-
Notifications
You must be signed in to change notification settings - Fork 292
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix NullPointerException in RASP metrics #7654
Merged
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
BenchmarksStartupParameters
See matching parameters
SummaryFound 0 performance improvements and 0 performance regressions! Performance is the same for 48 metrics, 15 unstable metrics. Startup time reports for insecure-bankgantt
title insecure-bank - global startup overhead: candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section tracing
Agent [baseline] (1.068 s) : 0, 1068492
Total [baseline] (8.566 s) : 0, 8566363
Agent [candidate] (1.068 s) : 0, 1067762
Total [candidate] (8.553 s) : 0, 8552639
section iast
Agent [baseline] (1.196 s) : 0, 1196217
Total [baseline] (9.02 s) : 0, 9020496
Agent [candidate] (1.194 s) : 0, 1193626
Total [candidate] (9.061 s) : 0, 9060993
section iast_HARDCODED_SECRET_DISABLED
Agent [baseline] (1.197 s) : 0, 1196777
Total [baseline] (9.06 s) : 0, 9059842
Agent [candidate] (1.195 s) : 0, 1195320
Total [candidate] (9.022 s) : 0, 9021873
section iast_TELEMETRY_OFF
Agent [baseline] (1.201 s) : 0, 1200512
Total [baseline] (9.104 s) : 0, 9103516
Agent [candidate] (1.191 s) : 0, 1191184
Total [candidate] (9.044 s) : 0, 9043686
gantt
title insecure-bank - break down per module: candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section tracing
BytebuddyAgent [baseline] (680.414 ms) : 0, 680414
BytebuddyAgent [candidate] (679.702 ms) : 0, 679702
GlobalTracer [baseline] (312.2 ms) : 0, 312200
GlobalTracer [candidate] (312.067 ms) : 0, 312067
AppSec [baseline] (53.802 ms) : 0, 53802
AppSec [candidate] (53.946 ms) : 0, 53946
Remote Config [baseline] (675.072 µs) : 0, 675
Remote Config [candidate] (673.943 µs) : 0, 674
Telemetry [baseline] (7.611 ms) : 0, 7611
Telemetry [candidate] (7.613 ms) : 0, 7613
section iast
BytebuddyAgent [baseline] (795.369 ms) : 0, 795369
BytebuddyAgent [candidate] (792.941 ms) : 0, 792941
GlobalTracer [baseline] (300.297 ms) : 0, 300297
GlobalTracer [candidate] (299.665 ms) : 0, 299665
AppSec [baseline] (55.801 ms) : 0, 55801
AppSec [candidate] (54.456 ms) : 0, 54456
Remote Config [baseline] (618.968 µs) : 0, 619
Remote Config [candidate] (605.165 µs) : 0, 605
Telemetry [baseline] (7.411 ms) : 0, 7411
Telemetry [candidate] (8.177 ms) : 0, 8177
IAST [baseline] (22.871 ms) : 0, 22871
IAST [candidate] (23.948 ms) : 0, 23948
section iast_HARDCODED_SECRET_DISABLED
BytebuddyAgent [baseline] (795.167 ms) : 0, 795167
BytebuddyAgent [candidate] (793.977 ms) : 0, 793977
GlobalTracer [baseline] (300.704 ms) : 0, 300704
GlobalTracer [candidate] (300.748 ms) : 0, 300748
AppSec [baseline] (54.039 ms) : 0, 54039
AppSec [candidate] (54.247 ms) : 0, 54247
Remote Config [baseline] (692.536 µs) : 0, 693
Remote Config [candidate] (608.718 µs) : 0, 609
Telemetry [baseline] (7.528 ms) : 0, 7528
Telemetry [candidate] (8.208 ms) : 0, 8208
IAST [baseline] (24.805 ms) : 0, 24805
IAST [candidate] (23.711 ms) : 0, 23711
section iast_TELEMETRY_OFF
BytebuddyAgent [baseline] (797.335 ms) : 0, 797335
BytebuddyAgent [candidate] (790.165 ms) : 0, 790165
GlobalTracer [baseline] (302.831 ms) : 0, 302831
GlobalTracer [candidate] (300.834 ms) : 0, 300834
AppSec [baseline] (55.561 ms) : 0, 55561
AppSec [candidate] (54.42 ms) : 0, 54420
Remote Config [baseline] (620.271 µs) : 0, 620
Remote Config [candidate] (1.394 ms) : 0, 1394
Telemetry [baseline] (7.4 ms) : 0, 7400
Telemetry [candidate] (7.197 ms) : 0, 7197
IAST [baseline] (22.847 ms) : 0, 22847
IAST [candidate] (23.383 ms) : 0, 23383
Startup time reports for petclinicgantt
title petclinic - global startup overhead: candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section tracing
Agent [baseline] (1.07 s) : 0, 1069522
Total [baseline] (10.453 s) : 0, 10452533
Agent [candidate] (1.068 s) : 0, 1067676
Total [candidate] (10.418 s) : 0, 10417879
section appsec
Agent [baseline] (1.209 s) : 0, 1209298
