoryMapping(v));
     Experimental experimental =
         !registers.isEmpty()
                 || !registerToMemoryMapping.isEmpty()
@@ -650,9 +650,7 @@ private static State nextThreadSectionState(String line, boolean previousLineBla
     if (line.contains("P R O C E S S")) {
       return State.PROCESS;
     }
-    if (previousLineBlank
-        && !line.contains("=")
-        && SUBSECTION_TITLE.matcher(line).matches()) {
+    if (previousLineBlank && !line.contains("=") && SUBSECTION_TITLE.matcher(line).matches()) {
       return State.STACKTRACE;
     }
     return null;

dd-java-agent/agent-crashtracking/src/main/java/datadog/crashtracking/parsers/RedactUtils.java

@@ -0,0 +1,228 @@
+package datadog.crashtracking.parsers;
+
+import java.util.function.Function;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+/**
+ * Utilities for redacting potentially sensitive data from JVM crash log register-to-memory mapping
+ * entries.
+ */
+public final class RedactUtils {
+
+  static final String REDACTED = "redacted";
+  private static final String REDACTED_STRING = "REDACTED";
+
+  private static final String[] KNOWN_PACKAGES_PREFIXES = {
+    // Java SE / JDK internals
+    "java/",
+    "jdk/",
+    "sun/",
+    "javax/",
+    // Jakarta EE (successor to javax)
+    "jakarta/",
+    // Oracle/Sun vendor packages
+    "com/sun/",
+    "com/oracle/",
+  };
+
+  // " - string: "value"" in String oop dumps
+  private static final Pattern STRING_CONTENT = Pattern.compile("(\\s*- string: )\"[^\"]*\"");
+
+  // Type descriptors like Lcom/company/Type;
+  private static final Pattern TYPE_DESCRIPTOR = Pattern.compile("L([A-Za-z$_][A-Za-z0-9$_/]*);");
+
+  // klass/interface references: - klass: 'com/company/Class'
+  private static final Pattern KLASS_REF = Pattern.compile("((?:klass|interface): ')([^']+)(')");
+
+  // 'in 'class'' clause in {method} descriptor entries
+  private static final Pattern METHOD_IN_CLASS = Pattern.compile("( in ')([^']+)(')");
+
+  // Library path after <offset 0x...> in /path/to/lib.so
+  private static final Pattern LIBRARY_PATH =
+      Pattern.compile("(<offset 0x[0-9a-fA-F]+> in )(/\\S+)");
+
+  // Dotted class name followed by an OOP reference: "com.company.Type"{0x...}
+  // This specifically identifies the inline string value of a java.lang.Class 'name' field
+  private static final Pattern DOTTED_CLASS_OOP_REF =
+      Pattern.compile(
+          "\"([A-Za-z][A-Za-z0-9$]*(?:\\.[A-Za-z][A-Za-z0-9$]*)*)\"(\\{0x[0-9a-fA-F]+\\})");
+
+  // is an oop: com.company.Class
+  private static final Pattern IS_AN_OOP =
+      Pattern.compile("(is an oop: )([A-Za-z][A-Za-z0-9$]*(?:\\.[A-Za-z][A-Za-z0-9$]*)*)");
+
+  private RedactUtils() {}
+
+  /**
+   * Main entry point: redact sensitive data from a register-to-memory mapping value (possibly
+   * multiline).
+   */
+  public static String redactRegisterToMemoryMapping(String value) {
+    if (value == null || value.isEmpty()) return value;
+    String[] lines = value.split("\n", -1);
+    StringBuilder sb = new StringBuilder();
+    for (int i = 0; i < lines.length; i++) {
+      if (i > 0) sb.append('\n');
+      sb.append(redactLine(lines[i]));
+    }
+    return sb.toString();
+  }
+
+  private static String redactLine(String line) {
+    line = redactStringTypeValue(line);
+    line = redactTypeDescriptors(line);
+    line = redactKlassReference(line);
+    line = redactMethodClass(line);
+    line = redactLibraryPath(line);
+    line = redactDottedClassOopRef(line);
+    line = redactOopClassName(line);
+    return line;
+  }
+
+  /**
+   * Redacts string content in String oop dump lines: <code> - string: "Some string"</code> to
+   * <code> - string: "REDACTED"</code>
+   */
+  static String redactStringTypeValue(String line) {
+    return STRING_CONTENT.matcher(line).replaceAll("$1\"" + REDACTED_STRING + "\"");
+  }
+
+  /**
+   * Redacts the package of type descriptors in a line: <code>Lcom/company/Type;</code> to <code>
+   * Lredacted/redacted/Type;</code>
+   */
+  static String redactTypeDescriptors(String line) {
+    return replaceAll(TYPE_DESCRIPTOR, line, m -> "L" + redactJvmClassName(m.group(1)) + ";");
+  }
+
+  /**
+   * Redacts klass/interface references in a line: <code>klass: 'com/company/Class'</code> to <code>
+   * klass: 'redacted/redacted/Class'</code>
+   */
+  static String redactKlassReference(String line) {
+    return replaceAll(
