DataDog
diff --git a/‎cmd/security-agent/subcommands/runtime/command.go‎
Lines changed: 3 additions & 1 deletion b/‎cmd/security-agent/subcommands/runtime/command.go‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎cmd/system-probe/subcommands/runtime/command.go‎
Lines changed: 3 additions & 1 deletion b/‎cmd/system-probe/subcommands/runtime/command.go‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎pkg/security/agent/client.go‎
Lines changed: 3 additions & 3 deletions b/‎pkg/security/agent/client.go‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎pkg/security/agent/mocks/security_module_client_wrapper.go‎
Lines changed: 9 additions & 9 deletions b/‎pkg/security/agent/mocks/security_module_client_wrapper.go‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎pkg/security/module/server_linux.go‎
Lines changed: 34 additions & 3 deletions b/‎pkg/security/module/server_linux.go‎
Lines changed: 34 additions & 3 deletions
diff --git a/‎pkg/security/probe/coredump.go‎
Lines changed: 1 addition & 1 deletion b/‎pkg/security/probe/coredump.go‎
Lines changed: 1 addition & 1 deletion
@@ -223,6 +223,7 @@ type processCacheDumpCliParams struct {
 	*command.GlobalParams
 
 	withArgs bool
+	format   string
 }
 
 //nolint:unused // TODO(SEC) Fix unused linter
@@ -246,6 +247,7 @@ func processCacheCommands(globalParams *command.GlobalParams) []*cobra.Command {
 		},
 	}
 	processCacheDumpCmd.Flags().BoolVar(&cliParams.withArgs, "with-args", false, "add process arguments to the dump")
+	processCacheDumpCmd.Flags().StringVar(&cliParams.format, "format", "dot", "process cache dump format")
 
 	processCacheCmd := &cobra.Command{
 		Use:   "process-cache",
@@ -328,7 +330,7 @@ func dumpProcessCache(_ log.Component, _ config.Component, _ secrets.Component,
 	}
 	defer client.Close()
 
-	filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs)
+	filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs, processCacheDumpArgs.format)
 	if err != nil {
 		return fmt.Errorf("unable to get a process cache dump: %w", err)
 	}
 
@@ -217,6 +217,7 @@ type processCacheDumpCliParams struct {
 	*command.GlobalParams
 
 	withArgs bool
+	format   string
 }
 
 //nolint:unused // TODO(SEC) Fix unused linter
@@ -240,6 +241,7 @@ func processCacheCommands(globalParams *command.GlobalParams) []*cobra.Command {
 		},
 	}
 	processCacheDumpCmd.Flags().BoolVar(&cliParams.withArgs, "with-args", false, "add process arguments to the dump")
+	processCacheDumpCmd.Flags().StringVar(&cliParams.format, "format", "dot", "process cache dump format")
 
 	processCacheCmd := &cobra.Command{
 		Use:   "process-cache",
@@ -322,7 +324,7 @@ func dumpProcessCache(_ log.Component, _ config.Component, _ secrets.Component,
 	}
 	defer client.Close()
 
-	filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs)
+	filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs, processCacheDumpArgs.format)
 	if err != nil {
 		return fmt.Errorf("unable to get a process cache dump: %w", err)
 	}
 
@@ -32,7 +32,7 @@ type RuntimeSecurityClient struct {
 // SecurityModuleClientWrapper represents a security module client
 type SecurityModuleClientWrapper interface {
 	DumpDiscarders() (string, error)
-	DumpProcessCache(withArgs bool) (string, error)
+	DumpProcessCache(withArgs bool, format string) (string, error)
 	GenerateActivityDump(request *api.ActivityDumpParams) (*api.ActivityDumpMessage, error)
 	ListActivityDumps() (*api.ActivityDumpListMessage, error)
 	StopActivityDump(name, containerid string) (*api.ActivityDumpStopMessage, error)
@@ -61,8 +61,8 @@ func (c *RuntimeSecurityClient) DumpDiscarders() (string, error) {
 }
 
 // DumpProcessCache sends a process cache dump request
-func (c *RuntimeSecurityClient) DumpProcessCache(withArgs bool) (string, error) {
-	response, err := c.apiClient.DumpProcessCache(context.Background(), &api.DumpProcessCacheParams{WithArgs: withArgs})
+func (c *RuntimeSecurityClient) DumpProcessCache(withArgs bool, format string) (string, error) {
+	response, err := c.apiClient.DumpProcessCache(context.Background(), &api.DumpProcessCacheParams{WithArgs: withArgs, Format: format})
 	if err != nil {
 		return "", err
 	}
 
@@ -11,6 +11,7 @@ import (
 	"context"
 	"errors"
 	"fmt"
+	"os"
 
 	"github.com/DataDog/datadog-agent/pkg/security/probe"
 	"github.com/DataDog/datadog-agent/pkg/security/proto/api"
@@ -36,9 +37,39 @@ func (a *APIServer) DumpProcessCache(_ context.Context, params *api.DumpProcessC
 		return nil, fmt.Errorf("not supported")
 	}
 