Total [baseline] (10.669 s) : 0, 10668682
Agent [candidate] (1.207 s) : 0, 1207052
Total [candidate] (10.686 s) : 0, 10686240
section iast
Agent [baseline] (1.204 s) : 0, 1203967
Total [baseline] (10.857 s) : 0, 10857124
Agent [candidate] (1.213 s) : 0, 1213063
Total [candidate] (11.002 s) : 0, 11002325
section profiling
Agent [baseline] (1.27 s) : 0, 1270298
Total [baseline] (10.563 s) : 0, 10563304
Agent [candidate] (1.27 s) : 0, 1270383
Total [candidate] (10.665 s) : 0, 10664913
gantt
title petclinic - break down per module: candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section tracing
BytebuddyAgent [baseline] (681.386 ms) : 0, 681386
BytebuddyAgent [candidate] (680.087 ms) : 0, 680087
GlobalTracer [baseline] (312.445 ms) : 0, 312445
GlobalTracer [candidate] (311.528 ms) : 0, 311528
AppSec [baseline] (53.554 ms) : 0, 53554
AppSec [candidate] (53.953 ms) : 0, 53953
Remote Config [baseline] (668.727 µs) : 0, 669
Remote Config [candidate] (669.894 µs) : 0, 670
Telemetry [baseline] (7.679 ms) : 0, 7679
Telemetry [candidate] (7.637 ms) : 0, 7637
section appsec
BytebuddyAgent [baseline] (705.216 ms) : 0, 705216
BytebuddyAgent [candidate] (704.177 ms) : 0, 704177
GlobalTracer [baseline] (305.667 ms) : 0, 305667
GlobalTracer [candidate] (305.39 ms) : 0, 305390
AppSec [baseline] (165.599 ms) : 0, 165599
AppSec [candidate] (163.225 ms) : 0, 163225
IAST [baseline] (19.791 ms) : 0, 19791
IAST [candidate] (19.948 ms) : 0, 19948
Remote Config [baseline] (656.847 µs) : 0, 657
Remote Config [candidate] (640.197 µs) : 0, 640
Telemetry [baseline] (8.509 ms) : 0, 8509
Telemetry [candidate] (9.864 ms) : 0, 9864
section iast
BytebuddyAgent [baseline] (800.494 ms) : 0, 800494
BytebuddyAgent [candidate] (806.527 ms) : 0, 806527
GlobalTracer [baseline] (302.719 ms) : 0, 302719
GlobalTracer [candidate] (304.806 ms) : 0, 304806
AppSec [baseline] (55.989 ms) : 0, 55989
AppSec [candidate] (54.767 ms) : 0, 54767
IAST [baseline] (22.803 ms) : 0, 22803
IAST [candidate] (24.816 ms) : 0, 24816
Remote Config [baseline] (631.086 µs) : 0, 631
Remote Config [candidate] (662.287 µs) : 0, 662
Telemetry [baseline] (7.415 ms) : 0, 7415
Telemetry [candidate] (7.486 ms) : 0, 7486
section profiling
BytebuddyAgent [baseline] (674.329 ms) : 0, 674329
BytebuddyAgent [candidate] (675.886 ms) : 0, 675886
GlobalTracer [baseline] (398.155 ms) : 0, 398155
GlobalTracer [candidate] (397.0 ms) : 0, 397000
AppSec [baseline] (54.614 ms) : 0, 54614
AppSec [candidate] (54.832 ms) : 0, 54832
Remote Config [baseline] (658.53 µs) : 0, 659
Remote Config [candidate] (665.511 µs) : 0, 666
Telemetry [baseline] (7.529 ms) : 0, 7529
Telemetry [candidate] (7.527 ms) : 0, 7527
ProfilingAgent [baseline] (96.64 ms) : 0, 96640
ProfilingAgent [candidate] (96.173 ms) : 0, 96173
Profiling [baseline] (96.665 ms) : 0, 96665
Profiling [candidate] (96.196 ms) : 0, 96196
LoadParameters
See matching parameters
SummaryFound 0 performance improvements and 0 performance regressions! Performance is the same for 10 metrics, 18 unstable metrics. Request duration reports for insecure-bankgantt
title insecure-bank - request duration [CI 0.99] : candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section baseline
no_agent (375.054 µs) : 354, 396
. : milestone, 375,
iast (487.429 µs) : 466, 509
. : milestone, 487,
iast_FULL (557.725 µs) : 537, 579
. : milestone, 558,
iast_GLOBAL (504.129 µs) : 483, 525
. : milestone, 504,
iast_HARDCODED_SECRET_DISABLED (480.217 µs) : 459, 501
. : milestone, 480,
iast_INACTIVE (447.341 µs) : 426, 469
. : milestone, 447,
iast_TELEMETRY_OFF (474.659 µs) : 452, 497
. : milestone, 475,
tracing (443.868 µs) : 423, 464
. : milestone, 444,
section candidate
no_agent (373.043 µs) : 352, 394
. : milestone, 373,
iast (491.369 µs) : 469, 513
. : milestone, 491,
iast_FULL (553.856 µs) : 533, 575
. : milestone, 554,
iast_GLOBAL (503.584 µs) : 483, 525
. : milestone, 504,
iast_HARDCODED_SECRET_DISABLED (489.558 µs) : 468, 511
. : milestone, 490,
