混沌工程與故障注入實戰前言在當今高度分佈式的雲原生架構中系統的複雜性呈指數級增長。傳統的測試方法只能驗證系統在正常情況下的行為但無法保證系統在面對各種故障場景時能夠保持穩定。混沌工程Chaos Engineering作為一種新興的工程實踐通過在生產環境中主動引入故障來發現系統的薄弱環節從而提高系統的韌性和可靠性。Netflix是最早推行混沌工程的公司其開源的Chaos Monkey工具至今仍是業界標杆。本文將深入探討混沌工程的核心理念、在Spring Boot應用中的實踐方法、故障注入工具的使用以及如何構建完善的韌性測試策略。混沌工程核心理念什麼是混沌工程混沌工程是一種在系統上进行實驗的學科目的是建立對系統抵禦現實世界中混亂情況能力的信心。這種方法的核心思想是與其等待故障發生後被動應對不如主動在受控環境中製造故障提前發現並修復潛在問題。混沌工程與傳統測試的區別在於傳統測試是確定性的它驗證系統在預期條件下的行為而混沌工程是不確定的它探索系統在非預期條件下的表現。混沌工程不僅發現已知的問題更重要的是發現那些我們不知道的問題。混沌工程實驗流程 1. 定義穩態Define Steady State ↓ 2. 假設Form Hypothesis ↓ 3. 設計實驗Design Experiment ↓ 4. 執行實驗Execute Experiment ↓ 5. 觀察結果Observe Results ↓ 6. 分析影響Analyze Impact ↓ 7. 關閉實驗Stop Experiment ↓ 8. 改進系統Improve System混沌工程原則Netflix提出的混沌工程原則為業界提供了重要的指導方針穩態假設Steady State Hypothesis在開始實驗前必須定義什麼是系統的「正常」行為。只有建立了這個基線才能判斷故障是否對系統造成了影響。多樣化真實事件Simulate Real World Events注入的故障應該模擬真實世界中可能發生的問題如網絡延遲、服務器宕機、磁盤滿等。生產環境實驗Production Experiments只有生產環境才能真正反映系統的實際表現。但在生產環境中實驗需要非常謹慎確保有完善的回滾機制。最小化影響範圍Minimize Blast Radius每次實驗都應該只影響最小的用戶群體並確保可以快速恢復。自動化實驗Automate Experiments將實驗自動化定期執行持續監控系統韌性。Spring Boot故障注入實踐Chaos Monkey for Spring BootChaos Monkey for Spring Boot是專為Spring Boot應用設計的故障注入工具它提供了多種故障注入方式dependencies dependency groupIdde.cognicrypt/groupId artifactIdchaos-monkey-spring-boot/artifactId version3.0.0/version /dependency /dependencies spring: chaos: monkey: enabled: true endpoint: enabled: true custom-actuator-endpoint-key: chaos-monkey watcher: active: true controller: true rest-controller: true service: true repository: false component: true assaults: latency-assault: enabled: true latency-range-min: 1000 latency-range-max: 5000 exception-assault: enabled: true exception-type: java.lang.RuntimeException exceptions: [] kill-application-assault: enabled: false memory-assault: enabled: false memory-fill-level: 50 cpu-assault: enabled: false cpu-load-range: 50自定義故障注入器Component Slf4j public class CustomChaosEngine { private final MapString, FaultStrategy faultStrategies new ConcurrentHashMap(); private volatile boolean enabled true; PostConstruct public void init() { faultStrategies.put(timeout, new TimeoutFaultStrategy()); faultStrategies.put(circuit-breaker, new CircuitBreakerFaultStrategy()); faultStrategies.put(data-corruption, new DataCorruptionFaultStrategy()); faultStrategies.put(rate-limiter, new RateLimiterFaultStrategy()); } public T MonoT injectFault(MonoT original, String faultType, int probability) { if (!enabled || !shouldInjectFault(probability)) { return original; } FaultStrategy strategy faultStrategies.get(faultType); if (strategy null) { log.warn(Unknown fault type: {}, faultType); return original; } return original .delayElement(Duration.ofMillis(50)) .transform(mono - strategy.apply(mono)); } private boolean shouldInjectFault(int probability) { return ThreadLocalRandom.current().nextInt(100) probability; } public void setEnabled(boolean enabled) { this.enabled enabled; } } public interface FaultStrategy { T PublisherT apply(PublisherT original); } Component Slf4j public class TimeoutFaultStrategy implements FaultStrategy { Override public T PublisherT apply(PublisherT original) { return Mono.timeout(original.flatMap(t - Mono.just(t)), Duration.ofMillis(100)) .onErrorResume(TimeoutException.class, e - { log.info(Timeout fault injected); return Mono.error(new ServiceTimeoutException(服務響應超時)); }); } } Component Slf4j public class CircuitBreakerFaultStrategy implements FaultStrategy { private final CircuitBreakerRegistry registry CircuitBreakerRegistry.ofDefaults(); Override public T PublisherT apply(PublisherT original) { CircuitBreaker breaker registry.circuitBreaker(chaos-breaker); return Mono.fromCallable(() - original) .transform(breaker) .onErrorResume(e - { log.info(Circuit breaker fault injected: {}, e.getMessage()); return Mono.error(new ServiceUnavailableException(服務暫不可用)); }); } } Component Slf4j public class DataCorruptionFaultStrategy implements FaultStrategy { Override public T PublisherT apply(PublisherT original) { return Flux.from(original) .map(item - { if (ThreadLocalRandom.current().nextBoolean()) { log.info(Data corruption fault injected); throw new DataCorruptionException(數據損壞); } return item; }); } } Component Slf4j public class RateLimiterFaultStrategy implements FaultStrategy { private final AtomicInteger requestCount new AtomicInteger(0); private final int