Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Runtime Daemon Doesn't Support IPv6 - CloudGuard #153

Open
matthenry87 opened this issue Sep 18, 2024 · 8 comments
Open

Runtime Daemon Doesn't Support IPv6 - CloudGuard #153

matthenry87 opened this issue Sep 18, 2024 · 8 comments

Comments

@matthenry87
Copy link

The agent never goes into a good state, because of the errors in the runtime daemon logs:

probe + echo '* Setting up /usr/src links from host'
probe * Setting up /usr/src links from host
probe ++ ls /host/usr/src
probe + for i in $(ls $HOST_ROOT/usr/src)
probe + ln -sf /host/usr/src/kernels /usr/src/kernels
probe + /usr/bin/scap-driver-loader
probe * Running scap-driver-loader for: driver version=3.0.1+driver, arch=x86_64, kernel release=6.1.97, kernel version=1
probe * Running scap-driver-loader with: driver=bpf, compile=yes, download=yes
probe * Mounting debugfs
probe mount: /sys/kernel/debug: permission denied.
probe * Filename 'scap_bottlerocket_6.1.97_1.o' is composed of:
probe  - driver name: scap
probe  - target identifier: bottlerocket
probe  - kernel release: 6.1.97
probe  - kernel version: 1
probe * Trying to download a prebuilt eBPF probe from https://download.sysdig.com/scap-drivers/3.0.1%2Bdriver/x86_64/scap_bottlerocket_6.1.97_1.o
probe curl: (22) The requested URL returned error: 404 
probe Unable to find a prebuilt scap eBPF probe
probe * Trying to compile the eBPF probe (scap_bottlerocket_6.1.97_1.o)
probe make: Entering directory '/opt/sysdig/src/scap-3.0.1+driver/bpf'
probe make -C /lib/modules/6.1.97/build M=$PWD
probe make[1]: Entering directory '/host/usr/src/kernels/6.1.97'
probe   DESCEND objtool
probe   HOSTCC  /host/usr/src/kernels/6.1.97/tools/objtool/fixdep.o
probe fixdep.c:170:1: fatal error: opening dependency file /host/usr/src/kernels/6.1.97/tools/objtool/.fixdep.o.d: Permission denied
probe  }
probe  ^
probe compilation terminated.
probe make[5]: *** [/host/usr/src/kernels/6.1.97/tools/build/Makefile.build:97: /host/usr/src/kernels/6.1.97/tools/objtool/fixdep.o] Error 1
probe make[4]: *** [Makefile:47: /host/usr/src/kernels/6.1.97/tools/objtool/fixdep-in.o] Error 2
probe make[3]: *** [/host/usr/src/kernels/6.1.97/tools/build/Makefile.include:5: fixdep] Error 2
probe make[2]: *** [Makefile:73: objtool] Error 2
probe make[1]: *** [Makefile:2134: tools/objtool] Error 2
probe make[1]: Leaving directory '/host/usr/src/kernels/6.1.97'
probe make: *** [Makefile:38: all] Error 2
probe make: Leaving directory '/opt/sysdig/src/scap-3.0.1+driver/bpf'
probe mv: cannot stat '/usr/src/scap-3.0.1+driver/bpf/probe.o': No such file or directory
probe Unable to load the scap eBPF probe
probe + '[' 1 -eq 0 ']'
probe + echo '* FAILURE probe init container installation but deployment will be continued.'
probe + tee /dev/termination-log
probe * FAILURE probe init container installation but deployment will be continued.
probe + exit 0
daemon 2024-09-18 19:01:13,338 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
Stream closed EOF for checkpoint/asset-mgmt-runtime-daemon-dqbmg (probe)
daemon 2024-09-18 19:01:13,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:13,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:13,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:13,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:13,397 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:13,397 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:13,533 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:13,533 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,144 - [pid:2403792] - perf - INFO - changing incident state to IncidentState.BURN
daemon 2024-09-18 19:01:14,338 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,338 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,338 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "allowlists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,338 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "allowlists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,397 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,397 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:14,533 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:14,533 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "allowlists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,339 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "allowlists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,398 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,398 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:15,534 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:15,534 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "allowlists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,340 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "allowlists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,399 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,399 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:16,535 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:16,535 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "allowlists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "allowlists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,341 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,399 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,399 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:17,535 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:17,535 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "allowlists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "allowlists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,342 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,400 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,400 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:18,536 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:18,536 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "allowlists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "allowlists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,343 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,401 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,401 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:19,537 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:19,537 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "allowlists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,344 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "allowlists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,345 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,346 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "antimalwareconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,346 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "antimalwareconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,346 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "denylists" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,346 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "denylists" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,347 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,347 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,401 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "profilingconfigs" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,401 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "profilingconfigs" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'
daemon 2024-09-18 19:01:20,537 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _list_crds: exception in "signaturepackages" listing: ValueError Port could not be cast to integer value as 'cf95:9a38::1'. response: None
daemon 2024-09-18 19:01:20,537 - [pid:2403792] - cpla.blades.sba.config.k8s_custom_resource - ERROR - _timer_callback: exception in "signaturepackages" timer callback: ValueError Port could not be cast to integer value as 'cf95:9a38::1'

Seems it's relying on the expected structure of IPv4.

@chkp-rigor
Copy link
Contributor

Hello @matthenry87,
Thanks for reporting this issue. Let me check it and update you.
Is it IPv6 only cluster?

@matthenry87
Copy link
Author

Hello @matthenry87, Thanks for reporting this issue. Let me check it and update you. Is it IPv6 only cluster?

This is an AWS EKS cluster using IPv6. All of the pods and services are assigned IPv6 addresses within the cluster. Technically the cluster is not 100% IPv6 because EKS still requires the worker nodes to be assigned IPv4 addresses as well.

The IP it seems to be breaking on looks like it is from the cluster's services CIDR.

@chkp-rigor
Copy link
Contributor

@matthenry87 Indeed Runtime Protection team confirmed IPv6 is not supported, so it's a limitation.
Can you please contact the relevant Check Point representatives (Account Manager or Cloud Security Architect) to fill a formal request for this. I will send this case to our Product as well.

@chkp-rigor
Copy link
Contributor

@matthenry87 may I close this issue here?

@matthenry87
Copy link
Author

Is the image also open source? If so, may I contribute the fix?

Imo it's not very acceptable to not support something that's been supported by k8s proper for a long time now. It shouldn't matter which CNI driver we're using, or how it's configured.

Why wouldn't this be considered a bug rather than an enhancement?

@chkp-rigor
Copy link
Contributor

@matthenry87 I apologize for the delay.
I understand your point.
I was told an official feature request should submitted. Until now, we haven't received many requests for IPv6 support, so we've been focusing on other features.

@chkp-rigor
Copy link
Contributor

Hi @matthenry87,
We added automation tests for IPv6. We see all but Runtime Protection blade support IPv6. FYI.

@matthenry87
Copy link
Author

Hi @matthenry87, We added automation tests for IPv6. We see all but Runtime Protection blade support IPv6. FYI.

That is what I observe as well from a consumer perspective. The runtime protection containers are attempting to parse the port number from the IP but seems to be expecting a static format (IPv4).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants