@sentry/node creates duplicate Transactions

[enixsoft]

Is there an existing issue for this?

• I have checked for existing issues https://github.com/getsentry/sentry-javascript/issues
• I have reviewed the documentation https://docs.sentry.io/
• I am using the latest SDK release https://github.com/getsentry/sentry-javascript/releases

How do you use Sentry?

Sentry Saas (sentry.io)

Which SDK are you using?

@sentry/node

SDK Version

9.9.0

Framework Version

No response

Link to Sentry event

No response

Reproduction Example/SDK Setup

// middleware

import * as Sentry from '@sentry/node'

const activeSpan = Sentry.getActiveSpan()
const rootSpan = activeSpan && Sentry.getRootSpan(activeSpan)

if (rootSpan) {
// ctx.routeKey is string, for example "GET-/users"
Sentry.updateSpanName(rootSpan, ctx.routeKey || 'unknown')
}

Steps to Reproduce

I am using AdonisJS v6 framework with the Sentry integration rlanz/sentry v0.3.3 and @sentry/node package v9.9.0.

In my reproduction example there is a code from middleware that runs on every request and it's supposed to update the root span (transaction) name. The root span is expected to always be http.server operation with origin auto.http.otel.http.

In my Sentry dashboard, I see transactions on the sampled events with the correct updated name, they contain spans and have user attached, but I also see events from another transaction which is using the automatically generated name, but always without any spans and without user. Those duplicate transactions are easy to notice because the names are similar, the events are traced at the same time with nearly the same duration. Also the data (like request query string, headers, cookies) is same in both, so I assume that it's a duplicated transaction from the exact same request.

There is also other difference I see comparing the JSON of both sampled events which might explain this, the transaction with updated name by middleware has sentry.source: custom and "transaction_info": { "source": "custom" } in its data. And the duplicate has sentry.source: url and "transaction_info": { "source": "sanitized" }.

Expected Result

Only one transaction (the one with updated name) will appear in Sentry dashboard for specific request.

Actual Result

Transactions seem to be duplicated.

[s1gr1d]

Thanks for opening this issue. It could be that this is the same or similar issue like #15803.

We're going to take a look at this.

[s1gr1d]

@enixsoft Would you be able to provide a small reproduction example?

[enixsoft]

@s1gr1d
Sure, here it is:
https://github.com/enixsoft/adonisjs-sentry-example

[lforst]

Hi, since this issue is about @rlanz/sentry which we don't maintain, I recommend you raise this with that project instead.

[enixsoft]

@lforst
Hi, @rlanz/sentry is only a simple wrapper using @sentry/node that initializes Sentry and is supposed to update the root span (transaction) name using the code in Reproduction Example.

[lforst]

@enixsoft makes sense, however, we have no reason to believe that @sentry/node is at fault because we do not create span names with hyphens in between method and path. It's likely that @rlanz/sentry is simply feeding bad data into @sentry/node.

[enixsoft]

@lforst
The name with hyphens is the correct one, that's what the code in Reproduction Example is supposed to do, it's a middleware that updates the root span's name according to AdonisJS conventions instead of relying on the automatically chosen name.

The automatically created transaction with name without hyphens is the one that doesn't have all the data and the one I consider an unnecessary duplicate for the same request and route.

My understanding of this issue is that:

1. Sentry after initialization automatically patches node's http/https modules, which is what I see in logs:
   Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }

2. When application receives a request, the root span gets automatically created and named by the instrumentation.

3. The request then goes through the middleware which contains the code in the Reproduction Example, where the root span's name gets updated to the name I want.

4. After the request is finished, the tracing data is sent to the Sentry server and I can view it in the Insights -> Backend dashboard.

[lforst]

It's possible that not all requests are routed through that middleware which would mean that not all span names are updated. (or rather that that code path is not always hit but you know what I mean)

[enixsoft]

@lforst

I think I found the cause of the problem. The automatic instrumentation module patching can run more than once and when it does, this is when the duplicated transactions start to happen. I have updated the reproduction example in #15830 (comment) and added a preload file which imports axios (and axios imports http and https modules and this triggers the patching). Both modules are first patched right after the Sentry.init() call, then again by axios import.

This is what I get by running the reproduction example and sending one request (GET /test/span/123):

