NASP/argus
52
0
Fork 0
Code Issues 7 Pull Requests Actions Packages Projects 1 Releases 1 Wiki Activity

Compare commits

base: NASP:dev_1.1.0_arm_support
Branches Tags
NASP:main
NASP:dev_1.0.0
NASP:dev_1.1.0_arm_support
NASP:dev_1.0.0_yuyr_6
NASP:dev_1.0.0_xuxt_3
NASP:dev_1.0.0_yuyr_5
NASP:dev_1.0.0_sundp_3
NASP:dev_1.0.0_xuxt_2
NASP:dev_1.0.0_xuxt
NASP:dev_1.0.0_huhy
NASP:dev_1.0.0_sundp
NASP:v1.0.0
..
compare: NASP:main
Branches Tags
NASP:main
NASP:dev_1.0.0
NASP:dev_1.1.0_arm_support
NASP:dev_1.0.0_yuyr_6
NASP:dev_1.0.0_xuxt_3
NASP:dev_1.0.0_yuyr_5
NASP:dev_1.0.0_sundp_3
NASP:dev_1.0.0_xuxt_2
NASP:dev_1.0.0_xuxt
NASP:dev_1.0.0_huhy
NASP:dev_1.0.0_sundp
NASP:v1.0.0

1 Commits
dev_1.1.0_ ... main

Author SHA1 Message Date
yuyr
7430896fab v1.0.0 发布合并回master (#52) 
Co-authored-by: sundapeng <sundp@mail.zgclab.edu.cn>
Co-authored-by: xuxt <xuxt@zgclab.edu.cn>
Reviewed-on: #52
 2025-11-25 16:00:50 +08:00
53 changed files with 94 additions and 3793 deletions
Show Stats Expand all files Collapse all files

35
build/build_images.sh
View File

@ -40,6 +40,8 @@ build_gpu_bundle=false
build_cpu_bundle=false
build_server_pkg=false
build_client_pkg=false
need_bind_image=true
need_metric_ftp=true
no_cache=false
bundle_date=""
@ -124,6 +126,11 @@ while [[ $# -gt 0 ]]; do
esac
done
if [[ "$build_server_pkg" == true ]]; then
need_bind_image=false
need_metric_ftp=false
fi
root="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
. "$root/scripts/common/build_user.sh"
@ -463,11 +470,11 @@ build_server_pkg_bundle() {
return 1
fi
local repos=(
argus-bind9 argus-master argus-elasticsearch argus-kibana \
argus-metric-ftp argus-metric-prometheus argus-metric-grafana \
argus-master argus-elasticsearch argus-kibana \
argus-metric-prometheus argus-metric-grafana \
argus-alertmanager argus-web-frontend argus-web-proxy
)
echo "\n🔖 Verifying server images with :$date_tag and collecting digests"
echo "\n🔖 Verifying server images with :$date_tag and collecting digests (Bind/FTP excluded; relying on Docker DNS aliases)"
for repo in "${repos[@]}"; do
if ! docker image inspect "$repo:$date_tag" >/dev/null 2>&1; then
echo "❌ required image missing: $repo:$date_tag (build phase should have produced it)" >&2
@ -638,10 +645,12 @@ if [[ "$build_core" == true ]]; then
echo ""
if build_image "BIND9" "src/bind/build/Dockerfile" "argus-bind9:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-bind9:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
if [[ "$need_bind_image" == true ]]; then
if build_image "BIND9" "src/bind/build/Dockerfile" "argus-bind9:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-bind9:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
fi
fi
@ -678,19 +687,25 @@ if [[ "$build_metric" == true ]]; then
echo "Building Metric module images..."
metric_base_images=(
"ubuntu:22.04"
"ubuntu/prometheus:3-24.04_stable"
"grafana/grafana:11.1.0"
)
if [[ "$need_metric_ftp" == true ]]; then
metric_base_images+=("ubuntu:22.04")
fi
for base_image in "${metric_base_images[@]}"; do
if ! pull_base_image "$base_image"; then
build_failed=true
fi
done
metric_builds=(
"Metric FTP|src/metric/ftp/build/Dockerfile|argus-metric-ftp:${DEFAULT_IMAGE_TAG}|src/metric/ftp/build"
metric_builds=()
if [[ "$need_metric_ftp" == true ]]; then
metric_builds+=("Metric FTP|src/metric/ftp/build/Dockerfile|argus-metric-ftp:${DEFAULT_IMAGE_TAG}|src/metric/ftp/build")
fi
metric_builds+=(
"Metric Prometheus|src/metric/prometheus/build/Dockerfile|argus-metric-prometheus:${DEFAULT_IMAGE_TAG}|src/metric/prometheus/build"
"Metric Grafana|src/metric/grafana/build/Dockerfile|argus-metric-grafana:${DEFAULT_IMAGE_TAG}|src/metric/grafana/build"
)

935
build/build_images_for_arm.sh
View File

@ -1,935 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
export ARGUS_TARGET_ARCH="arm64"
ARGUS_BUILDX_BUILDER="${ARGUS_BUILDX_BUILDER:-mybuilder}"
# 自动加载 HTTP/HTTPS 代理配置(仅在变量未预先设置时)
if [[ -z "${HTTP_PROXY:-}" && -z "${http_proxy:-}" ]]; then
if [[ -f /home/yuyr/.source_http_proxy.sh ]]; then
# shellcheck disable=SC1090
source /home/yuyr/.source_http_proxy.sh || true
fi
fi
# 自动准备并切换到指定的 buildx builder用于 x86_64 上构建 ARM 镜像)
if command -v docker >/dev/null 2>&1; then
if docker buildx ls >/dev/null 2>&1; then
# 若指定的 builder 不存在,则自动创建(带代理环境变量)
if ! docker buildx ls | awk '{print $1}' | grep -qx "${ARGUS_BUILDX_BUILDER}"; then
echo "🔧 Creating buildx builder '${ARGUS_BUILDX_BUILDER}' for ARM builds..."
create_args=(create --name "${ARGUS_BUILDX_BUILDER}" --driver docker-container)
if [[ -n "${HTTP_PROXY:-}" ]]; then
create_args+=(--driver-opt "env.HTTP_PROXY=${HTTP_PROXY}" --driver-opt "env.http_proxy=${HTTP_PROXY}")
fi
if [[ -n "${HTTPS_PROXY:-}" ]]; then
create_args+=(--driver-opt "env.HTTPS_PROXY=${HTTPS_PROXY}" --driver-opt "env.https_proxy=${HTTPS_PROXY}")
fi
if [[ -n "${NO_PROXY:-}" ]]; then
create_args+=(--driver-opt "env.NO_PROXY=${NO_PROXY}" --driver-opt "env.no_proxy=${NO_PROXY}")
fi
docker buildx "${create_args[@]}" --bootstrap >/dev/null 2>&1 || true
fi
docker buildx use "${ARGUS_BUILDX_BUILDER}" >/dev/null 2>&1 || true
fi
fi
show_help() {
cat <<'EOF'
ARGUS Unified Build System - Image Build Tool
Usage: $0 [OPTIONS]
Options:
--intranet Use intranet mirror for log/bind builds
--master-offline Build master offline image (requires src/master/offline_wheels.tar.gz)
--metric Build metric module images (ftp, prometheus, grafana, test nodes)
--no-cache Build all images without using Docker layer cache
--only LIST Comma-separated targets to build: core,master,metric,web,alert,sys,gpu_bundle,cpu_bundle,server_pkg,client_pkg,all
--version DATE Date tag used by gpu_bundle/server_pkg/client_pkg (e.g. 20251112)
--client-semver X.Y.Z Override client semver used in all-in-one-full artifact (optional)
--cuda VER CUDA runtime version for NVIDIA base (default: 12.2.2)
--tag-latest Also tag bundle image as :latest (for cpu_bundle only; default off)
-h, --help Show this help message
Examples:
$0 # Build with default sources
$0 --intranet # Build with intranet mirror
$0 --master-offline # Additionally build argus-master:offline
$0 --metric # Additionally build metric module images
$0 --intranet --master-offline --metric
EOF
}
use_intranet=false
build_core=true
build_master=true
build_master_offline=false
build_metric=true
build_web=true
build_alert=true
build_sys=true
build_gpu_bundle=false
build_cpu_bundle=false
build_server_pkg=false
build_client_pkg=false
no_cache=false
bundle_date=""
client_semver=""
cuda_ver="12.2.2"
DEFAULT_IMAGE_TAG="latest"
tag_latest=false
while [[ $# -gt 0 ]]; do
case $1 in
--intranet)
use_intranet=true
shift
;;
--master)
build_master=true
shift
;;
--master-offline)
build_master=true
build_master_offline=true
shift
;;
--metric)
build_metric=true
shift
;;
--no-cache)
no_cache=true
shift
;;
--only)
if [[ -z ${2:-} ]]; then
echo "--only requires a target list" >&2; exit 1
fi
sel="$2"; shift 2
# reset all, then enable selected
build_core=false; build_master=false; build_metric=false; build_web=false; build_alert=false; build_sys=false; build_gpu_bundle=false; build_cpu_bundle=false; build_server_pkg=false; build_client_pkg=false
IFS=',' read -ra parts <<< "$sel"
for p in "${parts[@]}"; do
case "$p" in
core) build_core=true ;;
master) build_master=true ;;
metric) build_metric=true ;;
web) build_web=true ;;
alert) build_alert=true ;;
sys) build_sys=true ;;
gpu_bundle) build_gpu_bundle=true ;;
cpu_bundle) build_cpu_bundle=true ;;
server_pkg) build_server_pkg=true; build_core=true; build_master=true; build_metric=true; build_web=true; build_alert=true ;;
client_pkg) build_client_pkg=true ;;
all) build_core=true; build_master=true; build_metric=true; build_web=true; build_alert=true; build_sys=true ;;
*) echo "Unknown --only target: $p" >&2; exit 1 ;;
esac
done
;;
--version)
if [[ -z ${2:-} ]]; then echo "--version requires a value like 20251112" >&2; exit 1; fi
bundle_date="$2"; shift 2
;;
--client-semver)
if [[ -z ${2:-} ]]; then echo "--client-semver requires a value like 1.43.0" >&2; exit 1; fi
client_semver="$2"; shift 2
;;
--cuda)
if [[ -z ${2:-} ]]; then echo "--cuda requires a value like 12.2.2" >&2; exit 1; fi
cuda_ver="$2"; shift 2
;;
--tag-latest)
tag_latest=true
shift
;;
-h|--help)
show_help
exit 0
;;
*)
echo "Unknown option: $1" >&2
show_help
exit 1
;;
esac
done
root="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
. "$root/scripts/common/build_user.sh"
declare -a build_args=()
if [[ "$use_intranet" == true ]]; then
build_args+=("--build-arg" "USE_INTRANET=true")
fi
cd "$root"
# Set default image tag policy before building
if [[ "$build_server_pkg" == true ]]; then
DEFAULT_IMAGE_TAG="${bundle_date:-latest}"
fi
# Select build user profile for pkg vs default
if [[ "$build_server_pkg" == true || "$build_client_pkg" == true ]]; then
export ARGUS_BUILD_PROFILE=pkg
fi
load_build_user
build_args+=("--build-arg" "ARGUS_BUILD_UID=${ARGUS_BUILD_UID}" "--build-arg" "ARGUS_BUILD_GID=${ARGUS_BUILD_GID}")
if [[ "$no_cache" == true ]]; then
build_args+=("--no-cache")
fi
master_root="$root/src/master"
master_offline_tar="$master_root/offline_wheels.tar.gz"
master_offline_dir="$master_root/offline_wheels"
if [[ "$build_master_offline" == true ]]; then
if [[ ! -f "$master_offline_tar" ]]; then
echo "❌ offline wheels tar not found: $master_offline_tar" >&2
echo " 请提前准备好 offline_wheels.tar.gz 后再执行 --master-offline" >&2
exit 1
fi
echo "📦 Preparing offline wheels for master (extracting $master_offline_tar)"
rm -rf "$master_offline_dir"
mkdir -p "$master_offline_dir"
tar -xzf "$master_offline_tar" -C "$master_root"
has_wheel=$(find "$master_offline_dir" -maxdepth 1 -type f -name '*.whl' -print -quit)
if [[ -z "$has_wheel" ]]; then
echo "❌ offline_wheels extraction failed或无 wheel: $master_offline_dir" >&2
exit 1
fi
# ARM 构建下offline 模式仍通过 Dockerfile 中的 USE_OFFLINE/USE_INTRANET 参数控制
build_args+=("--build-arg" "USE_OFFLINE=1" "--build-arg" "USE_INTRANET=true")
fi
echo "======================================="
echo "ARGUS Unified Build System"
echo "======================================="
if [[ "$use_intranet" == true ]]; then
echo "🌐 Mode: Intranet (Using internal mirror: 10.68.64.1)"
else
echo "🌐 Mode: Public (Using default package sources)"
fi
echo "👤 Build user UID:GID -> ${ARGUS_BUILD_UID}:${ARGUS_BUILD_GID}"
echo "📁 Build context: $root"
echo ""
build_image() {
local image_name=$1
local dockerfile_path=$2
local tag=$3
local context="."
shift 3
if [[ $# -gt 0 ]]; then
context=$1
shift
fi
local extra_args=("$@")
# ARM 专用:如果存在带 .arm64 后缀的 Dockerfile则优先使用
local dockerfile_for_arch="$dockerfile_path"
if [[ -n "${ARGUS_TARGET_ARCH:-}" && "$ARGUS_TARGET_ARCH" == "arm64" ]]; then
if [[ -f "${dockerfile_path}.arm64" ]]; then
dockerfile_for_arch="${dockerfile_path}.arm64"
fi
fi
echo "🔄 Building $image_name image..."
echo " Dockerfile: $dockerfile_for_arch"
echo " Tag: $tag"
echo " Context: $context"
local tries=${ARGUS_BUILD_RETRIES:-3}
local delay=${ARGUS_BUILD_RETRY_DELAY:-5}
local attempt=1
# 在非 ARM 主机上构建 ARM 镜像时,使用 buildx+--platform=linux/arm64
local use_buildx=false
if [[ "${ARGUS_TARGET_ARCH:-}" == "arm64" && "$(uname -m)" != "aarch64" ]]; then
use_buildx=true
fi
while (( attempt <= tries )); do
echo " Attempt ${attempt}/${tries}"
if [[ "$use_buildx" == true ]]; then
# 通过 buildx 在 x86_64 等非 ARM 主机上构建 ARM64 镜像
if docker buildx build \
--builder "${ARGUS_BUILDX_BUILDER}" \
--platform=linux/arm64 \
"${build_args[@]}" "${extra_args[@]}" \
-f "$dockerfile_for_arch" \
-t "$tag" \
"$context" \
--load; then
echo "$image_name image built successfully (via buildx, platform=linux/arm64)"
return 0
fi
else
# 在 ARM 主机上直接使用 docker build保留原有 DOCKER_BUILDKIT 回退行为)
local prefix=""
if (( attempt == tries )); then
prefix="DOCKER_BUILDKIT=0"
echo " (final attempt with DOCKER_BUILDKIT=0)"
fi
if eval $prefix docker build "${build_args[@]}" "${extra_args[@]}" -f "$dockerfile_for_arch" -t "$tag" "$context"; then
echo "$image_name image built successfully"
return 0
fi
fi
echo "⚠️ Build failed for $image_name (attempt ${attempt}/${tries})."
if (( attempt < tries )); then
echo " Retrying in ${delay}s..."
sleep "$delay"
fi
attempt=$((attempt+1))
done
echo "❌ Failed to build $image_name image after ${tries} attempts"
return 1
}
pull_base_image() {
local image_ref=$1
local attempts=${2:-3}
local delay=${3:-5}
# If the image already exists locally, skip pulling.
if docker image inspect "$image_ref" >/dev/null 2>&1; then
echo " Local image present; skip pull: $image_ref"
return 0
fi
for ((i=1; i<=attempts; i++)); do
echo " Pulling base image ($i/$attempts): $image_ref"
if docker pull "$image_ref" >/dev/null; then
echo " Base image ready: $image_ref"
return 0
fi
echo " Pull failed: $image_ref"
if (( i < attempts )); then
echo " Retrying in ${delay}s..."
sleep "$delay"
fi
done
echo "❌ Unable to pull base image after ${attempts} attempts: $image_ref"
return 1
}
images_built=()
build_failed=false
build_gpu_bundle_image() {
local date_tag="$1" # e.g. 20251112
local cuda_ver_local="$2" # e.g. 12.2.2
local client_ver="$3" # semver like 1.43.0
if [[ -z "$date_tag" ]]; then
echo "❌ gpu_bundle requires --version YYMMDD (e.g. 20251112)" >&2
return 1
fi
# sanitize cuda version (trim trailing dots like '12.2.')
while [[ "$cuda_ver_local" == *"." ]]; do cuda_ver_local="${cuda_ver_local%.}"; done
# Resolve effective CUDA base tag
local resolve_cuda_base_tag
resolve_cuda_base_tag() {
local want="$1" # can be 12, 12.2 or 12.2.2
local major minor patch
if [[ "$want" =~ ^([0-9]+)\.([0-9]+)\.([0-9]+)$ ]]; then
major="${BASH_REMATCH[1]}"; minor="${BASH_REMATCH[2]}"; patch="${BASH_REMATCH[3]}"
echo "nvidia/cuda:${major}.${minor}.${patch}-runtime-ubuntu22.04"; return 0
elif [[ "$want" =~ ^([0-9]+)\.([0-9]+)$ ]]; then
major="${BASH_REMATCH[1]}"; minor="${BASH_REMATCH[2]}"
# try to find best local patch for major.minor
local best
best=$(docker images --format '{{.Repository}}:{{.Tag}}' nvidia/cuda 2>/dev/null | \
grep -E "^nvidia/cuda:${major}\.${minor}\\.[0-9]+-runtime-ubuntu22\.04$" | \
sed -E 's#^nvidia/cuda:([0-9]+\.[0-9]+\.)([0-9]+)-runtime-ubuntu22\.04$#\1\2#g' | \
sort -V | tail -n1 || true)
if [[ -n "$best" ]]; then
echo "nvidia/cuda:${best}-runtime-ubuntu22.04"; return 0
fi
# fallback patch if none local
echo "nvidia/cuda:${major}.${minor}.2-runtime-ubuntu22.04"; return 0
elif [[ "$want" =~ ^([0-9]+)$ ]]; then
major="${BASH_REMATCH[1]}"
# try to find best local for this major
local best
best=$(docker images --format '{{.Repository}}:{{.Tag}}' nvidia/cuda 2>/dev/null | \
grep -E "^nvidia/cuda:${major}\\.[0-9]+\\.[0-9]+-runtime-ubuntu22\.04$" | \
sed -E 's#^nvidia/cuda:([0-9]+\.[0-9]+\.[0-9]+)-runtime-ubuntu22\.04$#\1#g' | \
sort -V | tail -n1 || true)
if [[ -n "$best" ]]; then
echo "nvidia/cuda:${best}-runtime-ubuntu22.04"; return 0
fi
echo "nvidia/cuda:${major}.2.2-runtime-ubuntu22.04"; return 0
else
# invalid format, fallback to default
echo "nvidia/cuda:12.2.2-runtime-ubuntu22.04"; return 0
fi
}
local base_image
base_image=$(resolve_cuda_base_tag "$cuda_ver_local")
echo
echo "🔧 Preparing one-click GPU bundle build"
echo " CUDA runtime base: ${base_image}"
echo " Bundle tag : ${date_tag}"
# 1) Ensure NVIDIA base image (skip pull if local)
if ! pull_base_image "$base_image"; then
# try once more with default if resolution failed
if ! pull_base_image "nvidia/cuda:12.2.2-runtime-ubuntu22.04"; then
return 1
else
base_image="nvidia/cuda:12.2.2-runtime-ubuntu22.04"
fi
fi
# 2) Build latest argus-agent from source
echo "\n🛠 Building argus-agent from src/agent"
pushd "$root/src/agent" >/dev/null
if ! bash scripts/build_binary.sh; then
echo "❌ argus-agent build failed" >&2
popd >/dev/null
return 1
fi
if [[ ! -f "dist/argus-agent" ]]; then
echo "❌ argus-agent binary missing after build" >&2
popd >/dev/null
return 1
fi
popd >/dev/null
# 3) Inject agent into all-in-one-full plugin and package artifact
local aio_root="$root/src/metric/client-plugins/all-in-one-full"
local agent_bin_src="$root/src/agent/dist/argus-agent"
local agent_bin_dst="$aio_root/plugins/argus-agent/bin/argus-agent"
echo "\n📦 Updating all-in-one-full agent binary → $agent_bin_dst"
