Short description
I run python3 dagda.py vuln --product python --product_version=3.8-slim
Reproduction steps
- Start Dagda server with the parameters '...'
- Type the Dagda CLI command vuln --product python --product_version=3.8-slim
- Return {
"err": 500,
"msg": "Internal Server Error"
}
- Show logs dagda server
dagda | <2023-12-13 09:54:51,440> <sysdig_falco_monitor> <pre_check:83> <I'm running inside a docker container, so I can't check if the kernel headers are installed in the host operating system. Please, review it!!>
dagda | <2023-12-13 09:55:29,060> <dagda_server> run:104 <Falcosecurity/falco output file not found.>
dagda | <2023-12-13 09:55:29,060> <dagda_server> run:105
dagda | <2023-12-13 10:08:22,749> <log_exception:1454> <Exception on /v1/vuln/products/python/3.8-slim [GET]>
dagda | Traceback (most recent call last):
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 2070, in wsgi_app
dagda | response = self.full_dispatch_request()
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 1515, in full_dispatch_request
dagda | rv = self.handle_user_exception(e)
dagda | File "/usr/local/lib/python3.8/site-packages/flask_cors/extension.py", line 165, in wrapped_function
dagda | return cors_after_request(app.make_response(f(*args, **kwargs)))
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 1513, in full_dispatch_request
dagda | rv = self.dispatch_request()
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 1499, in dispatch_request
dagda | return self.ensure_sync(self.view_functions[rule.endpoint])(**req.view_args)
dagda | File "/opt/app/api/service/vuln.py", line 57, in get_vulns_by_product_and_version
dagda | vulns = InternalServer.get_mongodb_driver().get_vulnerabilities(product, version)
dagda | File "/opt/app/driver/mongodb_driver.py", line 322, in get_vulnerabilities
dagda | for bid in bid_cursor:
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/cursor.py", line 1238, in next
dagda | if len(self.__data) or self._refresh():
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/cursor.py", line 1155, in _refresh
dagda | self.__send_message(q)
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/cursor.py", line 1044, in __send_message
dagda | response = client._run_operation(
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/mongo_client.py", line 1424, in _run_operation
dagda | return self._retryable_read(
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/mongo_client.py", line 1525, in _retryable_read
dagda | return func(session, server, sock_info, secondary_ok)
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/mongo_client.py", line 1420, in _cmd
dagda | return server.run_operation(
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/server.py", line 130, in run_operation
dagda | _check_command_response(first, sock_info.max_wire_version)
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/helpers.py", line 167, in _check_command_response
dagda | raise OperationFailure(errmsg, code, response, max_wire_version)
dagda | pymongo.errors.OperationFailure: text index required for $text query (no such collection 'vuln_database.bid'), full error: {'ok': 0.0, 'errmsg': "text index required for $text query (no such collection 'vuln_database.bid')", 'code': 27, 'codeName': 'IndexNotFound'}
Expected results
I expected that by analyzing the docker image and showing the report
Actual results
Instead of '...', what I saw was that '...' happened instead.
On which platforms did you notice this:
Please complete the following information:
- OS: Ubuntu
- OS Version: Jammy
- Python version: 3.8
Short description
I run python3 dagda.py vuln --product python --product_version=3.8-slim
Reproduction steps
"err": 500,
"msg": "Internal Server Error"
}
dagda | <2023-12-13 09:54:51,440> <sysdig_falco_monitor> <pre_check:83> <I'm running inside a docker container, so I can't check if the kernel headers are installed in the host operating system. Please, review it!!>
dagda | <2023-12-13 09:55:29,060> <dagda_server> run:104 <Falcosecurity/falco output file not found.>
dagda | <2023-12-13 09:55:29,060> <dagda_server> run:105
dagda | <2023-12-13 10:08:22,749> <log_exception:1454> <Exception on /v1/vuln/products/python/3.8-slim [GET]>
dagda | Traceback (most recent call last):
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 2070, in wsgi_app
dagda | response = self.full_dispatch_request()
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 1515, in full_dispatch_request
dagda | rv = self.handle_user_exception(e)
dagda | File "/usr/local/lib/python3.8/site-packages/flask_cors/extension.py", line 165, in wrapped_function
dagda | return cors_after_request(app.make_response(f(*args, **kwargs)))
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 1513, in full_dispatch_request
dagda | rv = self.dispatch_request()
dagda | File "/usr/local/lib/python3.8/site-packages/flask/app.py", line 1499, in dispatch_request
dagda | return self.ensure_sync(self.view_functions[rule.endpoint])(**req.view_args)
dagda | File "/opt/app/api/service/vuln.py", line 57, in get_vulns_by_product_and_version
dagda | vulns = InternalServer.get_mongodb_driver().get_vulnerabilities(product, version)
dagda | File "/opt/app/driver/mongodb_driver.py", line 322, in get_vulnerabilities
dagda | for bid in bid_cursor:
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/cursor.py", line 1238, in next
dagda | if len(self.__data) or self._refresh():
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/cursor.py", line 1155, in _refresh
dagda | self.__send_message(q)
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/cursor.py", line 1044, in __send_message
dagda | response = client._run_operation(
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/mongo_client.py", line 1424, in _run_operation
dagda | return self._retryable_read(
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/mongo_client.py", line 1525, in _retryable_read
dagda | return func(session, server, sock_info, secondary_ok)
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/mongo_client.py", line 1420, in _cmd
dagda | return server.run_operation(
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/server.py", line 130, in run_operation
dagda | _check_command_response(first, sock_info.max_wire_version)
dagda | File "/usr/local/lib/python3.8/site-packages/pymongo/helpers.py", line 167, in _check_command_response
dagda | raise OperationFailure(errmsg, code, response, max_wire_version)
dagda | pymongo.errors.OperationFailure: text index required for $text query (no such collection 'vuln_database.bid'), full error: {'ok': 0.0, 'errmsg': "text index required for $text query (no such collection 'vuln_database.bid')", 'code': 27, 'codeName': 'IndexNotFound'}
Expected results
I expected that by analyzing the docker image and showing the report
Actual results
Instead of '...', what I saw was that '...' happened instead.
On which platforms did you notice this:
Please complete the following information: