[Java] Enable TestSamplingByRouteMethodCount test (#4894)

Motivation
Enable TestSamplingByRouteMethodCount test for java

Changes
Endpoints and enable test in java.yml

Author: jandro996

manifests/java.yml

@@ -724,7 +724,12 @@ tests/:
             vertx3: missing_feature
             vertx4: missing_feature
       test_sampling_by_route_method_count.py:
-        TestSamplingByRouteMethodCount: missing_feature
+        TestSamplingByRouteMethodCount:
+          '*': v1.51.0-SNAPSHOT
+          akka-http: bug (APPSEC-57926)
+          play: bug (APPSEC-57926)
+          ratpack: bug (APPSEC-58210)
+          spring-boot-3-native: missing_feature (GraalVM. Tracing support only)
       test_security_controls.py:
         TestSecurityControls:
           '*': v1.46.0

utils/build/docker/java/akka-http/src/main/scala/com/datadoghq/akka_http/IastRoutes.scala

@@ -282,6 +282,76 @@ object IastRoutes {
                 }
             }
           }
+      } ~
+      path("sampling-by-route-method-count" / Segment) { id =>
+        get {
+          try {
+            java.security.MessageDigest.getInstance("SHA1").digest("hash1".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash2".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash3".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash4".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash5".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash6".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash7".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash8".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash9".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash10".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash11".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash12".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash13".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash14".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash15".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            complete("ok")
+          } catch {
+            case e: Exception => complete(StatusCodes.InternalServerError, e.getMessage)
+          }
+        } ~
+          post {
+            try {
+              java.security.MessageDigest.getInstance("SHA1").digest("hash1".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash2".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash3".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash4".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash5".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash6".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash7".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash8".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash9".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash10".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash11".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash12".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash13".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash14".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              java.security.MessageDigest.getInstance("SHA1").digest("hash15".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+              complete("ok")
+            } catch {
+              case e: Exception => complete(StatusCodes.InternalServerError, e.getMessage)
+            }
+          }
+      } ~
+      path("sampling-by-route-method-count-2" / Segment) { id =>
+        get {
+          try {
+            java.security.MessageDigest.getInstance("SHA1").digest("hash1".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash2".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash3".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash4".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash5".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash6".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash7".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash8".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash9".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash10".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash11".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash12".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash13".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash14".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            java.security.MessageDigest.getInstance("SHA1").digest("hash15".getBytes(java.nio.charset.StandardCharsets.UTF_8))
+            complete("ok")
+          } catch {
+            case e: Exception => complete(StatusCodes.InternalServerError, e.getMessage)
+          }
+        }
       }
   }
 

utils/build/docker/java/jersey-grizzly2/src/main/java/com/datadoghq/jersey/IastSamplingResource.java

@@ -0,0 +1,87 @@
+package com.datadoghq.jersey;
+
+import jakarta.ws.rs.*;
+import jakarta.ws.rs.core.MediaType;
+import java.security.MessageDigest;
+import java.nio.charset.StandardCharsets;
+
+@Path("/iast")
+public class IastSamplingResource {
+    @GET
+    @Path("/sampling-by-route-method-count/{id}")
+    @Produces(MediaType.TEXT_PLAIN)
+    public String getSamplingByRouteMethodCount(@PathParam("id") String id) {
+        try {
+            MessageDigest.getInstance("SHA1").digest("hash1".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash2".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash3".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash4".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash5".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash6".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash7".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash8".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash9".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash10".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash11".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash12".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash13".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash14".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash15".getBytes(StandardCharsets.UTF_8));
+            return "ok";
+        } catch (Exception e) {
+            throw new WebApplicationException(e.getMessage(), 500);
+        }
+    }
+
+    @POST
+    @Path("/sampling-by-route-method-count/{id}")
+    @Produces(MediaType.TEXT_PLAIN)
+    public String postSamplingByRouteMethodCount(@PathParam("id") String id) {
+        try {
+            MessageDigest.getInstance("SHA1").digest("hash1".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash2".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash3".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash4".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash5".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash6".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash7".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash8".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash9".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash10".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash11".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash12".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash13".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash14".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash15".getBytes(StandardCharsets.UTF_8));
+            return "ok";
+        } catch (Exception e) {
+            throw new WebApplicationException(e.getMessage(), 500);
+        }
+    }
+
+    @GET
+    @Path("/sampling-by-route-method-count-2/{id}")
+    @Produces(MediaType.TEXT_PLAIN)
+    public String getSamplingByRouteMethodCount2(@PathParam("id") String id) {
+        try {
+            MessageDigest.getInstance("SHA1").digest("hash1".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash2".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash3".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash4".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash5".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash6".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash7".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash8".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash9".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash10".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash11".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash12".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash13".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash14".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash15".getBytes(StandardCharsets.UTF_8));
+            return "ok";
+        } catch (Exception e) {
+            throw new WebApplicationException(e.getMessage(), 500);
+        }
+    }
+}