[ info ] starting HTTP server...
Sentry Logger [log]: Initializing Sentry: process: 125703, thread: main.
Sentry Logger [log]: Integration installed: InboundFilters
Sentry Logger [log]: Integration installed: FunctionToString
Sentry Logger [log]: Integration installed: LinkedErrors
Sentry Logger [log]: Integration installed: RequestData
Sentry Logger [log]: Integration installed: Console
Sentry Logger [log]: Integration installed: Http
Sentry Logger [log]: Integration installed: NodeFetch
Sentry Logger [log]: Integration installed: OnUncaughtException
Sentry Logger [log]: Integration installed: OnUnhandledRejection
Sentry Logger [log]: Integration installed: ContextLines
Sentry Logger [log]: Integration installed: LocalVariablesAsync
Sentry Logger [log]: Integration installed: Context
Sentry Logger [log]: Integration installed: ChildProcess
Sentry Logger [log]: Integration installed: ProcessSession
Sentry Logger [log]: Integration installed: Express
Sentry Logger [log]: Integration installed: Fastify
Sentry Logger [log]: Integration installed: Graphql
Sentry Logger [log]: Integration installed: Mongo
Sentry Logger [log]: Integration installed: Mongoose
Sentry Logger [log]: Integration installed: Mysql
Sentry Logger [log]: Integration installed: Mysql2
Sentry Logger [log]: Integration installed: Redis
Sentry Logger [log]: Integration installed: Postgres
Sentry Logger [log]: Integration installed: Hapi
Sentry Logger [log]: Integration installed: Koa
Sentry Logger [log]: Integration installed: Connect
Sentry Logger [log]: Integration installed: Tedious
Sentry Logger [log]: Integration installed: GenericPool
Sentry Logger [log]: Integration installed: Kafka
Sentry Logger [log]: Integration installed: Amqplib
Sentry Logger [log]: Integration installed: LruMemoizer
Sentry Logger [log]: Integration installed: VercelAI
Sentry Logger [log]: Running in ESM mode.
Sentry Logger [debug]: @opentelemetry/api: Registered a global for diag v1.9.0.
Sentry Logger [debug]: @opentelemetry/api: Registered a global for trace v1.9.0.
Sentry Logger [debug]: @opentelemetry/api: Registered a global for propagation v1.9.0.
Sentry Logger [debug]: @opentelemetry/api: Registered a global for context v1.9.0.
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Axios version: 1.8.4
╭──────────────────────────────────────────────────╮
│                                                  │
│    Server address: http://localhost:3333        │
│    Watch Mode: HMR                               │
│    Ready in: 497 ms                              │
│                                                  │
╰──────────────────────────────────────────────────╯
[14:13:43.545] INFO (125703): started HTTP server on localhost:3333
Sentry Logger [debug]: @sentry/instrumentation-http http instrumentation for incoming request
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http http instrumentation incomingRequest
Sentry Logger [log]: [Tracing] Starting sampled root span
  op: < unknown op >
  name: GET
  ID: 943354c9514d4f51
Sentry Logger [debug]: @sentry/instrumentation-http http instrumentation for incoming request
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http http instrumentation incomingRequest
Sentry Logger [log]: [Tracing] Starting sampled root span
  op: < unknown op >
  name: GET
  ID: 8301b5c667dc7c63
Sentry Logger [log]: [Tracing] Inheriting parent's sampled decision for test/span/123: true
Sentry Logger [log]: [Tracing] Starting sampled span
  op: < unknown op >
  name: test/span/123
  ID: 4d818da508eafdbf
  parent ID: 8301b5c667dc7c63
  root ID: 8301b5c667dc7c63
  root description: GET-/test/span/:id
Sentry Logger [log]: [Tracing] Finishing "< unknown op >" span "test/span/123" with ID 4d818da508eafdbf
Sentry Logger [debug]: Recorded request session with status: ok
Sentry Logger [debug]: Opened new request session aggregate.
Sentry Logger [log]: [Tracing] Finishing "< unknown op >" root span "GET" with ID 943354c9514d4f51
Sentry Logger [debug]: Recorded request session with status: ok
Sentry Logger [log]: [Tracing] Finishing "< unknown op >" root span "GET-/test/span/:id" with ID 8301b5c667dc7c63
Sentry Logger [log]: SpanExporter exported 3 spans, 0 spans are waiting for their parent spans to finish

And this is how it looks like in dashboard:

Is it possible to make sure that the http and https module patching happens only once or can it be forced during the initialization of Sentry, so it is not triggered by import of the modules?

[smeubank]

Thanks for opening this issue. It could be that this is the same or similar issue like #15803.

We're going to take a look at this.

@s1gr1d any update if this is duplicate?

[lforst]

@smeubank It could be related.

[s1gr1d]

Thanks for the reproduction! I just had time to look at this issue and I was able to pin it down to the version and a suspect PR, but still need to fix it.

Until version 8.34.0 the logs look like this:

Importing http...
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Importing https...
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Importing express app...
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }

From version 8.35.0, the logs looks like this (adds instrumentation twice, but this is not the root problem - this is okay in general):

Importing http...
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Importing https...
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'https' }
Importing express app...
Sentry Logger [debug]: @opentelemetry_sentry-patched/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }
Sentry Logger [debug]: @sentry/instrumentation-http Applying instrumentation patch for nodejs core module on require hook { module: 'http' }

The thing that's actually causing the double root spans are the imports from node:https and node:http. Without importing those, there is no problem - but I am still investigating this.

---

Another thing I noticed in your application: You are using ESM and you are supposed to start the application like this: node --import ./src/sentry.js src/index.js (docs here).
And you are importing Sentry from the sentry.js file (because it's exported there). Sentry should not be exported there. Only import Sentry from @sentry/node.

[enixsoft]

@s1gr1d
Thank you for investigating this. I am aware the import of Sentry in AdonisJS (including @rlanz/sentry package) is not being done according to the docs, but I want to emphasize this approach has never caused issues until this auto-instrumentation problem. I have used Sentry over last few years in many applications and I would really prefer to have initialization of Sentry handled in a package "in the background" without having to hard-code it when starting up the application.

I still think what I said above could be the solution: Is it possible to make sure that the http and https module patching happens only once or can it be forced during the initialization of Sentry, so it is not triggered by import of the modules?

[s1gr1d]

The --import flag is currently required in ESM to make it possible to auto-instrument packages (if you are interested, you can read our observability guide for the ecosystem) or check out different installation methods in our docs. But as ESM is becoming more and more common (right now, it's only used in about 12% of projects), other forms of auto-instrumentation that don't involve --import are being worked on in the observability ecosystem.

Is it possible to make sure that the http and https module patching happens only once or can it be forced during the initialization of Sentry, so it is not triggered by import of the modules?

Yes, this is an actual issue and needs to be fixed. We are on it - and thanks again for the reproduction!

[github-actions]

A PR closing this issue has just been released 🚀

This issue was referenced by PR #16177, which was included in the 9.16.0 release.