What does this PR do?

• Determine FIPS mode based on region + DD_LAMBDA_FIPS_MODE env var. By default, govcloud regions are FIPS enabled, and commercial regions are FIPS disabled. However, this default can be overridden by setting DD_LAMBDA_FIPS_MODE to true or `false
• Update our KMS service (for secrets management) to use FIPS endpoints if fips mode is enabled
• Currently, we send metrics in 3 possible ways: (1) dogstatsd if the extension is installed, (2) through log forwarding if enabled and extension is not installed, or (3) directly via the DD API
• dogstatsd and log forwarding are FIPS compliant, but the DD API is not. Therefore, if the user has FIPS mode enabled but tries to use the DD API, we skip sending the metric and log a debug message explaining why
• We can use timestamps with dogstatsd now after Implement dogstatsd, add timestamp support, fix flushing #648

Motivation

FIPS compliance
https://datadoghq.atlassian.net/browse/SVLS-6295

Testing Guidelines

Manually - the fips enabled follows expected behavior based on region + env var

Unit tests

Additional Notes

Breaking because customers with FIPS enabled and no extension/forwarder will no longer be able to send metrics.

Types of Changes

• Bug fix
• New feature
• Breaking change
• Misc (docs, refactoring, dependency upgrade, etc.)

Check all that apply

• This PR's description is comprehensive
• This PR contains breaking changes that are documented in the description
• This PR introduces new APIs or parameters that are documented and unlikely to change in the foreseeable future
• This PR impacts documentation, and it has been updated (or a ticket has been logged)
• This PR's changes are covered by the automated tests
• This PR collects user input/sensitive content into Datadog
• This PR passes the integration tests (ask a Datadog member to run the tests)