SUP-4325: Implement mixed-format env file for automatic environment variable propagation

[Mykematt]

Description

This PR implements automatic environment variable propagation for OTEL tracing variables and other agent configuration variables to any plugin using propagate-environment: true. Agent config variables are written as names-only (allowing containers to pull values from the host environment) and job-specific variables are written as key=value pairs.

Problem: OTEL tracing variables (BUILDKITE_TRACING_*) and other agent config variables were not automatically available to plugins using propagate-environment: true, requiring manual plugin configuration for each variable.

Solution: Modified the agent to include these variables in BUILDKITE_ENV_FILE before writing, enabling automatic propagation to any plugin that uses propagate-environment: true without requiring plugin changes.

Alternatives considered: Manual plugin-level propagation, but this requires maintaining variable lists in multiple plugins and doesn't scale well.

Context

Linear ticket SUP-4325: "[Pinterest/Docker & Docker Compose] Propagate BUILDKITE_TRACING_* Env Vars"

Changes

• Modified agent/job_runner.go to include 29 agent configuration variables in BUILDKITE_ENV_FILE
• Implemented mixed-format env file:
  • Agent config variables written as names-only (containers pull from host environment)
  • Job variables written as key=value pairs
• Added OTEL tracing variables to automatic propagation:
  • BUILDKITE_TRACING_BACKEND
  • BUILDKITE_TRACING_SERVICE_NAME
  • BUILDKITE_TRACING_PROPAGATE_TRACEPARENT
  • BUILDKITE_TRACING_TRACEPARENT
  • BUILDKITE_TRACE_CONTEXT_ENCODING
• Maintained security boundaries by excluding 23 sensitive variables (tokens, agent paths, internal state)
• Backward compatible - existing plugin configurations continue to work unchanged

Impact: Any plugin using propagate-environment: true now automatically receives 92 variables instead of requiring manual configuration for each one.

Testing

• Tests have run locally (with go test ./...). Buildkite employees may check this if the pipeline has run automatically.
• Code is formatted (with go fmt ./...)
• Real-world validation with Docker plugin v5.11.0 and Docker Compose plugin v4.16.0
• Verified 92 variables automatically propagate in live pipeline execution (build #213)

[DrJosh9000]

Thanks @Mykematt. This sounds like a backwards-incompatible change for anyone parsing the env file with the expectation that every variable has a value. Is that right?

[Mykematt]

@DrJosh9000 oh yeah. That is correct. This way, there is no need to implement any changes piece-meal in different plugins.

[DrJosh9000]

I think that this cannot be merged as-is, for two reasons.

One is the backwards compatibility with user scripts or programs that parse the env file. While they can now migrate to the better-defined JSON version of the file, this requires a recent agent version and work on their part to reimplement. They could just as easily adapt to the additional valueless env vars in the file, but either way we don't know whose builds we will break by doing this.

Two is the change to propagated environment variables itself. A user could have a pipeline set up with the Docker and Docker Compose plugins case (and any other plugin that might be using the env file), and, without making any change in version to their plugins, be surprised when they upgrade their agent version, with a bunch of extra env vars in their jobs. They may be relying on certain env vars not existing.

Both the Docker and Docker Compose plugin Readmes specifically call out:

Important: only pipeline environment variables will be propagated

and these extra env vars aren't "pipeline environment variables" per se, and that may be something someone is relying on.

To merge this, I would suggest either:

• writing an additional file that could be read by a future release of the Docker and Docker Compose plugins, or
• writing them to the existing env file under an experiment (see internal/experiments).

[Mykematt]

@DrJosh9000 thanks for the in-depth review. I have implemented the second approach you mentioned. Tested here

[DrJosh9000]

Thanks, but this still needs quite a bit of work in its current form. I note that the tests now fail.

I think the idea here is: if the experiment is enabled, add some env var names to the start of the env file. Is that right?

If so, that seems like the part of the implementation that should be made conditional (i.e. conditionally add var names to the file), not what's implemented here (conditionally add env vars to env).

[DrJosh9000]

This if condition is the same as on line 456, so they could be combined into a single if.

[Mykematt]

Thanks @DrJosh9000 once again. I've pushed the changes that you requested.

Added environment variable propagation for plugins.

Modified job_runner.go to write agent config vars to env file when propagate-agent-vars experiment is enabled. All variables still set in environment for backward compatibility - only the env file writing is conditional.

Reorganized existing BUILDKITE_GIT_* vars and added ~29 agent config variables to the propagation list. No new environment variables added.

Variable groupings:

• Agent config vars (9 BUILDKITE_GIT_*, 10 build config): Always set unconditionally
• Tracing vars (4 BUILDKITE_TRACING_*): Set when TracingBackend configured
• Pipeline signing vars (3 BUILDKITE_AGENT_*): Set when signing keys configured
• Env file propagation: All above vars written to env file only when experiment enabled

Testing:

• Docker/Docker Compose/Artifacts plugins work with propagation. See here.
• Go tests pass except TestProcessOutputPTY_PTYRawExperiment (seems to be a pre-existing [I checked tests on main] flaky PTY test, and most importantly, unrelated to my env var changes).

Addresses review feedback on backward compatibility and variable scoping.

[DrJosh9000]

@Mykematt Thanks, sorry for the delay in responding.

This still has problems. If the experiment is not enabled, then all the agent config vars that are not present in the env file today, but are unconditionally added to the map before writing the file, would be written to the file. Ideally the file would be 100% unchanged unless the experiment is active.

Rather than go back and forth again, I've taken a stab at implementing this myself here: #3471. Would you mind testing it to ensure it suits your purposes?