open-telemetry · pavolloffay · Jul 4, 2022 · Jun 27, 2022 · Jun 27, 2022 · Jun 27, 2022
diff --git a/internal/webhookhandler/helper.go b/internal/webhookhandler/helper.go
@@ -0,0 +1,27 @@
+// Copyright The OpenTelemetry Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package webhookhandler
+
+import corev1 "k8s.io/api/core/v1"
+
+// Checks if Pod is already instrumented by checking Instrumentation InitContainer presence.
+func IsPodInstrumentationMissing(pod corev1.Pod) bool {
+	for _, cont := range pod.Spec.InitContainers {
+		if cont.Name == initContainerName {
+			return false
+		}
+	}
+	return true
+}
diff --git a/internal/webhookhandler/helper_test.go b/internal/webhookhandler/helper_test.go
@@ -0,0 +1,74 @@
+// Copyright The OpenTelemetry Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package webhookhandler
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+	corev1 "k8s.io/api/core/v1"
+)
+
+func TestPodInstrumentationMissing(t *testing.T) {
+	tests := []struct {
+		name     string
+		pod      corev1.Pod
+		expected bool
+	}{
+		{
+			name: "PodInstrumentation_Already_Inject",
+			pod: corev1.Pod{
+				Spec: corev1.PodSpec{
+					InitContainers: []corev1.Container{
+						{
+							Name: "magic-init",
+						},
+						{
+							Name: initContainerName,
+						},
+					},
+				},
+			},
+			expected: false,
+		},
+		{
+			name: "PodInstrumentation_Absent_1",
+			pod: corev1.Pod{
+				Spec: corev1.PodSpec{
+					InitContainers: []corev1.Container{
+						{
+							Name: "magic-init",
+						},
+					},
+				},
+			},
+			expected: true,
+		},
+		{
+			name: "PodInstrumentation_Absent_2",
+			pod: corev1.Pod{
+				Spec: corev1.PodSpec{},
+			},
+			expected: true,
+		},
+	}
+
+	for _, test := range tests {
+		t.Run(test.name, func(t *testing.T) {
+			result := IsPodInstrumentationMissing(test.pod)
+			assert.Equal(t, test.expected, result)
+		})
+	}
+}
diff --git a/internal/webhookhandler/webhookhandler.go b/internal/webhookhandler/webhookhandler.go
@@ -35,6 +35,8 @@ import (
 // +kubebuilder:rbac:groups=opentelemetry.io,resources=instrumentations,verbs=get;list;watch
 // +kubebuilder:rbac:groups="apps",resources=replicasets,verbs=get;list;watch
 
+const initContainerName = "opentelemetry-auto-instrumentation"
+
 var _ WebhookHandler = (*podSidecarInjector)(nil)
 
 // WebhookHandler is a webhook handler that analyzes new pods and injects appropriate sidecars into it.
@@ -89,11 +91,13 @@ func (p *podSidecarInjector) Handle(ctx context.Context, req admission.Request)
 	}
 
 	for _, m := range p.podMutators {
-		pod, err = m.Mutate(ctx, ns, pod)
-		if err != nil {
-			res := admission.Errored(http.StatusInternalServerError, err)
-			res.Allowed = true
-			return res
+		if IsPodInstrumentationMissing(pod) {
+			pod, err = m.Mutate(ctx, ns, pod)
+			if err != nil {
+				res := admission.Errored(http.StatusInternalServerError, err)
+				res.Allowed = true
+				return res
+			}
 		}
 	}
 

@@ -14,7 +14,11 @@
 
 package instrumentation
 
-import corev1 "k8s.io/api/core/v1"
+import (
+	"strings"
+
+	corev1 "k8s.io/api/core/v1"
+)
 
