feat(agent): Moves major version metric creation to R_SHUTDOWN

Changes how the package major number metrics are created so this occurs
in R_SHUTDOWN.  This allows the use of package versions from ALL sources
include the Composer API.  Whenever instrumentation for a package detects
a package it can create a package suggestion.  Initially if a version is not
known it is fine to use PHP_PACKAGE_VERSION_UNKNOWN.  If latest
the instrumentation determines a version from a class constant, etc, then
the suggestion can be updated with the version.

At the end of the transaction then this list of suggestions is traversed and
the actual package data (which could include Composer API data) is
referenced and a major number supportability metric is created with the
best version available.

Author: mfulb

agent/fw_drupal.c

@@ -885,7 +885,8 @@ void nr_drupal_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/fw_drupal8.c

@@ -761,6 +761,6 @@ void nr_drupal8_enable(TSRMLS_D) {
                            PHP_PACKAGE_VERSION_UNKNOWN);
   }
 
-  nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                 NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/fw_laminas3.c

@@ -167,7 +167,8 @@ void nr_laminas3_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/fw_laravel.c

@@ -962,10 +962,11 @@ NR_PHP_WRAPPER(nr_laravel_application_construct) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     // Add php package to transaction
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME, version);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
 
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               version);
+
   if (version) {
     nrl_debug(NRL_FRAMEWORK, "Laravel version is " NRP_FMT, NRP_PHP(version));
 

agent/fw_lumen.c

@@ -237,7 +237,8 @@ void nr_lumen_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/fw_slim.c

@@ -161,10 +161,11 @@ NR_PHP_WRAPPER(nr_slim_application_construct) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     // Add php package to transaction
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME, version);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
 
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               version);
+
   nr_free(version);
   nr_php_scope_release(&this_var);
 }

agent/fw_symfony4.c

@@ -281,7 +281,8 @@ void nr_symfony4_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/fw_wordpress.c

@@ -811,9 +811,10 @@ void nr_wordpress_version() {
       char* version = Z_STRVAL(retval);
       if (NRINI(vulnerability_management_package_detection_enabled)) {
         nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME, version);
-        nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                       NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
       }
+
+      nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                                   version);
     }
     zval_dtor(&retval);
   }

agent/fw_yii.c

@@ -226,7 +226,8 @@ void nr_yii2_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/lib_aws_sdk_php.c

@@ -68,10 +68,11 @@ void nr_lib_aws_sdk_php_handle_version() {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     /* Add php package to transaction */
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME, version);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
 
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               version);
+
   nr_php_zval_free(&zval_version);
 }
 

agent/lib_doctrine2.c

@@ -110,7 +110,8 @@ void nr_doctrine2_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/lib_guzzle4.c

@@ -524,9 +524,10 @@ void nr_guzzle4_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }
 
 void nr_guzzle4_minit(TSRMLS_D) {

agent/lib_guzzle6.c

@@ -352,19 +352,10 @@ NR_PHP_WRAPPER_START(nr_guzzle6_client_construct) {
   zval* this_var = nr_php_scope_get(NR_EXECUTE_ORIG_ARGS);
 
   char* version = nr_php_get_object_constant(this_var, "VERSION");
-  nr_php_package_t* p = NULL;
 
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     // Add php package to transaction
-    p = nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME, version);
-
-    /* mark package for package major metric creation later if
-     * a full version was detected
-     */
-    if (NULL != version) {
-      nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                     NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
-    }
+    nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME, version);
   }
 
   /*
@@ -378,10 +369,15 @@ NR_PHP_WRAPPER_START(nr_guzzle6_client_construct) {
    */
   if (NULL == version) {
     version = nr_php_get_object_constant(this_var, "MAJOR_VERSION");
-    nr_fw_support_add_package_supportability_metric(
-        NRPRG(txn), PHP_PACKAGE_NAME, version, p);
   }
 
+  /* if version is still NULL that is OK this next call will accept
+   * that value and when supportability metrics are made for
+   * packages if another method has determined the package version
+   * (composer api for example) then it will be filled in at that time
+   */
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               version);
   nr_free(version);
 