cp -f "$agent_bin_src" "$agent_bin_dst"
chmod +x "$agent_bin_dst" || true
pushd "$aio_root" >/dev/null
local prev_version
prev_version="$(cat config/VERSION 2>/dev/null || echo "1.0.0")"
local use_version="$prev_version"
if [[ -n "$client_semver" ]]; then
echo "${client_semver}" > config/VERSION
use_version="$client_semver"
fi
echo " Packaging all-in-one-full artifact version: $use_version"
if ! bash scripts/package_artifact.sh --force; then
echo "❌ package_artifact.sh failed" >&2
# restore VERSION if changed
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
return 1
fi
local artifact_dir="$aio_root/artifact/$use_version"
local artifact_tar
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
if [[ -z "$artifact_tar" ]]; then
echo " No argus-metric_*.tar.gz found; invoking publish_artifact.sh to assemble..."
local owner="$(id -u):$(id -g)"
if ! bash scripts/publish_artifact.sh "$use_version" --output-dir "$artifact_dir" --owner "$owner"; then
echo "❌ publish_artifact.sh failed" >&2
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
return 1
fi
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
fi
if [[ -z "$artifact_tar" ]]; then
echo "❌ artifact tar not found under $artifact_dir" >&2
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
return 1
fi
# restore VERSION if changed (keep filesystem clean)
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
# 4) Stage docker build context
local bundle_ctx="$root/src/bundle/gpu-node-bundle/.build-$date_tag"
echo "\n🧰 Staging docker build context: $bundle_ctx"
rm -rf "$bundle_ctx"
mkdir -p "$bundle_ctx/bundle" "$bundle_ctx/private"
cp "$root/src/bundle/gpu-node-bundle/Dockerfile" "$bundle_ctx/"
cp "$root/src/bundle/gpu-node-bundle/node-bootstrap.sh" "$bundle_ctx/"
cp "$root/src/bundle/gpu-node-bundle/health-watcher.sh" "$bundle_ctx/"
# bundle tar
cp "$artifact_tar" "$bundle_ctx/bundle/"
# offline fluent-bit assets (optional but useful)
if [[ -d "$root/src/log/fluent-bit/build/etc" ]]; then
cp -r "$root/src/log/fluent-bit/build/etc" "$bundle_ctx/private/"
fi
if [[ -d "$root/src/log/fluent-bit/build/packages" ]]; then
cp -r "$root/src/log/fluent-bit/build/packages" "$bundle_ctx/private/"
fi
if [[ -f "$root/src/log/fluent-bit/build/start-fluent-bit.sh" ]]; then
cp "$root/src/log/fluent-bit/build/start-fluent-bit.sh" "$bundle_ctx/private/"
fi
# 5) Build the final bundle image (directly from NVIDIA base)
local image_tag="argus-sys-metric-test-node-bundle-gpu-arm64:${date_tag}"
echo "\n🔄 Building GPU Bundle image"
if build_image "GPU Bundle" "$bundle_ctx/Dockerfile" "$image_tag" "$bundle_ctx" \
--build-arg CUDA_VER="$(echo "$base_image" | sed -E 's#^nvidia/cuda:([0-9]+\.[0-9]+\.[0-9]+)-runtime-ubuntu22\.04$#\1#')" \
--build-arg CLIENT_VER="$use_version" \
--build-arg BUNDLE_DATE="$date_tag"; then
images_built+=("$image_tag")
# In non-pkg mode, also tag latest for convenience
if [[ "${ARGUS_PKG_BUILD:-0}" != "1" ]]; then
docker tag "$image_tag" argus-sys-metric-test-node-bundle-gpu-arm64:latest >/dev/null 2>&1 || true
fi
return 0
else
return 1
fi
}
# Tag helper: ensure :<date_tag> exists for a list of repos
ensure_version_tags() {
local date_tag="$1"; shift
local repos=("$@")
for repo in "${repos[@]}"; do
if docker image inspect "$repo:$date_tag" >/dev/null 2>&1; then
:
elif docker image inspect "$repo:latest" >/dev/null 2>&1; then
docker tag "$repo:latest" "$repo:$date_tag" || true
else
echo "❌ missing image for tagging: $repo (need :latest or :$date_tag)" >&2
return 1
fi
done
return 0
}
# Build server package after images are built
build_server_pkg_bundle() {
local date_tag="$1"
if [[ -z "$date_tag" ]]; then
echo "❌ server_pkg requires --version YYMMDD" >&2
return 1
fi
local repos=(
argus-bind9-arm64 argus-master-arm64 argus-elasticsearch-arm64 argus-kibana-arm64 \
argus-metric-ftp-arm64 argus-metric-prometheus-arm64 argus-metric-grafana-arm64 \
argus-alertmanager-arm64 argus-web-frontend-arm64 argus-web-proxy-arm64
)
echo "\n🔖 Verifying server images with :$date_tag and collecting digests"
for repo in "${repos[@]}"; do
if ! docker image inspect "$repo:$date_tag" >/dev/null 2>&1; then
echo "❌ required image missing: $repo:$date_tag (build phase should have produced it)" >&2
return 1
fi
done
# Optional: show digests
for repo in "${repos[@]}"; do
local digest
digest=$(docker images --digests --format '{{.Repository}}:{{.Tag}} {{.Digest}}' | awk -v r="$repo:$date_tag" '$1==r{print $2}' | head -n1)
printf ' • %s@%s\n' "$repo:$date_tag" "${digest:-<none>}"
done
echo "\n📦 Building server package via deployment_new/build/make_server_package.sh --version $date_tag"
if ! "$root/deployment_new/build/make_server_package.sh" --version "$date_tag"; then
echo "❌ make_server_package.sh failed" >&2
return 1
fi
return 0
}
# Build client package: ensure gpu bundle image exists, then package client_gpu
build_client_pkg_bundle() {
local date_tag="$1"
local semver="$2"
local cuda="$3"
if [[ -z "$date_tag" ]]; then
echo "❌ client_pkg requires --version YYMMDD" >&2
return 1
fi
local bundle_tag="argus-sys-metric-test-node-bundle-gpu-arm64:${date_tag}"
if ! docker image inspect "$bundle_tag" >/dev/null 2>&1; then
echo "\n🧩 GPU bundle image $bundle_tag missing; building it first..."
ARGUS_PKG_BUILD=1
export ARGUS_PKG_BUILD
if ! build_gpu_bundle_image "$date_tag" "$cuda" "$semver"; then
return 1
fi
else
echo "\n✅ Using existing GPU bundle image: $bundle_tag"
fi
echo "\n📦 Building client GPU package via deployment_new/build/make_client_gpu_package.sh --version $date_tag --image $bundle_tag"
if ! "$root/deployment_new/build/make_client_gpu_package.sh" --version "$date_tag" --image "$bundle_tag"; then
echo "❌ make_client_gpu_package.sh failed" >&2
return 1
fi
return 0
}
# Build CPU bundle image directly FROM ubuntu:22.04 (no intermediate base)
build_cpu_bundle_image() {
local date_tag="$1" # e.g. 20251113
local client_ver_in="$2" # semver like 1.43.0 (optional)
local want_tag_latest="$3" # true/false
if [[ -z "$date_tag" ]]; then
echo "❌ cpu_bundle requires --version YYMMDD" >&2
return 1
fi
echo "\n🔧 Preparing one-click CPU bundle build"
echo " Base: ubuntu:22.04"
echo " Bundle tag: ${date_tag}"
# 1) Build latest argus-agent from source
echo "\n🛠 Building argus-agent from src/agent"
pushd "$root/src/agent" >/dev/null
if ! bash scripts/build_binary.sh; then
echo "❌ argus-agent build failed" >&2
popd >/dev/null
return 1
fi
if [[ ! -f "dist/argus-agent" ]]; then
echo "❌ argus-agent binary missing after build" >&2
popd >/dev/null
return 1
fi
popd >/dev/null
# 2) Inject agent into all-in-one-full plugin and package artifact
local aio_root="$root/src/metric/client-plugins/all-in-one-full"
local agent_bin_src="$root/src/agent/dist/argus-agent"
local agent_bin_dst="$aio_root/plugins/argus-agent/bin/argus-agent"
echo "\n📦 Updating all-in-one-full agent binary → $agent_bin_dst"
cp -f "$agent_bin_src" "$agent_bin_dst"
chmod +x "$agent_bin_dst" || true
pushd "$aio_root" >/dev/null
local prev_version use_version
prev_version="$(cat config/VERSION 2>/dev/null || echo "1.0.0")"
use_version="$prev_version"
if [[ -n "$client_ver_in" ]]; then
echo "$client_ver_in" > config/VERSION
use_version="$client_ver_in"
fi
echo " Packaging all-in-one-full artifact: version=$use_version"
if ! bash scripts/package_artifact.sh --force; then
echo "❌ package_artifact.sh failed" >&2
[[ -n "$client_ver_in" ]] && echo "$prev_version" > config/VERSION
popd >/dev/null
return 1
fi
local artifact_dir="$aio_root/artifact/$use_version"
local artifact_tar
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
if [[ -z "$artifact_tar" ]]; then
echo " No argus-metric_*.tar.gz found; invoking publish_artifact.sh ..."
local owner="$(id -u):$(id -g)"
if ! bash scripts/publish_artifact.sh "$use_version" --output-dir "$artifact_dir" --owner "$owner"; then
echo "❌ publish_artifact.sh failed" >&2
[[ -n "$client_ver_in" ]] && echo "$prev_version" > config/VERSION
popd >/dev/null
return 1
fi
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
fi
[[ -n "$client_ver_in" ]] && echo "$prev_version" > config/VERSION
popd >/dev/null
# 3) Stage docker build context
local bundle_ctx="$root/src/bundle/cpu-node-bundle/.build-$date_tag"
echo "\n🧰 Staging docker build context: $bundle_ctx"
rm -rf "$bundle_ctx"
mkdir -p "$bundle_ctx/bundle" "$bundle_ctx/private"
cp "$root/src/bundle/cpu-node-bundle/Dockerfile" "$bundle_ctx/"
cp "$root/src/bundle/cpu-node-bundle/node-bootstrap.sh" "$bundle_ctx/"
cp "$root/src/bundle/cpu-node-bundle/health-watcher.sh" "$bundle_ctx/"
# bundle tar
cp "$artifact_tar" "$bundle_ctx/bundle/"
# offline fluent-bit assets
if [[ -d "$root/src/log/fluent-bit/build/etc" ]]; then
cp -r "$root/src/log/fluent-bit/build/etc" "$bundle_ctx/private/"
fi
if [[ -d "$root/src/log/fluent-bit/build/packages" ]]; then
cp -r "$root/src/log/fluent-bit/build/packages" "$bundle_ctx/private/"
fi
if [[ -f "$root/src/log/fluent-bit/build/start-fluent-bit.sh" ]]; then
cp "$root/src/log/fluent-bit/build/start-fluent-bit.sh" "$bundle_ctx/private/"
fi
# 4) Build final bundle image
local image_tag="argus-sys-metric-test-node-bundle-arm64:${date_tag}"
echo "\n🔄 Building CPU Bundle image"
if build_image "CPU Bundle" "$bundle_ctx/Dockerfile" "$image_tag" "$bundle_ctx"; then
images_built+=("$image_tag")
# 为兼容现有 compose/部署,额外打无后缀别名
docker tag "$image_tag" "argus-sys-metric-test-node-bundle:${date_tag}" >/dev/null 2>&1 || true
if [[ "$want_tag_latest" == "true" ]]; then
docker tag "$image_tag" argus-sys-metric-test-node-bundle-arm64:latest >/dev/null 2>&1 || true
docker tag "$image_tag" argus-sys-metric-test-node-bundle:latest >/dev/null 2>&1 || true
fi
return 0
else
return 1
fi
}
if [[ "$build_core" == true ]]; then
if build_image "Elasticsearch" "src/log/elasticsearch/build/Dockerfile" "argus-elasticsearch-arm64:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-elasticsearch-arm64:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
echo ""
if build_image "Kibana" "src/log/kibana/build/Dockerfile" "argus-kibana-arm64:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-kibana-arm64:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
echo ""
if build_image "BIND9" "src/bind/build/Dockerfile" "argus-bind9-arm64:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-bind9-arm64:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
fi
echo ""
if [[ "$build_master" == true ]]; then
echo ""
echo "🔄 Building Master image..."
# 复用通用 build_image 函数,通过 buildx 构建 ARM64 master 镜像
if build_image "Master" "src/master/Dockerfile" "argus-master-arm64:${DEFAULT_IMAGE_TAG}" "."; then
images_built+=("argus-master-arm64:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
fi
if [[ "$build_metric" == true ]]; then
echo ""
echo "Building Metric module images..."
metric_base_images=(
"ubuntu:22.04"
"prom/prometheus:v3.5.0"
"grafana/grafana:11.1.0"
)
for base_image in "${metric_base_images[@]}"; do
if ! pull_base_image "$base_image"; then
build_failed=true
fi
done
metric_builds=(
"Metric FTP|src/metric/ftp/build/Dockerfile|argus-metric-ftp-arm64:${DEFAULT_IMAGE_TAG}|src/metric/ftp/build"
"Metric Prometheus|src/metric/prometheus/build/Dockerfile|argus-metric-prometheus-arm64:${DEFAULT_IMAGE_TAG}|src/metric/prometheus/build"
"Metric Grafana|src/metric/grafana/build/Dockerfile|argus-metric-grafana-arm64:${DEFAULT_IMAGE_TAG}|src/metric/grafana/build"
"Metric Prometheus Targets Updater|src/metric/prometheus/build/Dockerfile.targets-updater|argus-metric-prometheus-targets-updater-arm64:${DEFAULT_IMAGE_TAG}|src/metric/prometheus/build"
)
for build_spec in "${metric_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
else
build_failed=true
fi
echo ""
done
fi
# =======================================
# Sys (system tests) node images
# =======================================
if [[ "$build_sys" == true ]]; then
echo ""
echo "Building Sys node images..."
sys_base_images=(
"ubuntu:22.04"
)
# GPU 相关镜像目前仅在 x86_64 上支持ARM 上不拉取 nvidia/cuda 基础镜像
if [[ "${ARGUS_TARGET_ARCH:-}" != "arm64" ]]; then
sys_base_images+=("nvidia/cuda:12.2.2-runtime-ubuntu22.04")
fi
for base_image in "${sys_base_images[@]}"; do
if ! pull_base_image "$base_image"; then
build_failed=true
fi
done
sys_builds=(
"Sys Node|src/sys/build/node/Dockerfile|argus-sys-node-arm64:latest|."
"Sys Metric Test Node|src/sys/build/arm-cpu-node/Dockerfile|argus-sys-metric-test-node-arm64:latest|."
)
# GPU 测试节点镜像仅在 x86_64 路径构建ARM 版本暂不支持 DCGM/GPU
if [[ "${ARGUS_TARGET_ARCH:-}" != "arm64" ]]; then
sys_builds+=("Sys Metric Test GPU Node|src/sys/build/test-gpu-node/Dockerfile|argus-sys-metric-test-gpu-node:latest|.")
fi
for build_spec in "${sys_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
# 与历史 NODE_BUNDLE_IMAGE_TAG 保持兼容:为 ARM CPU 节点镜像打 bundle 别名
if [[ "$image_tag" == "argus-sys-metric-test-node-arm64:latest" ]]; then
docker tag "$image_tag" argus-sys-metric-test-node-bundle-arm64:latest >/dev/null 2>&1 || true
docker tag "$image_tag" argus-sys-metric-test-node-bundle:latest >/dev/null 2>&1 || true
fi
else
build_failed=true
fi
echo ""
done
fi
# =======================================
# Web & Alert module images
# =======================================
if [[ "$build_web" == true || "$build_alert" == true ]]; then
echo ""
echo "Building Web and Alert module images..."
# Pre-pull commonly used base images for stability
web_alert_base_images=(
"node:20"
"ubuntu:24.04"
)
for base_image in "${web_alert_base_images[@]}"; do
if ! pull_base_image "$base_image"; then
build_failed=true
fi
done
if [[ "$build_web" == true ]]; then
web_builds=(
"Web Frontend|src/web/build_tools/frontend/Dockerfile|argus-web-frontend-arm64:${DEFAULT_IMAGE_TAG}|."
"Web Proxy|src/web/build_tools/proxy/Dockerfile|argus-web-proxy-arm64:${DEFAULT_IMAGE_TAG}|."
)
for build_spec in "${web_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
else
build_failed=true
fi
echo ""
done
fi
if [[ "$build_alert" == true ]]; then
alert_builds=(
"Alertmanager|src/alert/alertmanager/build/Dockerfile|argus-alertmanager-arm64:${DEFAULT_IMAGE_TAG}|."
)
for build_spec in "${alert_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
else
build_failed=true
fi
echo ""
done
fi
fi
# =======================================
# One-click GPU bundle (direct NVIDIA base)
# =======================================
if [[ "$build_gpu_bundle" == true ]]; then
echo ""
echo "Building one-click GPU bundle image..."
if ! build_gpu_bundle_image "$bundle_date" "$cuda_ver" "$client_semver"; then
build_failed=true
fi
fi
# =======================================
# One-click CPU bundle (from ubuntu:22.04)
# =======================================
if [[ "$build_cpu_bundle" == true ]]; then
echo ""
echo "Building one-click CPU bundle image..."
if ! build_cpu_bundle_image "${bundle_date}" "${client_semver}" "${tag_latest}"; then
build_failed=true
fi
fi
# =======================================
# One-click Server/Client packaging
# =======================================
if [[ "$build_server_pkg" == true ]]; then
echo ""
echo "🧳 Building one-click Server package..."
if ! build_server_pkg_bundle "${bundle_date}"; then
build_failed=true
fi
fi
if [[ "$build_client_pkg" == true ]]; then
echo ""
echo "🧳 Building one-click Client-GPU package..."
if ! build_client_pkg_bundle "${bundle_date}" "${client_semver}" "${cuda_ver}"; then
build_failed=true
fi
fi
echo "======================================="
echo "📦 Build Summary"
echo "======================================="
if [[ ${#images_built[@]} -gt 0 ]]; then
echo "✅ Successfully built images:"
for image in "${images_built[@]}"; do
echo "$image"
done
fi
if [[ "$build_failed" == true ]]; then
echo ""
echo "❌ Some images failed to build. Please check the errors above."
exit 1
fi
if [[ "$use_intranet" == true ]]; then
echo ""
echo "🌐 Built with intranet mirror configuration"
fi
if [[ "$build_master_offline" == true ]]; then
echo ""
echo "🧳 Master offline wheels 已解压到 $master_offline_dir"
fi
echo ""
echo "🚀 Next steps:"
echo " ./build/save_images.sh --compress # 导出镜像"
echo " cd src/master/tests && MASTER_IMAGE_TAG=argus-master:offline ./scripts/00_e2e_test.sh"
echo ""