maxRequests; private volatile Instant windowStart; public RateLimiterFaultStrategy() { this.maxRequests 10; this.windowStart Instant.now(); } Override public T PublisherT apply(PublisherT original) { Instant now Instant.now(); if (Duration.between(windowStart, now).getSeconds() 60) { requestCount.set(0); windowStart now; } if (requestCount.incrementAndGet() maxRequests) { log.info(Rate limiter fault injected); return Mono.error(new RateLimitExceededException(請求頻率超限)); } return original; } }Netflix Chaos Monkey配置完整配置示例spring: application: name: chaos-monkey-demo chaos: monkey: enabled: true endpoint: enabled: true port: 8088 custom-actuator-endpoint-key: /actuator/chaosmonkey assaults: latency-assault: enabled: true latency-range-min: 2000 latency-range-max: 8000 probability-range: 30 exception-assault: enabled: true exceptions: - class: java.lang.RuntimeException message: Chaos Monkey Exception - class: org.springframework.web.client.HttpServerErrorException message: Service temporarily unavailable probability-range: 10 kill-application-assault: enabled: false memory-assault: enabled: true memory-fill-level: 60 aggressive-fill-level: 80 duration-in-seconds: 30 cpu-assault: enabled: true cpu-load-range: 70 duration-in-seconds: 15 thread-sleep-assault: enabled: true sleep-range-min: 1000 sleep-range-max: 3000 watchers: controller: true rest-controller: true service: true repository: false component: true async: false通過REST API控制故障注入RestController RequestMapping(/chaos) public class ChaosController { private final ChaosMonkeyService chaosMonkeyService; private final ChaosSettings settings; Autowired public ChaosController(ChaosMonkeyService chaosMonkeyService, ChaosSettings settings) { this.chaosMonkeyService chaosMonkeyService; this.settings settings; } GetMapping(/status) public ResponseEntityMapString, Object getStatus() { MapString, Object status new HashMap(); status.put(enabled, settings.isEnabled()); status.put(assaults, getAssaultStatus()); status.put(watchers, getWatcherStatus()); return ResponseEntity.ok(status); } PostMapping(/enable) public ResponseEntityString enableChaos() { chaosMonkeyService.enable(); return ResponseEntity.ok(Chaos Monkey enabled); } PostMapping(/disable) public ResponseEntityString disableChaos() { chaosMonkeyService.disable(); return ResponseEntity.ok(Chaos Monkey disabled); } PostMapping(/assaults/latency) public ResponseEntityString configureLatencyAssault( RequestParam int minLatency, RequestParam int maxLatency, RequestParam int probability) { settings.getAssaults().getLatencyAssault().setEnabled(true); settings.getAssaults().getLatencyAssault().setLatencyRangeMin(minLatency); settings.getAssaults().getLatencyAssault().setLatencyRangeMax(maxLatency); settings.getAssaults().getLatencyAssault().setProbabilityRange(probability); return ResponseEntity.ok(Latency assault configured); } PostMapping(/assaults/exception) public ResponseEntityString configureExceptionAssault( RequestParam String exceptionClass, RequestParam String message, RequestParam int probability) { ExceptionAssaultConfig exceptionConfig settings.getAssaults().getExceptionAssault(); exceptionConfig.setEnabled(true); exceptionConfig.setExceptionType(exceptionClass); exceptionConfig.getExceptions().clear(); exceptionConfig.getExceptions().add(ExceptionConfig.builder() .className(exceptionClass) .message(message) .build()); exceptionConfig.setProbabilityRange(probability); return ResponseEntity.ok(Exception assault configured); } PostMapping(/assaults/memory) public ResponseEntityString configureMemoryAssault( RequestParam int fillLevel, RequestParam int durationSeconds) { MemoryAssaultConfig memoryConfig settings.getAssaults().getMemoryAssault(); memoryConfig.setEnabled(true); memoryConfig.setMemoryFillLevel(fillLevel); memoryConfig.setDurationInSeconds(durationSeconds); return ResponseEntity.ok(Memory assault configured); } private MapString, Boolean getAssaultStatus() { AssaultProperties assaults settings.getAssaults(); MapString, Boolean status new HashMap(); status.put(latency, assaults.getLatencyAssault().isEnabled()); status.put(exception, assaults.getExceptionAssault().isEnabled()); status.put(memory, assaults.getMemoryAssault().isEnabled()); status.put(cpu, assaults.getCpuAssault().isEnabled()); status.put(kill, assaults.getKillApplicationAssault().isEnabled()); return