-	filename, err := p.Resolvers.ProcessResolver.ToDot(params.WithArgs)
-	if err != nil {
-		return nil, err
+	var (
+		filename string
+		err      error
+	)
+
+	switch params.Format {
+	case "json":
+		jsonContent, err := p.Resolvers.ProcessResolver.ToJSON(true)
+		if err != nil {
+			return nil, err
+		}
+
+		dump, err := os.CreateTemp("/tmp", "process-cache-dump-*.json")
+		if err != nil {
+			return nil, err
+		}
+
+		defer dump.Close()
+
+		filename = dump.Name()
+		if err := os.Chmod(dump.Name(), 0400); err != nil {
+			return nil, err
+		}
+
+		if _, err := dump.Write(jsonContent); err != nil {
+			return nil, err
+		}
+
+	case "dot", "":
+		filename, err = p.Resolvers.ProcessResolver.ToDot(params.WithArgs)
+		if err != nil {
+			return nil, err
+		}
 	}
 
 	return &api.SecurityDumpProcessCacheMessage{
 
@@ -50,7 +50,7 @@ func (cd *CoreDump) ToJSON() ([]byte, error) {
 	}
 
 	if cd.definition.Process {
-		data, _ := cd.resolvers.ProcessResolver.ToJSON()
+		data, _ := cd.resolvers.ProcessResolver.ToJSON(false)
 		content.Process = data
 	}
Original file line number	Diff line number	Diff line change
`@@ -223,6 +223,7 @@ type processCacheDumpCliParams struct {`
`223`	`223`	`*command.GlobalParams`
`224`	`224`
`225`	`225`	`withArgs bool`
	`226`	`+ format string`
`226`	`227`	`}`
`227`	`228`
`228`	`229`	`//nolint:unused // TODO(SEC) Fix unused linter`
`@@ -246,6 +247,7 @@ func processCacheCommands(globalParams command.GlobalParams) []cobra.Command {`
`246`	`247`	`},`
`247`	`248`	`}`
`248`	`249`	`processCacheDumpCmd.Flags().BoolVar(&cliParams.withArgs, "with-args", false, "add process arguments to the dump")`
	`250`	`+ processCacheDumpCmd.Flags().StringVar(&cliParams.format, "format", "dot", "process cache dump format")`
`249`	`251`
`250`	`252`	`processCacheCmd := &cobra.Command{`
`251`	`253`	`Use: "process-cache",`
`@@ -328,7 +330,7 @@ func dumpProcessCache(_ log.Component, _ config.Component, _ secrets.Component,`
`328`	`330`	`}`
`329`	`331`	`defer client.Close()`
`330`	`332`
`331`		`- filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs)`
	`333`	`+ filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs, processCacheDumpArgs.format)`
`332`	`334`	`if err != nil {`
`333`	`335`	`return fmt.Errorf("unable to get a process cache dump: %w", err)`
`334`	`336`	`}`
Original file line number	Diff line number	Diff line change
`@@ -217,6 +217,7 @@ type processCacheDumpCliParams struct {`
`217`	`217`	`*command.GlobalParams`
`218`	`218`
`219`	`219`	`withArgs bool`
	`220`	`+ format string`
`220`	`221`	`}`
`221`	`222`
`222`	`223`	`//nolint:unused // TODO(SEC) Fix unused linter`
`@@ -240,6 +241,7 @@ func processCacheCommands(globalParams command.GlobalParams) []cobra.Command {`
`240`	`241`	`},`
`241`	`242`	`}`
`242`	`243`	`processCacheDumpCmd.Flags().BoolVar(&cliParams.withArgs, "with-args", false, "add process arguments to the dump")`
	`244`	`+ processCacheDumpCmd.Flags().StringVar(&cliParams.format, "format", "dot", "process cache dump format")`
`243`	`245`
`244`	`246`	`processCacheCmd := &cobra.Command{`
`245`	`247`	`Use: "process-cache",`
`@@ -322,7 +324,7 @@ func dumpProcessCache(_ log.Component, _ config.Component, _ secrets.Component,`
`322`	`324`	`}`
`323`	`325`	`defer client.Close()`
`324`	`326`
`325`		`- filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs)`
	`327`	`+ filename, err := client.DumpProcessCache(processCacheDumpArgs.withArgs, processCacheDumpArgs.format)`
`326`	`328`	`if err != nil {`
`327`	`329`	`return fmt.Errorf("unable to get a process cache dump: %w", err)`
`328`	`330`	`}`
Original file line number	Diff line number	Diff line change
`@@ -50,7 +50,7 @@ func (cd *CoreDump) ToJSON() ([]byte, error) {`
`50`	`50`	`}`
`51`	`51`
`52`	`52`	`if cd.definition.Process {`
`53`		`- data, _ := cd.resolvers.ProcessResolver.ToJSON()`
	`53`	`+ data, _ := cd.resolvers.ProcessResolver.ToJSON(false)`
`54`	`54`	`content.Process = data`
`55`	`55`	`}`
`56`	`56`