retina icon indicating copy to clipboard operation
retina copied to clipboard

Published 20 hours ago verified publisher icon microsoft

agent crashes with loadFiltermanagerObjects failed

Open iarlyy opened this issue 8 months ago • 5 comments

Describe the bug retina-agent fails to start and crashes with the following error:

$ kubectl logs retina-agent-mdbr7 -n retina
Defaulted container "retina" out of: retina, init-retina (init)
starting Retina v0.0.12loading config /retina/config/config.yaml
init client-go
init logger
ts=2024-06-11T13:03:17.165Z level=info caller=metrics/metrics.go:169 msg="Metrics initialized"
ts=2024-06-11T13:03:17.165Z level=info caller=controller/main.go:138 msg="telemetry disabled"
ts=2024-06-11T13:03:17.176Z level=info caller=controller/main.go:213 msg="Kubernetes server version: v1.27.13-eks-3af4770"
ts=2024-06-11T13:03:17.177Z level=debug caller=pubsub/pubsub.go:76 msg="subscribed to topic" topic=apiserver uuid=8f6b81ba-eef8-4a70-9d7d-002ac3862fc7
ts=2024-06-11T13:03:17.177Z level=error caller=filter/filter_map_linux.go:61 msg="loadFiltermanagerObjects failed" error="field RetinaFilterMap: map retina_filter_map: load pinned map: permission denied"
ts=2024-06-11T13:03:17.177Z level=error caller=controller/main.go:226 msg="unable to create filter manager{error 26 0  failed to initialize filter map: field RetinaFilterMap: map retina_filter_map: load pinned map: permission denied}"

To Reproduce Steps to reproduce the behavior:

Installation command:

helm template retina oci://ghcr.io/microsoft/retina/charts/retina \
    --version v0.0.12 \
    --namespace retina \
    --set image.tag=v0.0.12 \
    --set operator.tag=v0.0.12 \
    --set logLevel=debug \
    --set os.windows=false \
    --set operator.enabled=false \
    --skip-crds \
    --set enablePodLevel=true \
    --set remoteContext=true \
    --set enabledPlugin_linux="\[packetforward\,linuxutil\,dns\]" | kubectl apply -f -

It seems some issue with pod level toggle. If i set it to false, pods start normally.

Expected behavior Clean initialization of retina-agent pods.

Platform (please complete the following information):

  • Host: EKS
  • Kernel Version: 5.15.153
  • OS Image: Bottlerocket OS 1.19.5 (aws-k8s-1.27)
  • Operating System: linux
  • Architecture: amd64
  • Container Runtime Version: containerd://1.6.31+bottlerocket
  • Kubelet Version: v1.27.11-eks-9572756
  • Retina Version: 0.0.12

Thanks for any light in figuring it out what is happening.

iarlyy avatar Jun 11 '24 13:06 iarlyy