status; } private MapString, Boolean getWatcherStatus() { WatcherProperties watchers settings.getWatcher(); MapString, Boolean status new HashMap(); status.put(controller, watchers.isController()); status.put(restController, watchers.isRestController()); status.put(service, watchers.isService()); status.put(repository, watchers.isRepository()); return status; } }故障注入測試腳本JMeter故障場景測試?xml version1.0 encodingUTF-8? jmeterTestPlan version1.2 properties5.0 hashTree TestPlan guiclassTestPlanGui testclassTestPlan testnameChaos Engineering Test stringProp nameTestPlan.thread_group_count50/stringProp stringProp nameTestPlan.ramp_time10/stringProp /TestPlan hashTree ThreadGroup guiclassThreadGroupGui testclassThreadGroup testnameNormal Operations stringProp nameThreadGroup.num_threads20/stringProp stringProp nameThreadGroup.ramp_time5/stringProp /ThreadGroup hashTree HTTPSamplerProxy guiclassHttpTestSampleGui testclassHTTPSamplerProxy testnameNormal API Call stringProp nameHTTPSampler.domainapi.example.com/stringProp stringProp nameHTTPSampler.path/api/v1/products/stringProp stringProp nameHTTPSampler.methodGET/stringProp /HTTPSamplerProxy /hashTree ThreadGroup guiclassThreadGroupGui testclassThreadGroup testnameLatency Injection stringProp nameThreadGroup.num_threads10/stringProp stringProp nameThreadGroup.ramp_time2/stringProp boolProp nameThreadGroup.delayedStarttrue/boolProp /ThreadGroup hashTree HTTPSamplerProxy guiclassHttpTestSampleGui testclassHTTPSamplerProxy testnameAPI Call Under Latency stringProp nameHTTPSampler.domainapi.example.com/stringProp stringProp nameHTTPSampler.path/api/v1/orders/stringProp stringProp nameHTTPSampler.methodPOST/stringProp timeToWait15000/timeToWait /HTTPSamplerProxy /hashTree ThreadGroup guiclassThreadGroupGui testclassThreadGroup testnamePartial Failure stringProp nameThreadGroup.num_threads20/stringProp stringProp nameThreadGroup.ramp_time3/stringProp /ThreadGroup hashTree HTTPSamplerProxy guiclassHttpTestSampleGui testclassHTTPSamplerProxy testnameAPI Call with Errors stringProp nameHTTPSampler.domainapi.example.com/stringProp stringProp nameHTTPSampler.path/api/v1/payments/stringProp stringProp nameHTTPSampler.methodPOST/stringProp /HTTPSamplerProxy hashTree ResponseAssertion guiclassAssertionGui testclassResponseAssertion testnameAllow 500 Errors collectionProp nameAsserion.test_strings stringProp name0500/stringProp stringProp name1502/stringProp stringProp name2503/stringProp /collectionProp stringProp nameAssertion.custom_error_messageService unavailable during chaos/stringProp /ResponseAssertion /hashTree /hashTree /hashTree /hashTree /jmeterTestPlanKubernetes環境故障注入使用PowerfulSeal進行故障注入# powerfulseal-config.yaml inventory: hosts: - name: production connection: host: ${KUBERNETES_API_SERVER} ssh-port: 22 user: ${SSH_USER} key_path: /root/.ssh/id_rsa sudo: true kubectl: true context: production scenarios: - name: Kill random pods description: Kill random pods to test resilience steps: - kubectl: cmd: [get, pods, -n, default, -o, json] filter: $.items[*].metadata.name register: pods - choose: from: pods pick: 1 register: target_pod - kubectl: cmd: [delete, pod, ${target_pod}, -n, default, --force] on: - always - name: Network partition simulation description: Block network traffic to test partition handling steps: - choose: hosts: - name: worker1 - name: worker2 pick: 1 register: target_host - shell: cmd: [iptables, -A, INPUT, -j, DROP] on: - ${target_host} pause: 30 - name: CPU stress test description: Stress CPU on random nodes steps: - shell: cmd: [stress-ng, --cpu, 4, --timeout, 60s] on: - all監控與觀察故障實驗觀測點Service Slf4j public class ChaosExperimentObserver { private final MeterRegistry meterRegistry; private final AtomicInteger activeExperiments new AtomicInteger(0); private final ListExperimentResult results new CopyOnWriteArrayList(); Autowired public ChaosExperimentObserver(MeterRegistry meterRegistry) { this.meterRegistry meterRegistry; Gauge.builder(chaos.experiments.active, activeExperiments, AtomicInteger::get) .description(Number of active chaos experiments) .register(meterRegistry); } public void startExperiment(String experimentName) { activeExperiments.incrementAndGet(); log.info(Starting chaos experiment: {}, experimentName); Timer timer