github/kubeshark
1
0
Fork 0
mirror of https://github.com/kubeshark/kubeshark.git synced 2025-08-17 07:58:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,863 Commits 84 Branches 954 Tags 174 MiB
makefile-branch-rule-test
Commit Graph

252 Commits

Author SHA1 Message Date
radikaled
06e0def53e
Update 14-openshift-security-context-constraints.yaml (#1539) 
Add IPC_LOCK to allowedCapabilities otherwise kubeshark-worker-daemon-set will not deploy.
 2024-05-05 10:45:25 -07:00
M. Mert Yildiran
b88f1c7014
🔖 Bump the Helm chart version to 52.3.0 2024-05-02 23:45:06 +03:00
Alon Girmonsky
f4e2d2f9ca
Use eBPF as a traffic capture source by default if cgroup V2 is enabled. (#1540) 
This behavior can be reversed by setting the `tap.packetCapture`
to a specific source or manually adding the command line property:
`-disable-ebpf` to both the `worker` and the `tracer`
 2024-05-01 16:30:03 -07:00
M. Mert Yildiran
f017020f62
🔖 Bump the Helm chart version to 52.2.39 2024-04-24 16:05:46 +03:00
Alon Girmonsky
32ffa6132d
Fix/disable ebpf by defalt again (#1538) 
* Revert "Revert "as eBPF is a significant feature that can impact many users, this PR is meant (#1532)""

This reverts commit 7ab63ec745.

* Added the missing -disable-ebpf parameters to Tracer
 2024-04-23 15:31:19 -07:00
Alon Girmonsky
0bb0c4b256 Merge branch 'master' of github.com:kubeshark/kubeshark 2024-04-22 17:08:56 -07:00
Alon Girmonsky
28696d2f5c
- Consider cloudLicenseEnabled only if license is empty. If license isn't empty disregard cloudLicenseEnabled (#1536) 2024-04-22 15:14:06 -07:00
Alon Girmonsky
7ab63ec745 Revert "as eBPF is a significant feature that can impact many users, this PR is meant (#1532)" 
This reverts commit 53c3dabcbf.
 2024-04-22 14:57:00 -07:00
Serhii Ponomarenko
5a4901f7bd
License via authentication (#1526) 
* 🔨 Add `cloudLicenseEnabled` helm value

* 🔨 Add `CLOUD_LICENSE_ENABLED` key to `ConfigMap`

* 🔨 Add `REACT_APP_CLOUD_LICENSE_ENABLED` `front` env

* 🎨 Reformat `ConfigStruct`

* 🔧 Set `cloudLicenseEnabled: true` by default

* 🔧 Override auth enabled/type if `cloudLicenseEnabled: true`

---------

Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-04-21 15:04:08 -07:00
M. Mert Yildiran
5a322fc58a
🔖 Bump the Helm chart version to 52.2.30 2024-04-19 17:59:51 +03:00
Alon Girmonsky
53c3dabcbf
as eBPF is a significant feature that can impact many users, this PR is meant (#1532) 
to provide it NOT as the default option, but require an explicit indication
to use it. To use eBPF instead of AF-PACKET or PF-RING, use:
--set tap.packetCapture=ebpf
 2024-04-18 16:28:31 -07:00
Volodymyr Stoiko
6b6915c7ee
helm: Use proper labels in selectors (#1528) 
* Use proper selectorLabels in daemonset

* Update selector labels in deployments
 2024-04-16 09:02:33 -07:00
M. Mert Yildiran
e819759c2d
🎨 Remove a whitespace in 09-worker-daemon-set.yaml 2024-04-16 00:27:18 +03:00
Ilya Gavrilov
b39c5dd5d3
add net capabilities for tracer (#1525) 
Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-04-15 14:20:44 -07:00
M. Mert Yildiran
0f402789f1
Add TcpStreamChannelTimeoutShow field to MiscConfig 2024-04-15 22:46:18 +03:00
Volodymyr Stoiko
d4fade3599
Extend cluster-role permissions (#1527) 
* Extend cluster-role permissions

* Format

* upd
 2024-04-09 14:20:52 -07:00
M. Mert Yildiran
35c1a88724
🔖 Bump the Helm chart version to 52.2.1 2024-03-28 03:55:03 +03:00
M. Mert Yildiran
fe3f93c91b
Revert srvPort to 30001 2024-03-28 03:54:06 +03:00
M. Mert Yildiran
24aa4db0bc
Bring back the packet-capture flag 2024-03-28 01:42:16 +03:00
M. Mert Yildiran
0b58558f70
🔖 Bump the Helm chart version to 52.2.0 2024-03-27 21:50:27 +03:00
M. Mert Yildiran
3cc9ff8616
🔖 Bump the Helm chart version to 52.1.77 2024-03-19 18:55:27 +03:00
Serhii Ponomarenko
247498492a
Set custom timezone (#1517) 
* 🔨 Add timezone config

* 🔨 Update `complete.yaml`

* 📝 Document `timezone` config

* 📝 Update `timezone` config docs

* 📝 Update `timezone` config docs

* 🔥 Remove unused `TIMEZONE` field from `ConfigMap`

* 🦺 Handle empty `tap.timezone` case

* 🔨 Move `timezone` from `.Values.tap` to `.Values`

* 🔨 Add `timezone` field to helm values

* 🔨 Update `complete.yaml`

* 📝 Update `timezone` config docs

* 🔨 Add `TIMEZONE` field to `ConfigMap`

---------

Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-03-19 12:06:50 +01:00
M. Mert Yildiran
9162c4fb64
🔖 Bump the Helm chart version to 52.1.75 2024-03-15 20:39:39 +03:00
Serhii Ponomarenko
e7fc7b791a
🐛 Fix front nginx and network policies ports (#1518) 
* 🐛 Use `8080` listen port for front nginx config