+        KLASS_REF, line, m -> m.group(1) + redactJvmClassName(m.group(2)) + m.group(3));
+  }
+
+  /**
+   * Redacts the class in a method descriptor's {@code in 'class'} clause: <code>
+   * in 'com/company/Class'</code> to <code>in 'redacted/redacted/Class'</code>
+   */
+  static String redactMethodClass(String line) {
+    return replaceAll(
+        METHOD_IN_CLASS, line, m -> m.group(1) + redactJvmClassName(m.group(2)) + m.group(3));
+  }
+
+  /**
+   * Redacts all but the parent directory and filename from a library path in the line: <code>
+   * &lt;offset 0x...&gt; in /path/to/dir/lib.so</code> to <code>
+   * &lt;offset 0x...&gt; in /redacted/redacted/dir/lib.so</code>
+   */
+  static String redactLibraryPath(String line) {
+    return replaceAll(LIBRARY_PATH, line, m -> m.group(1) + redactPath(m.group(2)));
+  }
+
+  /**
+   * Redacts dotted class names that appear as inline field values followed by an OOP reference:
+   * <code>"com.company.SomeType"{0x...}</code> to <code>"redacted.redacted.SomeType"{0x...}</code>
+   */
+  static String redactDottedClassOopRef(String line) {
+    return replaceAll(
+        DOTTED_CLASS_OOP_REF,
+        line,
+        m -> "\"" + redactDottedClassName(m.group(1)) + "\"" + m.group(2));
+  }
+
+  /**
+   * Redacts the class name in {@code is an oop: ClassName}: <code>is an oop: com.company.Class
+   * </code> to <code>is an oop: redacted.redacted.Class</code>
+   */
+  static String redactOopClassName(String line) {
+    return replaceAll(IS_AN_OOP, line, m -> m.group(1) + redactDottedClassName(m.group(2)));
+  }
+
+  /**
+   * Redacts the package of a slash-separated JVM class name, unless it belongs to a known package.
+   * <code>com/company/SomeType</code> to <code>redacted/redacted/SomeType</code>; <code>
+   * java/lang/String</code> unchanged.
+   */
+  static String redactJvmClassName(String className) {
+    if (isKnownJvmPackage(className)) {
+      return className;
+    }
+    return redactClassName('/', className);
+  }
+
+  /**
+   * Redacts the package of a dot-separated class name, unless it belongs to a known package. <code>
+   * com.company.SomeType</code> to <code>redacted.redacted.SomeType</code>; <code>java.lang.String
+   * </code> unchanged.
+   */
+  static String redactDottedClassName(String className) {
+    if (isKnownJvmPackage(className.replace('.', '/'))) {
+      return className;
+    }
+    return redactClassName('.', className);
+  }
+
+  private static String redactClassName(char sep, String className) {
+    int lastSep = className.lastIndexOf(sep);
+    if (lastSep < 0) return className;
+    StringBuilder sb = new StringBuilder();
+    int pos = 0;
+    while (pos <= lastSep) {
+      int next = className.indexOf(sep, pos);
+      if (sb.length() > 0) sb.append(sep);
+      sb.append(REDACTED);
+      pos = next + 1;
+    }
+    return sb.append(sep).append(className, lastSep + 1, className.length()).toString();
+  }
+
+  /**
+   * Redacts all path segments except the parent directory and filename. <code>/path/to/dir/lib.so
+   * </code> to <code>/redacted/redacted/dir/lib.so</code>
+   */
+  static String redactPath(String path) {
+    String[] parts = path.split("/", -1);
+    // parts[0] is always "" (before the leading slash)
+    if (parts.length <= 3) {
+      return path; // /dir/file or shorter: nothing to redact
+    }
+    StringBuilder sb = new StringBuilder();
+    for (int i = 1; i < parts.length - 2; i++) {
+      sb.append('/').append(REDACTED);
+    }
+    return sb.append('/')
+        .append(parts[parts.length - 2])
+        .append('/')
+        .append(parts[parts.length - 1])
+        .toString();
+  }
+
+  private static boolean isKnownJvmPackage(String slashClassName) {
+    for (String prefix : KNOWN_PACKAGES_PREFIXES) {
+      if (slashClassName.startsWith(prefix)) {
+        return true;
+      }
+    }
+    return slashClassName.contains("datadog") || slashClassName.startsWith("com/dd/");
+  }
+
+  private static String replaceAll(
+      Pattern pattern, String input, Function<Matcher, String> replacement) {
+    Matcher m = pattern.matcher(input);
+    if (!m.find()) {
+      return input;
+    }
+    StringBuilder sb = new StringBuilder();
+    int lastEnd = 0;
+    do {
+      sb.append(input, lastEnd, m.start());
+      sb.append(replacement.apply(m));
+      lastEnd = m.end();
+    } while (m.find());
+    return sb.append(input, lastEnd, input.length()).toString();
+  }
+}