meterRegistry.timer(chaos.experiment.duration, experiment, experimentName); timer.record(() - { try { executeExperiment(experimentName); } finally { activeExperiments.decrementAndGet(); } }); } private void executeExperiment(String experimentName) { Instant start Instant.now(); try { switch (experimentName) { case network-latency: testNetworkLatency(); break; case service-failure: testServiceFailure(); break; case database-connection: testDatabaseConnection(); break; case memory-pressure: testMemoryPressure(); break; default: log.warn(Unknown experiment: {}, experimentName); } results.add(new ExperimentResult(experimentName, start, Instant.now(), true, null)); meterRegistry.counter(chaos.experiments.success, experiment, experimentName).increment(); } catch (Exception e) { results.add(new ExperimentResult(experimentName, start, Instant.now(), false, e)); meterRegistry.counter(chaos.experiments.failure, experiment, experimentName).increment(); log.error(Experiment {} failed, experimentName, e); } } public ListExperimentResult getResults() { return new ArrayList(results); } Getter AllArgsConstructor public static class ExperimentResult { private String experimentName; private Instant startTime; private Instant endTime; private boolean success; private String errorMessage; public Duration getDuration() { return Duration.between(startTime, endTime); } } }最佳實踐混沌工程成熟度模型混沌工程成熟度級別 Level 1: 初始階段 - 了解混沌工程概念 - 進行手動故障測試 - 沒有監控和自動化 Level 2: 定義基線 - 定義關鍵業務指標 - 建立正常行為基線 - 記錄故障場景 Level 3: 自動化實驗 - 自動化故障注入 - 自動化結果收集 - 與CI/CD集成 Level 4: 生產實驗 - 生產環境故障注入 - 完善的回滾機制 - 定期演練 Level 5: 持續改進 - 遊戲日Game Day - 跨團隊協作 - 持續優化系統韌性總結混沌工程是提升系統韌性的重要實踐它幫助團隊在故障發生之前發現並修復潛在問題。通過本文的學習我們掌握了在Spring Boot應用中實施混沌工程的方法包括Chaos Monkey配置、自定義故障注入器、Kubernetes環境故障注入以及監控觀測機制。需要強調的是混沌工程是一項需要謹慎對待的實踐在生產環境中實施前必須確保有完善的監控、回滾和溝通機制。通過持續的故障注入演練團隊可以不斷提升系統的韌性為用戶提供更加穩定可靠的服務。
混沌工程與故障注入實戰
发布时间:2026/5/20 15:49:27
混沌工程與故障注入實戰前言在當今高度分佈式的雲原生架構中系統的複雜性呈指數級增長。傳統的測試方法只能驗證系統在正常情況下的行為但無法保證系統在面對各種故障場景時能夠保持穩定。混沌工程Chaos Engineering作為一種新興的工程實踐通過在生產環境中主動引入故障來發現系統的薄弱環節從而提高系統的韌性和可靠性。Netflix是最早推行混沌工程的公司其開源的Chaos Monkey工具至今仍是業界標杆。本文將深入探討混沌工程的核心理念、在Spring Boot應用中的實踐方法、故障注入工具的使用以及如何構建完善的韌性測試策略。混沌工程核心理念什麼是混沌工程混沌工程是一種在系統上进行實驗的學科目的是建立對系統抵禦現實世界中混亂情況能力的信心。這種方法的核心思想是與其等待故障發生後被動應對不如主動在受控環境中製造故障提前發現並修復潛在問題。混沌工程與傳統測試的區別在於傳統測試是確定性的它驗證系統在預期條件下的行為而混沌工程是不確定的它探索系統在非預期條件下的表現。混沌工程不僅發現已知的問題更重要的是發現那些我們不知道的問題。混沌工程實驗流程 1. 定義穩態Define Steady State ↓ 2. 假設Form Hypothesis ↓ 3. 設計實驗Design Experiment ↓ 4. 執行實驗Execute Experiment ↓ 5. 觀察結果Observe Results ↓ 6. 分析影響Analyze Impact ↓ 7. 關閉實驗Stop Experiment ↓ 8. 改進系統Improve System混沌工程原則Netflix提出的混沌工程原則為業界提供了重要的指導方針穩態假設Steady State Hypothesis在開始實驗前必須定義什麼是系統的「正常」行為。只有建立了這個基線才能判斷故障是否對系統造成了影響。多樣化真實事件Simulate Real World Events注入的故障應該模擬真實世界中可能發生的問題如網絡延遲、服務器宕機、磁盤滿等。生產環境實驗Production Experiments只有生產環境才能真正反映系統的實際表現。但在生產環境中實驗需要非常謹慎確保有完善的回滾機制。最小化影響範圍Minimize Blast Radius每次實驗都應該只影響最小的用戶群體並確保可以快速恢復。自動化實驗Automate Experiments將實驗自動化定期執行持續監控系統韌性。Spring Boot故障注入實踐Chaos Monkey for Spring BootChaos Monkey for Spring Boot是專為Spring Boot應用設計的故障注入工具它提供了多種故障注入方式dependencies dependency groupIdde.cognicrypt/groupId artifactIdchaos-monkey-spring-boot/artifactId version3.0.0/version /dependency /dependencies spring: chaos: monkey: enabled: true endpoint: enabled: true custom-actuator-endpoint-key: chaos-monkey watcher: active: true controller: true rest-controller: true service: true repository: false component: true assaults: latency-assault: enabled: true latency-range-min: 1000 latency-range-max: 5000 exception-assault: enabled: true exception-type: java.lang.RuntimeException exceptions: [] kill-application-assault: enabled: false memory-assault: enabled: false memory-fill-level: 50 cpu-assault: enabled: false cpu-load-range: 50自定義故障注入器Component Slf4j public class CustomChaosEngine { private final MapString, FaultStrategy faultStrategies new ConcurrentHashMap(); private volatile boolean enabled true; PostConstruct public void init() { faultStrategies.put(timeout, new TimeoutFaultStrategy()); faultStrategies.put(circuit-breaker, new CircuitBreakerFaultStrategy()); faultStrategies.put(data-corruption, new DataCorruptionFaultStrategy()); faultStrategies.put(rate-limiter, new RateLimiterFaultStrategy()); } public T MonoT injectFault(MonoT original, String faultType, int probability) { if (!enabled || !shouldInjectFault(probability)) { return