utils/build/docker/java/jersey-grizzly2/src/main/java/com/datadoghq/jersey/Main.java

@@ -42,6 +42,13 @@ public static HttpServer startServer() {
         // in com.datadoghq.jersey package
         final ResourceConfig rc = new ResourceConfig().packages("com.datadoghq.jersey");
 
+        // Register resources
+        rc.register(MyResource.class);
+        rc.register(RaspResource.class);
+        rc.register(IastSinkResource.class);
+        rc.register(IastSourceResource.class);
+        rc.register(IastSamplingResource.class);
+
         // create and start a new instance of grizzly http server
         // exposing the Jersey application at BASE_URI
         return GrizzlyHttpServerFactory.createHttpServer(URI.create(BASE_URI), rc);

utils/build/docker/java/play/app/controllers/IastSamplingController.java

@@ -0,0 +1,76 @@
+package controllers;
+
+import play.mvc.*;
+import java.security.MessageDigest;
+import java.nio.charset.StandardCharsets;
+
+public class IastSamplingController extends Controller {
+    public Result getSamplingByRouteMethodCount(String id) {
+        try {
+            MessageDigest.getInstance("SHA1").digest("hash1".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash2".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash3".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash4".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash5".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash6".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash7".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash8".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash9".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash10".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash11".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash12".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash13".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash14".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash15".getBytes(StandardCharsets.UTF_8));
+            return ok("ok");
+        } catch (Exception e) {
+            return internalServerError(e.getMessage());
+        }
+    }
+
+    public Result postSamplingByRouteMethodCount(String id) {
+        try {
+            MessageDigest.getInstance("SHA1").digest("hash1".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash2".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash3".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash4".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash5".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash6".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash7".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash8".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash9".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash10".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash11".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash12".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash13".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash14".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash15".getBytes(StandardCharsets.UTF_8));
+            return ok("ok");
+        } catch (Exception e) {
+            return internalServerError(e.getMessage());
+        }
+    }
+
+    public Result getSamplingByRouteMethodCount2(String id) {
+        try {
+            MessageDigest.getInstance("SHA1").digest("hash1".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash2".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash3".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash4".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash5".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash6".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash7".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash8".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash9".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash10".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash11".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash12".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash13".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash14".getBytes(StandardCharsets.UTF_8));
+            MessageDigest.getInstance("SHA1").digest("hash15".getBytes(StandardCharsets.UTF_8));
+            return ok("ok");
+        } catch (Exception e) {
+            return internalServerError(e.getMessage());
+        }
+    }
+}

utils/build/docker/java/play/conf/routes

@@ -37,3 +37,8 @@ GET  /returnheaders            controllers.AppSecController.returnheaders
 GET  /createextraservice        controllers.AppSecController.createextraservice(serviceName: String)
 GET     /customResponseHeaders      controllers.AppSecController.customResponseHeaders
 GET     /exceedResponseHeaders      controllers.AppSecController.exceedResponseHeaders
+
+# IAST Sampling endpoints
+GET     /iast/sampling-by-route-method-count/:id    controllers.IastSamplingController.getSamplingByRouteMethodCount(id: String)
+POST    /iast/sampling-by-route-method-count/:id    controllers.IastSamplingController.postSamplingByRouteMethodCount(id: String)
+GET     /iast/sampling-by-route-method-count-2/:id  controllers.IastSamplingController.getSamplingByRouteMethodCount2(id: String)