dd-java-agent/agent-crashtracking/src/test/java/datadog/crashtracking/CrashUploaderTest.java

@@ -394,8 +394,7 @@ public void testErrorTrackingSerializesRuntimeArgs() throws Exception {
   }
 
   @Test
-  public void testErrorTrackingSerializesRegisterToMemoryMapping()
-      throws Exception {
+  public void testErrorTrackingSerializesRegisterToMemoryMapping() throws Exception {
     ConfigManager.StoredConfig crashConfig =
         new ConfigManager.StoredConfig.Builder(config)
             .reportUUID(SAMPLE_UUID)
@@ -415,8 +414,7 @@ public void testErrorTrackingSerializesRegisterToMemoryMapping()
     final JsonNode mapping = event.at("/experimental/register_to_memory_mapping");
     assertThat(mapping.isObject()).isTrue();
     assertThat(mapping.get("RSP").asText())
-        .isEqualTo(
-            "0x00007f35e6253190 is pointing into the stack for thread: 0x00007f36cd96cc80");
+        .isEqualTo("0x00007f35e6253190 is pointing into the stack for thread: 0x00007f36cd96cc80");
     assertThat(mapping.get("RDI").asText()).isEqualTo("0x0 is NULL");
   }
 

dd-java-agent/agent-crashtracking/src/test/java/datadog/crashtracking/parsers/HotspotCrashLogParserTest.java

@@ -109,7 +109,11 @@ public void testRegisterToMemoryMapping() throws Exception {
         .containsEntry("RDI", "0x0 is NULL")
         .containsEntry(
             "R11",
-            "{method} {0x00007f3744198b70} 'resize' '()[Ljava/util/HashMap$Node;' in 'java/util/HashMap'");
+            "{method} {0x00007f3744198b70} 'resize' '()[Ljava/util/HashMap$Node;' in 'java/util/HashMap'")
+        // unknown packages are redacted; known class names (last segment) are preserved
+        .containsEntry(
+            "RSI",
+            "{method} {0x00007f3639c2ff00} 'saveJob' '(Lredacted/redacted/redacted/redacted/REDACT_THIS;ILjava/lang/String;)V' in 'redacted/redacted/redacted/redacted/REDACT_THIS'");
   }
 
   @Test
@@ -120,9 +124,7 @@ public void testRegisterToMultilineMemoryMapping() throws Exception {
                 UUID.randomUUID().toString(), readFileAsString("sample-crash-linux-aarch64.txt"));
 
     assertThat(crashLog.experimental).isNotNull();
-    assertThat(crashLog.experimental.registerToMemoryMapping)
-        .isNotNull()
-        .containsKey("R10");
+    assertThat(crashLog.experimental.registerToMemoryMapping).isNotNull().containsKey("R10");
     assertThat(crashLog.experimental.registerToMemoryMapping)
         .extractingByKey("R10", STRING)
         .startsWith("0x00000007ffe85850 is an oop: java.lang.Class ")