iast_INACTIVE (451.579 µs) : 430, 473
. : milestone, 452,
iast_TELEMETRY_OFF (479.294 µs) : 456, 502
. : milestone, 479,
tracing (449.534 µs) : 429, 470
. : milestone, 450,
Request duration reports for petclinicgantt
title petclinic - request duration [CI 0.99] : candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section baseline
no_agent (1.347 ms) : 1327, 1366
. : milestone, 1347,
appsec (1.711 ms) : 1688, 1734
. : milestone, 1711,
appsec_no_iast (1.723 ms) : 1698, 1747
. : milestone, 1723,
iast (1.481 ms) : 1458, 1503
. : milestone, 1481,
profiling (1.522 ms) : 1496, 1548
. : milestone, 1522,
tracing (1.482 ms) : 1458, 1506
. : milestone, 1482,
section candidate
no_agent (1.336 ms) : 1316, 1355
. : milestone, 1336,
appsec (1.728 ms) : 1704, 1752
. : milestone, 1728,
appsec_no_iast (1.724 ms) : 1700, 1748
. : milestone, 1724,
iast (1.498 ms) : 1476, 1520
. : milestone, 1498,
profiling (1.525 ms) : 1501, 1549
. : milestone, 1525,
tracing (1.467 ms) : 1442, 1492
. : milestone, 1467,
DacapoParameters
See matching parameters
SummaryFound 0 performance improvements and 0 performance regressions! Performance is the same for 12 metrics, 0 unstable metrics. Execution time for tomcatgantt
title tomcat - execution time [CI 0.99] : candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section baseline
no_agent (1.472 ms) : 1460, 1484
. : milestone, 1472,
appsec (2.318 ms) : 2278, 2359
. : milestone, 2318,
iast (2.054 ms) : 2004, 2105
. : milestone, 2054,
iast_GLOBAL (2.095 ms) : 2045, 2146
. : milestone, 2095,
profiling (1.925 ms) : 1884, 1966
. : milestone, 1925,
tracing (1.898 ms) : 1860, 1937
. : milestone, 1898,
section candidate
no_agent (1.469 ms) : 1457, 1480
. : milestone, 1469,
appsec (2.309 ms) : 2269, 2349
. : milestone, 2309,
iast (2.058 ms) : 2007, 2108
. : milestone, 2058,
iast_GLOBAL (2.093 ms) : 2043, 2143
. : milestone, 2093,
profiling (1.921 ms) : 1881, 1961
. : milestone, 1921,
tracing (1.89 ms) : 1852, 1928
. : milestone, 1890,
Execution time for biojavagantt
title biojava - execution time [CI 0.99] : candidate=1.40.0-SNAPSHOT~943f3dd42c, baseline=1.40.0-SNAPSHOT~58679718b3
dateFormat X
axisFormat %s
section baseline
no_agent (15.758 s) : 15758000, 15758000
. : milestone, 15758000,
appsec (15.242 s) : 15242000, 15242000
. : milestone, 15242000,
iast (18.783 s) : 18783000, 18783000
. : milestone, 18783000,
iast_GLOBAL (17.834 s) : 17834000, 17834000
. : milestone, 17834000,
profiling (15.212 s) : 15212000, 15212000
. : milestone, 15212000,
tracing (15.071 s) : 15071000, 15071000
. : milestone, 15071000,
section candidate
no_agent (15.414 s) : 15414000, 15414000
. : milestone, 15414000,
appsec (15.33 s) : 15330000, 15330000
. : milestone, 15330000,
iast (18.711 s) : 18711000, 18711000
. : milestone, 18711000,
iast_GLOBAL (17.963 s) : 17963000, 17963000
. : milestone, 17963000,
profiling (15.228 s) : 15228000, 15228000
. : milestone, 15228000,
tracing (15.177 s) : 15177000, 15177000
. : milestone, 15177000,
|
ValentinZakharov
approved these changes
Sep 20, 2024
smola
added a commit
that referenced
this pull request
Sep 23, 2024
(cherry picked from commit 4ef9a80)
5 tasks
smola
added a commit
that referenced
this pull request
Sep 23, 2024
jordan-wong
pushed a commit
that referenced
this pull request
Sep 23, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What Does This Do
Avoid NullPointerException when incrementing RASP call count after request end.
Motivation
Fixing this exception:
This should not be triggered anyway once we prevent WAF calls for Exploit Prevention (RASP) after request end, but we should guard against the NPE just in case.
Additional Notes
Contributor Checklist
type:
and (comp:
orinst:
) labels in addition to any usefull labelsclose
,fix
or any linking keywords when referencing an issue.Use
solves
instead, and assign the PR milestone to the issue[ ] Update the public documentation in case of new configuration flag or behaviorJira ticket: APPSEC-54970