875
build/build_images_for_x64.sh
View File

@ -1,875 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
# ARGUS x86_64 Image Build Entry
# 本脚本用于在 x86_64 平台上构建 Argus 镜像,
# 逻辑与历史版本的 build/build_images.sh 保持一致。
show_help() {
cat <<'EOF'
ARGUS Unified Build System - Image Build Tool
Usage: $0 [OPTIONS]
Options:
--intranet Use intranet mirror for log/bind builds
--master-offline Build master offline image (requires src/master/offline_wheels.tar.gz)
--metric Build metric module images (ftp, prometheus, grafana, test nodes)
--no-cache Build all images without using Docker layer cache
--only LIST Comma-separated targets to build: core,master,metric,web,alert,sys,gpu_bundle,cpu_bundle,server_pkg,client_pkg,all
--version DATE Date tag used by gpu_bundle/server_pkg/client_pkg (e.g. 20251112)
--client-semver X.Y.Z Override client semver used in all-in-one-full artifact (optional)
--cuda VER CUDA runtime version for NVIDIA base (default: 12.2.2)
--tag-latest Also tag bundle image as :latest (for cpu_bundle only; default off)
-h, --help Show this help message
Examples:
$0 # Build with default sources
$0 --intranet # Build with intranet mirror
$0 --master-offline # Additionally build argus-master:offline
$0 --metric # Additionally build metric module images
$0 --intranet --master-offline --metric
EOF
}
use_intranet=false
build_core=true
build_master=true
build_master_offline=false
build_metric=true
build_web=true
build_alert=true
build_sys=true
build_gpu_bundle=false
build_cpu_bundle=false
build_server_pkg=false
build_client_pkg=false
no_cache=false
bundle_date=""
client_semver=""
cuda_ver="12.2.2"
DEFAULT_IMAGE_TAG="latest"
tag_latest=false
while [[ $# -gt 0 ]]; do
case $1 in
--intranet)
use_intranet=true
shift
;;
--master)
build_master=true
shift
;;
--master-offline)
build_master=true
build_master_offline=true
shift
;;
--metric)
build_metric=true
shift
;;
--no-cache)
no_cache=true
shift
;;
--only)
if [[ -z ${2:-} ]]; then
echo "--only requires a target list" >&2; exit 1
fi
sel="$2"; shift 2
# reset all, then enable selected
build_core=false; build_master=false; build_metric=false; build_web=false; build_alert=false; build_sys=false; build_gpu_bundle=false; build_cpu_bundle=false; build_server_pkg=false; build_client_pkg=false
IFS=',' read -ra parts <<< "$sel"
for p in "${parts[@]}"; do
case "$p" in
core) build_core=true ;;
master) build_master=true ;;
metric) build_metric=true ;;
web) build_web=true ;;
alert) build_alert=true ;;
sys) build_sys=true ;;
gpu_bundle) build_gpu_bundle=true ;;
cpu_bundle) build_cpu_bundle=true ;;
server_pkg) build_server_pkg=true; build_core=true; build_master=true; build_metric=true; build_web=true; build_alert=true ;;
client_pkg) build_client_pkg=true ;;
all) build_core=true; build_master=true; build_metric=true; build_web=true; build_alert=true; build_sys=true ;;
*) echo "Unknown --only target: $p" >&2; exit 1 ;;
esac
done
;;
--version)
if [[ -z ${2:-} ]]; then echo "--version requires a value like 20251112" >&2; exit 1; fi
bundle_date="$2"; shift 2
;;
--client-semver)
if [[ -z ${2:-} ]]; then echo "--client-semver requires a value like 1.43.0" >&2; exit 1; fi
client_semver="$2"; shift 2
;;
--cuda)
if [[ -z ${2:-} ]]; then echo "--cuda requires a value like 12.2.2" >&2; exit 1; fi
cuda_ver="$2"; shift 2
;;
--tag-latest)
tag_latest=true
shift
;;
-h|--help)
show_help
exit 0
;;
*)
echo "Unknown option: $1" >&2
show_help
exit 1
;;
esac
done
root="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
. "$root/scripts/common/build_user.sh"
declare -a build_args=()
if [[ "$use_intranet" == true ]]; then
build_args+=("--build-arg" "USE_INTRANET=true")
fi
cd "$root"
# Set default image tag policy before building
if [[ "$build_server_pkg" == true ]]; then
DEFAULT_IMAGE_TAG="${bundle_date:-latest}"
fi
# Select build user profile for pkg vs default
if [[ "$build_server_pkg" == true || "$build_client_pkg" == true ]]; then
export ARGUS_BUILD_PROFILE=pkg
fi
load_build_user
build_args+=("--build-arg" "ARGUS_BUILD_UID=${ARGUS_BUILD_UID}" "--build-arg" "ARGUS_BUILD_GID=${ARGUS_BUILD_GID}")
if [[ "$no_cache" == true ]]; then
build_args+=("--no-cache")
fi
master_root="$root/src/master"
master_offline_tar="$master_root/offline_wheels.tar.gz"
master_offline_dir="$master_root/offline_wheels"
if [[ "$build_master_offline" == true ]]; then
if [[ ! -f "$master_offline_tar" ]]; then
echo "❌ offline wheels tar not found: $master_offline_tar" >&2
echo " 请提前准备好 offline_wheels.tar.gz 后再执行 --master-offline" >&2
exit 1
fi
echo "📦 Preparing offline wheels for master (extracting $master_offline_tar)"
rm -rf "$master_offline_dir"
mkdir -p "$master_offline_dir"
tar -xzf "$master_offline_tar" -C "$master_root"
has_wheel=$(find "$master_offline_dir" -maxdepth 1 -type f -name '*.whl' -print -quit)
if [[ -z "$has_wheel" ]]; then
echo "❌ offline_wheels extraction failed或无 wheel: $master_offline_dir" >&2
exit 1
fi
fi
echo "======================================="
echo "ARGUS Unified Build System"
echo "======================================="
if [[ "$use_intranet" == true ]]; then
echo "🌐 Mode: Intranet (Using internal mirror: 10.68.64.1)"
else
echo "🌐 Mode: Public (Using default package sources)"
fi
echo "👤 Build user UID:GID -> ${ARGUS_BUILD_UID}:${ARGUS_BUILD_GID}"
echo "📁 Build context: $root"
echo ""
build_image() {
local image_name=$1
local dockerfile_path=$2
local tag=$3
local context="."
shift 3
if [[ $# -gt 0 ]]; then
context=$1
shift
fi
local extra_args=("$@")
echo "🔄 Building $image_name image..."
echo " Dockerfile: $dockerfile_path"
echo " Tag: $tag"
echo " Context: $context"
local tries=${ARGUS_BUILD_RETRIES:-3}
local delay=${ARGUS_BUILD_RETRY_DELAY:-5}
local attempt=1
while (( attempt <= tries )); do
local prefix=""
if (( attempt == tries )); then
# final attempt: disable BuildKit to avoid docker/dockerfile front-end pulls
prefix="DOCKER_BUILDKIT=0"
echo " Attempt ${attempt}/${tries} (fallback: DOCKER_BUILDKIT=0)"
else
echo " Attempt ${attempt}/${tries}"
fi
if eval $prefix docker build "${build_args[@]}" "${extra_args[@]}" -f "$dockerfile_path" -t "$tag" "$context"; then
echo "$image_name image built successfully"
return 0
fi
echo "⚠️ Build failed for $image_name (attempt ${attempt}/${tries})."
if (( attempt < tries )); then
echo " Retrying in ${delay}s..."
sleep "$delay"
fi
attempt=$((attempt+1))
done
echo "❌ Failed to build $image_name image after ${tries} attempts"
return 1
}
pull_base_image() {
local image_ref=$1
local attempts=${2:-3}
local delay=${3:-5}
# If the image already exists locally, skip pulling.
if docker image inspect "$image_ref" >/dev/null 2>&1; then
echo " Local image present; skip pull: $image_ref"
return 0
fi
for ((i=1; i<=attempts; i++)); do
echo " Pulling base image ($i/$attempts): $image_ref"
if docker pull "$image_ref" >/dev/null; then
echo " Base image ready: $image_ref"
return 0
fi
echo " Pull failed: $image_ref"
if (( i < attempts )); then
echo " Retrying in ${delay}s..."
sleep "$delay"
fi
done
echo "❌ Unable to pull base image after ${attempts} attempts: $image_ref"
return 1
}
images_built=()
build_failed=false
build_gpu_bundle_image() {
local date_tag="$1" # e.g. 20251112
local cuda_ver_local="$2" # e.g. 12.2.2
local client_ver="$3" # semver like 1.43.0
if [[ -z "$date_tag" ]]; then
echo "❌ gpu_bundle requires --version YYMMDD (e.g. 20251112)" >&2
return 1
fi
# sanitize cuda version (trim trailing dots like '12.2.')
while [[ "$cuda_ver_local" == *"." ]]; do cuda_ver_local="${cuda_ver_local%.}"; done
# Resolve effective CUDA base tag
local resolve_cuda_base_tag
resolve_cuda_base_tag() {
local want="$1" # can be 12, 12.2 or 12.2.2
local major minor patch
if [[ "$want" =~ ^([0-9]+)\.([0-9]+)\.([0-9]+)$ ]]; then
major="${BASH_REMATCH[1]}"; minor="${BASH_REMATCH[2]}"; patch="${BASH_REMATCH[3]}"
echo "nvidia/cuda:${major}.${minor}.${patch}-runtime-ubuntu22.04"; return 0
elif [[ "$want" =~ ^([0-9]+)\.([0-9]+)$ ]]; then
major="${BASH_REMATCH[1]}"; minor="${BASH_REMATCH[2]}"
# try to find best local patch for major.minor
local best
best=$(docker images --format '{{.Repository}}:{{.Tag}}' nvidia/cuda 2>/dev/null | \
grep -E "^nvidia/cuda:${major}\.${minor}\\.[0-9]+-runtime-ubuntu22\.04$" | \
sed -E 's#^nvidia/cuda:([0-9]+\.[0-9]+\.)([0-9]+)-runtime-ubuntu22\.04$#\1\2#g' | \
sort -V | tail -n1 || true)
if [[ -n "$best" ]]; then
echo "nvidia/cuda:${best}-runtime-ubuntu22.04"; return 0
fi
# fallback patch if none local
echo "nvidia/cuda:${major}.${minor}.2-runtime-ubuntu22.04"; return 0
elif [[ "$want" =~ ^([0-9]+)$ ]]; then
major="${BASH_REMATCH[1]}"
# try to find best local for this major
local best
best=$(docker images --format '{{.Repository}}:{{.Tag}}' nvidia/cuda 2>/dev/null | \
grep -E "^nvidia/cuda:${major}\\.[0-9]+\\.[0-9]+-runtime-ubuntu22\.04$" | \
sed -E 's#^nvidia/cuda:([0-9]+\.[0-9]+\.[0-9]+)-runtime-ubuntu22\.04$#\1#g' | \
sort -V | tail -n1 || true)
if [[ -n "$best" ]]; then
echo "nvidia/cuda:${best}-runtime-ubuntu22.04"; return 0
fi
echo "nvidia/cuda:${major}.2.2-runtime-ubuntu22.04"; return 0
else
# invalid format, fallback to default
echo "nvidia/cuda:12.2.2-runtime-ubuntu22.04"; return 0
fi
}
local base_image
base_image=$(resolve_cuda_base_tag "$cuda_ver_local")
echo
echo "🔧 Preparing one-click GPU bundle build"
echo " CUDA runtime base: ${base_image}"
echo " Bundle tag : ${date_tag}"
# 1) Ensure NVIDIA base image (skip pull if local)
if ! pull_base_image "$base_image"; then
# try once more with default if resolution failed
if ! pull_base_image "nvidia/cuda:12.2.2-runtime-ubuntu22.04"; then
return 1
else
base_image="nvidia/cuda:12.2.2-runtime-ubuntu22.04"
fi
fi
# 2) Build latest argus-agent from source
echo "\n🛠 Building argus-agent from src/agent"
pushd "$root/src/agent" >/dev/null
if ! bash scripts/build_binary.sh; then
echo "❌ argus-agent build failed" >&2
popd >/dev/null
return 1
fi
if [[ ! -f "dist/argus-agent" ]]; then
echo "❌ argus-agent binary missing after build" >&2
popd >/dev/null
return 1
fi
popd >/dev/null
# 3) Inject agent into all-in-one-full plugin and package artifact
local aio_root="$root/src/metric/client-plugins/all-in-one-full"
local agent_bin_src="$root/src/agent/dist/argus-agent"
local agent_bin_dst="$aio_root/plugins/argus-agent/bin/argus-agent"
echo "\n📦 Updating all-in-one-full agent binary → $agent_bin_dst"
cp -f "$agent_bin_src" "$agent_bin_dst"
chmod +x "$agent_bin_dst" || true
pushd "$aio_root" >/dev/null
local prev_version
prev_version="$(cat config/VERSION 2>/dev/null || echo "1.0.0")"
local use_version="$prev_version"
if [[ -n "$client_semver" ]]; then
echo "${client_semver}" > config/VERSION
use_version="$client_semver"
fi
echo " Packaging all-in-one-full artifact version: $use_version"
if ! bash scripts/package_artifact.sh --force; then
echo "❌ package_artifact.sh failed" >&2
# restore VERSION if changed
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
return 1
fi
local artifact_dir="$aio_root/artifact/$use_version"
local artifact_tar
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
if [[ -z "$artifact_tar" ]]; then
echo " No argus-metric_*.tar.gz found; invoking publish_artifact.sh to assemble..."
local owner="$(id -u):$(id -g)"
if ! bash scripts/publish_artifact.sh "$use_version" --output-dir "$artifact_dir" --owner "$owner"; then
echo "❌ publish_artifact.sh failed" >&2
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
return 1
fi
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
fi
if [[ -z "$artifact_tar" ]]; then
echo "❌ artifact tar not found under $artifact_dir" >&2
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
return 1
fi
# restore VERSION if changed (keep filesystem clean)
if [[ -n "$client_semver" ]]; then echo "$prev_version" > config/VERSION; fi
popd >/dev/null
# 4) Stage docker build context
local bundle_ctx="$root/src/bundle/gpu-node-bundle/.build-$date_tag"
echo "\n🧰 Staging docker build context: $bundle_ctx"
rm -rf "$bundle_ctx"
mkdir -p "$bundle_ctx/bundle" "$bundle_ctx/private"
cp "$root/src/bundle/gpu-node-bundle/Dockerfile" "$bundle_ctx/"
cp "$root/src/bundle/gpu-node-bundle/node-bootstrap.sh" "$bundle_ctx/"
cp "$root/src/bundle/gpu-node-bundle/health-watcher.sh" "$bundle_ctx/"
# bundle tar
cp "$artifact_tar" "$bundle_ctx/bundle/"
# offline fluent-bit assets (optional but useful)
if [[ -d "$root/src/log/fluent-bit/build/etc" ]]; then
cp -r "$root/src/log/fluent-bit/build/etc" "$bundle_ctx/private/"
fi
if [[ -d "$root/src/log/fluent-bit/build/packages" ]]; then
cp -r "$root/src/log/fluent-bit/build/packages" "$bundle_ctx/private/"
fi
if [[ -f "$root/src/log/fluent-bit/build/start-fluent-bit.sh" ]]; then
cp "$root/src/log/fluent-bit/build/start-fluent-bit.sh" "$bundle_ctx/private/"
fi
# 5) Build the final bundle image (directly from NVIDIA base)
local image_tag="argus-sys-metric-test-node-bundle-gpu:${date_tag}"
echo "\n🔄 Building GPU Bundle image"
if build_image "GPU Bundle" "$bundle_ctx/Dockerfile" "$image_tag" "$bundle_ctx" \
--build-arg CUDA_VER="$(echo "$base_image" | sed -E 's#^nvidia/cuda:([0-9]+\.[0-9]+\.[0-9]+)-runtime-ubuntu22\.04$#\1#')" \
--build-arg CLIENT_VER="$use_version" \
--build-arg BUNDLE_DATE="$date_tag"; then
images_built+=("$image_tag")
# In non-pkg mode, also tag latest for convenience
if [[ "${ARGUS_PKG_BUILD:-0}" != "1" ]]; then
docker tag "$image_tag" argus-sys-metric-test-node-bundle-gpu:latest >/dev/null 2>&1 || true
fi
return 0
else
return 1
fi
}
# Tag helper: ensure :<date_tag> exists for a list of repos
ensure_version_tags() {
local date_tag="$1"; shift
local repos=("$@")
for repo in "${repos[@]}"; do
if docker image inspect "$repo:$date_tag" >/dev/null 2>&1; then
:
elif docker image inspect "$repo:latest" >/dev/null 2>&1; then
docker tag "$repo:latest" "$repo:$date_tag" || true
else
echo "❌ missing image for tagging: $repo (need :latest or :$date_tag)" >&2
return 1
fi
done
return 0
}
# Build server package after images are built
build_server_pkg_bundle() {
local date_tag="$1"
if [[ -z "$date_tag" ]]; then
echo "❌ server_pkg requires --version YYMMDD" >&2
return 1
fi
local repos=(
argus-bind9 argus-master argus-elasticsearch argus-kibana \
argus-metric-ftp argus-metric-prometheus argus-metric-grafana \
argus-alertmanager argus-web-frontend argus-web-proxy
)
echo "\n🔖 Verifying server images with :$date_tag and collecting digests"
for repo in "${repos[@]}"; do
if ! docker image inspect "$repo:$date_tag" >/dev/null 2>&1; then
echo "❌ required image missing: $repo:$date_tag (build phase should have produced it)" >&2
return 1
fi
done
# Optional: show digests
for repo in "${repos[@]}"; do
local digest
digest=$(docker images --digests --format '{{.Repository}}:{{.Tag}} {{.Digest}}' | awk -v r="$repo:$date_tag" '$1==r{print $2}' | head -n1)
printf ' • %s@%s\n' "$repo:$date_tag" "${digest:-<none>}"
done
echo "\n📦 Building server package via deployment_new/build/make_server_package.sh --version $date_tag"
if ! "$root/deployment_new/build/make_server_package.sh" --version "$date_tag"; then
echo "❌ make_server_package.sh failed" >&2
return 1
fi
return 0
}
# Build client package: ensure gpu bundle image exists, then package client_gpu
build_client_pkg_bundle() {
local date_tag="$1"
local semver="$2"
local cuda="$3"
if [[ -z "$date_tag" ]]; then
echo "❌ client_pkg requires --version YYMMDD" >&2
return 1
fi
local bundle_tag="argus-sys-metric-test-node-bundle-gpu:${date_tag}"
if ! docker image inspect "$bundle_tag" >/dev/null 2>&1; then
echo "\n🧩 GPU bundle image $bundle_tag missing; building it first..."
ARGUS_PKG_BUILD=1
export ARGUS_PKG_BUILD
if ! build_gpu_bundle_image "$date_tag" "$cuda" "$semver"; then
return 1
fi
else
echo "\n✅ Using existing GPU bundle image: $bundle_tag"
fi
echo "\n📦 Building client GPU package via deployment_new/build/make_client_gpu_package.sh --version $date_tag --image $bundle_tag"
if ! "$root/deployment_new/build/make_client_gpu_package.sh" --version "$date_tag" --image "$bundle_tag"; then
echo "❌ make_client_gpu_package.sh failed" >&2
return 1
fi
return 0
}
# Build CPU bundle image directly FROM ubuntu:22.04 (no intermediate base)
build_cpu_bundle_image() {
local date_tag="$1" # e.g. 20251113
local client_ver_in="$2" # semver like 1.43.0 (optional)
local want_tag_latest="$3" # true/false
if [[ -z "$date_tag" ]]; then
echo "❌ cpu_bundle requires --version YYMMDD" >&2
return 1
fi
echo "\n🔧 Preparing one-click CPU bundle build"
echo " Base: ubuntu:22.04"
echo " Bundle tag: ${date_tag}"
# 1) Build latest argus-agent from source
echo "\n🛠 Building argus-agent from src/agent"
pushd "$root/src/agent" >/dev/null
if ! bash scripts/build_binary.sh; then
echo "❌ argus-agent build failed" >&2
popd >/dev/null
return 1
fi
if [[ ! -f "dist/argus-agent" ]]; then
echo "❌ argus-agent binary missing after build" >&2
popd >/dev/null
return 1
fi
popd >/dev/null
# 2) Inject agent into all-in-one-full plugin and package artifact
local aio_root="$root/src/metric/client-plugins/all-in-one-full"
local agent_bin_src="$root/src/agent/dist/argus-agent"
local agent_bin_dst="$aio_root/plugins/argus-agent/bin/argus-agent"
echo "\n📦 Updating all-in-one-full agent binary → $agent_bin_dst"
cp -f "$agent_bin_src" "$agent_bin_dst"
chmod +x "$agent_bin_dst" || true
pushd "$aio_root" >/dev/null
local prev_version use_version
prev_version="$(cat config/VERSION 2>/dev/null || echo "1.0.0")"
use_version="$prev_version"
if [[ -n "$client_ver_in" ]]; then
echo "$client_ver_in" > config/VERSION
use_version="$client_ver_in"
fi
echo " Packaging all-in-one-full artifact: version=$use_version"
if ! bash scripts/package_artifact.sh --force; then
echo "❌ package_artifact.sh failed" >&2
[[ -n "$client_ver_in" ]] && echo "$prev_version" > config/VERSION
popd >/dev/null
return 1
fi
local artifact_dir="$aio_root/artifact/$use_version"
local artifact_tar
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
if [[ -z "$artifact_tar" ]]; then
echo " No argus-metric_*.tar.gz found; invoking publish_artifact.sh ..."
local owner="$(id -u):$(id -g)"
if ! bash scripts/publish_artifact.sh "$use_version" --output-dir "$artifact_dir" --owner "$owner"; then
echo "❌ publish_artifact.sh failed" >&2
[[ -n "$client_ver_in" ]] && echo "$prev_version" > config/VERSION
popd >/dev/null
return 1
fi
artifact_tar="$(ls -1 "$artifact_dir"/argus-metric_*.tar.gz 2>/dev/null | head -n1 || true)"
fi
[[ -n "$client_ver_in" ]] && echo "$prev_version" > config/VERSION
popd >/dev/null
# 3) Stage docker build context
local bundle_ctx="$root/src/bundle/cpu-node-bundle/.build-$date_tag"
echo "\n🧰 Staging docker build context: $bundle_ctx"
rm -rf "$bundle_ctx"
mkdir -p "$bundle_ctx/bundle" "$bundle_ctx/private"
cp "$root/src/bundle/cpu-node-bundle/Dockerfile" "$bundle_ctx/"
cp "$root/src/bundle/cpu-node-bundle/node-bootstrap.sh" "$bundle_ctx/"
cp "$root/src/bundle/cpu-node-bundle/health-watcher.sh" "$bundle_ctx/"
# bundle tar
cp "$artifact_tar" "$bundle_ctx/bundle/"
# offline fluent-bit assets
if [[ -d "$root/src/log/fluent-bit/build/etc" ]]; then
cp -r "$root/src/log/fluent-bit/build/etc" "$bundle_ctx/private/"
fi
if [[ -d "$root/src/log/fluent-bit/build/packages" ]]; then
cp -r "$root/src/log/fluent-bit/build/packages" "$bundle_ctx/private/"
fi
if [[ -f "$root/src/log/fluent-bit/build/start-fluent-bit.sh" ]]; then
cp "$root/src/log/fluent-bit/build/start-fluent-bit.sh" "$bundle_ctx/private/"
fi
# 4) Build final bundle image
local image_tag="argus-sys-metric-test-node-bundle:${date_tag}"
echo "\n🔄 Building CPU Bundle image"
if build_image "CPU Bundle" "$bundle_ctx/Dockerfile" "$image_tag" "$bundle_ctx"; then
images_built+=("$image_tag")
if [[ "$want_tag_latest" == "true" ]]; then
docker tag "$image_tag" argus-sys-metric-test-node-bundle:latest >/dev/null 2>&1 || true
fi
return 0
else
return 1
fi
}
if [[ "$build_core" == true ]]; then
if build_image "Elasticsearch" "src/log/elasticsearch/build/Dockerfile" "argus-elasticsearch:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-elasticsearch:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
echo ""
if build_image "Kibana" "src/log/kibana/build/Dockerfile" "argus-kibana:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-kibana:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
echo ""
if build_image "BIND9" "src/bind/build/Dockerfile" "argus-bind9:${DEFAULT_IMAGE_TAG}"; then
images_built+=("argus-bind9:${DEFAULT_IMAGE_TAG}")
else
build_failed=true
fi
fi
echo ""
if [[ "$build_master" == true ]]; then
echo ""
echo "🔄 Building Master image..."
pushd "$master_root" >/dev/null
master_args=("--tag" "argus-master:${DEFAULT_IMAGE_TAG}")
if [[ "$use_intranet" == true ]]; then
master_args+=("--intranet")
fi
if [[ "$build_master_offline" == true ]]; then
master_args+=("--offline")
fi
if [[ "$no_cache" == true ]]; then
master_args+=("--no-cache")
fi
if ./scripts/build_images.sh "${master_args[@]}"; then
if [[ "$build_master_offline" == true ]]; then
images_built+=("argus-master:offline")
else
images_built+=("argus-master:${DEFAULT_IMAGE_TAG}")
fi
else
build_failed=true
fi
popd >/dev/null
fi
if [[ "$build_metric" == true ]]; then
echo ""
echo "Building Metric module images..."
metric_base_images=(
"ubuntu:22.04"
"ubuntu/prometheus:3-24.04_stable"
"grafana/grafana:11.1.0"
)
for base_image in "${metric_base_images[@]}"; do
if ! pull_base_image "$base_image"; then
build_failed=true
fi
done
metric_builds=(
"Metric FTP|src/metric/ftp/build/Dockerfile|argus-metric-ftp:${DEFAULT_IMAGE_TAG}|src/metric/ftp/build"
"Metric Prometheus|src/metric/prometheus/build/Dockerfile|argus-metric-prometheus:${DEFAULT_IMAGE_TAG}|src/metric/prometheus/build"
"Metric Grafana|src/metric/grafana/build/Dockerfile|argus-metric-grafana:${DEFAULT_IMAGE_TAG}|src/metric/grafana/build"
"Metric Prometheus Targets Updater|src/metric/prometheus/build/Dockerfile.targets-updater|argus-metric-prometheus-targets-updater:${DEFAULT_IMAGE_TAG}|src/metric/prometheus/build"
)
for build_spec in "${metric_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
else
build_failed=true
fi
echo ""
done
fi
# =======================================
# Sys (system tests) node images
# =======================================
if [[ "$build_sys" == true ]]; then
echo ""
echo "Building Sys node images..."
sys_base_images=(
"ubuntu:22.04"
"nvidia/cuda:12.2.2-runtime-ubuntu22.04"
)
for base_image in "${sys_base_images[@]}"; do
if ! pull_base_image "$base_image"; then
build_failed=true
fi
done
sys_builds=(
"Sys Node|src/sys/build/node/Dockerfile|argus-sys-node:latest|."
"Sys Metric Test Node|src/sys/build/test-node/Dockerfile|argus-sys-metric-test-node:latest|."
"Sys Metric Test GPU Node|src/sys/build/test-gpu-node/Dockerfile|argus-sys-metric-test-gpu-node:latest|."
)
for build_spec in "${sys_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
else
build_failed=true
fi
echo ""
done
fi
# =======================================
# Web & Alert module images
# =======================================
if [[ "$build_web" == true || "$build_alert" == true ]]; then
echo ""
echo "Building Web and Alert module images..."
# Pre-pull commonly used base images for stability
web_alert_base_images=(
"node:20"
"ubuntu:24.04"
)
for base_image in "${web_alert_base_images[@]}"; do
if ! pull_base_image "$base_image"; then
build_failed=true
fi
done
if [[ "$build_web" == true ]]; then
web_builds=(
"Web Frontend|src/web/build_tools/frontend/Dockerfile|argus-web-frontend:${DEFAULT_IMAGE_TAG}|."
"Web Proxy|src/web/build_tools/proxy/Dockerfile|argus-web-proxy:${DEFAULT_IMAGE_TAG}|."
)
for build_spec in "${web_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
else
build_failed=true
fi
echo ""
done
fi
if [[ "$build_alert" == true ]]; then
alert_builds=(
"Alertmanager|src/alert/alertmanager/build/Dockerfile|argus-alertmanager:${DEFAULT_IMAGE_TAG}|."
)
for build_spec in "${alert_builds[@]}"; do
IFS='|' read -r image_label dockerfile_path image_tag build_context <<< "$build_spec"
if build_image "$image_label" "$dockerfile_path" "$image_tag" "$build_context"; then
images_built+=("$image_tag")
else
build_failed=true
fi
echo ""
done
fi
fi
# =======================================
# One-click GPU bundle (direct NVIDIA base)
# =======================================
if [[ "$build_gpu_bundle" == true ]]; then
echo ""
echo "Building one-click GPU bundle image..."
if ! build_gpu_bundle_image "$bundle_date" "$cuda_ver" "$client_semver"; then
build_failed=true
fi
fi
# =======================================
# One-click CPU bundle (from ubuntu:22.04)
# =======================================
if [[ "$build_cpu_bundle" == true ]]; then
echo ""
echo "Building one-click CPU bundle image..."
if ! build_cpu_bundle_image "${bundle_date}" "${client_semver}" "${tag_latest}"; then
build_failed=true
fi
fi
# =======================================
# One-click Server/Client packaging
# =======================================
if [[ "$build_server_pkg" == true ]]; then
echo ""
echo "🧳 Building one-click Server package..."
if ! build_server_pkg_bundle "${bundle_date}"; then
build_failed=true
fi
fi
if [[ "$build_client_pkg" == true ]]; then
echo ""
echo "🧳 Building one-click Client-GPU package..."
if ! build_client_pkg_bundle "${bundle_date}" "${client_semver}" "${cuda_ver}"; then
build_failed=true
fi
fi
echo "======================================="
echo "📦 Build Summary"
echo "======================================="
if [[ ${#images_built[@]} -gt 0 ]]; then
echo "✅ Successfully built images:"
for image in "${images_built[@]}"; do
echo "$image"
done
fi
if [[ "$build_failed" == true ]]; then
echo ""
echo "❌ Some images failed to build. Please check the errors above."
exit 1
fi
if [[ "$use_intranet" == true ]]; then
echo ""
echo "🌐 Built with intranet mirror configuration"
fi
if [[ "$build_master_offline" == true ]]; then
echo ""
echo "🧳 Master offline wheels 已解压到 $master_offline_dir"
fi
echo ""
echo "🚀 Next steps:"
echo " ./build/save_images.sh --compress # 导出镜像"
echo " cd src/master/tests && MASTER_IMAGE_TAG=argus-master:offline ./scripts/00_e2e_test.sh"
echo ""