* 🐛 Use `8080` ingress port for front/hub network policies
 2024-03-14 15:18:24 -07:00
Volodymyr Stoiko
c0751ad4cb
Switch to lower ports (#1514) 
Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-03-08 21:02:05 -08:00
Serhii Ponomarenko
0aca81fbcb
🔨 Disable scripting, targeted pods update & recording via ConfigMap keys (#1515) 
* 🔨 Add `SCRIPTING_DISABLED` key to `ConfigMap`

* 🔨 Add `TARGETED_PODS_UPDATE_DISABLED` config

* 🔨 Add `RECORDING_DISABLED` key to `ConfigMap`

* 🎨 Reformat `TapConfig`

* 🔨 Update `complete.yaml`
 2024-03-08 20:49:07 -08:00
Volodymyr Stoiko
db607aff16
Add network policies for kubeshark components (#1513) 
* Add explicit network policies for kubeshark components

* allow exact ports

---------

Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-03-07 06:37:13 -08:00
M. Mert Yildiran
93de6e8934
🔖 Bump the Helm chart version to 52.1.66 2024-03-06 00:12:02 +03:00
M. Mert Yildiran
68aabf262f
🔖 Bump the Helm chart version to 52.1.63 2024-02-29 01:45:41 +03:00
M. Mert Yildiran
d15e1cca54
🔖 Bump the Helm chart version to 52.1.62 2024-02-29 01:33:28 +03:00
M. Mert Yildiran
a9d2cb5ac2
🔖 Bump the Helm chart version to 52.1.61 2024-02-28 23:43:04 +03:00
M. Mert Yildiran
ddcf973e35
Revert "🔖 Bump the Helm chart version to 52.1.61" 
This reverts commit b6d1804326.
 2024-02-28 23:42:08 +03:00
M. Mert Yildiran
b6d1804326
🔖 Bump the Helm chart version to 52.1.61 2024-02-28 23:39:06 +03:00
Volodymyr Stoiko
6dc12af55b
Add namespace prefix to cluster scope resources (#1506) 
Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-02-28 12:14:03 -08:00
M. Mert Yildiran
8fe0544175
🔨 Remove CHECKPOINT_RESTORE capability from defaults 2024-02-26 21:40:14 +03:00
M. Mert Yildiran
c38bdcd977
🔖 Bump the Helm chart version to 52.1.50 2024-02-20 21:25:10 +03:00
M. Mert Yildiran
c8cd1f57c4
🔖 Bump the Helm chart version to 52.1.45 2024-02-15 19:35:01 +03:00
Alon Girmonsky
6af2d11878
removed cloud URL from config map (#1499) 
1. removed cloud URL from config map
2. added to hub's and worker's deployments
 2024-02-14 13:06:24 -08:00
M. Mert Yildiran
2f899a943c
🔖 Bump the Helm chart version to 52.1.30 2024-02-07 22:43:22 +03:00
Alon Girmonsky
f010f349a1
unixsocket for tracer (#1497) 
- Added `-unixsocket` by default
- In DEBUG mode, added `-dumptracer 100000000`
 2024-02-07 09:50:58 -08:00
iluxa
26e23dc94f
add capability for tracer (#1496) 
Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-02-06 13:38:21 -08:00
Serhii Ponomarenko
6785f024e4
Feature-based SAML authorization (#49) (#1495) 
* 🔨 Add `showAdminConsoleLink` to helm values

* 🔨 Add `ShowAdminConsoleLink` to `TapConfig`

* 🔨 Regenerate `complete.yaml` manifest

* 📝 Update helm-chart `README.md`

---------

Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-02-06 13:36:32 -08:00
M. Mert Yildiran
92dab2e2f7
🔨 Add PcapErrorTTL field to MiscConfig 2024-02-06 01:32:07 +03:00
Serhii Ponomarenko
18d051af28
🔥 Remove old Descope auth (#1490) 
* 🔥 Remove Descope-related config updates

* 🔥 Remove Descope-related helm values

* 🔥 Remove Descope-related k8s configs

* 🔥 Remove Descope-related fields from `tapConfig`

---------

Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-01-31 14:49:55 -08:00
M. Mert Yildiran
cef012d1f3
🐛 Fix the ConfigMap keys of JsonTTL and PcapTTL fields 2024-01-31 16:57:11 +03:00
M. Mert Yildiran
4802cca646
Add MiscConfig struct with has JsonTTL and PcapTTL fields 2024-01-30 02:25:04 +03:00
Alon Girmonsky
4117d008a9
Update README.md 2024-01-28 11:06:18 -08:00
Alon Girmonsky
91e3546196
added a link to the dashboard 2024-01-26 15:38:40 -08:00
Alon Girmonsky
4db2a80675
Add API cloud endpoint env var to hub deployment (#1489) 
* Add API cloud endpoint env var to hub deployment

* Added an env var for api cloud endpoint
 2024-01-26 00:24:38 -08:00
Serhii Ponomarenko
bfa3efd23a
SAML authorization (#1487) 
* 🔨 Add `AUTH_SAML_ROLE_ATTRIBUTE` field to `ConfigMap`

* 📝 Document `tap.auth.saml.roleAttribute/roles` values

* 🔧 Re-generate `complete.yaml`

* 🔥 Remove `default` tag from `SamlConfig.RoleAttribute`

---------

Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
 2024-01-24 16:05:37 -08:00