   (void)wraprec;

agent/lib_mongodb.c

@@ -449,7 +449,8 @@ void nr_mongodb_enable() {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/lib_monolog.c

@@ -378,10 +378,8 @@ NR_PHP_WRAPPER(nr_monolog_logger_addrecord) {
         = nr_monolog_get_timestamp(api, argc, NR_EXECUTE_ORIG_ARGS TSRMLS_CC);
     char version[MAJOR_VERSION_LENGTH];
     snprintf(version, sizeof(version), "%d", api);
-    nr_fw_support_add_package_supportability_metric(
-        NRPRG(txn), PHP_PACKAGE_NAME, version,
-        nr_php_packages_get_package(NRPRG(txn)->php_packages,
-                                    PHP_PACKAGE_NAME));
+    nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                                 version);
   }
 
   /* Record the log event */
@@ -524,14 +522,8 @@ void nr_monolog_enable(TSRMLS_D) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME,
                            PHP_PACKAGE_VERSION_UNKNOWN);
-    /* Usually we would set the package major metric option here, but legacy
-     * VM detection will get the version from the logger API constant
-     * and we create the package major metric then as it will work even
-     * if the composer API is not being used for VM.
-     *
-     * The version detection is done in the addRecord wrapper and only
-     * returns a major number, so this value is not stored in the PHP
-     * package record for monolog.  This is different than most packages.
-     */
   }
+
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               PHP_PACKAGE_VERSION_UNKNOWN);
 }

agent/lib_predis.c

@@ -653,10 +653,11 @@ NR_PHP_WRAPPER(nr_predis_client_construct) {
   if (NRINI(vulnerability_management_package_detection_enabled)) {
     // Add php package to transaction
     nr_txn_add_php_package(NRPRG(txn), PHP_PACKAGE_NAME, version);
-    nr_txn_php_package_set_options(NRPRG(txn), PHP_PACKAGE_NAME,
-                                   NR_PHP_PACKAGE_OPTION_MAJOR_METRIC);
   }
 
+  nr_txn_suggest_package_supportability_metric(NRPRG(txn), PHP_PACKAGE_NAME,
+                                               version);
+
   nr_free(version);
 
   /*

agent/php_txn.c

@@ -718,32 +718,38 @@ static void nr_php_txn_php_package_create_major_metric(void* value,
                                                        size_t key_len,
                                                        void* user_data) {
   nrtxn_t* txn = (nrtxn_t*)user_data;
-  nr_php_package_t* package = value;
+  nr_php_package_t* suggested = value;
+  nr_php_package_t* actual = NULL;
 
   (void)key;
   (void)key_len;
 
-  if (NULL == package) {
+  if (NULL == suggested) {
     return;
   }
 
-  if (package->options & NR_PHP_PACKAGE_OPTION_MAJOR_METRIC) {
-    nrl_verbosedebug(NRL_INSTRUMENT,
-                     "Creating PHP Package Supportability Metric for package "
-                     "'%s', version '%s'",
-                     NRSAFESTR(package->package_name),
-                     NRSAFESTR(package->package_version));
-    nr_fw_support_add_package_supportability_metric(
-        txn, package->package_name, package->package_version, NULL);
-  }
+  /* see if the actual packages has a version we can use over the
+   * one provided with the suggested package
+   */
+  actual
+      = nr_php_packages_get_package(txn->php_packages, suggested->package_name);
+
+  nrl_verbosedebug(NRL_INSTRUMENT,
+                   "Creating PHP Package Supportability Metric for package "
+                   "'%s', suggested version '%s', actual version '%s'",
+                   NRSAFESTR(suggested->package_name),
+                   NRSAFESTR(suggested->package_version),
+                   NRSAFESTR(actual ? actual->package_version : ""));
+  nr_fw_support_add_package_supportability_metric(
+      txn, suggested->package_name, suggested->package_version, actual);
 }
 
 void nr_php_txn_create_packages_major_metrics(nrtxn_t* txn) {
   if (NULL == txn) {
     return;
   }
 