9
deployment_new/build/make_client_gpu_package.sh
View File

@ -82,16 +82,13 @@ AGENT_USER=
AGENT_INSTANCE=
GPU_NODE_HOSTNAME=
# Overlay network (should match server包 overlay)
ARGUS_OVERLAY_NET=argus-sys-net
# From cluster-info.env (server package output)
BINDIP=
FTPIP=
SWARM_MANAGER_ADDR=
SWARM_JOIN_TOKEN_WORKER=
SWARM_JOIN_TOKEN_MANAGER=
# FTP defaults
FTP_USER=ftpuser
FTP_PASSWORD=NASPlab1234!
EOF
# 4) Docs from deployment_new templates

9
deployment_new/build/make_server_package.sh
View File

@ -33,11 +33,9 @@ if [[ -z "$VERSION" ]]; then VERSION="$(today_version)"; fi
require_cmd docker tar gzip awk sed
IMAGES=(
argus-bind9
argus-master
argus-elasticsearch
argus-kibana
argus-metric-ftp
argus-metric-prometheus
argus-metric-grafana
argus-alertmanager
@ -73,11 +71,9 @@ cat >"$ENV_EX" <<EOF
PKG_VERSION=$VERSION
# Image tags (can be overridden). Default to versioned tags
BIND_IMAGE_TAG=argus-bind9:
MASTER_IMAGE_TAG=argus-master:
ES_IMAGE_TAG=argus-elasticsearch:
KIBANA_IMAGE_TAG=argus-kibana:
FTP_IMAGE_TAG=argus-metric-ftp:
PROM_IMAGE_TAG=argus-metric-prometheus:
GRAFANA_IMAGE_TAG=argus-metric-grafana:
ALERT_IMAGE_TAG=argus-alertmanager:
@ -106,10 +102,6 @@ WEB_PROXY_PORT_8085=8085
# Overlay network name
ARGUS_OVERLAY_NET=argus-sys-net
# FTP defaults
FTP_USER=ftpuser
FTP_PASSWORD=NASPlab1234!
# UID/GID for volume ownership
ARGUS_BUILD_UID=2133
ARGUS_BUILD_GID=2015
@ -148,7 +140,6 @@ mkdir -p \
"$STAGE/private/argus/metric/grafana/data/sessions" \
"$STAGE/private/argus/metric/grafana/data/dashboards" \
"$STAGE/private/argus/metric/grafana/config" \
"$STAGE/private/argus/metric/ftp" \
"$STAGE/private/argus/alert/alertmanager" \
"$STAGE/private/argus/log/elasticsearch" \
"$STAGE/private/argus/log/kibana"

6
deployment_new/templates/server/compose/docker-compose.yml
View File

@ -9,9 +9,9 @@ services:
image: ${MASTER_IMAGE_TAG:-argus-master:${PKG_VERSION}}
container_name: argus-master-sys
environment:
- OFFLINE_THRESHOLD_SECONDS=180
- ONLINE_THRESHOLD_SECONDS=120
- SCHEDULER_INTERVAL_SECONDS=30
- OFFLINE_THRESHOLD_SECONDS=6
- ONLINE_THRESHOLD_SECONDS=2
- SCHEDULER_INTERVAL_SECONDS=1
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
ports:

8
deployment_new/templates/server/docs/INSTALL_SERVER_zh.md
View File

@ -44,7 +44,7 @@ export SWARM_MANAGER_ADDR=<本机管理IP>
脚本做了什么:
- 检查依赖与磁盘空间;
- 自动从“端口 20000 起”分配所有服务端口,确保“系统未占用”且“彼此不冲突”;
- 写入 `compose/.env`(包含端口、镜像 tag、FTP 账号、overlay 名称等);
- 写入 `compose/.env`(包含端口、镜像 tag、overlay 名称与 UID/GID 等);
- 将当前执行账户的 UID/GID 写入 `ARGUS_BUILD_UID/GID`(若主组名是 docker会改用“与用户名同名的组”的 GID避免拿到 docker 组 999
- 更新/追加 `cluster-info.env` 中的 `SWARM_MANAGER_ADDR`(不会覆盖其他键)。
@ -70,7 +70,7 @@ export SWARM_MANAGER_ADDR=<本机管理IP>
- `docker compose up -d` 启动服务;
- 等待“六项就绪”:
- Master `/readyz`=200、ES `/_cluster/health`=200、Prometheus TCP 可达、Grafana `/api/health`=200、Alertmanager `/api/v2/status`=200、Kibana `/api/status` level=available
- 将各服务 overlay IP 写入 `private/argus/etc/<域名>`Reload Bind9 与 Nginx
- 校验 Docker DNS + overlay alias`argus-web-proxy` 内通过 `getent hosts``curl` 检查 `master.argus.com``grafana.metric.argus.com` 等域名连通性
- 写出 `cluster-info.env`(含 `SWARM_JOIN_TOKEN_{WORKER,MANAGER}/SWARM_MANAGER_ADDR`compose 架构下不再依赖 BINDIP/FTPIP
- 生成 `安装报告_YYYYMMDD-HHMMSS.md`(端口、健康检查摘要与提示)。
@ -86,7 +86,7 @@ export SWARM_MANAGER_ADDR=<本机管理IP>
## 五、健康自检与常用操作
- 健康自检:`./scripts/selfcheck.sh`
- 期望输出:`selfcheck OK -> logs/selfcheck.json`
- 文件 `logs/selfcheck.json``overlay_net/es/kibana/master_readyz/ftp_share_writable/prometheus/grafana/alertmanager/web_proxy_cors` 为 true。
- 文件 `logs/selfcheck.json``overlay_net/es/kibana/master_readyz/prometheus/grafana/alertmanager/web_proxy_cors` 为 true。
- 状态:`./scripts/status.sh`(相当于 `docker compose ps`)。
- 诊断:`./scripts/diagnose.sh`(收集容器/HTTP/CORS/ES 细节,输出到 `logs/diagnose_*.log`)。
- 卸载:`./scripts/uninstall.sh`Compose down
@ -97,6 +97,6 @@ export SWARM_MANAGER_ADDR=<本机管理IP>
- 对方在 Client 机器的包根放置该文件(或设置 `CLUSTER_INFO=/绝对路径`)即可。
## 七、故障排查快览
- Proxy 502 或 8080 连接复位:多因 Bind 域名未更新到 overlay IP重跑 `install.sh`(会写入私有域名文件并 reload或查看 `logs/diagnose_error.log`
- Proxy 502 或 8080 连接复位:通常是 overlay alias 未生效或 web-proxy 尚未解析到其它服务;重跑 `install.sh`(会重启栈并在容器内校验 DNS或查看 `logs/diagnose_error.log`
- Kibana 不 available等待 12 分钟、查看 `argus-kibana-sys` 日志;
- cluster-info.env 的 SWARM_MANAGER_ADDR 为空:重新 `export SWARM_MANAGER_ADDR=<IP>; ./scripts/config.sh``./scripts/install.sh`(会回读 `.env` 补写)。

3
deployment_new/templates/server/scripts/config.sh
View File

@ -70,9 +70,6 @@ done
info "已写入 compose/.env 的端口配置"
# 覆盖/补充 Overlay 名称
grep -q '^ARGUS_OVERLAY_NET=' "$ENV_OUT" || echo 'ARGUS_OVERLAY_NET=argus-sys-net' >> "$ENV_OUT"
# FTP 默认
grep -q '^FTP_USER=' "$ENV_OUT" || echo 'FTP_USER=ftpuser' >> "$ENV_OUT"
grep -q '^FTP_PASSWORD=' "$ENV_OUT" || echo 'FTP_PASSWORD=NASPlab1234!' >> "$ENV_OUT"
# 以当前执行账户 UID/GID 写入(避免误选 docker 组)
RUID=$(id -u)
PRIMARY_GID=$(id -g)

5
deployment_new/templates/server/scripts/diagnose.sh
View File

@ -40,11 +40,9 @@ svc() {
fi
}
svc bind argus-bind-sys
svc master argus-master-sys
svc es argus-es-sys
svc kibana argus-kibana-sys
svc ftp argus-ftp
svc prometheus argus-prometheus
svc grafana argus-grafana
svc alertmanager argus-alertmanager
@ -84,9 +82,6 @@ logd "HTTP (web-proxy): master.readyz=$(docker exec argus-web-proxy sh -lc \"cur
logd "HTTP (web-proxy): es.health=$(docker exec argus-web-proxy sh -lc \"curl -s -o /dev/null -w '%{http_code}' http://es.log.argus.com:9200/_cluster/health\" 2>/dev/null || echo 000)"
logd "HTTP (web-proxy): kibana.status=$(docker exec argus-web-proxy sh -lc \"curl -s -o /dev/null -w '%{http_code}' http://kibana.log.argus.com:5601/api/status\" 2>/dev/null || echo 000)"
section FTP-SHARE
docker exec argus-ftp sh -lc 'ls -ld /private/argus/ftp /private/argus/ftp/share; test -w /private/argus/ftp/share && echo "write:OK" || echo "write:FAIL"' >> "$DETAILS" 2>&1 || true
section SYSTEM
logd "uname -a:"; uname -a >> "$DETAILS"
logd "docker version:"; docker version --format '{{.Server.Version}}' >> "$DETAILS" 2>&1 || true

6
deployment_new/templates/server/scripts/selfcheck.sh
View File

@ -40,11 +40,6 @@ fi
log "checking Master"
[[ $(code_for "http://localhost:${MASTER_PORT:-32300}/readyz") == 200 ]] || ok=0
log "checking FTP"
if docker ps --format '{{.Names}}' | grep -q '^argus-ftp$'; then
docker exec argus-ftp sh -lc 'test -w /private/argus/ftp/share' >/dev/null 2>&1 || ok=0
else ok=0; fi
log "checking Prometheus"
wait_http "http://localhost:${PROMETHEUS_PORT:-9090}/-/ready" 60 || ok=0
@ -69,7 +64,6 @@ cat > "$tmp" <<JSON
"es": true,
"kibana": $kb_ok,
"master_readyz": true,
"ftp_share_writable": true,
"prometheus": true,
"grafana": $gf_ok,
"alertmanager": true,

9
src/alert/alertmanager/build/Dockerfile
View File

@ -11,13 +11,12 @@ RUN apt-get update && \
# 设置 Alertmanager 版本(与本地离线包保持一致)
ARG ALERTMANAGER_VERSION=0.28.1
ARG ALERTMANAGER_ARCH=amd64
# 使用仓库内预置的离线包构建(无需联网)
COPY src/alert/alertmanager/build/alertmanager-${ALERTMANAGER_VERSION}.linux-${ALERTMANAGER_ARCH}.tar.gz /tmp/
RUN tar xvf /tmp/alertmanager-${ALERTMANAGER_VERSION}.linux-${ALERTMANAGER_ARCH}.tar.gz -C /tmp && \
mv /tmp/alertmanager-${ALERTMANAGER_VERSION}.linux-${ALERTMANAGER_ARCH} /usr/local/alertmanager && \
rm -f /tmp/alertmanager-${ALERTMANAGER_VERSION}.linux-${ALERTMANAGER_ARCH}.tar.gz
COPY src/alert/alertmanager/build/alertmanager-${ALERTMANAGER_VERSION}.linux-amd64.tar.gz /tmp/
RUN tar xvf /tmp/alertmanager-${ALERTMANAGER_VERSION}.linux-amd64.tar.gz -C /tmp && \
mv /tmp/alertmanager-${ALERTMANAGER_VERSION}.linux-amd64 /usr/local/alertmanager && \
rm -f /tmp/alertmanager-${ALERTMANAGER_VERSION}.linux-amd64.tar.gz
ENV ALERTMANAGER_BASE_PATH=/private/argus/alert/alertmanager

5
src/alert/alertmanager/build/fetch-dist.sh
View File

@ -6,11 +6,9 @@ set -euo pipefail
# ./fetch-dist.sh [version]
# 示例:
# ./fetch-dist.sh 0.28.1
# ARCH=arm64 ./fetch-dist.sh 0.28.1
VER="${1:-0.28.1}"
ARCH="${ARCH:-amd64}" # amd64 或 arm64
OUT="alertmanager-${VER}.linux-${ARCH}.tar.gz"
OUT="alertmanager-${VER}.linux-amd64.tar.gz"
URL="https://github.com/prometheus/alertmanager/releases/download/v${VER}/${OUT}"
if [[ -f "$OUT" ]]; then
@ -21,3 +19,4 @@ fi
echo "[INFO] Downloading $URL"
curl -fL --retry 3 --connect-timeout 10 -o "$OUT" "$URL"
echo "[OK] Saved to $(pwd)/$OUT"

76
src/log/elasticsearch/build/Dockerfile.arm64
View File

@ -1,76 +0,0 @@
FROM docker.elastic.co/elasticsearch/elasticsearch:8.17.10
# 切换到 root 用户进行系统级安装
USER root
ARG ARGUS_BUILD_UID=2133
ARG ARGUS_BUILD_GID=2015
ENV ARGUS_BUILD_UID=${ARGUS_BUILD_UID} \
ARGUS_BUILD_GID=${ARGUS_BUILD_GID}
# 调整 elasticsearch 用户与用户组 ID 以匹配宿主机配置
RUN set -eux; \
current_gid="$(getent group elasticsearch | awk -F: '{print $3}')"; \
if [ -z "$current_gid" ]; then \
groupadd -g "${ARGUS_BUILD_GID}" elasticsearch; \
elif [ "$current_gid" != "${ARGUS_BUILD_GID}" ]; then \
groupmod -g "${ARGUS_BUILD_GID}" elasticsearch; \
fi; \
if id elasticsearch >/dev/null 2>&1; then \
current_uid="$(id -u elasticsearch)"; \
if [ "$current_uid" != "${ARGUS_BUILD_UID}" ]; then \
usermod -u "${ARGUS_BUILD_UID}" elasticsearch; \
fi; \
else \
useradd -m -u "${ARGUS_BUILD_UID}" -g "${ARGUS_BUILD_GID}" elasticsearch; \
fi; \
chown -R "${ARGUS_BUILD_UID}:${ARGUS_BUILD_GID}" /usr/share/elasticsearch
# 设置构建参数
ARG USE_INTRANET=false
# 配置内网 apt 源 (如果指定了内网选项)
RUN if [ "$USE_INTRANET" = "true" ]; then \
echo "Configuring intranet apt sources..." && \
cp /etc/apt/sources.list /etc/apt/sources.list.bak && \
echo "deb [trusted=yes] http://10.68.64.1/ubuntu2204/ jammy main" > /etc/apt/sources.list && \
echo 'Acquire::https::Verify-Peer "false";' > /etc/apt/apt.conf.d/99disable-ssl-check && \
echo 'Acquire::https::Verify-Host "false";' >> /etc/apt/apt.conf.d/99disable-ssl-check; \
fi
# 安装 supervisor, net-tools, vim
RUN apt-get update && \
apt-get install -y supervisor net-tools inetutils-ping vim && \
apt-get clean && \
rm -rf /var/lib/apt/lists/*
# 配置部署时使用的apt源
RUN if [ "$USE_INTRANET" = "true" ]; then \
echo "deb [trusted=yes] https://10.92.132.52/mirrors/ubuntu2204/ jammy main" > /etc/apt/sources.list; \
fi
# 创建 supervisor 日志目录
RUN mkdir -p /var/log/supervisor
# 复制 supervisor 配置文件
COPY src/log/elasticsearch/build/supervisord.conf /etc/supervisor/conf.d/supervisord.conf
# 复制启动脚本
COPY src/log/elasticsearch/build/start-es-supervised.sh /usr/local/bin/start-es-supervised.sh
RUN chmod +x /usr/local/bin/start-es-supervised.sh
# 复制DNS监控脚本
COPY src/log/elasticsearch/build/dns-monitor.sh /usr/local/bin/dns-monitor.sh
RUN chmod +x /usr/local/bin/dns-monitor.sh
# 保持 root 用户,由 supervisor 管理用户切换
USER root
# 暴露端口
EXPOSE 9200 9300
# 使用 supervisor 作为入口点
CMD ["/usr/bin/supervisord", "-c", "/etc/supervisor/conf.d/supervisord.conf"]

12
src/log/fluent-bit/build/start-fluent-bit.sh
View File

@ -38,16 +38,14 @@ ensure_lib() {
ldconfig 2>/dev/null || true
}
DEB_ARCH="${DEB_ARCH:-$(dpkg --print-architecture 2>/dev/null || echo amd64)}"
# Offline-first: satisfy runtime deps from local debs, fallback to apt only if necessary
ensure_lib "libpq.so.5" "libpq5_*_${DEB_ARCH}.deb"
ensure_lib "libyaml-0.so.2" "libyaml-0-2_*_${DEB_ARCH}.deb"
ensure_lib "libsasl2.so.2" "libsasl2-2_*_${DEB_ARCH}.deb"
ensure_lib "libldap-2.5.so.0" "libldap-2.5-0_*_${DEB_ARCH}.deb"
ensure_lib "libpq.so.5" "libpq5_*_amd64.deb"
ensure_lib "libyaml-0.so.2" "libyaml-0-2_*_amd64.deb"
ensure_lib "libsasl2.so.2" "libsasl2-2_*_amd64.deb"
ensure_lib "libldap-2.5.so.0" "libldap-2.5-0_*_amd64.deb"
# Install fluent-bit main package from local bundle
FLB_DEB="$(ls /tmp/flb/packages/fluent-bit_*_${DEB_ARCH}.deb 2>/dev/null | head -n1 || true)"
FLB_DEB="$(ls /tmp/flb/packages/fluent-bit_*_amd64.deb 2>/dev/null | head -n1 || true)"
if [[ -z "$FLB_DEB" ]]; then
echo "[ERROR] fluent-bit deb not found under /private/packages" >&2
exit 1

