kubeshark

mirror of https://github.com/kubeshark/kubeshark.git synced 2026-05-20 16:13:46 +00:00

Author	SHA1	Message	Date
Alon Girmonsky	40177b8fa9	Fixed a bug in the Helm chart that did not override the sniffer container once an override Worker config value was present	2024-06-08 10:58:36 -07:00
Alon Girmonsky	ef84f90cd9	Returned ebpf as an explicit option and af-packet as the default option	2024-05-31 21:00:33 -07:00
M. Mert Yildiran	c2b73025f3	✨ Add `DisableCgroupIdResolution` field to `MiscConfig` struct	2024-05-25 05:18:41 +03:00
Ilya Gavrilov	359623c538	Add /etc/os-release for tracer sysevents (#1542 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-05-17 12:46:37 +01:00
Volodymyr Stoiko	3798bf7a01	Allow watching nodes (#1543 ) * Allow watching nodes * restore	2024-05-17 12:37:45 +01:00
M. Mert Yildiran	487f0b9332	✨ Add `OverrideTagConfig` field to `DockerConfig`	2024-05-15 05:39:27 +03:00
radikaled	06e0def53e	Update 14-openshift-security-context-constraints.yaml (#1539 ) Add IPC_LOCK to allowedCapabilities otherwise kubeshark-worker-daemon-set will not deploy.	2024-05-05 10:45:25 -07:00
Alon Girmonsky	f4e2d2f9ca	Use eBPF as a traffic capture source by default if cgroup V2 is enabled. (#1540 ) This behavior can be reversed by setting the `tap.packetCapture` to a specific source or manually adding the command line property: `-disable-ebpf` to both the `worker` and the `tracer`	2024-05-01 16:30:03 -07:00
Alon Girmonsky	32ffa6132d	Fix/disable ebpf by defalt again (#1538 ) * Revert "Revert "as eBPF is a significant feature that can impact many users, this PR is meant (#1532)"" This reverts commit `7ab63ec745`. * Added the missing -disable-ebpf parameters to Tracer	2024-04-23 15:31:19 -07:00
Alon Girmonsky	0bb0c4b256	Merge branch 'master' of github.com:kubeshark/kubeshark	2024-04-22 17:08:56 -07:00
Alon Girmonsky	28696d2f5c	- Consider cloudLicenseEnabled only if license is empty. If license isn't empty disregard cloudLicenseEnabled (#1536 )	2024-04-22 15:14:06 -07:00
Alon Girmonsky	7ab63ec745	Revert "as eBPF is a significant feature that can impact many users, this PR is meant (#1532 )" This reverts commit `53c3dabcbf`.	2024-04-22 14:57:00 -07:00
Serhii Ponomarenko	5a4901f7bd	✨ License via authentication (#1526 ) * 🔨 Add `cloudLicenseEnabled` helm value * 🔨 Add `CLOUD_LICENSE_ENABLED` key to `ConfigMap` * 🔨 Add `REACT_APP_CLOUD_LICENSE_ENABLED` `front` env * 🎨 Reformat `ConfigStruct` * 🔧 Set `cloudLicenseEnabled: true` by default * 🔧 Override auth enabled/type if `cloudLicenseEnabled: true` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-04-21 15:04:08 -07:00
Alon Girmonsky	53c3dabcbf	as eBPF is a significant feature that can impact many users, this PR is meant (#1532 ) to provide it NOT as the default option, but require an explicit indication to use it. To use eBPF instead of AF-PACKET or PF-RING, use: --set tap.packetCapture=ebpf	2024-04-18 16:28:31 -07:00
Volodymyr Stoiko	6b6915c7ee	helm: Use proper labels in selectors (#1528 ) * Use proper selectorLabels in daemonset * Update selector labels in deployments	2024-04-16 09:02:33 -07:00
M. Mert Yildiran	e819759c2d	🎨 Remove a whitespace in `09-worker-daemon-set.yaml`	2024-04-16 00:27:18 +03:00
Ilya Gavrilov	b39c5dd5d3	add net capabilities for tracer (#1525 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-04-15 14:20:44 -07:00
M. Mert Yildiran	0f402789f1	✨ Add `TcpStreamChannelTimeoutShow` field to `MiscConfig`	2024-04-15 22:46:18 +03:00
Volodymyr Stoiko	d4fade3599	Extend cluster-role permissions (#1527 ) * Extend cluster-role permissions * Format * upd	2024-04-09 14:20:52 -07:00
M. Mert Yildiran	24aa4db0bc	⏪ Bring back the `packet-capture` flag	2024-03-28 01:42:16 +03:00
