Comments (15)
Hello folks,
thank you for reporting this incident, and our sincere apologies for the disruption this caused.
Due to an unexpected schema change in an upstream vulnerability feed, a corrupted CVE data file has been published to https://definitions.stackrox.io/ and consumed by a large number of Central instances. As a result of the data corruption, Central crashes. To the best of our knowledge, this affects all Central versions.
While we have already taken steps to ensure a non-corrupted version is served from https://definitions.stackrox.io/, affected Centrals will not be able to get out of this crashloop state without manual intervention in order to delete the previously downloaded, corrupted file.
In order to get Central back to a working state, please follow these instructions to delete the file: https://gist.github.com/misberner/c43a666fc0a6ff335925b9800473d489
We have already identified further steps to prevent issues of this kind from happening in the future, specifically ensuring that Central self-heals when a dependency corruption is fixed.
from stackrox.
Same issue happening with version 3.70.1 without any recent changes in configuration/version.
from stackrox.
Thank you for reporting! The team got notified about this issue by internal monitoring and is currently looking into this.
from stackrox.
Working like a charm! Thank you very much for the quick workaround.
from stackrox.
Thanks for providing information about the issue.
The team has found the root cause and currently working on releasing a workaround and releasing a patch fix as soon as possible.
from stackrox.
Unfortunately, all versions of Central may be affected. We understand the root cause and have a recovery command on the way. It will be shared here soon. Sorry for the downtime.
from stackrox.
Same here on 3.71.0.
Looking at the stack trace I'm guessing something has changed in an external vulnerability database which is now making the Stackrox processing crash? And that's why it started happening suddenly without any changes and affects several versions.
from stackrox.
Works for me as well. Thank you for the fix. 🙂
from stackrox.
confirm it works
from stackrox.
Same issue. Running Version 3.72.0. Quick fix would be appreciated.
from stackrox.
thanks for reporting @iljaweis
we have the same
from stackrox.
Same problem.
image: 'registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8:3.71.0'
It worked for more then month and then suddenly falled into crash loop with the same error.
from stackrox.
thanks for the response
we've encountered the same problem on 3.71.0
from stackrox.
For posterity: the fix for the problem has been merged, #3504
from stackrox.
Thanks so much for the fix ;)
from stackrox.
Related Issues (20)
- Delete old deferral requests HOT 5
- Scanner: no support for external DB HOT 2
- Revamp Database Migration and Management Process HOT 4
- This is a test issue to see if the token still works
- StackRox 4.4.0 collectors are crashing on COS GKE - failed to initialize collector kernel components HOT 9
- StackRox central 4.4.0 is trying to write to deprecated/'no longer needed' stackrox-db volume HOT 6
- OIDC Login redirect_uri is incorrect using Generic Kubernetes 1.28.6 cluster HOT 4
- can`t scan images HOT 7
- add integration with harbor HOT 3
- Replace sort functions with slices equivalents HOT 2
- Create CredentialExpiryBanner warnings for certificate expiration of central-db-tls certificates HOT 1
- DOCS Missing - What's the API call behind : roxctl image check HOT 1
- Stackrox helm chart PodSecurityPolicy deprecation/deletion in v1.21/v1.25 HOT 2
- Empty commit
- roxctl unknown module(s) HOT 9
- Jira Cloud Integration fails HOT 8
- ACS cannot fetch metadata when using mirrors in a disconnected environment HOT 2
- Updating Scanner Defitions in Offline Mode HOT 4
- secured cluster services not able to authenticate with central service after restarting central db HOT 17
- UI reports Vulnerability definitions as out of date, definitions manifest in Central is correct HOT 9
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from stackrox.