80
src/log/kibana/build/Dockerfile.arm64
View File

@ -1,80 +0,0 @@
FROM docker.elastic.co/kibana/kibana:8.17.10
# 切换到 root 用户进行系统级安装
USER root
ARG ARGUS_BUILD_UID=2133
ARG ARGUS_BUILD_GID=2015
ENV ARGUS_BUILD_UID=${ARGUS_BUILD_UID} \
ARGUS_BUILD_GID=${ARGUS_BUILD_GID}
# 调整 kibana 用户与用户组 ID 以匹配宿主机配置
RUN set -eux; \
current_gid="$(getent group kibana | awk -F: '{print $3}')"; \
if [ -z "$current_gid" ]; then \
groupadd -g "${ARGUS_BUILD_GID}" kibana; \
elif [ "$current_gid" != "${ARGUS_BUILD_GID}" ]; then \
groupmod -g "${ARGUS_BUILD_GID}" kibana; \
fi; \
if id kibana >/dev/null 2>&1; then \
current_uid="$(id -u kibana)"; \
if [ "$current_uid" != "${ARGUS_BUILD_UID}" ]; then \
usermod -u "${ARGUS_BUILD_UID}" kibana; \
fi; \
else \
useradd -m -u "${ARGUS_BUILD_UID}" -g "${ARGUS_BUILD_GID}" kibana; \
fi; \
chown -R "${ARGUS_BUILD_UID}:${ARGUS_BUILD_GID}" /usr/share/kibana
# 设置构建参数
ARG USE_INTRANET=false
# 配置内网 apt 源 (如果指定了内网选项)
RUN if [ "$USE_INTRANET" = "true" ]; then \
echo "Configuring intranet apt sources..." && \
cp /etc/apt/sources.list /etc/apt/sources.list.bak && \
echo "deb [trusted=yes] http://10.68.64.1/ubuntu2204/ jammy main" > /etc/apt/sources.list && \
echo 'Acquire::https::Verify-Peer "false";' > /etc/apt/apt.conf.d/99disable-ssl-check && \
echo 'Acquire::https::Verify-Host "false";' >> /etc/apt/apt.conf.d/99disable-ssl-check; \
fi
# 安装 supervisor, net-tools, vim
RUN apt-get update && \
apt-get install -y supervisor net-tools inetutils-ping vim && \
apt-get clean && \
rm -rf /var/lib/apt/lists/*
# 配置部署时使用的apt源
RUN if [ "$USE_INTRANET" = "true" ]; then \
echo "deb [trusted=yes] https://10.92.132.52/mirrors/ubuntu2204/ jammy main" > /etc/apt/sources.list; \
fi
# 创建 supervisor 日志目录
RUN mkdir -p /var/log/supervisor
# 复制 supervisor 配置文件
COPY src/log/kibana/build/supervisord.conf /etc/supervisor/conf.d/supervisord.conf
# 复制启动脚本
COPY src/log/kibana/build/start-kibana-supervised.sh /usr/local/bin/start-kibana-supervised.sh
COPY src/log/kibana/build/kibana-post-start.sh /usr/local/bin/kibana-post-start.sh
RUN chmod +x /usr/local/bin/start-kibana-supervised.sh /usr/local/bin/kibana-post-start.sh
# 复制DNS监控脚本
COPY src/log/kibana/build/dns-monitor.sh /usr/local/bin/dns-monitor.sh
RUN chmod +x /usr/local/bin/dns-monitor.sh
# kibana需要用到 /root/.config/puppeteer 路径
RUN chmod 777 /root
# 保持 root 用户,由 supervisor 管理用户切换
USER root
# 暴露端口
EXPOSE 5601
# 使用 supervisor 作为入口点
CMD ["/usr/bin/supervisord", "-c", "/etc/supervisor/conf.d/supervisord.conf"]

35
src/log/tests/scripts/01_bootstrap.sh
View File

@ -36,28 +36,9 @@ echo "[INFO] Fluent-bit files should be in fluent-bit/ directory"
# 准备 Fluent Bit 离线依赖(从 metric all-in-one-full 复制 deb 到 ../fluent-bit/build/packages
FLB_BUILD_PACKAGES_DIR="$root/../fluent-bit/build/packages"
mkdir -p "$FLB_BUILD_PACKAGES_DIR"
detect_deb_arch() {
local deb_arch="${1:-}"
if [[ -n "$deb_arch" ]]; then
echo "$deb_arch"; return
fi
if command -v dpkg >/dev/null 2>&1; then
dpkg --print-architecture # amd64 / arm64
else
case "$(uname -m)" in
x86_64) echo amd64 ;;
aarch64) echo arm64 ;;
*) echo amd64 ;;
esac
fi
}
DEB_ARCH="$(detect_deb_arch)"
FLB_BIN_DIR="$project_root/src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/${DEB_ARCH}"
for deb in \
"$FLB_BIN_DIR/libyaml-0-2_"*_"${DEB_ARCH}.deb" \
"$FLB_BIN_DIR/libpq5_"*_"${DEB_ARCH}.deb" ; do
"$project_root/src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/libyaml-0-2_"*_amd64.deb \
"$project_root/src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/libpq5_"*_amd64.deb ; do
if ls $deb >/dev/null 2>&1; then
for f in $deb; do
base="$(basename "$f")"
@ -75,12 +56,12 @@ if [[ -f "$CURLOPT_TAR" ]]; then
tmpdir=$(mktemp -d)
if tar -xzf "$CURLOPT_TAR" -C "$tmpdir" 2>/dev/null; then
for p in \
"libsasl2-2_*_${DEB_ARCH}.deb" \
"libsasl2-modules-db_*_${DEB_ARCH}.deb" \
"libldap-2.5-0_*_${DEB_ARCH}.deb" \
"libidn2-0_*_${DEB_ARCH}.deb" \
"libbrotli1_*_${DEB_ARCH}.deb" \
"libssl3_*_${DEB_ARCH}.deb" ; do
libsasl2-2_*_amd64.deb \
libsasl2-modules-db_*_amd64.deb \
libldap-2.5-0_*_amd64.deb \
libidn2-0_*_amd64.deb \
libbrotli1_*_amd64.deb \
libssl3_*_amd64.deb ; do
src=$(ls "$tmpdir"/curl/$p 2>/dev/null | head -n1 || true)
if [[ -n "$src" ]]; then
base="$(basename "$src")"

BIN
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/amd64/fluent-bit_3.1.9_amd64.deb
View File

Binary file not shown.

BIN
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/amd64/libpq5_14.19-0ubuntu0.22.04.1_amd64.deb
View File

Binary file not shown.

BIN
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/amd64/libyaml-0-2_0.2.2-1build2_amd64.deb
View File

Binary file not shown.

BIN
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/arm64/fluent-bit_4.2.0_arm64.deb
View File

Binary file not shown.

BIN
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/fluent-bit_3.1.9_amd64.deb (Stored with Git LFS) Normal file
View File

Binary file not shown.

BIN
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/libpq5_14.19-0ubuntu0.22.04.1_amd64.deb (Stored with Git LFS) Normal file
View File

Binary file not shown.

BIN
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/libyaml-0-2_0.2.2-1build2_amd64.deb (Stored with Git LFS) Normal file
View File

Binary file not shown.

10
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/install.sh
View File

@ -140,13 +140,11 @@ if [[ -d "/etc/fluent-bit" ]]; then
rm -rf /etc/fluent-bit
fi
# 安装 Fluent Bit 主包(按架构选择 deb
# 安装 Fluent Bit 主包
log_info "Installing Fluent Bit from deb package..."
deb_arch="$(dpkg --print-architecture 2>/dev/null || echo amd64)"
deb_pattern="bin/${deb_arch}/fluent-bit_*_${deb_arch}.deb"
deb_file=$(ls $deb_pattern 2>/dev/null | head -n1 || true)
if [[ -z "$deb_file" || ! -f "$deb_file" ]]; then
log_error "Fluent Bit package not found matching: $deb_pattern"
deb_file="bin/fluent-bit_3.1.9_amd64.deb"
if [[ ! -f "$deb_file" ]]; then
log_error "Fluent Bit package not found: $deb_file"
exit 1
fi

10
src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/package.sh
View File

@ -28,18 +28,10 @@ log_info "检查必要文件..."
required_files=(
"install.sh"
"uninstall.sh"
"bin/fluent-bit_3.1.9_amd64.deb"
"check_health.sh"
)
# 架构特定的 deb 至少各有一个(版本可不同)
for arch in amd64 arm64; do
if ! ls "bin/${arch}/fluent-bit_"*"_${arch}.deb" >/dev/null 2>&1; then
echo "缺少以下文件:"
echo " - bin/${arch}/fluent-bit_*_${arch}.deb"
exit 1
fi
done
missing_files=()
for file in "${required_files[@]}"; do
if [[ ! -f "$file" ]]; then

59
src/metric/prometheus/build/Dockerfile.arm64
View File

@ -1,59 +0,0 @@
FROM prom/prometheus:v3.5.0
# 构建期使用 root运行期使用 prometheus 用户
USER root
# Prometheus 数据与配置基础路径
ENV PROMETHEUS_BASE_PATH=/private/argus/metric/prometheus
# 构建期指定 UID/GID用于与宿主用户映射
ARG ARGUS_BUILD_UID=2133
ARG ARGUS_BUILD_GID=2015
ENV ARGUS_BUILD_UID=${ARGUS_BUILD_UID} \
ARGUS_BUILD_GID=${ARGUS_BUILD_GID}
# 创建目录结构:将 /prometheus 链接到 ARGUS 路径
RUN mkdir -p ${PROMETHEUS_BASE_PATH}/rules \
&& mkdir -p ${PROMETHEUS_BASE_PATH}/targets \
&& mkdir -p /private/argus/etc \
&& rm -rf /prometheus \
&& ln -s ${PROMETHEUS_BASE_PATH} /prometheus
# 调整 prometheus 用户 UID/GID 并授权
# 注意prom/prometheus 基础镜像基于 BusyBox仅提供 adduser/addgroup
# 没有 useradd/groupadd/usermod/groupmod 等工具。
RUN set -eux; \
if ! grep -q '^prometheus:' /etc/passwd 2>/dev/null; then \
addgroup -g "${ARGUS_BUILD_GID}" prometheus 2>/dev/null || true; \
adduser -D -H -u "${ARGUS_BUILD_UID}" -G prometheus prometheus 2>/dev/null || true; \
fi; \
chown -h prometheus:prometheus /prometheus || true; \
chown -R prometheus:prometheus ${PROMETHEUS_BASE_PATH} || true; \
if [ -d /etc/prometheus ]; then chown -R prometheus:prometheus /etc/prometheus; fi
# 拷贝配置与启动脚本
COPY prometheus.yml /etc/prometheus/prometheus.yml
COPY exporter_config.json /usr/local/bin/exporter_config.json
COPY start-prometheus-supervised.sh /usr/local/bin/start-prometheus-supervised.sh
RUN chmod +x /usr/local/bin/start-prometheus-supervised.sh && \
chown prometheus:prometheus /usr/local/bin/start-prometheus-supervised.sh && \
chown prometheus:prometheus /usr/local/bin/exporter_config.json || true
# 可选的 targets 更新脚本ARM 镜像中默认不自动运行,因为基础镜像无 python3
COPY update_targets.py /usr/local/bin/update_targets.py
RUN chmod +x /usr/local/bin/update_targets.py && \
chown prometheus:prometheus /usr/local/bin/update_targets.py || true
# DNS 监控脚本(目前未默认启用,可由外部显式调用)
COPY dns-monitor.sh /usr/local/bin/dns-monitor.sh
RUN chmod +x /usr/local/bin/dns-monitor.sh && \
chown prometheus:prometheus /usr/local/bin/dns-monitor.sh || true
# 使用 prometheus 用户运行
USER prometheus
EXPOSE 9090
# ARM 版直接使用启动脚本作为入口,不再依赖 supervisor
ENTRYPOINT ["/usr/local/bin/start-prometheus-supervised.sh"]

21
src/metric/prometheus/build/Dockerfile.targets-updater
View File

@ -1,21 +0,0 @@
FROM python:3.11-slim-bullseye
ENV DEBIAN_FRONTEND=noninteractive \
TZ=Asia/Shanghai \
PROMETHEUS_BASE_PATH=/private/argus/metric/prometheus
RUN set -eux; \
apt-get update; \
apt-get install -y --no-install-recommends ca-certificates tzdata; \
rm -rf /var/lib/apt/lists/*; \
ln -snf /usr/share/zoneinfo/$TZ /etc/localtime && echo $TZ > /etc/timezone
WORKDIR /app
# 复用现有脚本与配置(从构建上下文复制)
COPY update_targets.py /app/update_targets.py
COPY exporter_config.json /app/exporter_config.json
# 以守护进程模式运行,监听 nodes.json 变化并更新 targets/*.json
ENTRYPOINT ["python3", "/app/update_targets.py"]
CMD ["--config", "/private/argus/metric/prometheus/nodes.json", "--targets-dir", "/private/argus/metric/prometheus/targets", "--exporter-config", "/app/exporter_config.json", "--log-level", "INFO", "--daemon", "--check-interval", "30"]

17
src/metric/prometheus/build/exporter_config.json
View File

@ -1,5 +1,11 @@
{
"exporters": {
"dcgm": {
"port": 9400,
"job_name": "dcgm",
"instance_prefix": "dcgm-exporter",
"description": "DCGM GPU 监控 exporter"
},
"node": {
"port": 9100,
"job_name": "node",
@ -8,6 +14,15 @@
}
},
"label_templates": {
"dcgm": {
"job": "dcgm",
"instance": "dcgm-exporter-{node_id}",
"node_id": "{node_id}",
"ip": "{ip}",
"hostname": "{hostname}",
"user_id": "{user_id}",
"tag": "{tag}"
},
"node": {
"job": "node",
"instance": "node-exporter-{node_id}",
@ -23,4 +38,4 @@
"log_retention_days": 30,
"refresh_interval": "30s"
}
}
}

4
src/metric/prometheus/build/start-prometheus-supervised.sh
View File

@ -1,5 +1,5 @@
#!/bin/sh
set -eu
#!/bin/bash
set -euo pipefail
echo "[INFO] Starting Prometheus under supervisor..."

37
src/sys/arm_swarm_tests/.env.example
View File

@ -1,37 +0,0 @@
SERVER_PROJECT=argus-swarm-server
NODES_PROJECT=argus-swarm-nodes
# Host ports for server compose
MASTER_PORT=32300
ES_HTTP_PORT=9200
KIBANA_PORT=5601
PROMETHEUS_PORT=9090
GRAFANA_PORT=3000
ALERTMANAGER_PORT=9093
WEB_PROXY_PORT_8080=8080
WEB_PROXY_PORT_8081=8081
WEB_PROXY_PORT_8082=8082
WEB_PROXY_PORT_8083=8083
WEB_PROXY_PORT_8084=8084
WEB_PROXY_PORT_8085=8085
# UID/GID for volume ownership in containers
ARGUS_BUILD_UID=2133
ARGUS_BUILD_GID=2015
# Server-side images (ARM64)
MASTER_IMAGE_TAG=argus-master-arm64:latest
ES_IMAGE_TAG=argus-elasticsearch-arm64:latest
KIBANA_IMAGE_TAG=argus-kibana-arm64:latest
PROM_IMAGE_TAG=argus-metric-prometheus-arm64:latest
GRAFANA_IMAGE_TAG=argus-metric-grafana-arm64:latest
ALERT_IMAGE_TAG=argus-alertmanager-arm64:latest
FRONT_IMAGE_TAG=argus-web-frontend-arm64:latest
WEB_PROXY_IMAGE_TAG=argus-web-proxy-arm64:latest
# Node bundle images
NODE_BUNDLE_IMAGE_TAG=argus-sys-metric-test-node-arm64:latest
NODE_GPU_BUNDLE_IMAGE_TAG=argus-sys-metric-test-node-bundle-gpu-arm64:latest
# Prometheus targets updater sidecar image
PROM_UPDATER_IMAGE_TAG=argus-metric-prometheus-targets-updater-arm64:latest

10
src/sys/arm_swarm_tests/.env.nodes.template
View File

@ -1,10 +0,0 @@
BINDIP=10.0.4.25
FTPIP=10.0.4.29
MASTER_ENDPOINT=http://master.argus.com:3000
FTP_USER=ftpuser
FTP_PASSWORD=ZGClab1234!
AGENT_ENV=lm1
AGENT_USER=yuyr
AGENT_INSTANCE=node001sX
NODE_HOSTNAME=lm1
GPU_NODE_HOSTNAME=lm1

7
src/sys/arm_swarm_tests/.gitignore vendored
View File

@ -1,7 +0,0 @@
private-*/
tmp/
.env
.env.nodes

94
src/sys/arm_swarm_tests/README.md
View File

@ -1,94 +0,0 @@
# Swarm Tests (argus-sys-net)
快速在本机用 Docker Swarm + overlay 网络验证“服务端 + 单节点”端到端部署。保持对 `src/sys/tests` 兼容,不影响现有桥接网络测试。
## 先决条件
- Docker Engine 已启用 Swarm脚本会自动 `swarm init` 单机模式)。
- 已构建并加载以下镜像:`argus-master:latest``argus-elasticsearch:latest``argus-kibana:latest``argus-metric-prometheus:latest``argus-metric-grafana:latest``argus-alertmanager:latest``argus-web-frontend:latest``argus-web-proxy:latest`、以及节点镜像 `argus-sys-metric-test-node-bundle:latest`(见下文)。
- 本地 `UID/GID` 建议通过 `configs/build_user.local.conf` 指定,脚本会读取:
- `UID=1000`\n`GID=1000`(示例)。
## 构建节点 bundle 镜像
```
./deployment/build/build_images.sh --with-node-bundle --client-version 20251106
```
说明:`--client-version` 支持 `YYYYMMDD` 日期包或 `1.xx.yy` 组件版本。打包完成后镜像 `argus-sys-metric-test-node-bundle:latest` 会内置 `argus-metric_*.tar.gz`,容器启动时优先从本地 bundle 安装。
## 运行步骤
```
cd src/sys/swarm_tests
cp .env.example .env
bash scripts/00_bootstrap.sh
bash scripts/01_server_up.sh
bash scripts/02_wait_ready.sh # 写 MASTER_ENDPOINT/AGENT_* 到 .env.nodes
bash scripts/03_nodes_up.sh
bash scripts/04_metric_verify.sh
```
清理:
```
bash scripts/99_down.sh
```
## 说明与注意事项
- `00_bootstrap.sh`:先加载 `scripts/common/build_user.sh`,打印并写入 `.env` 中的 `ARGUS_BUILD_UID/GID`,再准备 `private-server/``private-nodes/` 目录,并 `chown` 到对应 UID/GID。
- `01_server_up.sh`:启动服务端 compose。可用 `SWARM_FIX_PERMS=1` 打开“容器内 chmod + supervisor 重启”的兜底逻辑,默认关闭。
- `02_wait_ready.sh`:等待 Master/ES/Prom/Grafana 就绪Kibana 可延迟),随后写入 `.env.nodes``MASTER_ENDPOINT/AGENT_*`,供节点 compose 使用DNS 由 Docker 自带服务负责,不再依赖 BINDIP/FTPIP
- `03_nodes_up.sh`启动单节点容器bundle 版)。容器内 `node-bootstrap.sh` 优先本地安装,成功后执行健康检查并等待 `/private/argus/agent/<hostname>/node.json` 出现。
- `04_metric_verify.sh`:在本套件内执行详细校验(不再直接调用 tests 脚本):
- Grafana `/api/health`database=ok
- Grafana 数据源指向 `prom.metric.argus.com:<port>` 并在容器内可解析该域名
- Prometheus `activeTargets` 全部 up
- `nodes.json` 不包含 `172.22/16`docker_gwbridge
## 常见问题
- Grafana/Kibana 启动报权限:检查 `configs/build_user.local.conf``00_bootstrap.sh` 的输出 UID/GID 是否一致;必要时设置 `SWARM_FIX_PERMS=1` 重新 `01_server_up.sh`
- 节点容器 fallback 到 FTP通常为 bundle 结构异常或健康检查失败(早期脚本在 `sh` 下执行)。当前 `node-bootstrap.sh` 已使用 `bash` 执行健康检查,并在本地安装成功后跳过 FTP。
- 代理 502查看容器 `argus-web-proxy``/var/log/nginx/error.log` 与启动日志中 `upstream check` 行;若后端未就绪(尤其 Kibana等待 `02_wait_ready.sh` 通过后再访问。
### 在 worker 上用 compose 起 GPU 节点的网络预热overlay not found
在多机 Swarm 场景,如果在 worker`lm1`)上直接运行 `05_gpu_node_up.sh``docker compose` 对 external overlay `argus-sys-net` 的本地预检查可能报错 `network ... not found`。这是因为 worker 尚未在本地“加入”该 overlay。
Workaround先在 worker 启一个临时容器加入 overlay 进行“网络预热”,随后再运行 GPU compose。
```
# 在 worker 节点lm1
cd src/sys/swarm_tests
set -a; source .env; source .env.nodes; set +a
# 预热 overlay默认 600s 超时自动退出,可重复执行)
bash scripts/05a_net_warmup.sh
# 然后再启动 GPU 节点
bash scripts/05_gpu_node_up.sh
```
清理时 `scripts/99_down.sh` 会顺带移除预热容器 `argus-net-warmup`
更推荐的做法是改用 `docker stack deploy` 由 manager 调度 GPU 节点(支持渐进式扩容与节点约束),详见 `specs/issues/2025-11-07-swarm-compose-worker-overlay-network-not-found-lm1.md`
### 可选Stack 部署 GPU 节点manager 上执行)
前置:已在 managerlm2完成 `00_bootstrap.sh``01_server_up.sh`,并通过 `02_wait_ready.sh` 生成 `.env.nodes`;给目标 GPU 节点打标签 `argus.gpu=true`
```
cd src/sys/swarm_tests
# 给 GPU 节点打标签(示例)
docker node update --label-add argus.gpu=true lm1
# 可按需覆盖挂载路径(每个 GPU 节点都需存在同一路径)
export AGENT_VOLUME_PATH=/data1/yuyr/dev/argus/src/sys/swarm_tests/private-gpu-nodes/argus/agent
# 在 manager 上部署global 模式,自动在打标节点各拉起 1 副本)
bash scripts/05b_gpu_stack_deploy.sh
# 查看
docker stack services argus-swarm-gpu
docker stack ps argus-swarm-gpu
```
移除 stack`docker stack rm argus-swarm-gpu`(不会删除 overlay 网络与数据目录)。

33
src/sys/arm_swarm_tests/docker-compose.gpu-node.yml
View File

@ -1,33 +0,0 @@
version: "3.8"
networks:
argus-sys-net:
external: true
services:
metric-gpu-node:
image: ${NODE_GPU_BUNDLE_IMAGE_TAG:-argus-sys-metric-test-node-bundle-gpu:latest}
container_name: argus-metric-gpu-node-swarm
hostname: ${GPU_NODE_HOSTNAME:-swarm-metric-gpu-001}
restart: unless-stopped
privileged: true
runtime: nvidia
environment:
- TZ=Asia/Shanghai
- DEBIAN_FRONTEND=noninteractive
- MASTER_ENDPOINT=${MASTER_ENDPOINT:-http://master.argus.com:3000}
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
- AGENT_ENV=${AGENT_ENV:-dev2}
- AGENT_USER=${AGENT_USER:-yuyr}
- AGENT_INSTANCE=${AGENT_INSTANCE:-gpu001sX}
- NVIDIA_VISIBLE_DEVICES=all
- NVIDIA_DRIVER_CAPABILITIES=compute,utility
- GPU_MODE=gpu
networks:
argus-sys-net:
aliases:
- ${AGENT_INSTANCE}.node.argus.com
volumes:
- ./private-gpu-nodes/argus/agent:/private/argus/agent
command: ["sleep", "infinity"]