Serhii Ponomarenko	247498492a	✨ Set custom timezone (#1517 ) * 🔨 Add timezone config * 🔨 Update `complete.yaml` * 📝 Document `timezone` config * 📝 Update `timezone` config docs * 📝 Update `timezone` config docs * 🔥 Remove unused `TIMEZONE` field from `ConfigMap` * 🦺 Handle empty `tap.timezone` case * 🔨 Move `timezone` from `.Values.tap` to `.Values` * 🔨 Add `timezone` field to helm values * 🔨 Update `complete.yaml` * 📝 Update `timezone` config docs * 🔨 Add `TIMEZONE` field to `ConfigMap` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-03-19 12:06:50 +01:00
Serhii Ponomarenko	e7fc7b791a	🐛 Fix front nginx and network policies ports (#1518 ) * 🐛 Use `8080` listen port for front nginx config * 🐛 Use `8080` ingress port for front/hub network policies	2024-03-14 15:18:24 -07:00
Volodymyr Stoiko	c0751ad4cb	Switch to lower ports (#1514 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-03-08 21:02:05 -08:00
Serhii Ponomarenko	0aca81fbcb	🔨 Disable scripting, targeted pods update & recording via `ConfigMap` keys (#1515 ) * 🔨 Add `SCRIPTING_DISABLED` key to `ConfigMap` * 🔨 Add `TARGETED_PODS_UPDATE_DISABLED` config * 🔨 Add `RECORDING_DISABLED` key to `ConfigMap` * 🎨 Reformat `TapConfig` * 🔨 Update `complete.yaml`	2024-03-08 20:49:07 -08:00
Volodymyr Stoiko	db607aff16	Add network policies for kubeshark components (#1513 ) * Add explicit network policies for kubeshark components * allow exact ports --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-03-07 06:37:13 -08:00
Volodymyr Stoiko	6dc12af55b	Add namespace prefix to cluster scope resources (#1506 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-02-28 12:14:03 -08:00
M. Mert Yildiran	8fe0544175	🔨 Remove `CHECKPOINT_RESTORE` capability from defaults	2024-02-26 21:40:14 +03:00
Alon Girmonsky	6af2d11878	removed cloud URL from config map (#1499 ) 1. removed cloud URL from config map 2. added to hub's and worker's deployments	2024-02-14 13:06:24 -08:00
Alon Girmonsky	f010f349a1	unixsocket for tracer (#1497 ) - Added `-unixsocket` by default - In DEBUG mode, added `-dumptracer 100000000`	2024-02-07 09:50:58 -08:00
M. Mert Yildiran	92dab2e2f7	🔨 Add `PcapErrorTTL` field to `MiscConfig`	2024-02-06 01:32:07 +03:00
Serhii Ponomarenko	18d051af28	🔥 Remove old `Descope` auth (#1490 ) * 🔥 Remove Descope-related config updates * 🔥 Remove Descope-related helm values * 🔥 Remove Descope-related k8s configs * 🔥 Remove Descope-related fields from `tapConfig` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-31 14:49:55 -08:00
M. Mert Yildiran	cef012d1f3	🐛 Fix the `ConfigMap` keys of `JsonTTL` and `PcapTTL` fields	2024-01-31 16:57:11 +03:00
M. Mert Yildiran	4802cca646	✨ Add `MiscConfig` struct with has `JsonTTL` and `PcapTTL` fields	2024-01-30 02:25:04 +03:00
Alon Girmonsky	4db2a80675	Add API cloud endpoint env var to hub deployment (#1489 ) * Add API cloud endpoint env var to hub deployment * Added an env var for api cloud endpoint	2024-01-26 00:24:38 -08:00
Serhii Ponomarenko	bfa3efd23a	✨ SAML authorization (#1487 ) * 🔨 Add `AUTH_SAML_ROLE_ATTRIBUTE` field to `ConfigMap` * 📝 Document `tap.auth.saml.roleAttribute/roles` values * 🔧 Re-generate `complete.yaml` * 🔥 Remove `default` tag from `SamlConfig.RoleAttribute` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-24 16:05:37 -08:00
Alon Girmonsky	f6d7510a14	fix the env variable / helm issue (#1486 ) * fix the env variable / helm issue Empty environment variables can not be read by front. * change env variable to avoid an empty string	2024-01-23 21:30:24 -08:00
M. Mert Yildiran	f9e0c36d5f	🔨 Add `AUTH_SAML_ROLES` field to `ConfigMap`	2024-01-23 23:22:06 +03:00
