WIP: CPU spikes and service name for docker services

Author: naman47vyas

pkg/cli/commands/instruement_node_containers.go

@@ -34,7 +34,6 @@ func NewConfigNodeContainerCommand(
 }
 
 func (c *ConfigNodeContainerCommand) Execute() error {
-	pp.Println("EXECUTE------------------------")
 	ctx := context.Background()
 
 	// Check if running as root
@@ -124,7 +123,6 @@ func (c *ConfigNodeContainerCommand) Execute() error {
 		cfg.MWAgentService = "" // Reserved hack
 		cfg.OtelServiceName = container.GetServiceName()
 		cfg.NodeAgentPath = docker.DefaultContainerAgentNodePath
-		pp.Println("cfg: ", cfg)
 
 		// Instrument container
 		err := dockerOps.InstrumentContainer(container.ContainerName, &cfg)

pkg/cli/commands/list.go

@@ -154,8 +154,6 @@ func (c *ListAllCommand) Execute() error {
 	// 	return fmt.Errorf("error: %v", err)
 	// }
 
-	// pp.Println(nodeProcs)
-
 	// Get Docker containers
 	dockerDiscoverer := discovery.NewDockerDiscoverer(ctx)
 	javaContainers, javaDockerErr := dockerDiscoverer.DiscoverJavaContainers()

pkg/cli/commands/uninstrument.go

@@ -7,7 +7,6 @@ import (
 	"os"
 	"strings"
 
-	"github.com/k0kubun/pp"
 	"github.com/middleware-labs/java-injector/pkg/cli/types"
 	"github.com/middleware-labs/java-injector/pkg/discovery"
 	"github.com/middleware-labs/java-injector/pkg/docker"
@@ -220,7 +219,6 @@ func (c *UninstrumentDockerCommand) Execute() error {
 
 	// List instrumented containers
 	instrumented, err := dockerOps.ListInstrumentedContainers()
-	pp.Println("Instrumented Containers: ", instrumented)
 	if err != nil {
 		return fmt.Errorf("❌ Error listing instrumented containers: %v", err)
 	}

pkg/discovery/container.go

@@ -64,66 +64,84 @@ func (cd *ContainerDetector) IsProcessInContainer(pid int32) (*ContainerInfo, er
 // checkCgroup examines the process cgroup to detect container runtimes
 func (cd *ContainerDetector) checkCgroup(pid int32) (*ContainerInfo, error) {
 	cgroupPath := fmt.Sprintf("/proc/%d/cgroup", pid)
-	file, err := os.Open(cgroupPath)
+	data, err := os.ReadFile(cgroupPath)
 	if err != nil {
-		return nil, err
+		return &ContainerInfo{IsContainer: false}, err
 	}
-	defer file.Close()
 
-	scanner := bufio.NewScanner(file)
-	for scanner.Scan() {
-		line := scanner.Text()
+	content := string(data)
+	if content == "" {
+		return &ContainerInfo{IsContainer: false}, nil
+	}
 
-		// Docker patterns
-		if strings.Contains(line, "/docker/") {
-			containerID := cd.extractDockerIDFromCgroup(line)
-			return &ContainerInfo{
-				IsContainer: true,
-				ContainerID: containerID,
-				Runtime:     "docker",
-			}, nil
-		}
+	// 1. DOCKER & CONTAINERD
+	// v1: /docker/<ID> or /containerd/<ID>
+	// v2: /system.slice/docker-<ID>.scope or /system.slice/containerd-<ID>.scope
+	dockerRegex := regexp.MustCompile(`(?:docker-|containerd-|/docker/|/containerd/)([a-fA-F0-9]{64})`)
+	if matches := dockerRegex.FindStringSubmatch(content); len(matches) > 1 {
+		return &ContainerInfo{
+			IsContainer: true,
+			ContainerID: matches[1],
+			Runtime:     "docker/containerd",
+		}, nil
+	}
 
-		// Podman patterns
-		if strings.Contains(line, "/libpod-") || strings.Contains(line, "machine.slice/libpod-") {
-			containerID := cd.extractPodmanIDFromCgroup(line)
-			return &ContainerInfo{
-				IsContainer: true,
-				ContainerID: containerID,
-				Runtime:     "podman",
-			}, nil
-		}
+	// 2. KUBERNETES (CRI-O / Containerd)
+	// Matches: cri-containerd-<ID>.scope, crio-<ID>.scope, or kubepods paths
+	k8sRegex := regexp.MustCompile(`(?:cri-containerd-|crio-|/kubepods.*/pod.*/)([a-fA-F0-9]{64})`)
+	if matches := k8sRegex.FindStringSubmatch(content); len(matches) > 1 {
+		return &ContainerInfo{
+			IsContainer: true,
+			ContainerID: matches[1],
+			Runtime:     "kubernetes",
+		}, nil
+	}
 