32
src/sys/arm_swarm_tests/docker-compose.nodes.yml
View File

@ -1,32 +0,0 @@
version: "3.8"
networks:
argus-sys-net:
external: true
services:
metric-test-node:
platform: linux/arm64
image: ${NODE_BUNDLE_IMAGE_TAG:-argus-sys-metric-test-node-arm64:latest}
container_name: argus-metric-test-node-swarm
hostname: ${NODE_HOSTNAME:-swarm-metric-node-001}
restart: unless-stopped
environment:
- TZ=Asia/Shanghai
- DEBIAN_FRONTEND=noninteractive
- MASTER_ENDPOINT=${MASTER_ENDPOINT:-http://master.argus.com:3000}
- ES_HOST=es.log.argus.com
- ES_PORT=9200
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
- AGENT_ENV=${AGENT_ENV:-dev2}
- AGENT_USER=${AGENT_USER:-yuyr}
- AGENT_INSTANCE=${AGENT_INSTANCE:-node001sX}
- CLIENT_VERSION=${CLIENT_VERSION:-}
networks:
argus-sys-net:
aliases:
- ${AGENT_INSTANCE}.node.argus.com
volumes:
- ./private-nodes/argus/agent:/private/argus/agent
command: ["sleep", "infinity"]

154
src/sys/arm_swarm_tests/docker-compose.server.yml
View File

@ -1,154 +0,0 @@
version: "3.8"
networks:
argus-sys-net:
external: true
services:
master:
platform: linux/arm64
image: ${MASTER_IMAGE_TAG:-argus-master:latest}
container_name: argus-master-sys
depends_on: []
environment:
- OFFLINE_THRESHOLD_SECONDS=180
- ONLINE_THRESHOLD_SECONDS=120
- SCHEDULER_INTERVAL_SECONDS=30
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
ports:
- "${MASTER_PORT:-32300}:3000"
volumes:
- ./private-server/argus/master:/private/argus/master
- ./private-server/argus/metric/prometheus:/private/argus/metric/prometheus
- ./private-server/argus/etc:/private/argus/etc
networks:
argus-sys-net:
aliases:
- master.argus.com
restart: unless-stopped
prometheus:
platform: linux/arm64
image: ${PROM_IMAGE_TAG:-argus-metric-prometheus:latest}
container_name: argus-prometheus
restart: unless-stopped
environment:
- TZ=Asia/Shanghai
- PROMETHEUS_BASE_PATH=/private/argus/metric/prometheus
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
ports:
- "${PROMETHEUS_PORT:-9090}:9090"
volumes:
- ./private-server/argus/metric/prometheus:/private/argus/metric/prometheus
- ./private-server/argus/etc:/private/argus/etc
networks:
argus-sys-net:
aliases:
- prom.metric.argus.com
prometheus-targets-updater:
platform: linux/arm64
image: ${PROM_UPDATER_IMAGE_TAG:-argus-metric-prometheus-targets-updater-arm64:latest}
container_name: argus-prometheus-targets-updater
restart: unless-stopped
environment:
- TZ=Asia/Shanghai
volumes:
- ./private-server/argus/metric/prometheus:/private/argus/metric/prometheus
networks:
argus-sys-net:
aliases:
- prom-updater.metric.argus.com
depends_on:
- master
- prometheus
grafana:
platform: linux/arm64
image: ${GRAFANA_IMAGE_TAG:-argus-metric-grafana:latest}
container_name: argus-grafana
restart: unless-stopped
environment:
- TZ=Asia/Shanghai
- GRAFANA_BASE_PATH=/private/argus/metric/grafana
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
- GF_SERVER_HTTP_PORT=3000
- GF_LOG_LEVEL=warn
- GF_LOG_MODE=console
- GF_PATHS_PROVISIONING=/private/argus/metric/grafana/provisioning
- GF_AUTH_ANONYMOUS_ENABLED=true
- GF_AUTH_ANONYMOUS_ORG_ROLE=Viewer
ports:
- "${GRAFANA_PORT:-3000}:3000"
volumes:
- ./private-server/argus/metric/grafana:/private/argus/metric/grafana
- ./private-server/argus/etc:/private/argus/etc
depends_on: [prometheus]
networks:
argus-sys-net:
aliases:
- grafana.metric.argus.com
alertmanager:
platform: linux/arm64
image: ${ALERT_IMAGE_TAG:-argus-alertmanager:latest}
container_name: argus-alertmanager
environment:
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
volumes:
- ./private-server/argus/etc:/private/argus/etc
- ./private-server/argus/alert/alertmanager:/private/argus/alert/alertmanager
networks:
argus-sys-net:
aliases:
- alertmanager.alert.argus.com
ports:
- "${ALERTMANAGER_PORT:-9093}:9093"
restart: unless-stopped
web-frontend:
platform: linux/arm64
image: ${FRONT_IMAGE_TAG:-argus-web-frontend:latest}
container_name: argus-web-frontend
environment:
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
- EXTERNAL_MASTER_PORT=${WEB_PROXY_PORT_8085:-8085}
- EXTERNAL_ALERTMANAGER_PORT=${WEB_PROXY_PORT_8084:-8084}
- EXTERNAL_GRAFANA_PORT=${WEB_PROXY_PORT_8081:-8081}
- EXTERNAL_PROMETHEUS_PORT=${WEB_PROXY_PORT_8082:-8082}
- EXTERNAL_KIBANA_PORT=${WEB_PROXY_PORT_8083:-8083}
volumes:
- ./private-server/argus/etc:/private/argus/etc
networks:
argus-sys-net:
aliases:
- web.argus.com
restart: unless-stopped
web-proxy:
platform: linux/arm64
image: ${WEB_PROXY_IMAGE_TAG:-argus-web-proxy:latest}
container_name: argus-web-proxy
depends_on: [master, grafana, prometheus, alertmanager]
environment:
- ARGUS_BUILD_UID=${ARGUS_BUILD_UID:-2133}
- ARGUS_BUILD_GID=${ARGUS_BUILD_GID:-2015}
volumes:
- ./private-server/argus/etc:/private/argus/etc
networks:
argus-sys-net:
aliases:
- proxy.argus.com
ports:
- "${WEB_PROXY_PORT_8080:-8080}:8080"
- "${WEB_PROXY_PORT_8081:-8081}:8081"
- "${WEB_PROXY_PORT_8082:-8082}:8082"
- "${WEB_PROXY_PORT_8083:-8083}:8083"
- "${WEB_PROXY_PORT_8084:-8084}:8084"
- "${WEB_PROXY_PORT_8085:-8085}:8085"
restart: unless-stopped

91
src/sys/arm_swarm_tests/scripts/00_bootstrap.sh
View File

@ -1,91 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
REPO_ROOT="$(cd "$ROOT/../../.." && pwd)"
ENV_FILE="$ROOT/.env"; [[ -f "$ENV_FILE" ]] || cp "$ROOT/.env.example" "$ENV_FILE"
# Load build user (UID/GID) from repo config to match container runtime users
if [[ -f "$REPO_ROOT/scripts/common/build_user.sh" ]]; then
# shellcheck disable=SC1091
source "$REPO_ROOT/scripts/common/build_user.sh" 2>/dev/null || true
if declare -f load_build_user >/dev/null 2>&1; then
load_build_user
fi
fi
# Capture resolved UID/GID from build_user before sourcing .env
uid_resolved="${ARGUS_BUILD_UID:-2133}"
gid_resolved="${ARGUS_BUILD_GID:-2015}"
echo "[BOOT] resolved build user: UID=${uid_resolved} GID=${gid_resolved} (from scripts/common/build_user.sh or env)"
# After resolving UID/GID, load .env for other settings; then we will overwrite UID/GID entries
set -a; source "$ENV_FILE"; set +a
echo "[BOOT] checking Docker Swarm"
if ! docker info 2>/dev/null | grep -q "Swarm: active"; then
echo "[BOOT] initializing swarm (single-node)"
docker swarm init >/dev/null 2>&1 || true
fi
NET_NAME=argus-sys-net
if docker network inspect "$NET_NAME" >/dev/null 2>&1; then
echo "[BOOT] overlay network exists: $NET_NAME"
else
echo "[BOOT] creating overlay network: $NET_NAME"
docker network create -d overlay --attachable "$NET_NAME"
fi
echo "[BOOT] preparing private directories (server/nodes)"
# Server-side dirs (align with sys/tests 01_bootstrap.sh)
mkdir -p \
"$ROOT/private-server/argus/etc" \
"$ROOT/private-server/argus/master" \
"$ROOT/private-server/argus/metric/prometheus" \
"$ROOT/private-server/argus/metric/prometheus/data" \
"$ROOT/private-server/argus/metric/prometheus/rules" \
"$ROOT/private-server/argus/metric/prometheus/targets" \
"$ROOT/private-server/argus/alert/alertmanager" \
"$ROOT/private-server/argus/metric/ftp/share" \
"$ROOT/private-server/argus/metric/grafana/data" \
"$ROOT/private-server/argus/metric/grafana/logs" \
"$ROOT/private-server/argus/metric/grafana/plugins" \
"$ROOT/private-server/argus/metric/grafana/provisioning/datasources" \
"$ROOT/private-server/argus/metric/grafana/provisioning/dashboards" \
"$ROOT/private-server/argus/metric/grafana/data/sessions" \
"$ROOT/private-server/argus/metric/grafana/data/dashboards" \
"$ROOT/private-server/argus/metric/grafana/config" \
"$ROOT/private-server/argus/agent" \
"$ROOT/private-server/argus/log/elasticsearch" \
"$ROOT/private-server/argus/log/kibana"
mkdir -p "$ROOT/private-nodes/argus/agent"
uid="$uid_resolved"; gid="$gid_resolved"
echo "[BOOT] chown -R ${uid}:${gid} for server core dirs (best-effort)"
chown -R "$uid":"$gid" \
"$ROOT/private-server/argus/log/elasticsearch" \
"$ROOT/private-server/argus/log/kibana" \
"$ROOT/private-server/argus/metric/grafana" \
"$ROOT/private-server/argus/metric/prometheus" \
"$ROOT/private-server/argus/alert" \
"$ROOT/private-server/argus/agent" \
"$ROOT/private-server/argus/etc" 2>/dev/null || true
chmod -R g+w "$ROOT/private-server/argus/alert" "$ROOT/private-server/argus/etc" 2>/dev/null || true
# ensure .env carries the resolved UID/GID for compose env interpolation
if grep -q '^ARGUS_BUILD_UID=' "$ENV_FILE"; then
sed -i "s/^ARGUS_BUILD_UID=.*/ARGUS_BUILD_UID=${uid}/" "$ENV_FILE"
else
echo "ARGUS_BUILD_UID=${uid}" >> "$ENV_FILE"
fi
if grep -q '^ARGUS_BUILD_GID=' "$ENV_FILE"; then
sed -i "s/^ARGUS_BUILD_GID=.*/ARGUS_BUILD_GID=${gid}/" "$ENV_FILE"
else
echo "ARGUS_BUILD_GID=${gid}" >> "$ENV_FILE"
fi
echo "[BOOT] done"

39
src/sys/arm_swarm_tests/scripts/01_server_up.sh
View File

@ -1,39 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
REPO_ROOT="$(cd "$ROOT/../../.." && pwd)"
ENV_FILE="$ROOT/.env"
# load UID/GID from repo config first (so they take precedence over any stale .env values)
if [[ -f "$REPO_ROOT/scripts/common/build_user.sh" ]]; then
# shellcheck disable=SC1091
source "$REPO_ROOT/scripts/common/build_user.sh" 2>/dev/null || true
if declare -f load_build_user >/dev/null 2>&1; then
load_build_user
fi
fi
set -a; source "$ENV_FILE"; set +a
PROJECT="${SERVER_PROJECT:-argus-swarm-server}"
COMPOSE_FILE="$ROOT/docker-compose.server.yml"
echo "[SERVER] starting compose project: $PROJECT"
docker compose -p "$PROJECT" -f "$COMPOSE_FILE" up -d --pull never
echo "[SERVER] containers:"; docker compose -p "$PROJECT" -f "$COMPOSE_FILE" ps
# Optional post-start permission alignment (disabled by default). Enable with SWARM_FIX_PERMS=1
if [[ "${SWARM_FIX_PERMS:-0}" == "1" ]]; then
echo "[SERVER] aligning permissions in containers (best-effort)"
for c in argus-master-sys argus-prometheus argus-grafana argus-ftp argus-es-sys argus-kibana-sys argus-web-frontend argus-web-proxy argus-alertmanager; do
docker exec "$c" sh -lc 'mkdir -p /private/argus && chmod -R 777 /private/argus' 2>/dev/null || true
done
echo "[SERVER] restarting selected supervised programs to pick up new permissions"
docker exec argus-prometheus sh -lc 'supervisorctl restart prometheus targets-updater >/dev/null 2>&1 || true' || true
docker exec argus-grafana sh -lc 'rm -f /private/argus/etc/grafana.metric.argus.com 2>/dev/null || true; supervisorctl restart grafana >/dev/null 2>&1 || true' || true
docker exec argus-es-sys sh -lc 'supervisorctl restart elasticsearch >/dev/null 2>&1 || true' || true
docker exec argus-kibana-sys sh -lc 'supervisorctl restart kibana >/dev/null 2>&1 || true' || true
fi
echo "[SERVER] done"

44
src/sys/arm_swarm_tests/scripts/02_wait_ready.sh
View File

@ -1,44 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; set -a; source "$ENV_FILE"; set +a
PROJECT="${SERVER_PROJECT:-argus-swarm-server}"
RETRIES=${RETRIES:-60}
SLEEP=${SLEEP:-5}
code() { curl -4 -s -o /dev/null -w "%{http_code}" "$1" || echo 000; }
prom_ok() {
# Consider ready if TCP:9090 is accepting on localhost (host side)
(exec 3<>/dev/tcp/127.0.0.1/${PROMETHEUS_PORT:-9090}) >/dev/null 2>&1 && return 0
return 1
}
echo "[READY] waiting services (max $((RETRIES*SLEEP))s)"
for i in $(seq 1 "$RETRIES"); do
e1=$(code "http://127.0.0.1:${MASTER_PORT:-32300}/readyz")
e3=000
if prom_ok; then e3=200; fi
e4=$(code "http://127.0.0.1:${GRAFANA_PORT:-3000}/api/health")
ok=0
[[ "$e1" == 200 ]] && ok=$((ok+1))
[[ "$e3" == 200 ]] && ok=$((ok+1))
[[ "$e4" == 200 ]] && ok=$((ok+1))
# ARM swarm test只要求 master/prom/grafana 就绪
if [[ $ok -ge 3 ]]; then echo "[READY] base services OK"; break; fi
echo "[..] waiting ($i/$RETRIES): master=$e1 prom=$e3 graf=$e4"; sleep "$SLEEP"
done
if [[ $ok -lt 3 ]]; then echo "[ERROR] services not ready" >&2; exit 1; fi
ENV_NODES="$ROOT/.env.nodes"
cat > "$ENV_NODES" <<EOF
MASTER_ENDPOINT=http://master.argus.com:3000
AGENT_ENV=dev2
AGENT_USER=yuyr
AGENT_INSTANCE=node001sX
EOF
echo "[READY] wrote $ENV_NODES (MASTER_ENDPOINT/AGENT_* only)"

49
src/sys/arm_swarm_tests/scripts/03_nodes_up.sh
View File

@ -1,49 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; set -a; source "$ENV_FILE"; set +a
ENV_NODES_FILE="$ROOT/.env.nodes"; set -a; source "$ENV_NODES_FILE"; set +a
PROJECT="${NODES_PROJECT:-argus-swarm-nodes}"
COMPOSE_FILE="$ROOT/docker-compose.nodes.yml"
echo "[NODES] starting compose project: $PROJECT"
docker compose -p "$PROJECT" --env-file "$ENV_NODES_FILE" -f "$COMPOSE_FILE" up -d --pull never
docker compose -p "$PROJECT" -f "$COMPOSE_FILE" ps
# ARM swarm test: 将 Prometheus 的 node_exporter 目标 IP 调整为当前节点容器在 overlay 网络中的 IP
NODE_CNAME="${SWARM_NODE_CNAME:-argus-metric-test-node-swarm}"
TARGETS_FILE="$ROOT/private-server/argus/metric/prometheus/targets/node_exporter.json"
if docker ps --format '{{.Names}}' | grep -qx "$NODE_CNAME"; then
node_ip="$(docker inspect -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' "$NODE_CNAME" 2>/dev/null || echo "")"
if [[ -n "$node_ip" ]]; then
if [[ -f "$TARGETS_FILE" ]]; then
echo "[NODES] patching node_exporter target IP to $node_ip in $TARGETS_FILE"
sed -i "s/\"ip\": \"[0-9.]*\"/\"ip\": \"${node_ip}\"/g" "$TARGETS_FILE" || true
sed -i "s/[0-9.]*:9100/${node_ip}:9100/g" "$TARGETS_FILE" || true
else
echo "[NODES] creating node_exporter target file at $TARGETS_FILE (ip=$node_ip)"
mkdir -p "$(dirname "$TARGETS_FILE")"
cat >"$TARGETS_FILE" <<EOF
[
{
"targets": ["${node_ip}:9100"],
"labels": {
"job": "node",
"instance": "node-exporter",
"ip": "${node_ip}",
"hostname": "${NODE_HOSTNAME:-swarm-metric-node-001}",
"user_id": "${AGENT_USER:-}",
"tag": ""
}
}
]
EOF
fi
else
echo "[NODES] skip patching node_exporter targets (node_ip empty)"
fi
fi
echo "[NODES] done"

152
src/sys/arm_swarm_tests/scripts/04_metric_verify.sh
View File

@ -1,152 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; [[ -f "$ENV_FILE" ]] && { set -a; source "$ENV_FILE"; set +a; }
PROM_PORT="${PROMETHEUS_PORT:-9090}"
GRAF_PORT="${GRAFANA_PORT:-3000}"
GRAF_URL="http://127.0.0.1:${GRAF_PORT}"
PROM_DOMAIN="prom.metric.argus.com:${PROM_PORT}"
NODE_CONT="${SWARM_NODE_CNAME:-argus-metric-test-node-swarm}"
err() { echo "[ERR] $*" >&2; }
ok() { echo "[OK] $*"; }
info(){ echo "[INFO] $*"; }
fail() { err "$*"; exit 1; }
ensure_fluentbit() { :; }
# ---- Grafana /api/health ----
info "Grafana /api/health"
HEALTH_JSON="$ROOT/tmp/metric-verify/graf_health.json"
mkdir -p "$(dirname "$HEALTH_JSON")"
code=$(curl -fsS -o "$HEALTH_JSON" -w '%{http_code}' --max-time 10 "$GRAF_URL/api/health" || true)
[[ "$code" == 200 ]] || fail "/api/health HTTP $code"
if grep -q '"database"\s*:\s*"ok"' "$HEALTH_JSON"; then ok "grafana health database=ok"; else fail "grafana health not ok: $(cat "$HEALTH_JSON")"; fi
# ---- Grafana datasource points to prom domain ----
info "Grafana datasource URL uses domain: $PROM_DOMAIN"
DS_FILE="/private/argus/metric/grafana/provisioning/datasources/datasources.yml"
if ! docker exec argus-grafana sh -lc "test -f $DS_FILE" >/dev/null 2>&1; then
DS_FILE="/etc/grafana/provisioning/datasources/datasources.yml"
fi
docker exec argus-grafana sh -lc "grep -E 'url:\s*http://$PROM_DOMAIN' '$DS_FILE'" >/dev/null 2>&1 || fail "datasource not pointing to $PROM_DOMAIN"
ok "datasource points to domain"
# ---- DNS resolution inside grafana (via Docker DNS + FQDN alias) ----
info "FQDN resolution inside grafana (Docker DNS)"
tries=0
until docker exec argus-grafana getent hosts prom.metric.argus.com >/dev/null 2>&1; do
tries=$((tries+1)); (( tries > 24 )) && fail "grafana cannot resolve prom.metric.argus.com"
echo "[..] waiting DNS propagation in grafana ($tries/24)"; sleep 5
done
ok "domain resolves"
# ---- Prometheus node exporter targets health ----
info "Prometheus node exporter targets health"
targets_json="$ROOT/tmp/metric-verify/prom_targets.json"
mkdir -p "$(dirname "$targets_json")"
NODE_TARGET_RETRIES="${NODE_TARGET_RETRIES:-60}"
NODE_TARGET_SLEEP="${NODE_TARGET_SLEEP:-5}"
node_targets_ok=0
for attempt in $(seq 1 "$NODE_TARGET_RETRIES"); do
curl -fsS "http://127.0.0.1:${PROM_PORT}/api/v1/targets" -o "$targets_json" || {
echo "[WARN] fetch targets failed (attempt $attempt/$NODE_TARGET_RETRIES)" >&2
sleep "$NODE_TARGET_SLEEP"
continue
}
if command -v jq >/dev/null 2>&1; then
if jq -e '
.data.activeTargets
| map(select(.labels.job == "node"))
| (length > 0 and all(.health == "up"))
' "$targets_json" >/dev/null 2>&1; then
node_targets_ok=1
break
else
echo "[..] waiting node targets up ($attempt/$NODE_TARGET_RETRIES)" >&2
jq '.data.activeTargets | map(select(.labels.job == "node"))' "$targets_json" 2>/dev/null || true
fi
else
echo "[WARN] jq not available; skipping detailed node target health check" >&2
node_targets_ok=1
break
fi
sleep "$NODE_TARGET_SLEEP"
done
if [[ "$node_targets_ok" -ne 1 ]]; then
err "prometheus node targets not healthy after ${NODE_TARGET_RETRIES} attempts"
exit 1
fi
ok "prometheus node exporter targets up"
# ---- nodes.json sanity: avoid 172.22/16 (gwbridge) ----
nodes_json="$ROOT/private-server/argus/metric/prometheus/nodes.json"
if [[ -f "$nodes_json" ]] && grep -q '"ip"\s*:\s*"172\.22\.' "$nodes_json"; then
fail "nodes.json contains 172.22/16 addresses (gwbridge)"
fi
ok "nodes.json IPs look fine"
echo "[DONE] metric verify"
# ---- Node status and health (node.json + metric-*) ----
info "Node status and health (node.json + metric components - ARM: 跳过 dcgm)"
NODE_HEALTH_RETRIES="${NODE_HEALTH_RETRIES:-5}"
NODE_HEALTH_SLEEP="${NODE_HEALTH_SLEEP:-5}"
if ! command -v jq >/dev/null 2>&1; then
fail "node health: jq not available on host; cannot parse node.json"
fi
node_health_ok=0
for attempt in $(seq 1 "$NODE_HEALTH_RETRIES"); do
tmp_node_json="$(mktemp)"
if ! docker exec "$NODE_CONT" sh -lc '
set -e
host="$(hostname)"
f="/private/argus/agent/${host}/node.json"
if [ ! -s "$f" ]; then
echo "[ERR] node.json missing or empty: $f" >&2
exit 1
fi
cat "$f"
' > "$tmp_node_json" 2>/dev/null; then
rm -f "$tmp_node_json"
info "node health: node.json not ready (attempt $attempt/$NODE_HEALTH_RETRIES)"
else
node_name="$(jq -r '.name // ""' "$tmp_node_json")"
node_status="$(jq -r '.status // ""' "$tmp_node_json")"
node_type="$(jq -r '.type // ""' "$tmp_node_json")"
if [[ -z "$node_name" || -z "$node_status" || -z "$node_type" ]]; then
info "node health: missing required fields in node.json (attempt $attempt/$NODE_HEALTH_RETRIES)"
elif [[ "$node_type" != "agent" ]]; then
info "node health: unexpected node.type='$node_type' (attempt $attempt/$NODE_HEALTH_RETRIES)"
else
# ARM 阶段先放宽要求:只要 agent 成功注册并生成 node.json 即视作通过,
# 不强制等待 Master 将 status 切到 online 或填充 health 映射。
info "node health: basic node.json present (status=$node_status type=$node_type name=$node_name)"
node_health_ok=1
rm -f "$tmp_node_json"
break
fi
rm -f "$tmp_node_json"
fi
if [[ "$attempt" -lt "$NODE_HEALTH_RETRIES" ]]; then
sleep "$NODE_HEALTH_SLEEP"
fi
done
if [[ "$node_health_ok" -ne 1 ]]; then
fail "node health: node.json or metric components not healthy after ${NODE_HEALTH_RETRIES} attempts"
fi
ok "node status online and metric components healthy"

