feat: add process tags to traces

[wantsui]

What does this PR do?

The goal of AIDM-253 is to add process tags to the trace payloads.

After this gets merged, the next step is to add it for the other products.

To run the tests in docker

docker compose run --rm tracer-3.3 /bin/bash
bundle exec rake compile
bundle exec rake test:core_with_rails

Main tests:

BUNDLE_GEMFILE=/app/gemfiles/ruby_3.3_rails8.gemfile bundle exec rspec spec/datadog/core/environment/process_spec.rb
bundle exec rspec spec/datadog/tracing/transport/trace_formatter_spec.rb
bundle exec rspec spec/datadog/core/normalizer_spec.rb
bundle exec rspec spec/datadog/core/configuration/settings_spec.rb

Motivation:

We're trying to add process tags to various payloads so they can be used in different use cases.

Note I still want to try adding server type but I'll have to tackle that in a separate PR.

Change log entry

Yes. Add process tags to the trace payloads.

Additional Notes:

How to test the change?

[github-actions]

Thank you for updating Change log entry section 👏

^{Visited at: 2025-11-14 09:35:11 UTC}

[datadog-official]

✅ Tests

🎉 All green!

❄️ No new flaky tests detected
🧪 All tests passed

_{This comment will be updated automatically if new data arrives.
🔗 Commit SHA: 6042830 | Docs | Datadog PR Page | Was this helpful? Give us feedback!}

[marcotc]

This is impossible right? If so, we can remove it, as it would give us a false sense of uncertainty here.

[wantsui]

I think I fixed it in 8dae705 by just removing the check in process tags, but let me know if you spot issues with it!

[pr-commenter]

Benchmarks

Benchmark execution time: 2025-11-18 23:19:43

Comparing candidate commit 6042830 in PR branch add-process-tags-to-tracing with baseline commit 49cee89 in branch master.

Found 0 performance improvements and 1 performance regressions! Performance is the same for 43 metrics, 2 unstable metrics.

scenario:tracing - Tracing.log_correlation

• 🟥 throughput [-10853.442op/s; -10495.857op/s] or [-9.774%; -9.452%]

[wantsui]

@marcotc - do you think there's value in asserting for the values of the tag? Or is the test in process_spec enough?

[marcotc]

What you are doing with expect(first_span.meta['_dd.tags.process']).to eq(Datadog::Core::Environment::Process.serialized) seems good to me.

[marcotc]

I wouldn't test realistic values.

[marcotc]

The main thing to test here is that it's respecting the configuring option, which you did.

[marcotc]

The main thing to test here is that it's respecting the configuring option.

[wantsui]

Thanks! In that case it doesn't seem like I need to make any changes to the assertions then?

[github-actions]

Typing analysis

Note: Ignored files are excluded from the next sections.

Untyped methods

This PR introduces 1 partially typed method. It increases the percentage of typed methods from 54.67% to 54.77% (+0.1%).

Partially typed methods (+1-0)

❌ Introduced:

sig/datadog/core/normalizer.rbs:12
└── def self.normalize: (untyped original_value, ?remove_digit_start_char: bool) -> ::String

If you believe a method or an attribute is rightfully untyped or partially typed, you can add # untyped:accept to the end of the line to remove it from the stats.

[Strech]

Is there a value of having range when it could be normalized_value[0, 200]?

[wantsui]

Not really, so I removed the range approach.

I played around with a few things here: 4747259 and now it looks like this:

normalized_value.slice!(MAX_CHARACTER_LENGTH..-1) if normalized_value.length > MAX_CHARACTER_LENGTH

(the conditional portion should help skip this operation if the text is small enough)

Let me know if this is more in line with what you're thinking of!

[Strech]

Minor: Could you please type it. You can use Codex, it's good at it

[wantsui]

Yes! Thanks for pointing this out! Addressed in adfa416!

[Strech]

untyped will cover everything, but still, it's not untyped, it's a ::String?

[wantsui]

Addressed in adfa416!

[marcotc]

We only need to specify namespacing in Ruby up until the common point between: the current class or module we are in; and the object we want to reference.
In this case, we are in Datadog::Core::Environment::Process and want to reference Datadog::Core::Environment::Ext::TAG_ENTRYPOINT_WORKDIR.

We can remove the prefix namespace that is identical. For example Ext::TAG_ENTRYPOINT_WORKDIR will work here.

