refactor: consistently use one uuid library

[kruskall]

Proposed commit message

consistently use one uuid library

the codebase is using a mix of github.com/google/uuid and github.com/gofrs/uuid Update the codebase to use github.com/gofrs/uuid consistently and bump to the current major version.

Checklist

• My code follows the style guidelines of this project
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• I have made corresponding change to the default configuration files
• I have added tests that prove my fix is effective or that my feature works
• I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

Disruptive User Impact

Author's Checklist

• [ ]

How to test this PR locally

Related issues

• Depends on refactor: bump github.com/gofrs/uuid to current major version elastic-agent-system-metrics#163
• Depends on refactor: bump github.com/gofrs/uuid to current major version elastic-agent-client#118

Use cases

Screenshots

Logs

[mergify]

This pull request does not have a backport label.
If this is a bug or security fix, could you label this PR @kruskall? 🙏.
For such, you'll need to label your PR with:

• The upcoming major version of the Elastic Stack
• The upcoming minor version of the Elastic Stack (if you're not pushing a breaking change)

To fixup this pull request, you need to add the backport labels for the needed
branches, such as:

• backport-v8./d.0 is the label to automatically backport to the 8./d branch. /d is the digit

[efd6]

Is there a good argument for one over the other? The APIs look pretty similar, but there are some aspects of each that are not in the other, so one is not a drop in replacement for the other.

[kruskall]

Good point!

I don't have a strong opinion on either. To be honest, I went with github.com/gofrs/uuid because that's what we are using in https://github.com/elastic/elastic-agent-system-metrics/

The APIs look pretty similar, but there are some aspects of each that are not in the other, so one is not a drop in replacement for the other.

Can you expand on this ?

[efd6]

Can you expand on this ?

• The constructor sets differing is the most obvious thing; there is no gofrs/uuid.New.
• The errors that are returned are different (I think gofrs is stronger here, but they differ, so use of the error values needs to be checked).
• There are a few method set differences, so interface satisfaction will differ which may not be noticeable for dynamically asserted interface behaviour.

[belimawr]

So far the PR looks great! I don't have any strong preference about which library to use, but I like the fact that github.com/gofrs/uuid is community maintained.

[leehinman]

@kruskall do you think it would be worth it to add the google/uuid to the gomodguard section of .golangci.yml file? That way CI can help us stay with one library.

[elasticmachine]

Pinging @elastic/obs-ds-hosted-services (Team:obs-ds-hosted-services)

[elasticmachine]

Pinging @elastic/sec-linux-platform (Team:Security-Linux Platform)

[elasticmachine]

Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)

[elasticmachine]

Pinging @elastic/elastic-agent-data-plane (Team:Elastic-Agent-Data-Plane)

[elasticmachine]

Pinging @elastic/sec-deployment-and-devices (Team:Security-Deployment and Devices)

[efd6]

It's a pity that this is mixed up with lint clean up.

[efd6]

I don't see any cases that these error values are returned wrapped so (disclaimer: as a non-owner) I'm not convinced of the value of this, but if this change is going to be made, the tests that look at error values should be updated to match (ErrInactive is the target of an exact value check).

[efd6]

AFAICS crypto/rand.Reader hides EAGAIN so this should be OK.

[kruskall]

@elastic/beats-tech-leads sorry for the ping, this only need one more review. Any help ? 🙏

[pkoutsovasilis]

A single nit about a check that might have become redundant, but this LGTM