 // Calculate if we already inject InitContainers.
 func IsInitContainerMissing(pod corev1.Pod) bool {
@@ -25,3 +29,21 @@ func IsInitContainerMissing(pod corev1.Pod) bool {
 	}
 	return true
 }
+
+// Check if opentelemetry-auto-instrumentation volume is on the list.
+func IsOtAIVolumeMissing(volumeMounts []corev1.VolumeMount) bool {
+	for _, volumeMount := range volumeMounts {
+		if volumeMount.Name == volumeName {
+			return false
+		}
+	}
+	return true
+}
+
+// Check if EnvVar value contains instrumentation string.
+func IsEnvVarValueInstrumentationMissing(envVar corev1.EnvVar, instrumentation string) bool {
+	if strings.Contains(envVar.Value, instrumentation) {
+		return false
+	}
+	return true
+}
@@ -72,3 +72,82 @@ func TestInitContainerMissing(t *testing.T) {
 		})
 	}
 }
+
+func TestOtAiVolumeMissing(t *testing.T) {
+	tests := []struct {
+		name     string
+		volume   []corev1.VolumeMount
+		expected bool
+	}{
+		{
+			name: "Volume_Already_Inject",
+			volume: []corev1.VolumeMount{
+				{
+					Name: volumeName,
+				},
+			},
+			expected: false,
+		},
+		{
+			name: "Volume_Absent_1",
+			volume: []corev1.VolumeMount{
+				{
+					Name: "magic-volume",
+				},
+			},
+			expected: true,
+		},
+		{
+			name:     "Volume_Absent_2",
+			volume:   []corev1.VolumeMount{},
+			expected: true,
+		},
+	}
+
+	for _, test := range tests {
+		t.Run(test.name, func(t *testing.T) {
+			result := IsOtAIVolumeMissing(test.volume)
+			assert.Equal(t, test.expected, result)
+		})
+	}
+}
+
+func TestEnvVarInstrumentationValueMissing(t *testing.T) {
+	tests := []struct {
+		name               string
+		envVar             corev1.EnvVar
+		instrumentationStr string
+		expected           bool
+	}{
+		{
+			name: "EnvVar_Instrumentation_Value_Already_Inject",
+			envVar: corev1.EnvVar{
+				Name:  envJavaToolsOptions,
+				Value: javaJVMArgument,
+			},
+			instrumentationStr: javaJVMArgument,
+			expected:           false,
+		},
+		{
+			name: "EnvVar_Instrumentation_Value_Absent_1",
+			envVar: corev1.EnvVar{
+
+				Name:  envNodeOptions,
+				Value: "some-magic-node-options",
+			},
+			instrumentationStr: envNodeOptions,
+			expected:           true,
+		}, {
+			name:               "EnvVar_Instrumentation_Value_Absent_2",
+			envVar:             corev1.EnvVar{},
+			instrumentationStr: envNodeOptions,
+			expected:           true,
+		}}
+
+	for _, test := range tests {
+		t.Run(test.name, func(t *testing.T) {
+			result := IsEnvVarValueInstrumentationMissing(test.envVar, test.instrumentationStr)
+			assert.Equal(t, test.expected, result)
+		})
+	}
+}
@@ -50,12 +50,18 @@ func injectJavaagent(logger logr.Logger, javaSpec v1alpha1.Java, pod corev1.Pod,
 			logger.Info("Skipping javaagent injection, the container defines JAVA_TOOL_OPTIONS env var value via ValueFrom", "container", container.Name)
 			return pod
 		}
-		container.Env[idx].Value = container.Env[idx].Value + javaJVMArgument
+
+		if IsEnvVarValueInstrumentationMissing(container.Env[idx], javaJVMArgument) {
+			container.Env[idx].Value = container.Env[idx].Value + javaJVMArgument
+		}
+	}
+
+	if IsOtAIVolumeMissing(container.VolumeMounts) {
+		container.VolumeMounts = append(container.VolumeMounts, corev1.VolumeMount{
+			Name:      volumeName,
+			MountPath: "/otel-auto-instrumentation",
+		})
 	}
-	container.VolumeMounts = append(container.VolumeMounts, corev1.VolumeMount{
-		Name:      volumeName,
-		MountPath: "/otel-auto-instrumentation",
-	})
 
 	// We just inject Volumes and init containers for the first processed container
 	if IsInitContainerMissing(pod) {

@@ -50,12 +50,18 @@ func injectNodeJSSDK(logger logr.Logger, nodeJSSpec v1alpha1.NodeJS, pod corev1.
 			logger.Info("Skipping NodeJS SDK injection, the container defines NODE_OPTIONS env var value via ValueFrom", "container", container.Name)
 			return pod
 		}
-		container.Env[idx].Value = container.Env[idx].Value + nodeRequireArgument
+
+		if IsEnvVarValueInstrumentationMissing(container.Env[idx], nodeRequireArgument) {
+			container.Env[idx].Value = container.Env[idx].Value + nodeRequireArgument
+		}
+	}
+
+	if IsOtAIVolumeMissing(container.VolumeMounts) {
+		container.VolumeMounts = append(container.VolumeMounts, corev1.VolumeMount{
+			Name:      volumeName,
+			MountPath: "/otel-auto-instrumentation",
+		})
 	}
-	container.VolumeMounts = append(container.VolumeMounts, corev1.VolumeMount{
-		Name:      volumeName,
-		MountPath: "/otel-auto-instrumentation",
-	})
 
 	// We just inject Volumes and init containers for the first processed container
 	if IsInitContainerMissing(pod) {

@@ -54,7 +54,10 @@ func injectPythonSDK(logger logr.Logger, pythonSpec v1alpha1.Python, pod corev1.
 			logger.Info("Skipping Python SDK injection, the container defines PYTHONPATH env var value via ValueFrom", "container", container.Name)
 			return pod
 		}
-		container.Env[idx].Value = fmt.Sprintf("%s:%s:%s", pythonPathPrefix, container.Env[idx].Value, pythonPathSuffix)
+
+		if IsEnvVarValueInstrumentationMissing(container.Env[idx], pythonPathPrefix) {
+			container.Env[idx].Value = fmt.Sprintf("%s:%s:%s", pythonPathPrefix, container.Env[idx].Value, pythonPathSuffix)
+		}
 	}
 
 	// Set OTEL_TRACES_EXPORTER to HTTP exporter if not set by user because it is what our autoinstrumentation supports.
@@ -66,10 +69,12 @@ func injectPythonSDK(logger logr.Logger, pythonSpec v1alpha1.Python, pod corev1.
 		})
 	}
 
-	container.VolumeMounts = append(container.VolumeMounts, corev1.VolumeMount{
-		Name:      volumeName,
-		MountPath: "/otel-auto-instrumentation",
-	})
+	if IsOtAIVolumeMissing(container.VolumeMounts) {
+		container.VolumeMounts = append(container.VolumeMounts, corev1.VolumeMount{
+			Name:      volumeName,
+			MountPath: "/otel-auto-instrumentation",
+		})
+	}
 
 	// We just inject Volumes and init containers for the first processed container
 	if IsInitContainerMissing(pod) {