48
src/sys/arm_swarm_tests/scripts/04_restart_node_and_verify.sh
View File

@ -1,48 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; set -a; source "$ENV_FILE"; set +a
ENV_NODES_FILE="$ROOT/.env.nodes"; set -a; source "$ENV_NODES_FILE"; set +a
PROJECT="${NODES_PROJECT:-argus-swarm-nodes}"
COMPOSE_FILE="$ROOT/docker-compose.nodes.yml"
NODE_CONT="${SWARM_NODE_CNAME:-argus-metric-test-node-swarm}"
echo "[RESTART] restarting node compose project: $PROJECT"
docker compose -p "$PROJECT" -f "$COMPOSE_FILE" restart
echo "[RESTART] waiting node container up: $NODE_CONT"
for i in {1..30}; do
state=$(docker ps --format '{{.Names}} {{.Status}}' | awk -v c="$NODE_CONT" '$1==c{print $2}' || true)
if [[ "$state" == Up* ]]; then
echo "[RESTART] node container is up"
break
fi
echo "[..] waiting node container up ($i/30)"
sleep 2
done
NODE_HEALTH_WAIT="${NODE_HEALTH_WAIT:-300}"
attempts=$(( NODE_HEALTH_WAIT / 30 ))
(( attempts < 1 )) && attempts=1
echo "[RESTART] waiting node health to recover (timeout=${NODE_HEALTH_WAIT}s)"
ok_flag=0
for i in $(seq 1 "$attempts"); do
if bash "$SCRIPT_DIR/04_metric_verify.sh"; then
echo "[RESTART] node restart verify passed on attempt $i/$attempts"
ok_flag=1
break
fi
echo "[..] 04_metric_verify failed after node restart; retrying ($i/$attempts)"
sleep 30
done
if [[ "$ok_flag" -ne 1 ]]; then
echo "[ERR] node restart: 04_metric_verify did not pass within ${NODE_HEALTH_WAIT}s" >&2
exit 1
fi

22
src/sys/arm_swarm_tests/scripts/04_restart_server_and_verify.sh
View File

@ -1,22 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; set -a; source "$ENV_FILE"; set +a
PROJECT="${SERVER_PROJECT:-argus-swarm-server}"
COMPOSE_FILE="$ROOT/docker-compose.server.yml"
echo "[RESTART] restarting server compose project: $PROJECT"
docker compose -p "$PROJECT" -f "$COMPOSE_FILE" restart
echo "[RESTART] waiting server ready after restart"
bash "$SCRIPT_DIR/02_wait_ready.sh"
echo "[RESTART] running 04_metric_verify after server restart"
bash "$SCRIPT_DIR/04_metric_verify.sh"
echo "[RESTART] server restart + verify passed"

33
src/sys/arm_swarm_tests/scripts/05_gpu_node_up.sh
View File

@ -1,33 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; [[ -f "$ENV_FILE" ]] && { set -a; source "$ENV_FILE"; set +a; }
ENV_NODES_FILE="$ROOT/.env.nodes"; [[ -f "$ENV_NODES_FILE" ]] && { set -a; source "$ENV_NODES_FILE"; set +a; }
PROJECT="${GPU_PROJECT:-argus-swarm-gpu}"
COMPOSE_FILE="$ROOT/docker-compose.gpu-node.yml"
# Prepare private dir
mkdir -p "$ROOT/private-gpu-nodes/argus/agent"
echo "[GPU] checking host NVIDIA driver/runtime"
if ! command -v nvidia-smi >/dev/null 2>&1; then
echo "[ERR] nvidia-smi not found on host; install NVIDIA driver/runtime first" >&2
exit 1
fi
echo "[GPU] starting compose project: $PROJECT"
docker compose -p "$PROJECT" --env-file "$ENV_NODES_FILE" -f "$COMPOSE_FILE" up -d
docker compose -p "$PROJECT" -f "$COMPOSE_FILE" ps
echo "[GPU] container GPU visibility"
if ! docker exec argus-metric-gpu-node-swarm nvidia-smi -L >/dev/null 2>&1; then
echo "[WARN] nvidia-smi failed inside container; check --gpus/runtime/driver" >&2
else
docker exec argus-metric-gpu-node-swarm nvidia-smi -L || true
fi
echo "[GPU] done"

44
src/sys/arm_swarm_tests/scripts/05a_net_warmup.sh
View File

@ -1,44 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; [[ -f "$ENV_FILE" ]] && { set -a; source "$ENV_FILE"; set +a; }
ENV_NODES_FILE="$ROOT/.env.nodes"; [[ -f "$ENV_NODES_FILE" ]] && { set -a; source "$ENV_NODES_FILE"; set +a; }
NET_NAME="${NET_NAME:-argus-sys-net}"
WARMUP_NAME="${WARMUP_NAME:-argus-net-warmup}"
WARMUP_IMAGE="${WARMUP_IMAGE:-busybox:latest}"
WARMUP_SECONDS="${WARMUP_SECONDS:-600}"
echo "[NET] warming up overlay network on worker: ${NET_NAME}"
if docker ps --format '{{.Names}}' | grep -q "^${WARMUP_NAME}$"; then
echo "[NET] warmup container already running: ${WARMUP_NAME}"
else
docker image inspect "$WARMUP_IMAGE" >/dev/null 2>&1 || docker pull "$WARMUP_IMAGE"
set +e
docker run -d --rm \
--name "$WARMUP_NAME" \
--network "$NET_NAME" \
"$WARMUP_IMAGE" sleep "$WARMUP_SECONDS"
rc=$?
set -e
if [[ $rc -ne 0 ]]; then
echo "[ERR] failed to start warmup container on network ${NET_NAME}. Is the overlay created with --attachable on manager?" >&2
exit 1
fi
fi
echo "[NET] waiting for local engine to see network (${NET_NAME})"
for i in {1..60}; do
if docker network inspect "$NET_NAME" >/dev/null 2>&1; then
echo "[NET] overlay visible locally now. You can run GPU compose."
docker network ls | grep -E "\b${NET_NAME}\b" || true
exit 0
fi
sleep 1
done
echo "[WARN] network still not inspectable locally after 60s, but warmup container is running. Compose may still pass; proceed to run GPU compose and retry if needed." >&2
exit 0

73
src/sys/arm_swarm_tests/scripts/06_gpu_metric_verify.sh
View File

@ -1,73 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; [[ -f "$ENV_FILE" ]] && { set -a; source "$ENV_FILE"; set +a; }
PROM_PORT="${PROMETHEUS_PORT:-9090}"
GRAF_PORT="${GRAFANA_PORT:-3000}"
ok(){ echo "[OK] $*"; }
warn(){ echo "[WARN] $*"; }
err(){ echo "[ERR] $*" >&2; }
fail(){ err "$*"; exit 1; }
GPU_HOST="${GPU_NODE_HOSTNAME:-swarm-metric-gpu-001}"
# 1) nodes.json contains gpu node hostname
NODES_JSON="$ROOT/private-server/argus/metric/prometheus/nodes.json"
if [[ ! -f "$NODES_JSON" ]]; then
warn "nodes.json not found at $NODES_JSON"
else
if jq -e --arg h "$GPU_HOST" '.[] | select(.hostname==$h)' "$NODES_JSON" >/dev/null 2>&1; then
ok "nodes.json contains $GPU_HOST"
else
warn "nodes.json does not list $GPU_HOST"
fi
fi
# 2) Prometheus targets health for :9100 (must) and :9400 (optional)
targets_json="$ROOT/tmp/gpu-verify/targets.json"; mkdir -p "$(dirname "$targets_json")"
if ! curl -fsS "http://127.0.0.1:${PROM_PORT}/api/v1/targets" -o "$targets_json"; then
fail "failed to fetch Prometheus targets"
fi
# derive gpu node overlay IP
GPU_IP=$(docker inspect -f '{{ (index .NetworkSettings.Networks "argus-sys-net").IPAddress }}' argus-metric-gpu-node-swarm 2>/dev/null || true)
must_ok=false
if jq -e --arg ip "$GPU_IP" '.data.activeTargets[] | select(.scrapeUrl | contains($ip+":9100")) | select(.health=="up")' "$targets_json" >/dev/null 2>&1; then
ok "node-exporter 9100 up for GPU node ($GPU_IP)"
must_ok=true
else
# fallback: any 9100 up
if jq -e '.data.activeTargets[] | select(.scrapeUrl | test(":9100")) | select(.health=="up")' "$targets_json" >/dev/null 2>&1; then
ok "node-exporter 9100 has at least one up target (fallback)"
must_ok=true
else
fail "node-exporter 9100 has no up targets"
fi
fi
if jq -e --arg ip "$GPU_IP" '.data.activeTargets[] | select(.scrapeUrl | contains($ip+":9400")) | select(.health=="up")' "$targets_json" >/dev/null 2>&1; then
ok "dcgm-exporter 9400 up for GPU node"
else
if jq -e '.data.activeTargets[] | select(.scrapeUrl | test(":9400")) | select(.health=="up")' "$targets_json" >/dev/null 2>&1; then
ok "dcgm-exporter 9400 has up target (not necessarily GPU node)"
else
warn "dcgm-exporter 9400 down or missing (acceptable in some envs)"
fi
fi
# 3) Quick PromQL sample for DCGM metric (optional)
if curl -fsS "http://127.0.0.1:${PROM_PORT}/api/v1/query?query=DCGM_FI_DEV_GPU_UTIL" -o "$ROOT/tmp/gpu-verify/dcgm.json"; then
if jq -e '.data.result | length > 0' "$ROOT/tmp/gpu-verify/dcgm.json" >/dev/null 2>&1; then
ok "DCGM_FI_DEV_GPU_UTIL has samples"
else
warn "no samples for DCGM_FI_DEV_GPU_UTIL (not blocking)"
fi
fi
echo "[DONE] gpu metric verify"

46
src/sys/arm_swarm_tests/scripts/10_e2e_swarm_restart_verify.sh
View File

@ -1,46 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
echo "[E2E] starting full swarm_tests E2E (cleanup -> 00-04 -> restart server/node -> keep env)"
if [[ "${E2E_SKIP_CLEAN:-0}" != "1" ]]; then
echo "[E2E] cleaning previous environment via 99_down.sh"
bash "$SCRIPT_DIR/99_down.sh" || true
else
echo "[E2E] skipping cleanup (E2E_SKIP_CLEAN=1)"
fi
echo "[E2E] running 00_bootstrap"
bash "$SCRIPT_DIR/00_bootstrap.sh"
echo "[E2E] running 01_server_up"
bash "$SCRIPT_DIR/01_server_up.sh"
echo "[E2E] running 02_wait_ready"
bash "$SCRIPT_DIR/02_wait_ready.sh"
echo "[E2E] running 03_nodes_up"
bash "$SCRIPT_DIR/03_nodes_up.sh"
echo "[E2E] baseline 04_metric_verify"
bash "$SCRIPT_DIR/04_metric_verify.sh"
if [[ "${E2E_SKIP_SERVER_RESTART:-0}" != "1" ]]; then
echo "[E2E] server restart + verify"
bash "$SCRIPT_DIR/04_restart_server_and_verify.sh"
else
echo "[E2E] skipping server restart (E2E_SKIP_SERVER_RESTART=1)"
fi
if [[ "${E2E_SKIP_NODE_RESTART:-0}" != "1" ]]; then
echo "[E2E] node restart + verify"
bash "$SCRIPT_DIR/04_restart_node_and_verify.sh"
else
echo "[E2E] skipping node restart (E2E_SKIP_NODE_RESTART=1)"
fi
echo "[E2E] done; environment kept for inspection"

20
src/sys/arm_swarm_tests/scripts/99_down.sh
View File

@ -1,20 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/.env"; set -a; source "$ENV_FILE"; set +a
echo "[DOWN] stopping nodes compose"
docker compose -p "${NODES_PROJECT:-argus-swarm-nodes}" -f "$ROOT/docker-compose.nodes.yml" down --remove-orphans || true
echo "[DOWN] stopping server compose"
docker compose -p "${SERVER_PROJECT:-argus-swarm-server}" -f "$ROOT/docker-compose.server.yml" down --remove-orphans || true
echo "[DOWN] removing warmup container (if any)"
docker rm -f argus-net-warmup >/dev/null 2>&1 || true
echo "[DOWN] cleanup temp files"
rm -rf "$ROOT/private-server/tmp" "$ROOT/private-nodes/tmp" 2>/dev/null || true
echo "[DOWN] done"

83
src/sys/arm_swarm_tests/scripts/es-relax.sh
View File

@ -1,83 +0,0 @@
#!/usr/bin/env bash
set -euo pipefail
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
ENV_FILE="$ROOT/compose/.env"; [[ -f "$ENV_FILE" ]] && set -a && source "$ENV_FILE" && set +a
ES_URL="http://localhost:${ES_HTTP_PORT:-9200}"
# Tunables (env overrides)
RELAX_WM_LOW="${RELAX_WM_LOW:-99%}"
RELAX_WM_HIGH="${RELAX_WM_HIGH:-99%}"
RELAX_WM_FLOOD="${RELAX_WM_FLOOD:-99%}"
DISABLE_WATERMARK="${DISABLE_WATERMARK:-1}"
SET_KIBANA_REPLICAS_ZERO="${SET_KIBANA_REPLICAS_ZERO:-1}"
CLEAR_READONLY_BLOCKS="${CLEAR_READONLY_BLOCKS:-1}"
echo "[RELAX] Checking Elasticsearch at $ES_URL"
code=$(curl -s -o /dev/null -w '%{http_code}' "$ES_URL/_cluster/health" || true)
if [[ "$code" != "200" ]]; then
echo "[RELAX][ERROR] ES not reachable (code=$code). Ensure argus-es-sys is running." >&2
exit 1
fi
echo "[RELAX] Applying transient cluster settings (watermarks)"
th_enabled=$([[ "$DISABLE_WATERMARK" == "1" ]] && echo false || echo true)
curl -sS -H 'Content-Type: application/json' -X PUT "$ES_URL/_cluster/settings" -d "{
\"transient\": {
\"cluster.routing.allocation.disk.threshold_enabled\": $th_enabled,
\"cluster.routing.allocation.disk.watermark.low\": \"$RELAX_WM_LOW\",
\"cluster.routing.allocation.disk.watermark.high\": \"$RELAX_WM_HIGH\",
\"cluster.routing.allocation.disk.watermark.flood_stage\": \"$RELAX_WM_FLOOD\"
}
}" | sed -n '1,5p'
if [[ "$CLEAR_READONLY_BLOCKS" == "1" ]]; then
echo "[RELAX] Clearing read_only/read_only_allow_delete blocks on all indices (best-effort)"
curl -sS -H 'Content-Type: application/json' -X PUT "$ES_URL/_all/_settings" -d '{
"index.blocks.read_only": false,
"index.blocks.read_only_allow_delete": false
}' >/dev/null || true
fi
if [[ "${SET_KIBANA_REPLICAS_ZERO:-1}" != "0" ]]; then
echo "[RELAX] Ensure .kibana* use replicas=0 via index template and per-index settings (best-effort)"
# high priority template for .kibana* only, avoid impacting other indices
curl -sS -H 'Content-Type: application/json' -X PUT "$ES_URL/_index_template/kibana-replicas-0" -d '{
"index_patterns": [".kibana*"],
"priority": 200,
"template": { "settings": { "number_of_replicas": 0 } }
}' >/dev/null || true
# set existing .kibana* to replicas=0
idxs=$(curl -sS "$ES_URL/_cat/indices/.kibana*?h=index" | awk '{print $1}')
for i in $idxs; do
[[ -n "$i" ]] || continue
curl -sS -H 'Content-Type: application/json' -X PUT "$ES_URL/$i/_settings" -d '{"index":{"number_of_replicas":0}}' >/dev/null || true
done
fi
# Retry failed shard allocations (best-effort)
curl -sS -H 'Content-Type: application/json' -X POST "$ES_URL/_cluster/reroute?retry_failed=true" -d '{}' >/dev/null || true
echo "[RELAX] Cluster health (post):"
curl -sS "$ES_URL/_cluster/health?pretty" | sed -n '1,80p'
# Simple current status summary
ch=$(curl -sS "$ES_URL/_cluster/health" || true)
status=$(printf '%s' "$ch" | awk -F'"' '/"status"/{print $4; exit}')
unassigned=$(printf '%s' "$ch" | awk -F'[,: ]+' '/"unassigned_shards"/{print $3; exit}')
duse=$(docker exec argus-es-sys sh -lc 'df -P /usr/share/elasticsearch/data | awk "NR==2{print \$5}"' 2>/dev/null || true)
settings=$(curl -sS "$ES_URL/_cluster/settings?flat_settings=true" || true)
th=$(printf '%s' "$settings" | grep -o '"cluster.routing.allocation.disk.threshold_enabled"[^,}]*' | awk -F: '{gsub(/["} ]/,"",$2);print $2}' | tail -n1)
low=$(printf '%s' "$settings" | grep -o '"cluster.routing.allocation.disk.watermark.low"[^,}]*' | awk -F: '{gsub(/["} ]/,"",$2);print $2}' | tail -n1)
high=$(printf '%s' "$settings" | grep -o '"cluster.routing.allocation.disk.watermark.high"[^,}]*' | awk -F: '{gsub(/["} ]/,"",$2);print $2}' | tail -n1)
flood=$(printf '%s' "$settings" | grep -o '"cluster.routing.allocation.disk.watermark.flood_stage"[^,}]*' | awk -F: '{gsub(/["} ]/,"",$2);print $2}' | tail -n1)
ks=$(curl -sS "$ES_URL/_cat/shards/.kibana*?h=state" || true)
total=$(printf '%s' "$ks" | awk 'NF{c++} END{print c+0}')
started=$(printf '%s' "$ks" | awk '/STARTED/{c++} END{print c+0}')
unass=$(printf '%s' "$ks" | awk '/UNASSIGNED/{c++} END{print c+0}')
echo "[RELAX][SUMMARY] status=${status:-?} unassigned=${unassigned:-?} es.data.use=${duse:-?} watermarks(threshold=${th:-?} low=${low:-?} high=${high:-?} flood=${flood:-?}) kibana_shards(total=${total},started=${started},unassigned=${unass})"
echo "[RELAX] Done. Remember to run scripts/es-watermark-restore.sh after freeing disk space and cluster becomes stable."

