You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description:
Running a CIS scan on an upgraded rke2 cluster in rancher fails to receive the results from worker nodes, and therefore the scan times out and shows a status of Error. Verified this error happens on both Centos8 and Ubuntu.
Steps
Deploy an rke2 cluster with 3 servers, 2 workers, and import to rancher (used v1.9.7+rke2r1)
Upgrade cluster through rancher to v1.19.8+rke2r1
Navigate to cluster dashboard, deploy CIS app from the marketplace, and run a scan
Logs and Helpful Info:
The scan never completes, even though the scan logs from all 5 running sonobuoy-rancher-kube-bench-daemon-set pods show it has completed: level=info msg="Detected done file, transmitting result file" resultFile=/tmp/results/kb.tar.gz.
The security-scan-runner-scan pod shows that it never received an update from the worker pods:
rancher-max
changed the title
Running CIS scan through after upgrading rke2 version fails to complete
Error running CIS scan through rancher after upgrading rke2 version
Mar 17, 2021
Description:
Running a CIS scan on an upgraded rke2 cluster in rancher fails to receive the results from worker nodes, and therefore the scan times out and shows a status of Error. Verified this error happens on both Centos8 and Ubuntu.
Steps
Logs and Helpful Info:
The scan never completes, even though the scan logs from all 5 running
sonobuoy-rancher-kube-bench-daemon-set
pods show it has completed:level=info msg="Detected done file, transmitting result file" resultFile=/tmp/results/kb.tar.gz
.The
security-scan-runner-scan
pod shows that it never received an update from the worker pods:The text was updated successfully, but these errors were encountered: