Add fluentbit wait on server availability

deepfence_agent/Dockerfile

@@ -71,6 +71,7 @@ COPY plugins/compliance/scripts /usr/local/bin/compliance_check/scripts
 COPY plugins/compliance/config.json /usr/local/bin/compliance_check/config.json
 COPY supervisord.conf /home/deepfence/supervisord.conf
 COPY run_discovery.sh /home/deepfence/
+COPY plugins/etc/run_fluentbit.sh /home/deepfence/
 COPY create_cgroups.sh /home/deepfence/create-cgroups.sh
 RUN mkdir -p /home/deepfence/bin && mkdir -p /home/deepfence/bin/secret-scanner && mkdir -p /home/deepfence/bin/yara-hunter
 COPY plugins/yara-rules /home/deepfence/bin/yara-hunter/yara-rules

deepfence_agent/plugins/etc/run_fluentbit.sh

@@ -0,0 +1,10 @@
+HEALTH_ENDPOINT=https://${MGMT_CONSOLE_URL}:${MGMT_CONSOLE_PORT}/deepfence/ping
+echo "Wait for a pong on ${HEALTH_ENDPOINT}"
+
+until $(curl -k --output /dev/null --silent --fail ${HEALTH_ENDPOINT}); do
+    echo '.'
+    sleep 5
+done
+echo 'Got a pong, executing fluentbit bin'
+
+exec $DF_INSTALL_DIR/opt/td-agent-bit/bin/fluent-bit -c $DF_INSTALL_DIR/etc/td-agent-bit/fluentbit-agent.conf

deepfence_bootstrapper/Makefile

@@ -11,7 +11,7 @@ vendor: go.mod $(shell find ../deepfence_utils -path ../deepfence_utils/vendor -
 	go mod tidy -v
 	go mod vendor
 
-deepfence_bootstrapper: vendor $(shell find . -path ./vendor -prune -o -name '*.go')
+deepfence_bootstrapper: vendor $(shell find . -path ./vendor -prune -o -name '*.go') $(shell find ./assets/ -name '*.ini')
 	CGO_ENABLED=0 GOOS=linux go build -ldflags="-s -w -X main.Version=${VERSION} -extldflags=-static" -buildvcs=false
 	-upx ./deepfence_bootstrapper
 

deepfence_bootstrapper/assets/config.ini

@@ -3,7 +3,7 @@ maxcpu = 10
 maxmem = 100000
 
 [process:fluentbit]
-command=/bin/bash -c "exec $DF_INSTALL_DIR/opt/td-agent-bit/bin/fluent-bit -c $DF_INSTALL_DIR/etc/td-agent-bit/fluentbit-agent.conf"
+command=/home/deepfence/run_fluentbit.sh
 path=$DF_INSTALL_DIR/opt/td-agent-bit/bin/fluent-bit
 autostart=true
 autorestart=true