-		// Containerd patterns
-		if strings.Contains(line, "/containerd/") {
-			containerID := cd.extractContainerdIDFromCgroup(line)
-			return &ContainerInfo{
-				IsContainer: true,
-				ContainerID: containerID,
-				Runtime:     "containerd",
-			}, nil
-		}
+	// 3. PODMAN
+	// Matches: libpod-<ID>.scope or /libpod-<ID>
+	podmanRegex := regexp.MustCompile(`(?:libpod-|/libpod-)([a-fA-F0-9]{64})`)
+	if matches := podmanRegex.FindStringSubmatch(content); len(matches) > 1 {
+		return &ContainerInfo{
+			IsContainer: true,
+			ContainerID: matches[1],
+			Runtime:     "podman",
+		}, nil
+	}
 
-		// systemd-nspawn patterns
-		if strings.Contains(line, "machine-") && strings.Contains(line, ".scope") {
-			return &ContainerInfo{
-				IsContainer: true,
-				Runtime:     "systemd-nspawn",
-			}, nil
-		}
+	// 4. LXC
+	lxcRegex := regexp.MustCompile(`/lxc/([^/\n]+)`)
+	if matches := lxcRegex.FindStringSubmatch(content); len(matches) > 1 {
+		return &ContainerInfo{
+			IsContainer: true,
+			ContainerID: matches[1],
+			Runtime:     "lxc",
+		}, nil
+	}
 
-		// LXC patterns
-		if strings.Contains(line, "/lxc/") {
-			containerID := cd.extractLXCIDFromCgroup(line)
-			return &ContainerInfo{
-				IsContainer: true,
-				ContainerID: containerID,
-				Runtime:     "lxc",
-			}, nil
-		}
+	// 5. GENERIC FALLBACK (Systemd Scopes)
+	// If it's in a .scope but not the init.scope or user.slice, it's likely a container
+	if strings.Contains(content, ".scope") && !strings.Contains(content, "init.scope") {
+		return &ContainerInfo{
+			IsContainer: true,
+			Runtime:     "generic-container",
+		}, nil
 	}
 
-	return &ContainerInfo{IsContainer: false}, scanner.Err()
+	return &ContainerInfo{IsContainer: false}, nil
+}
+
+func (cd *ContainerDetector) checkNamespaceFallback(pid int32, info *ContainerInfo) {
+	if info.IsContainer {
+		return // Already detected
+	}
+
+	hostNs, _ := os.Readlink("/proc/1/ns/mnt")
+	procNs, _ := os.Readlink(fmt.Sprintf("/proc/%d/ns/mnt", pid))
+
+	if hostNs != "" && procNs != "" && hostNs != procNs {
+		info.IsContainer = true
+		info.Runtime = "namespace-isolated" // Container detected via isolation
+	}
 }
 
 // checkMountNamespace checks if the process is in a different mount namespace
@@ -351,6 +369,8 @@ func (cd *ContainerDetector) GetContainerNameByID(containerID, runtime string) s
 	switch runtime {
 	case "docker":
 		return cd.getDockerContainerName(containerID)
+	case "docker/containerd":
+		return cd.getDockerContainerName(containerID)
 	case "podman":
 		return cd.getPodmanContainerName(containerID)
 	default:

pkg/discovery/docker.go

@@ -66,6 +66,12 @@ type DockerContainer struct {
 	InstrumentedAt time.Time `json:"instrumented_at,omitempty"`
 }
 
+type ContainerCandidate struct {
+	ID    string
+	Image string
+	Names string
+}
+
 // DockerMount represents a Docker volume mount
 type DockerMount struct {
 	Type        string `json:"type"`

pkg/discovery/process.go

@@ -58,7 +58,6 @@ func (d *discoverer) DiscoverWithOptions(ctx context.Context, opts DiscoveryOpti
 	// Filter for Java processes first to reduce workload
 	// javaDiscoverCandidates := d.filterJavaProcesses(allProcesses)
 
-	// pp.Println(javaDiscoverCandidates)
 	// Process concurrently with worker pool
 	return d.processWithWorkerPool(ctx, allProcesses, opts)
 }
@@ -116,8 +115,6 @@ func (d *discoverer) filterJavaProcesses(processes []*process.Process) []*Discov
 
 	for _, proc := range processes {
 		if discoveryCandidate := d.getJavaDiscoveryCandidateForProcesss(proc); discoveryCandidate.IsJavaProcess {
-			// pp.Println("Lol here with, ", proc)
-			// pp.Println("And the candidate,  ", discoveryCandidate)
 			javaProcesses = append(javaProcesses, &discoveryCandidate)
 		}
 	}
@@ -306,7 +303,6 @@ func (d *discoverer) processNodeWithWorkerPool(ctx context.Context, processes []
 	if len(processes) == 0 {
 		return []NodeProcess{}, nil
 	}
-	// pp.Println(opts)
 
 	// Create channels for work distribution
 	jobs := make(chan *process.Process, len(processes))
@@ -369,7 +365,6 @@ func (d *discoverer) processNodeWithWorkerPool(ctx context.Context, processes []
 	if len(errors) > 0 && !opts.SkipPermissionErrors {
 		return nodeProcesses, fmt.Errorf("encountered %d errors during Node.js discovery: %v", len(errors), errors[0])
 	}
-	// pp.Println("Post PROCESESSING: ", nodeProcesses)
 	return nodeProcesses, nil
 }
 
