pirogoeth · pirogoeth · Oct 26, 2025 · Oct 26, 2025 · Nov 2, 2025 · Nov 8, 2025
diff --git a/README.md b/README.md
@@ -16,4 +16,4 @@ monorepo of golang apps for fun and profit
 
 ### `nomad-service-cleaner`
 
-`nomad-service-cleaner` is a one-shot program that cleans p defunct Nomad service registry entries.
+`nomad-service-cleaner` is a one-shot program that cleans p defunct Nomad service registry entries.
diff --git a/docker-hermes/.gitignore b/docker-hermes/.gitignore
@@ -0,0 +1 @@
+docker-hermes
diff --git a/docker-hermes/Dockerfile b/docker-hermes/Dockerfile
@@ -0,0 +1,42 @@
+# Multi-stage Dockerfile for docker-hermes
+FROM golang:1.24-alpine AS builder
+
+# Install build dependencies
+RUN apk add --no-cache git
+
+# Set working directory
+WORKDIR /src
+
+# Copy source code
+COPY . .
+
+WORKDIR /src/docker-hermes
+
+# Build the binary
+RUN CGO_ENABLED=0 GOOS=linux go build -a -installsuffix cgo -o docker-hermes .
+
+# Final stage
+FROM alpine:latest
+
+# Install runtime dependencies
+RUN apk --no-cache add ca-certificates docker-cli
+
+# Create non-root user
+RUN addgroup -g 1001 -S docker-hermes && \
+    adduser -u 1001 -S docker-hermes -G docker-hermes
+
+# Copy binary from builder
+COPY --from=builder /src/docker-hermes/docker-hermes /usr/local/bin/docker-hermes
+
+# Create config directory
+RUN mkdir -p /etc/docker-hermes && \
+    chown docker-hermes:docker-hermes /etc/docker-hermes
+
+# Switch to non-root user
+USER docker-hermes
+
+# Expose metrics port
+EXPOSE 9090
+
+# Default command
+ENTRYPOINT ["docker-hermes"]
diff --git a/docker-hermes/README.md b/docker-hermes/README.md
@@ -0,0 +1,19 @@
+# docker-hermes
+
+## goals
+
+docker-hermes is a sort of service registration system. the goal is to create an agent along with a server.
+
+the agent should:
+- run on each docker node/instance and report labels to a central database/system.
+- labels should be kept fresh in the database as long as the container they are associated with is still running
+- information about the host and ports associated with the labelled container should also be reported to the central database/system.
+- expose a prometheus endpoint detailing resource usage (this should be relatively built-in to the apps framework)
+- expose traces for the gathering and emitting process
+- support specifying a label prefix/"namespacing"
+
+the server should:
+- run in a central location, attached to the database. 
+- serve a Prometheus HTTP SD endpoint containing any services that have a proper set of prometheus labels.
+- have an API that allows for lookup of containers/services based on label contents
+- have an API that allows for lookup of labels by container information
diff --git a/docker-hermes/agent/agent.go b/docker-hermes/agent/agent.go
@@ -0,0 +1,226 @@
+package agent
+
+import (
+	"context"
+	"fmt"
+	"net/http"
+	"sync"
+	"time"
+
+	"github.com/docker/docker/api/types/events"
+	"github.com/prometheus/client_golang/prometheus"
+	"github.com/prometheus/client_golang/prometheus/promhttp"
+	"github.com/sirupsen/logrus"
+
+	"github.com/pirogoeth/apps/docker-hermes/redis"
+	"github.com/pirogoeth/apps/docker-hermes/types"
+)
+
+// Agent represents the docker-hermes agent
+type Agent struct {
+	config        *types.Config
+	dockerClient  *DockerClient
+	storageClient types.StorageClient
+	reporter      *Reporter
+
+	// Metrics
+	containersTracked prometheus.Gauge
+	updatesSent       prometheus.Counter
+	errorsTotal       prometheus.Counter
+
+	// State
+	containers map[string]*types.ContainerInfo
+	mu         sync.RWMutex
+}
+
+// NewAgent creates a new agent instance
+func NewAgent(config *types.Config) (*Agent, error) {
+	dockerClient, err := NewDockerClient(config.Agent.DockerSocket)
+	if err != nil {
+		return nil, fmt.Errorf("failed to create Docker client: %w", err)
+	}
+
+	// TODO: Resolve storage client type based on config
+	storageClient, err := redis.NewClient(config.Redis.URL)
+	if err != nil {
+		dockerClient.Close()
+		return nil, fmt.Errorf("failed to create storage client: %w", err)
+	}
+
+	reporter := NewReporter(storageClient, ReporterOpts{
+		HeartbeatInterval:        config.Agent.HeartbeatInterval,
+		Hostname:                 config.Agent.Hostname,
+		LabelsConfig:             &config.Labels,
+		TargetResolutionStrategy: config.Agent.TargetResolutionStrategy,
+		TargetResolutionHost:     config.Agent.TargetResolutionHost,
+	})
+
+	// Initialize metrics
+	containersTracked := prometheus.NewGauge(prometheus.GaugeOpts{
+		Name: "docker_hermes_containers_tracked",
+		Help: "Number of containers currently being tracked",
+	})
+
+	updatesSent := prometheus.NewCounter(prometheus.CounterOpts{
+		Name: "docker_hermes_updates_sent_total",