original; } FaultStrategy strategy faultStrategies.get(faultType); if (strategy null) { log.warn(Unknown fault type: {}, faultType); return original; } return original .delayElement(Duration.ofMillis(50)) .transform(mono - strategy.apply(mono)); } private boolean shouldInjectFault(int probability) { return ThreadLocalRandom.current().nextInt(100) probability; } public void setEnabled(boolean enabled) { this.enabled enabled; } } public interface FaultStrategy { T PublisherT apply(PublisherT original); } Component Slf4j public class TimeoutFaultStrategy implements FaultStrategy { Override public T PublisherT apply(PublisherT original) { return Mono.timeout(original.flatMap(t - Mono.just(t)), Duration.ofMillis(100)) .onErrorResume(TimeoutException.class, e - { log.info(Timeout fault injected); return Mono.error(new ServiceTimeoutException(服務響應超時)); }); } } Component Slf4j public class CircuitBreakerFaultStrategy implements FaultStrategy { private final CircuitBreakerRegistry registry CircuitBreakerRegistry.ofDefaults(); Override public T PublisherT apply(PublisherT original) { CircuitBreaker breaker registry.circuitBreaker(chaos-breaker); return Mono.fromCallable(() - original) .transform(breaker) .onErrorResume(e - { log.info(Circuit breaker fault injected: {}, e.getMessage()); return Mono.error(new ServiceUnavailableException(服務暫不可用)); }); } } Component Slf4j public class DataCorruptionFaultStrategy implements FaultStrategy { Override public T PublisherT apply(PublisherT original) { return Flux.from(original) .map(item - { if (ThreadLocalRandom.current().nextBoolean()) { log.info(Data corruption fault injected); throw new DataCorruptionException(數據損壞); } return item; }); } } Component Slf4j public class RateLimiterFaultStrategy implements FaultStrategy { private final AtomicInteger requestCount new AtomicInteger(0); private final int maxRequests; private volatile Instant windowStart; public RateLimiterFaultStrategy() { this.maxRequests 10; this.windowStart Instant.now(); } Override public T PublisherT apply(PublisherT original) { Instant now Instant.now(); if (Duration.between(windowStart, now).getSeconds() 60) { requestCount.set(0); windowStart now; } if (requestCount.incrementAndGet() maxRequests) { log.info(Rate limiter fault injected); return Mono.error(new RateLimitExceededException(請求頻率超限)); } return original; } }Netflix Chaos Monkey配置完整配置示例spring: application: name: chaos-monkey-demo chaos: monkey: enabled: true endpoint: enabled: true port: 8088 custom-actuator-endpoint-key: /actuator/chaosmonkey assaults: latency-assault: enabled: true latency-range-min: 2000 latency-range-max: 8000 probability-range: 30 exception-assault: enabled: true exceptions: - class: java.lang.RuntimeException message: Chaos Monkey Exception - class: org.springframework.web.client.HttpServerErrorException message: Service temporarily unavailable probability-range: 10 kill-application-assault: enabled: false memory-assault: enabled: true memory-fill-level: 60 aggressive-fill-level: 80 duration-in-seconds: 30 cpu-assault: enabled: true cpu-load-range: 70 duration-in-seconds: 15 thread-sleep-assault: enabled: true sleep-range-min: 1000 sleep-range-max: 3000 watchers: controller: true rest-controller: true service: true repository: false component: true async: false通過REST API控制故障注入RestController RequestMapping(/chaos) public class ChaosController { private final ChaosMonkeyService chaosMonkeyService; private final ChaosSettings settings; Autowired public ChaosController(ChaosMonkeyService chaosMonkeyService, ChaosSettings settings) { this.chaosMonkeyService chaosMonkeyService; this.settings settings; } GetMapping(/status) public ResponseEntityMapString, Object getStatus() { MapString, Object status new HashMap(); status.put(enabled, settings.isEnabled()); status.put(assaults, getAssaultStatus()); status.put(watchers, getWatcherStatus()); return ResponseEntity.ok(status); } PostMapping(/enable) public ResponseEntityString enableChaos() { chaosMonkeyService.enable(); return ResponseEntity.ok(Chaos Monkey enabled); } PostMapping(/disable) public ResponseEntityString disableChaos() { chaosMonkeyService.disable(); return ResponseEntity.ok(Chaos Monkey disabled); } PostMapping(/assaults/latency) public ResponseEntityString configureLatencyAssault( RequestParam int