@@ -882,11 +877,8 @@ func (d *discoverer) worker(
 		if !candidate.IsJavaProcess {
 			continue
 		}
-		pp.Println("WorKing for Java Process")
-		pp.Println("proc: ", proc)
-		pp.Println("discovery candidate: ", candidate)
+
 		javaProc, err := d.processOne(ctx, &candidate, opts)
-		pp.Println("Java Proc: ", javaProc)
 		results <- processResult{javaProc, err}
 	}
 }
@@ -933,6 +925,7 @@ func (d *discoverer) processOne(ctx context.Context, proc *DiscoveryCandidate, o
 		} else {
 			javaProc.ContainerInfo = containerInfo
 
+			pp.Println("Found container info", javaProc.ContainerInfo)
 			// If we're excluding containers and this is in a container, return nil
 			if opts.ExcludeContainers && containerInfo.IsContainer {
 				return nil, fmt.Errorf("process %d is running in container, skipping", javaProc.ProcessPID)
@@ -952,9 +945,6 @@ func (d *discoverer) processOne(ctx context.Context, proc *DiscoveryCandidate, o
 	}
 
 	// Extract Java-specific information
-	pp.Println("trying to extract the java info")
-	pp.Println("Javaproc: ", javaProc)
-	pp.Println("cmdArgs: ", cmdArgs)
 	d.extractJavaInfo(javaProc, cmdArgs)
 
 	// Extract service name

pkg/discovery/report.go

@@ -72,11 +72,11 @@ func GetAgentReportValue() (AgentReportValue, error) {
 		// Decide if this should be a fatal error or just logged (assuming logged for now)
 	}
 
-	nodeProcs, err := FindAllNodeProcesses(ctx)
+	// nodeProcs, err := FindAllNodeProcesses(ctx)
 
-	// b) Docker Containers (Java/Node)
+	// b) Docker Containers (java/Node)
 	// dockerDiscoverer := NewDockerDiscoverer(ctx)
-	// javaContainers, _ := dockerDiscoverer.DiscoverJavaContainers() // Error handling omitted for brevity
+	// javaContainers, _ := dockContainerDetectorerDiscoverer.DiscoverJavaContainers() // Error handling omitted for brevity
 	// nodeContainers, _ := dockerDiscoverer.DiscoverNodeContainers() // Error handling omitted for brevity
 
 	// --- 2. Convert to AgentReportValue (ServiceSetting) ---
@@ -86,7 +86,10 @@ func GetAgentReportValue() (AgentReportValue, error) {
 	// Convert host processes
 	for _, proc := range processes {
 		// Only report processes we care about (non-Tomcat, non-Container for simplicity)
-		if !proc.IsTomcat() && !proc.ContainerInfo.IsContainer {
+		// if !proc.IsTomcat() && !proc.ContainerInfo.IsContainer {
+		if !proc.IsTomcat() {
+			if proc.IsInContainer() {
+			}
 			setting := convertJavaProcessToServiceSetting(proc)
 			settings[setting.Key] = setting
 		}
@@ -105,13 +108,10 @@ func GetAgentReportValue() (AgentReportValue, error) {
 	// 	settings[setting.Key] = setting
 	// }
 
-	for _, proc := range nodeProcs {
-		// pp.Println("---------------------------------------------------------")
-		// pp.Println(proc)
-		setting := convertNodeProcessToServiceSetting(proc)
-		// pp.Println("Found node setting: ", setting)
-		settings[setting.Key] = setting
-	}
+	// for _, proc := range nodeProcs {
+	// 	setting := convertNodeProcessToServiceSetting(proc)
+	// 	settings[setting.Key] = setting
+	// }
 
 	reportValue := AgentReportValue{
 		osKey: OSConfig{
@@ -235,6 +235,9 @@ func detectDeploymentType(proc *JavaProcess) string {
 	if proc.ProcessOwner != "root" && proc.ProcessOwner != os.Getenv("USER") {
 		return "systemd"
 	}
+	if proc.IsInContainer() {
+		return "docker"
+	}
 	return "standalone"
 }
 

pkg/discovery/service.go

@@ -9,6 +9,10 @@ import (
 // extractServiceName extracts a meaningful service name from command arguments
 func (d *discoverer) extractServiceName(javaProc *JavaProcess, cmdArgs []string) {
 	serviceName := ""
+	if javaProc.IsInContainer() {
+		javaProc.ServiceName = javaProc.ContainerInfo.ContainerName
+		return
+	}
 
 	// Strategy 1: System Properties (highest priority)
 	serviceName = d.extractFromSystemProperties(cmdArgs)

pkg/docker/operations.go

@@ -168,7 +168,6 @@ type ContainerState struct {
 // InstrumentContainer instruments a specific Docker container
 func (do *DockerOperations) InstrumentContainer(containerName string, cfg *config.ProcessConfiguration) error {
 	// Discover the container
-	pp.Println("here lols")
 	pp.Println("Container name: ", containerName)
 	container, err := do.discoverer.GetContainerByName(containerName)
 	if err != nil {