-  nr_php_packages_iterate(txn->php_packages,
+  nr_php_packages_iterate(txn->php_package_suggestions,
                           nr_php_txn_php_package_create_major_metric, txn);
 }
 

axiom/nr_php_packages.c

@@ -25,6 +25,8 @@ typedef struct {
 
 static inline const char* nr_php_package_source_priority_to_string(const nr_php_package_source_priority_t source_priority) {
   switch (source_priority) {
+    case NR_PHP_PACKAGE_SOURCE_SUGGESTION:
+      return "suggestion";
     case NR_PHP_PACKAGE_SOURCE_LEGACY:
       return "legacy";
     case NR_PHP_PACKAGE_SOURCE_COMPOSER:
@@ -34,7 +36,10 @@ static inline const char* nr_php_package_source_priority_to_string(const nr_php_
   }
 }
 
-nr_php_package_t* nr_php_package_create_with_source(char* name, char* version, const nr_php_package_source_priority_t source_priority) {
+nr_php_package_t* nr_php_package_create_with_source(
+    const char* name,
+    const char* version,
+    const nr_php_package_source_priority_t source_priority) {
   nr_php_package_t* p = NULL;
 
   if (NULL == name) {
@@ -55,14 +60,13 @@ nr_php_package_t* nr_php_package_create_with_source(char* name, char* version, c
                                        // string with a space according to spec
   }
   p->source_priority = source_priority;
-  p->options = 0;
 
   nrl_verbosedebug(NRL_INSTRUMENT, "Creating PHP Package '%s', version '%s', source %s",
                    p->package_name, p->package_version, nr_php_package_source_priority_to_string(source_priority));
   return p;
 }
 
-nr_php_package_t* nr_php_package_create(char* name, char* version) {
+nr_php_package_t* nr_php_package_create(const char* name, const char* version) {
   return nr_php_package_create_with_source(name, version, NR_PHP_PACKAGE_SOURCE_LEGACY);
 }
 
@@ -74,20 +78,6 @@ void nr_php_package_destroy(nr_php_package_t* p) {
   }
 }
 
-void nr_php_package_set_options(nr_php_package_t* p,
-                                nr_php_package_options_t options) {
-  if (NULL != p) {
-    p->options = options;
-  }
-}
-
-nr_php_package_options_t nr_php_package_get_options(nr_php_package_t* p) {
-  if (NULL == p) {
-    return 0;
-  }
-  return p->options;
-}
-
 nr_php_packages_t* nr_php_packages_create() {
   nr_php_packages_t* h = NULL;
   h = (nr_php_packages_t*)nr_malloc(sizeof(nr_php_packages_t));
@@ -131,48 +121,6 @@ nr_php_package_t* nr_php_packages_add_package(nr_php_packages_t* h,
   return p;
 }
 
-void nr_php_packages_set_package_options(nr_php_packages_t* h,
-                                         const char* package_name,
-                                         nr_php_package_options_t options) {
-  nr_php_package_t* package;
-
-  if (NULL == h) {
-    return;
-  }
-
-  if (nr_strempty(package_name)) {
-    return;
-  }
-
-  package = nr_php_packages_get_package(h, package_name);
-  if (NULL == package) {
-    return;
-  }
-
-  nr_php_package_set_options(package, options);
-}
-
-nr_php_package_options_t nr_php_packages_get_package_options(
-    nr_php_packages_t* h,
-    const char* package_name) {
-  nr_php_package_t* package;
-
-  if (NULL == h) {
-    return 0;
-  }
-
-  if (nr_strempty(package_name)) {
-    return 0;
-  }
-
-  package = nr_php_packages_get_package(h, package_name);
-  if (NULL == package) {
-    return 0;
-  }
-
-  return nr_php_package_get_options(package);
-}
-
 void nr_php_packages_iterate(nr_php_packages_t* packages,
                              nr_php_packages_iter_t callback,
                              void* userdata) {