Serhii Ponomarenko	a8dd332ff8	✨ SAML integration prototype (#1475 ) * 🔨 Add `AUTH_TYPE` field to `ConfigMap` * 🔨 Add `AUTH_SAML_IDP_METADATA_URL` field to `ConfigMap` * 🔨 Add `AUTH_SAML_X509_CRT` field to `Secret` * 🔨 Add `AUTH_SAML_X509_KEY` field to `Secret` * 🔨 Mount SAML X.509 key pair into `hub` * 🔨 Add `REACT_APP_AUTH_TYPE` environment variable to `front` * 🔧 Add Nginx path rewrite for `/saml` * 🔧 Raise request size to accept big SAML responses * 🔨 Add `REACT_APP_AUTH_TYPE` environment default value * 📝 Update `README.md` * 📝 Update `README.md` * 🔨 Add `AUTH_TYPE` config map key * 🔨 Add `AUTH_SAML_IDP_METADATA_URL` config map key * ☸ Set `CONFIG_AUTH_TYPE` from `TapConfig` * ☸ Set `CONFIG_AUTH_SAML_IDP_METADATA_URL` from `TapConfig` * ✨ Create `SamlConfig` in `TapConfig.AuthConfig` * 🔨 Use updated `tap.auth.saml.idpMetadataUrl` tap config field * 📝 Update `README.md` * 🔨 Add `tap.insgress.enabled/host` to `ConfigMap` * 🔨 Add `tap.proxy.front.port` to `ConfigMap` * 🔨 Add `REACT_APP_AUTH_SAML_IDP_METADATA_URL` env to `front` * 🔧 Supply `auth.saml` fields to `helm-chart/values.yaml` * 🐛 Fix indentation for X.509 secrets * 📝 Provide SAML setup docs * 📝 Update SAML setup docs * 📝 Update SAML setup docs * Added callback URL indication * 💥 Disable standard `Descope` auth --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-23 10:47:29 -08:00
M. Mert Yildiran	6307871584	🔨 Add `patch` verb to `kubeshark-self-config-role`	2024-01-23 20:52:04 +03:00
Alon Girmonsky	f2b7df7e02	Global Filter, escaping doublequotes in strings (#1484 ) * Global filter quote change Global filter uses a single quote as opposed to double quote. This limits the use of `'` inside the string as it can not be escaped. When using double quote ("), single quote can be used and double quote can be escaped as part of a string. An example for a Global Filter string: "redact(\"request.headers.Authorization\", \"request.headers['X-Aws-Ec2-Metadata-Token']\")" * support escaping double quotes in the global filter string	2024-01-19 16:51:33 -08:00
M. Mert Yildiran	ddc1dc3d71	🔨 Add `TcpStreamChannelTimeoutMs` field to `TapConfig` struct	2024-01-15 23:00:31 +03:00
M. Mert Yildiran	d99bfea0db	🔨 Rename `worker` resource requirement to `sniffer`	2024-01-15 21:14:06 +03:00
Volodymyr Stoiko	bed9d06c59	Pass kernel-module flag only if pf_ring enabled (#1480 )	2024-01-14 14:39:32 -08:00
Volodymyr Stoiko	aaeb3ca1eb	Load pf-ring kernel module in init container (#1476 ) * Load kernel module in init container * Update docs * Update formatting * Add pre-stop hook to unload pf_ring module * Enable hook only on kernel module enabled * fix template * Use sidecontainer to unload pf_ring * Add requirements for tracer into structs * fix values * fix typo --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-12 15:49:39 -08:00
tgaliotto	a5be1a8eaa	add request and limits for tracer container (#1459 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-12 09:30:50 -08:00
M. Mert Yildiran	8ba3e603a4	✨ Add `trafficSampleRate` field to `TapConfig`	2024-01-10 18:51:52 +03:00
Volodymyr Stoiko	db51e6dbc2	✨ Add `kubeshark-worker-metrics` service and document it (#1474 ) * Expose worker metrics * Add metrics documentation * upd * Update metrics port configuration * Update config/configStructs/tapConfig.go Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> * Update helm-chart/README.md Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> * Update helm-chart/templates/16-worker-service-metrics.yaml Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> --------- Co-authored-by: M. Mert Yildiran <me@mertyildiran.com>	2024-01-04 16:17:22 +03:00
M. Mert Yildiran	36767eda27	🔨 Add `KernelModuleConfig` struct to `TapConfig`	2023-12-28 22:09:01 +03:00
Volodymyr Stoiko	6c01078f97	Add PF_RING related changes to docs and helm (#1471 ) * Install pf-ring KMM Module and wait for it * Add mode configuration * save * Update doc * upd * toc * adjust template * upd * Add module cr verification job * upd doc * Fix binary name * Add disable mode * Update PF_RING.md Some adjustments to the instructions. * Update 15-pf-ring-kernel-module.yaml Small syntax err * upd * merge master --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2023-12-27 19:01:20 -08:00
M. Mert Yildiran	6c06307d68	🔨 Add `GLOBAL_FILTER` field to `ConfigMap`	2023-12-27 23:58:17 +03:00

1 2 3 4

173 Commits