minLatency, RequestParam int maxLatency, RequestParam int probability) { settings.getAssaults().getLatencyAssault().setEnabled(true); settings.getAssaults().getLatencyAssault().setLatencyRangeMin(minLatency); settings.getAssaults().getLatencyAssault().setLatencyRangeMax(maxLatency); settings.getAssaults().getLatencyAssault().setProbabilityRange(probability); return ResponseEntity.ok(Latency assault configured); } PostMapping(/assaults/exception) public ResponseEntityString configureExceptionAssault( RequestParam String exceptionClass, RequestParam String message, RequestParam int probability) { ExceptionAssaultConfig exceptionConfig settings.getAssaults().getExceptionAssault(); exceptionConfig.setEnabled(true); exceptionConfig.setExceptionType(exceptionClass); exceptionConfig.getExceptions().clear(); exceptionConfig.getExceptions().add(ExceptionConfig.builder() .className(exceptionClass) .message(message) .build()); exceptionConfig.setProbabilityRange(probability); return ResponseEntity.ok(Exception assault configured); } PostMapping(/assaults/memory) public ResponseEntityString configureMemoryAssault( RequestParam int fillLevel, RequestParam int durationSeconds) { MemoryAssaultConfig memoryConfig settings.getAssaults().getMemoryAssault(); memoryConfig.setEnabled(true); memoryConfig.setMemoryFillLevel(fillLevel); memoryConfig.setDurationInSeconds(durationSeconds); return ResponseEntity.ok(Memory assault configured); } private MapString, Boolean getAssaultStatus() { AssaultProperties assaults settings.getAssaults(); MapString, Boolean status new HashMap(); status.put(latency, assaults.getLatencyAssault().isEnabled()); status.put(exception, assaults.getExceptionAssault().isEnabled()); status.put(memory, assaults.getMemoryAssault().isEnabled()); status.put(cpu, assaults.getCpuAssault().isEnabled()); status.put(kill, assaults.getKillApplicationAssault().isEnabled()); return status; } private MapString, Boolean getWatcherStatus() { WatcherProperties watchers settings.getWatcher(); MapString, Boolean status new HashMap(); status.put(controller, watchers.isController()); status.put(restController, watchers.isRestController()); status.put(service, watchers.isService()); status.put(repository, watchers.isRepository()); return status; } }故障注入測試腳本JMeter故障場景測試?xml version1.0 encodingUTF-8? jmeterTestPlan version1.2 properties5.0 hashTree TestPlan guiclassTestPlanGui testclassTestPlan testnameChaos Engineering Test stringProp nameTestPlan.thread_group_count50/stringProp stringProp nameTestPlan.ramp_time10/stringProp /TestPlan hashTree ThreadGroup guiclassThreadGroupGui testclassThreadGroup testnameNormal Operations stringProp nameThreadGroup.num_threads20/stringProp stringProp nameThreadGroup.ramp_time5/stringProp /ThreadGroup hashTree HTTPSamplerProxy guiclassHttpTestSampleGui testclassHTTPSamplerProxy testnameNormal API Call stringProp nameHTTPSampler.domainapi.example.com/stringProp stringProp nameHTTPSampler.path/api/v1/products/stringProp stringProp nameHTTPSampler.methodGET/stringProp /HTTPSamplerProxy /hashTree ThreadGroup guiclassThreadGroupGui testclassThreadGroup testnameLatency Injection stringProp nameThreadGroup.num_threads10/stringProp stringProp nameThreadGroup.ramp_time2/stringProp boolProp nameThreadGroup.delayedStarttrue/boolProp /ThreadGroup hashTree HTTPSamplerProxy guiclassHttpTestSampleGui testclassHTTPSamplerProxy testnameAPI Call Under Latency stringProp nameHTTPSampler.domainapi.example.com/stringProp stringProp nameHTTPSampler.path/api/v1/orders/stringProp stringProp nameHTTPSampler.methodPOST/stringProp timeToWait15000/timeToWait /HTTPSamplerProxy /hashTree ThreadGroup guiclassThreadGroupGui testclassThreadGroup testnamePartial Failure stringProp nameThreadGroup.num_threads20/stringProp stringProp nameThreadGroup.ramp_time3/stringProp /ThreadGroup hashTree HTTPSamplerProxy guiclassHttpTestSampleGui testclassHTTPSamplerProxy testnameAPI Call with Errors stringProp nameHTTPSampler.domainapi.example.com/stringProp stringProp nameHTTPSampler.path/api/v1/payments/stringProp stringProp nameHTTPSampler.methodPOST/stringProp /HTTPSamplerProxy hashTree ResponseAssertion guiclassAssertionGui testclassResponseAssertion testnameAllow 500 Errors collectionProp nameAsserion.test_strings stringProp name0500/stringProp stringProp