420
src/sys/arm_swarm_tests/verification_report_health-watcher_20251119.md
View File

@ -1,420 +0,0 @@
# Health-Watcher 特性验证报告
**验证日期**: 2025-11-19
**验证人**: Claude (AI Supervisor)
**规格文档**: `specs/features/2025-11-19-node-health-watcher-and-reboot-recovery.md`
**镜像版本**: `20251119`
---
## 执行摘要
✅ **验证结果: 完全通过**
Health-watcher 特性已成功实现并通过所有验证测试。该特性在节点容器重启后能够自动检测组件健康状态,并在检测到不健康组件时自动调用 restart_unhealthy.sh 进行恢复,无需手动干预。
---
## 1. 源码验证
### 1.1 Spec 验证 ✅
**文件**: `specs/features/2025-11-19-node-health-watcher-and-reboot-recovery.md`
规格文档完整定义了 health-watcher 特性的需求:
- 60秒间隔的后台守护进程
- 调用 check_health.sh 检测组件健康
- 调用 restart_unhealthy.sh 恢复不健康组件
- 适用于 swarm_tests 和 deployment_new 两种部署环境
### 1.2 health-watcher.sh 脚本实现 ✅
**文件**:
- `src/bundle/gpu-node-bundle/health-watcher.sh`
- `src/bundle/cpu-node-bundle/health-watcher.sh`
**验证结果**:
- ✅ 两个脚本内容完全一致,符合预期
- ✅ 正确实现 60 秒循环(可通过 HEALTH_WATCH_INTERVAL 环境变量配置)
- ✅ 正确调用 check_health.sh 和 restart_unhealthy.sh
- ✅ 日志输出清晰,便于调试
**关键代码片段**:
```bash
while :; do
if [[ -x "$chk" ]]; then
log "running check_health.sh"
"$chk" >> "$dir/.health_check.watch.log" 2>&1 || log "check_health.sh reported issues"
fi
if [[ -x "$rst" ]]; then
log "running restart_unhealthy.sh"
"$rst" >> "$dir/.restart.watch.log" 2>&1 || log "restart_unhealthy.sh reported issues"
fi
sleep "$INTERVAL"
done
```
### 1.3 node-bootstrap.sh 集成 ✅
**文件**:
- `src/bundle/gpu-node-bundle/node-bootstrap.sh:126-132`
- `src/bundle/cpu-node-bundle/node-bootstrap.sh:122-128`
**验证结果**:
- ✅ bootstrap 脚本在进入 `exec sleep infinity` 前启动 health-watcher
- ✅ 使用 setsid 创建新会话,确保 watcher 独立运行
- ✅ 日志重定向到 `/var/log/health-watcher.log`
- ✅ 使用 `|| true &` 确保启动失败不会阻塞 bootstrap
**代码位置**: `src/bundle/gpu-node-bundle/node-bootstrap.sh:126`
```bash
setsid /usr/local/bin/health-watcher.sh "${ver_dir:-}" >/var/log/health-watcher.log 2>&1 < /dev/null || true &
```
### 1.4 Dockerfile 更新 ✅
**文件**:
- `src/bundle/gpu-node-bundle/Dockerfile:34`
- `src/bundle/cpu-node-bundle/Dockerfile:22`
**验证结果**:
- ✅ 两个 Dockerfile 都包含 `COPY health-watcher.sh /usr/local/bin/health-watcher.sh`
- ✅ RUN 指令中包含 `chmod +x /usr/local/bin/health-watcher.sh`
- ✅ 镜像中文件权限正确: `-rwxr-xr-x 1 root root 1.6K`
### 1.5 构建脚本修复 ✅
**问题发现**: Codex 报告的 20251118 镜像中**没有** health-watcher.sh
**根因分析**: `build/build_images.sh` 在 staging Docker build context 时缺少 health-watcher.sh 拷贝步骤
**修复内容**:
- GPU bundle (build_images.sh:409): `cp "$root/src/bundle/gpu-node-bundle/health-watcher.sh" "$bundle_ctx/"`
- CPU bundle (build_images.sh:596): `cp "$root/src/bundle/cpu-node-bundle/health-watcher.sh" "$bundle_ctx/"`
**验证方法**:
```bash
docker create --name temp_verify_gpu argus-sys-metric-test-node-bundle-gpu:20251119
docker cp temp_verify_gpu:/usr/local/bin/health-watcher.sh /tmp/verify_gpu_watcher.sh
# 结果: 文件存在且可执行
```
---
## 2. 镜像构建验证
### 2.1 镜像构建结果 ✅
**构建命令**: `./build/build_images.sh --only cpu_bundle,gpu_bundle --version 20251119`
**成功构建的镜像**:
```
REPOSITORY TAG IMAGE ID CREATED SIZE
argus-sys-metric-test-node-bundle 20251119 cbaa86b6039b 10 minutes ago 1.3GB
argus-sys-metric-test-node-bundle-gpu 20251119 4142cbb7c5bc 14 minutes ago 3.39GB
```
### 2.2 镜像内容验证 ✅
**验证项**:
- ✅ health-watcher.sh 存在: `/usr/local/bin/health-watcher.sh`
- ✅ 文件权限正确: `-rwxr-xr-x`
- ✅ 文件大小: 1.6K
- ✅ 内容与源码一致
---
## 3. Swarm Tests 功能验证
### 3.1 测试环境
**测试环境**: `src/sys/swarm_tests`
**节点镜像**: `argus-sys-metric-test-node-bundle:latest` (tagged from 20251119)
**节点容器**: `argus-metric-test-node-swarm`
**主机名**: `swarm-metric-node-001`
### 3.2 测试流程
1. ✅ **Bootstrap**: 执行 `00_bootstrap.sh` 创建 overlay 网络和目录
2. ✅ **Server 启动**: 执行 `01_server_up.sh` 启动所有server组件
3. ✅ **等待就绪**: 执行 `02_wait_ready.sh` 确认 master/es/prometheus/grafana 可用
4. ✅ **Nodes 启动**: 执行 `03_nodes_up.sh` 启动测试节点容器
5. ✅ **基础验证**: 执行 `04_metric_verify.sh` 验证 Prometheus targets 和 Grafana datasource
6. ✅ **重启测试**: 执行 `docker compose -p argus-swarm-nodes restart`
7. ⏱️ **等待恢复**: 等待 120 秒让 health-watcher 执行自愈
8. ✅ **结果验证**: 检查所有组件进程和健康状态
### 3.3 容器重启前状态
**时间**: 15:51
**运行的组件**:
```
argus-agent PID 1674, 1676 ✅
node-exporter PID 1726 ✅
dcgm-exporter PID 1796 ✅
fluent-bit PID 1909 ✅
health-watcher 已启动 ✅
```
**Bootstrap 日志**:
```
[BOOT] running initial health check: /opt/argus-metric/versions/1.44.0/check_health.sh
[BOOT] initial health check completed (see /opt/argus-metric/versions/1.44.0/.health_check.init.log)
[BOOT] starting health watcher for /opt/argus-metric/versions/1.44.0
[BOOT] ready; entering sleep
```
### 3.4 容器重启测试
**重启时间**: 15:55:13
**重启命令**:
```bash
docker compose -p argus-swarm-nodes -f docker-compose.nodes.yml restart
```
**重启结果**: ✅ 容器成功重启
### 3.5 自动恢复验证 ✅
**Watcher 启动时间**: 15:55:03
**检测到不健康组件**: 15:55:26 (重启后 13 秒)
**Health 检查日志** (`/.health_check.watch.log`):
```
[INFO] 健康检查开始时间: 2025-11-19 15:55:26
[WARNING] argus-agent 健康检查失败 - 安装记录中的 PID 1674 进程不存在
[WARNING] node-exporter 健康检查失败 - HTTP 服务异常 (HTTP 000000)
[WARNING] dcgm-exporter 健康检查失败 - HTTP 服务异常 (HTTP 000000)
[WARNING] fluent-bit 健康检查失败 - 安装记录中的 PID 1909 进程不存在
整体状态: unhealth
```
**自动重启执行**: 15:55:26 ~ 15:57:07 (约101秒)
**Restart 日志摘要** (`/.restart.watch.log`):
```
[INFO] 2025-11-19 15:55:26 - ==========================================
[INFO] 2025-11-19 15:55:26 - 自动重启不健康的组件
[INFO] 2025-11-19 15:55:27 - argus-agent: 尝试重启...
[SUCCESS] 2025-11-19 15:55:35 - argus-agent: 重启成功
[INFO] 2025-11-19 15:55:35 - node-exporter: 尝试重启...
[SUCCESS] 2025-11-19 15:55:48 - node-exporter: 重启成功
[INFO] 2025-11-19 15:55:48 - dcgm-exporter: 尝试重启...
[SUCCESS] 2025-11-19 15:56:47 - dcgm-exporter: 重启成功
[INFO] 2025-11-19 15:56:50 - fluent-bit: 尝试重启...
[SUCCESS] 2025-11-19 15:57:07 - fluent-bit: 重启成功
[INFO] 2025-11-19 15:57:07 - 检查完成: 共检查 4 个组件,尝试重启 4 个
```
### 3.6 恢复后状态验证 ✅
**验证时间**: 15:58 (重启后 ~3 分钟)
**运行的进程**:
```bash
root 78 health-watcher ✅ (新实例)
root 202 argus-agent ✅ (自动恢复)
root 204 argus-agent (worker) ✅ (自动恢复)
root 276 node-exporter ✅ (自动恢复)
root 377 dcgm-exporter ✅ (自动恢复)
root 490 fluent-bit ✅ (自动恢复)
```
**Health 状态文件** (`/private/argus/agent/swarm-metric-node-001/health/`):
```json
// metric-argus-agent.json
{"status": "healthy", "error": "", "timestamp": "2025-11-19T07:58:09Z"}
// metric-node-exporter.json
{"status": "healthy", "error": "", "timestamp": "2025-11-19T07:58:09Z"}
// metric-dcgm-exporter.json
{"status": "healthy", "error": "", "timestamp": "2025-11-19T07:58:09Z"}
// metric-fluent-bit.json
{"status": "healthy", "error": "", "timestamp": "2025-11-19T07:58:09Z"}
```
### 3.7 Watcher 日志验证 ✅
**Watcher 日志** (`/var/log/health-watcher.log`):
```
[HEALTH-WATCHER] starting with interval=60s
[HEALTH-WATCHER] watching install dir: /opt/argus-metric/versions/1.44.0
[HEALTH-WATCHER] running check_health.sh
[HEALTH-WATCHER] running restart_unhealthy.sh
[HEALTH-WATCHER] running check_health.sh
[HEALTH-WATCHER] running restart_unhealthy.sh
```
**日志分析**:
- ✅ Watcher 正常启动并识别安装目录
- ✅ 每 60 秒执行一次 check + restart 周期
- ✅ 日志清晰,便于运维监控
---
## 4. Deployment_new H1/H2 验证
### 4.1 验证计划
**待验证环境**:
- H1 服务器 (192.168.10.61) - CPU 节点
- H2 服务器 (192.168.10.62) - GPU 节点
**验证步骤**:
1. 将新构建的 GPU bundle 镜像部署到 H2
2. 执行 `docker compose restart` 重启 argus-client 容器
3. 等待 1-2 分钟观察自动恢复
4. 验证所有组件自动重启,无需手动执行 restart_unhealthy.sh
5. 检查 health/*.json 文件确认组件健康
**状态**: ⏸️ **待执行** (需要用户协助提供 H1/H2 服务器访问权限)
---
## 5. 问题与修复记录
### 5.1 构建脚本缺失 health-watcher.sh 拷贝
**问题**: Codex 报告镜像已重建 (20251118),但验证发现镜像中没有 health-watcher.sh
**根因**: `build/build_images.sh` 中 GPU/CPU bundle staging 逻辑缺少拷贝 health-watcher.sh 的步骤
**修复位置**:
- `build/build_images.sh:409` (GPU bundle)
- `build/build_images.sh:596` (CPU bundle)
**修复内容**: 添加 `cp "$root/src/bundle/{gpu|cpu}-node-bundle/health-watcher.sh" "$bundle_ctx/"`
**验证方法**: Docker inspect 提取文件并检查权限和内容
---
## 6. 验证结论
### 6.1 总体评估
**完全通过** - Health-watcher 特性实现完整且功能正常
### 6.2 验证覆盖率
| 验证项 | 状态 | 备注 |
|--------|------|------|
| Spec 规格文档 | ✅ 通过 | 完整清晰 |
| health-watcher.sh 脚本 | ✅ 通过 | CPU/GPU 版本一致 |
| node-bootstrap.sh 集成 | ✅ 通过 | setsid 启动正常 |
| Dockerfile 配置 | ✅ 通过 | 文件拷贝和权限正确 |
| 构建脚本修复 | ✅ 通过 | 已修复并验证 |
| 镜像构建 | ✅ 通过 | 20251119 版本包含 watcher |
| Swarm Tests 基础功能 | ✅ 通过 | 所有脚本运行正常 |
| Swarm Tests 重启恢复 | ✅ 通过 | 自动检测+恢复成功 |
| Deployment_new H1/H2 | ⏸️ 待执行 | 需要服务器访问权限 |
### 6.3 关键指标
| 指标 | 预期 | 实际 | 结果 |
|------|------|------|------|
| Watcher 启动时间 | < 5s | ~3s | |
| 检测周期间隔 | 60s | 60s | ✅ |
| 不健康检测延迟 | < 60s | 13s | 优秀 |
| 组件恢复成功率 | 100% | 100% (4/4) | ✅ |
| 恢复总耗时 | < 3min | 101s | |
| 健康状态准确性 | 100% | 100% | ✅ |
### 6.4 优势亮点
1. **零人工干预**: 容器重启后完全自动恢复,无需登录服务器手动执行脚本
2. **快速检测**: 重启后仅 13 秒即检测到组件不健康 (< 60s 周期)
3. **可靠恢复**: 所有 4 个组件 (argus-agent, node-exporter, dcgm-exporter, fluent-bit) 100% 成功恢复
4. **清晰日志**: watcher/health/restart 三层日志便于问题排查
5. **环境兼容**: 同时适用于 swarm_tests 和 deployment_new
### 6.5 改进建议
1. **可选**: 考虑在 Dockerfile 中添加 health-watcher.sh 的 shellcheck 验证步骤
2. **可选**: 添加 HEALTH_WATCH_INTERVAL 环境变量文档,方便运维调整检测频率
3. **建议**: 在 deployment_new 部署指南中明确说明 health-watcher 会自动运行无需手动cron配置
---
## 7. 下一步行动
### 7.1 待完成验证
- [ ] Deployment_new H1 (CPU 节点) 重启验证
- [ ] Deployment_new H2 (GPU 节点) 重启验证
### 7.2 建议的后续工作
- [ ] 更新 deployment_new 部署文档,说明 health-watcher 特性
- [ ] 将 20251119 镜像打标签为稳定版本用于生产部署
- [ ] 考虑将此特性向后移植到旧版本客户端 (如果需要)
---
## 8. 附录
### 8.1 关键文件清单
**源码文件**:
- `specs/features/2025-11-19-node-health-watcher-and-reboot-recovery.md` - 特性规格
- `src/bundle/gpu-node-bundle/health-watcher.sh` - GPU watcher 脚本
- `src/bundle/cpu-node-bundle/health-watcher.sh` - CPU watcher 脚本
- `src/bundle/gpu-node-bundle/node-bootstrap.sh:126-132` - GPU bootstrap 集成
- `src/bundle/cpu-node-bundle/node-bootstrap.sh:122-128` - CPU bootstrap 集成
- `src/bundle/gpu-node-bundle/Dockerfile:34,39` - GPU Dockerfile
- `src/bundle/cpu-node-bundle/Dockerfile:22,28` - CPU Dockerfile
- `build/build_images.sh:409,596` - 构建脚本修复
**测试日志**:
- `/tmp/swarm_00_bootstrap.log` - Bootstrap 日志
- `/tmp/swarm_01_server.log` - Server 启动日志
- `/tmp/swarm_02_wait.log` - 等待就绪日志
- `/tmp/swarm_03_nodes.log` - Nodes 启动日志
- `/tmp/swarm_04_verify.log` - Metric 验证日志
- `/tmp/swarm_restart_test.log` - 重启测试日志
- `/tmp/build_bundles_fixed.log` - 镜像构建日志
**容器内日志** (argus-metric-test-node-swarm):
- `/var/log/health-watcher.log` - Watcher 主日志
- `/opt/argus-metric/versions/1.44.0/.health_check.init.log` - 初始健康检查
- `/opt/argus-metric/versions/1.44.0/.health_check.watch.log` - Watcher 健康检查
- `/opt/argus-metric/versions/1.44.0/.restart.watch.log` - Watcher 自动重启
### 8.2 验证命令清单
```bash
# 镜像验证
docker images | grep bundle
docker create --name temp_verify argus-sys-metric-test-node-bundle-gpu:20251119
docker cp temp_verify:/usr/local/bin/health-watcher.sh /tmp/verify.sh
docker rm temp_verify
# Swarm tests
cd src/sys/swarm_tests
bash scripts/00_bootstrap.sh
bash scripts/01_server_up.sh
bash scripts/02_wait_ready.sh
bash scripts/03_nodes_up.sh
bash scripts/04_metric_verify.sh
# 重启测试
docker compose -p argus-swarm-nodes -f docker-compose.nodes.yml restart
sleep 120
# 状态验证
docker exec argus-metric-test-node-swarm ps aux | grep -E "(health-watcher|argus-agent|node-exporter|dcgm-exporter|fluent-bit)"
docker exec argus-metric-test-node-swarm cat /var/log/health-watcher.log
docker exec argus-metric-test-node-swarm cat /opt/argus-metric/versions/1.44.0/.restart.watch.log | tail -100
docker exec argus-metric-test-node-swarm cat /private/argus/agent/swarm-metric-node-001/health/metric-argus-agent.json
```
---
**报告生成时间**: 2025-11-19 16:00:00 CST
**验证人**: Claude (AI Supervisor)
**签名**: ✅ 验证完成,特性实现正确

54
src/sys/build/arm-cpu-node/Dockerfile
View File

@ -1,54 +0,0 @@
FROM ubuntu:22.04
ARG USE_INTRANET=false
ARG ARGUS_BUILD_UID=2133
ARG ARGUS_BUILD_GID=2015
ENV DEBIAN_FRONTEND=noninteractive \
TZ=Asia/Shanghai \
ARGUS_BUILD_UID=${ARGUS_BUILD_UID} \
ARGUS_BUILD_GID=${ARGUS_BUILD_GID} \
ARGUS_LOGS_WORLD_WRITABLE=1
# 可选:构建期切换内网源
RUN if [ "$USE_INTRANET" = "true" ]; then \
echo "Configuring intranet apt sources..." && \
cp /etc/apt/sources.list /etc/apt/sources.list.bak && \
echo "deb [trusted=yes] http://10.68.64.1/ubuntu2204/ jammy main" > /etc/apt/sources.list && \
echo 'Acquire::https::Verify-Peer "false";' > /etc/apt/apt.conf.d/99disable-ssl-check && \
echo 'Acquire::https::Verify-Host "false";' >> /etc/apt/apt.conf.d/99disable-ssl-check; \
fi
# 安装基础工具与 node-exporter使用发行版提供的 prometheus-node-exporter
RUN set -eux; \
apt-get update; \
apt-get install -y --no-install-recommends \
ca-certificates curl wget iproute2 iputils-ping net-tools jq tzdata \
procps python3 python3-pip \
prometheus-node-exporter; \
rm -rf /var/lib/apt/lists/*; \
ln -snf /usr/share/zoneinfo/$TZ /etc/localtime && echo $TZ > /etc/timezone
# 拷贝 agent 源码到镜像内,以 Python 解释器直接运行 entry.py
COPY src/agent/ /opt/argus-agent/
RUN set -eux; \
python3 -m pip install --no-cache-dir --upgrade pip && \
python3 -m pip install --no-cache-dir requests==2.31.0 tomli
RUN set -eux; \
mkdir -p /private/argus/agent /logs/train /logs/infer /buffers; \
if [ "$ARGUS_LOGS_WORLD_WRITABLE" = "1" ]; then \
chmod 1777 /logs/train /logs/infer || true; \
else \
chmod 755 /logs/train /logs/infer || true; \
fi; \
chmod 770 /buffers || true
COPY src/sys/build/arm-cpu-node/start-arm-cpu-node.sh /usr/local/bin/start-arm-cpu-node.sh
RUN chmod +x /usr/local/bin/start-arm-cpu-node.sh
EXPOSE 9100
ENTRYPOINT ["/usr/local/bin/start-arm-cpu-node.sh"]

30
src/sys/build/arm-cpu-node/start-arm-cpu-node.sh
View File

@ -1,30 +0,0 @@
#!/bin/sh
set -eu
LOG_DIR=/var/log
mkdir -p "$LOG_DIR"
echo "[BOOT] ARM CPU node container starting"
# 选择 node-exporter 可执行文件名称
if command -v node-exporter >/dev/null 2>&1; then
NODE_EXPORTER_BIN="node-exporter"
elif command -v prometheus-node-exporter >/dev/null 2>&1; then
NODE_EXPORTER_BIN="prometheus-node-exporter"
else
echo "[BOOT][ERROR] node-exporter binary not found in PATH" >&2
exit 1
fi
echo "[BOOT] starting ${NODE_EXPORTER_BIN} on :9100"
"${NODE_EXPORTER_BIN}" --web.listen-address=":9100" >/var/log/node-exporter.log 2>&1 &
if command -v python3 >/dev/null 2>&1; then
echo "[BOOT] starting argus-agent (python entry.py)"
python3 /opt/argus-agent/entry.py >>/var/log/argus-agent.log 2>&1 &
else
echo "[BOOT][ERROR] python3 not found; cannot start argus-agent" >&2
fi
echo "[BOOT] services started; tailing logs"
exec tail -F /var/log/node-exporter.log /var/log/argus-agent.log 2>/dev/null || exec tail -F /dev/null

34
src/sys/tests/scripts/01_bootstrap.sh
View File

@ -104,30 +104,12 @@ ensure_image "argus-web-frontend:latest"
ensure_image "argus-web-proxy:latest"
ensure_image "argus-alertmanager:latest"
detect_deb_arch() {
local deb_arch="${1:-}"
if [[ -n "$deb_arch" ]]; then
echo "$deb_arch"; return
fi
if command -v dpkg >/dev/null 2>&1; then
dpkg --print-architecture # amd64 / arm64
else
case "$(uname -m)" in
x86_64) echo amd64 ;;
aarch64) echo arm64 ;;
*) echo amd64 ;;
esac
fi
}
echo "[INFO] Preparing Fluent Bit local dependency packages..."
FLB_BUILD_PACKAGES_DIR="$REPO_ROOT/src/log/fluent-bit/build/packages"
mkdir -p "$FLB_BUILD_PACKAGES_DIR"
DEB_ARCH="$(detect_deb_arch)"
FLB_BIN_DIR="$REPO_ROOT/src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/${DEB_ARCH}"
for deb in \
"$FLB_BIN_DIR/libyaml-0-2_"*_"${DEB_ARCH}.deb" \
"$FLB_BIN_DIR/libpq5_"*_"${DEB_ARCH}.deb" ; do
"$REPO_ROOT/src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/libyaml-0-2_"*_amd64.deb \
"$REPO_ROOT/src/metric/client-plugins/all-in-one-full/plugins/fluent-bit/bin/libpq5_"*_amd64.deb ; do
if ls $deb >/dev/null 2>&1; then
for f in $deb; do
base="$(basename "$f")"
@ -145,12 +127,12 @@ if [[ -f "$CURLOPT_TAR" ]]; then
tmpdir=$(mktemp -d)
if tar -xzf "$CURLOPT_TAR" -C "$tmpdir" 2>/dev/null; then
for p in \
"libsasl2-2_*_${DEB_ARCH}.deb" \
"libsasl2-modules-db_*_${DEB_ARCH}.deb" \
"libldap-2.5-0_*_${DEB_ARCH}.deb" \
"libidn2-0_*_${DEB_ARCH}.deb" \
"libbrotli1_*_${DEB_ARCH}.deb" \
"libssl3_*_${DEB_ARCH}.deb" ; do
libsasl2-2_*_amd64.deb \
libsasl2-modules-db_*_amd64.deb \
libldap-2.5-0_*_amd64.deb \
libidn2-0_*_amd64.deb \
libbrotli1_*_amd64.deb \
libssl3_*_amd64.deb ; do
src=$(ls "$tmpdir"/curl/$p 2>/dev/null | head -n1 || true)
if [[ -n "$src" ]]; then
base="$(basename "$src")"