BUT, Ruby namespace resolution is very lenient, and we will try to match Ext (from Ext::TAG_ENTRYPOINT_WORKDIR), in order, to: Datadog::Core::Environment::Process::Ext, Datadog::Core::Environment::Ext, Datadog::Core::Ext, Datadog::Ext, and ::Ext.
This is important because the namespace matching doesn't try to match the complete Ext::TAG_ENTRYPOINT_WORKDIR path; it only tries to match the first token you provided: the Ext in Ext::TAG_ENTRYPOINT_WORKDIR.
And because more than one of these locations in the possible search logic are realistic matches, we should be a bit more specific than Ext::TAG_ENTRYPOINT_WORKDIR.

A good practice is to stop at the closet common namespace location. In this case, it would be the Environment. So I suggest using Environment::Ext::TAG_ENTRYPOINT_WORKDIR (and the equivalent for the other constants) here.

[wantsui]

Thanks for the explanation! I'll keep this in mind going forward!
Addressed in: 31d9796

[marcotc]

We can remove Core:: from this constant access (see comment in def serialized).

[wantsui]

Thanks for this note! see 31d9796!

[marcotc]

Given how many operations happen inside this method, I recommend adding a "fast-case", where we do some checks and return immediately if the provided original_value is already valid.
This suggestion is equivalent to the early return by the agent here.

I suggest trying to use a regular expression, instead of implementing the agent's isNormalizedASCIITag in Ruby, since Ruby code is slower than Go code, but Ruby regex is pretty fast.

Something like:

return original_value if original_value.size <= MAX_CHARACTER_LENGTH && original_value.matches?(VALID_ASCII_TAG)

The hypothetical VALID_ASCII_TAG doesn't have to catch all valid cases: it's a trade-off between matching most valid tags vs making the regex complicated and slow. As long as it never matches invalid tags, it's all good.

[wantsui]

Addressed in be9587d ! Let me know if this is better now!

[marcotc]

In general here: do we need NormalizeTag or NormalizeTagValue for process tags? https://github.com/DataDog/datadog-agent/blob/45799c842bbd216bcda208737f9f11cade6fdd95/pkg/trace/traceutil/normalize.go#L120-L129

[wantsui]

Good catch. In a2643a6, I kept the "tag" the originally defined constants, but I just adjusted the logic so that the normalization only takes place in the string values.

[mabdinur]

Left some comments based on my review on the python PR. I'll defer to Marco for the final approval. Overall this looks good to me

[mabdinur]

I don't think we do this normalization in the python implementation. We should align on the same approach (either normalize in the SDK or do it one central place like the Agent).

[wantsui]

Good catch, I made an adjustment in a2643a6 so it's the same as the python tracer behavior now.

[mabdinur]

Should we use _ for invalid values? This a character that is common in file names. It will be hard to distinguish between cases where a value contains a legitimate underscore or if it matches an invalid character.

Can we defer this normalization to the Agent? It would be nice if we could centralize this logic instead of duplicating it across SDKs

[marcotc]

Hmmm, for process tags, the agent is just one of the transport targets.

But, since the transport format is a tag value for traces, we have to either live with this ambiguity around _, or create an escape pattern for valid _s.

[mabdinur]

The python implementation is a bit simpler. I don't think it enforces a max length

[wantsui]

I was basing this off the Trace Agent: https://github.com/DataDog/datadog-agent/blob/45799c842bbd216bcda208737f9f11cade6fdd95/pkg/trace/traceutil/normalize_test.go#L17.

The python implementation currently fails some of those tests and I left a comment in the dd-trace-py PR about it.

That said, I will update this logic to back off sooner if the tag is already valid!

[marcotc]

Size check is sane and reasonable! We should add it to python if we have the chance.

[wantsui]

I re-reviewed the Trace Agent implementation with the Python one and the main thing is that for span tag values, it's ok for it to start with a digit.

I ended up following the trace agent more closely so it passes the case where emoji get added: be9587d

Note - the trace agent has an interesting bytes test that I cannot get to pass in Ruby:

# This test case doesn't work with the current logic because it yields 202 characters
      # {in: 'A' + ('0' * 200) + ' ' + ('0' * 11), out: 'a' + ('0' * 200) + '_0'},

(Sometimes it can go over 200 characters in the Trace Agent so that's the only test I am skipping for now)

[mabdinur]

Do we need to move this check into:

if first_span

?

[marcotc]

yes! (and add a test to assert that we do check for first_span).

[wantsui]

Fixed in 6042830!

[mabdinur]

Should most of these methods/fields be private? I think we only need to expose self?.serialized

[marcotc]

It looks like only serialized needs to be public.
We should privatized everything else.

[wantsui]

If I do that then the process_spec needs to be adjusted 👀
I'll make the test adjustments and see if this helps.

[wantsui]

Adjusted in 47efb90

[marcotc]

Can you add a simple example string to these methods (except entrypoint_type).
For example /home/server/app/script.rb -> ... (insert real output).

[wantsui]

Addressed in 47efb90 !