name1502/stringProp stringProp name2503/stringProp /collectionProp stringProp nameAssertion.custom_error_messageService unavailable during chaos/stringProp /ResponseAssertion /hashTree /hashTree /hashTree /hashTree /jmeterTestPlanKubernetes環境故障注入使用PowerfulSeal進行故障注入# powerfulseal-config.yaml inventory: hosts: - name: production connection: host: ${KUBERNETES_API_SERVER} ssh-port: 22 user: ${SSH_USER} key_path: /root/.ssh/id_rsa sudo: true kubectl: true context: production scenarios: - name: Kill random pods description: Kill random pods to test resilience steps: - kubectl: cmd: [get, pods, -n, default, -o, json] filter: $.items[*].metadata.name register: pods - choose: from: pods pick: 1 register: target_pod - kubectl: cmd: [delete, pod, ${target_pod}, -n, default, --force] on: - always - name: Network partition simulation description: Block network traffic to test partition handling steps: - choose: hosts: - name: worker1 - name: worker2 pick: 1 register: target_host - shell: cmd: [iptables, -A, INPUT, -j, DROP] on: - ${target_host} pause: 30 - name: CPU stress test description: Stress CPU on random nodes steps: - shell: cmd: [stress-ng, --cpu, 4, --timeout, 60s] on: - all監控與觀察故障實驗觀測點Service Slf4j public class ChaosExperimentObserver { private final MeterRegistry meterRegistry; private final AtomicInteger activeExperiments new AtomicInteger(0); private final ListExperimentResult results new CopyOnWriteArrayList(); Autowired public ChaosExperimentObserver(MeterRegistry meterRegistry) { this.meterRegistry meterRegistry; Gauge.builder(chaos.experiments.active, activeExperiments, AtomicInteger::get) .description(Number of active chaos experiments) .register(meterRegistry); } public void startExperiment(String experimentName) { activeExperiments.incrementAndGet(); log.info(Starting chaos experiment: {}, experimentName); Timer timer meterRegistry.timer(chaos.experiment.duration, experiment, experimentName); timer.record(() - { try { executeExperiment(experimentName); } finally { activeExperiments.decrementAndGet(); } }); } private void executeExperiment(String experimentName) { Instant start Instant.now(); try { switch (experimentName) { case network-latency: testNetworkLatency(); break; case service-failure: testServiceFailure(); break; case database-connection: testDatabaseConnection(); break; case memory-pressure: testMemoryPressure(); break; default: log.warn(Unknown experiment: {}, experimentName); } results.add(new ExperimentResult(experimentName, start, Instant.now(), true, null)); meterRegistry.counter(chaos.experiments.success, experiment, experimentName).increment(); } catch (Exception e) { results.add(new ExperimentResult(experimentName, start, Instant.now(), false, e)); meterRegistry.counter(chaos.experiments.failure, experiment, experimentName).increment(); log.error(Experiment {} failed, experimentName, e); } } public ListExperimentResult getResults() { return new ArrayList(results); } Getter AllArgsConstructor public static class ExperimentResult { private String experimentName; private Instant startTime; private Instant endTime; private boolean success; private String errorMessage; public Duration getDuration() { return Duration.between(startTime, endTime); } } }最佳實踐混沌工程成熟度模型混沌工程成熟度級別 Level 1: 初始階段 - 了解混沌工程概念 - 進行手動故障測試 - 沒有監控和自動化 Level 2: 定義基線 - 定義關鍵業務指標 - 建立正常行為基線 - 記錄故障場景 Level 3: 自動化實驗 - 自動化故障注入 - 自動化結果收集 - 與CI/CD集成 Level 4: 生產實驗 - 生產環境故障注入 - 完善的回滾機制 - 定期演練 Level 5: 持續改進 - 遊戲日Game Day - 跨團隊協作 - 持續優化系統韌性總結混沌工程是提升系統韌性的重要實踐它幫助團隊在故障發生之前發現並修復潛在問題。通過本文的學習我們掌握了在Spring Boot應用中實施混沌工程的方法包括Chaos Monkey配置、自定義故障注入器、Kubernetes環境故障注入以及監控觀測機制。需要強調的是混沌工程是一項需要謹慎對待的實踐在生產環境中實施前必須確保有完善的監控、回滾和溝通機制。通過持續的故障注入演練團隊可以不斷提升系統的韌性為用戶提供更加穩定可靠的服務。
相关文章
别再只把PCM当编码了!从CD音质到手机录音,聊聊这个被误解的‘调制’技术
别再只把PCM当编码了!从CD音质到手机录音,聊聊这个被误解的‘调制’技术 当你用手机录制一段语音,或是播放一张珍藏的CD时,背后都隐藏着一项被大多数人低估的技术——PCM(脉冲编码调制)。很多人把它简单地归…
IPPE数据传输APO--资源维护
1.维护产能数据:JPH、班次等(1)输入事务代码/N/SAPAPO/RES01,录入工厂、计划版本默认000,点击创建定义(2)JPH维护(3)休息时间中断号为流水号,用于定义同一个休…
北京欧雷新宇助力重庆机电工程高级技工学校建成“动捕+虚拟拍摄”实训基地,赋能影视动漫人才培养
项目名称:重庆机电工程高级技工学校“计算机动画与制作实训基地”项目 地点:重庆市 应用专业:影视动漫设计与制作专业 项目概述: 近日,北京欧雷新宇动画科技有限公司作为核心产品与技术提供商并承担整体实施的“计算机动画与…
51单片机IO口不够用?试试用PCF8574模块驱动LCD1602,I2C接口省下6个引脚
51单片机IO资源紧张?PCF8574模块驱动LCD1602的实战指南 当你用51单片机开发项目时,是否遇到过这样的困境:传感器、按键、通信接口已经占用了大部分IO口,而显示模块却无处安放?传统驱动LCD1602需要6-8个IO引脚ÿ…
2026年HR SaaS选型实测:用友领跑,多场景适配全规模企业!