+		Help: "Total number of container updates sent to server",
+	})
+
+	errorsTotal := prometheus.NewCounter(prometheus.CounterOpts{
+		Name: "docker_hermes_errors_total",
+		Help: "Total number of errors encountered",
+	})
+
+	// Register metrics
+	prometheus.MustRegister(containersTracked, updatesSent, errorsTotal)
+
+	return &Agent{
+		config:            config,
+		dockerClient:      dockerClient,
+		storageClient:     storageClient,
+		reporter:          reporter,
+		containersTracked: containersTracked,
+		updatesSent:       updatesSent,
+		errorsTotal:       errorsTotal,
+		containers:        make(map[string]*types.ContainerInfo),
+	}, nil
+}
+
+// Run starts the agent main loop
+func (a *Agent) Run(ctx context.Context) error {
+	logrus.Info("Starting docker-hermes agent")
+
+	// Initial scan
+	if err := a.performHeartbeat(ctx); err != nil {
+		logrus.Errorf("Initial heartbeat failed: %v", err)
+		a.errorsTotal.Inc()
+	}
+
+	// Start event watcher
+	go func() {
+		if err := a.dockerClient.WatchContainers(ctx, a.config.Agent.Hostname, a.handleDockerEvent); err != nil {
+			logrus.Errorf("Docker event watcher failed: %v", err)
+			a.errorsTotal.Inc()
+		}
+	}()
+
+	// Start heartbeat ticker
+	ticker := time.NewTicker(a.config.Agent.HeartbeatInterval)
+	defer ticker.Stop()
+
+	for {
+		select {
+		case <-ticker.C:
+			if err := a.performHeartbeat(ctx); err != nil {
+				logrus.Errorf("Heartbeat failed: %v", err)
+				a.errorsTotal.Inc()
+			}
+		case <-ctx.Done():
+			logrus.Info("Agent shutting down")
+			return nil
+		}
+	}
+}
+
+// performHeartbeat performs a full container scan and reports to server
+func (a *Agent) performHeartbeat(ctx context.Context) error {
+	logrus.Debug("Performing heartbeat")
+
+	// Scan all running containers
+	containers, err := a.dockerClient.ScanContainers(ctx, a.config.Agent.Hostname)
+	if err != nil {
+		return fmt.Errorf("failed to scan containers: %w", err)
+	}
+
+	// Update internal state
+	a.mu.Lock()
+	newContainers := make(map[string]*types.ContainerInfo)
+	for _, container := range containers {
+		newContainers[container.ID] = container
+	}
+	a.containers = newContainers
+	a.mu.Unlock()
+
+	// Update metrics
+	a.containersTracked.Set(float64(len(containers)))
+
+	// Report all containers
+	for _, container := range containers {
+		if err := a.reporter.ReportContainer(ctx, container); err != nil {
+			logrus.Errorf("Failed to report container %s: %v", container.ID, err)
+			a.errorsTotal.Inc()
+			continue
+		}
+		a.updatesSent.Inc()
+	}
+
+	logrus.Debugf("Heartbeat completed: %d containers reported", len(containers))
+	return nil
+}
+
+// handleDockerEvent handles Docker events
+func (a *Agent) handleDockerEvent(container *types.ContainerInfo, eventType events.Action) {
+	ctx := context.Background()
+
+	logrus.Debugf("Handling Docker event: %s for container %s", eventType, container.ID)
+
+	switch eventType {
+	case "start":
+		// Update internal state
+		a.mu.Lock()
+		a.containers[container.ID] = container
+		a.mu.Unlock()
+
+		// Report to server
+		if err := a.reporter.ReportContainer(ctx, container); err != nil {
+			logrus.Errorf("Failed to report container start: %v", err)
+			a.errorsTotal.Inc()
+		} else {
+			a.updatesSent.Inc()
+		}
+
+	case "stop", "die":
+		// Remove from internal state
+		a.mu.Lock()
+		delete(a.containers, container.ID)
+		a.mu.Unlock()
+
+		// Report removal to server
+		if err := a.reporter.ReportContainerRemoval(ctx, container); err != nil {
+			logrus.Errorf("Failed to report container removal: %v", err)
+			a.errorsTotal.Inc()
+		} else {
+			a.updatesSent.Inc()
+		}
+	}
+
+	// Update metrics
+	a.mu.RLock()
+	trackedCount := len(a.containers)
+	a.mu.RUnlock()
+	a.containersTracked.Set(float64(trackedCount))
+}
+
+// Close closes the agent and cleans up resources
+func (a *Agent) Close() error {
+	var errs []error
+
+	if err := a.dockerClient.Close(); err != nil {
+		errs = append(errs, fmt.Errorf("failed to close Docker client: %w", err))
+	}
+
+	if err := a.storageClient.Close(); err != nil {
+		errs = append(errs, fmt.Errorf("failed to close storage client: %w", err))
+	}
+
+	if len(errs) > 0 {
+		return fmt.Errorf("errors during cleanup: %v", errs)
+	}
+
+	return nil
+}
+
+// GetMetricsHandler returns the Prometheus metrics handler
+func (a *Agent) GetMetricsHandler() http.Handler {
+	return promhttp.Handler()
+}
Original file line number	Diff line number	Diff line change
Expand Up		@@ -16,4 +16,4 @@ monorepo of golang apps for fun and profit

		### `nomad-service-cleaner`

		`nomad-service-cleaner` is a one-shot program that cleans p defunct Nomad service registry entries.
		`nomad-service-cleaner` is a one-shot program that cleans p defunct Nomad service registry entries.