发现无论企业大小,HR在选择HR SaaS时,都绕不开三个核心需求:好用、高效、能真正帮HR减负,还能衔接业务。为此,我们实测了当前市场主流HR SaaS产品,结合IDC相关数据及企业实际使用反馈,整理出这份…
搞定若依框架内嵌iframe页面缓存难题:一个v-show + 路由监听的改造方案
若依框架中iframe页面缓存难题的工程化解决方案 在后台管理系统开发中,若依框架因其丰富的功能组件和模块化设计,成为许多企业的首选技术栈。然而,当我们需要在系统中集成第三方页面或遗留系统时,iframe的引入往往会带来一个棘手的…
【物联网专业】案例9_2:控制数码管(定时器中断)
文章目录0 文章介绍1 仿真图2 效果图3 不完整代码4 思考题0 文章介绍 对应定时器/计数器案例目标的实现 用计数器中断0(P3^4)控制数码管段选 P1^6)控制数码位选 1 仿真图 2 效果图 3 不完整代码 复制该代码,其中有7个补充点&#…
避坑指南:在ArcGIS中提取DEM高程点,为什么导入Global Mapper后看不到高度?
避坑指南:ArcGIS与Global Mapper高程数据互操作的核心陷阱与解决方案 当你第一次将精心处理的DEM高程点从ArcGIS导入Global Mapper,期待看到起伏有致的三维地形时,却发现所有点都"躺平"在二维平面上——这种挫败感我深有体会。这不…
VLA算法工程师面试题(八)
面试题(聚焦融合模块,贴合实操研发需求) 请阐述VLA模型中跨模态融合模块的核心作用,列举3种主流的融合策略,结合VLA模型“三模态协同、动作生成”的核心需求,说明每种策略的核心逻辑、适用场景及优劣,贴合岗位模型优化与方法选型需求。 面试官OS(明确融合模块考察重点…
别只刷固件了!用MissionPlanner搞定四旋翼‘飘移’问题,校准compass_mot全流程
四旋翼飞行品质优化:MissionPlanner高级校准实战指南 当你的四旋翼无人机已经能够稳定起飞,却在定高模式下出现难以解释的飘移现象时,这往往意味着需要进入更深层次的飞控调校阶段。许多飞手在完成基础校准后便止步不前,殊不知电机…
科研学术篇---论文搜索方法
高效搜集和研读论文,是构建扎实知识体系的基石。要想做到“高效”与“高质”并重,需要把整个过程当作一个闭环系统来优化——从目标锁定、来源筛选、检索策略,到快速粗筛、深度内化、持续追踪,每一步都有对应的工具和心法。下面逐…
YOLOv11城市道路摩托车与自行车目标检测数据集-1569张-motorcycle-1_2
YOLOv11城市道路摩托车与自行车目标检测数据集 📊 数据集基本信息 目标类别: [‘bike’, ‘motorcycle’]中文类别:[‘自行车’, ‘摩托车’]训练集:1374 张验证集:130 张测试集:65 张总计:1569…
【实用小程序】超轻量级文件上传下载中心 (File Download Server)
站内源码及jar包下载 一、项目概述 文件下载中心一个基于 Java 内置 HTTP 服务器(com.sun.net.httpserver)构建的轻量级文件管理服务。它零第三方依赖,单 JAR 包即可运行,适合在内网环境或临时场景中快速搭建文件共享站点。 你的团队需要临时共享一批日志文件或交付物,…
py每日spider案例之某website之xin东方选课搜索接口(难度一般 扣取代码即可)
加密位置: 逆向接口参数: 逆向接口: const g = globalThis; g.window = g; g.self = g; g.location = {<
终极轻量级Android文本编辑器Markor:多格式笔记应用完全指南
终极轻量级Android文本编辑器Markor:多格式笔记应用完全指南 【免费下载链接】markor Text editor - Notes & ToDo (for Android) - Markdown, todo.txt, plaintext, math, .. 项目地址: https://gitcode.com/gh_mirrors/ma/markor 在移动设备上寻找一款…
MPC-BE:基于DirectShow架构的专业级开源媒体播放解决方案
MPC-BE:基于DirectShow架构的专业级开源媒体播放解决方案 【免费下载链接】MPC-BE MPC-BE – универсальный проигрыватель аудио и видеофайлов для операционной системы Windows. 项目地址:…
如何快速计算3D模型体积和重量:STL-Volume-Model-Calculator终极指南
如何快速计算3D模型体积和重量:STL-Volume-Model-Calculator终极指南 【免费下载链接】STL-Volume-Model-Calculator STL Volume Model Calculator Python 项目地址: https://gitcode.com/gh_mirrors/st/STL-Volume-Model-Calculator 你是否曾经为3D打印项目…
通过Taotoken CLI工具一键配置团队开发环境与模型密钥
通过Taotoken CLI工具一键配置团队开发环境与模型密钥 1. CLI工具安装与基本使用 Taotoken提供的CLI工具可通过npm全局安装或直接使用npx运行。对于需要频繁使用CLI的团队,推荐全局安装: npm install -g taotoken/taotoken对于临时使用或项目级配置&a…