search

crowdsecurity / crowdsec

CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.
https://crowdsec.net
MIT License
9.01k stars 467 forks source link

Docker container fails to start: can't find collection #3152

Closed OdinGitDat closed 3 months ago

OdinGitDat commented 3 months ago

What happened?

When I start crowdsec with certain collections in the env variable, the docker container fails to start.

What did you expect to happen?

container starts

How can we reproduce it (as minimally and precisely as possible)?

run following docker compose:

services:
  crowdsec:
    image: crowdsecurity/crowdsec:latest
    environment:
      PGID: "1000"
      COLLECTIONS: "crowdsecurity/http-cve crowdsecurity/traefik crowdsecurity/jellyfin-whitelist crowdsecurity/nextcloud-whitelist"

Anything else we need to know?

No response

Crowdsec version

```console $ cscli version version: v1.6.2-16bfab86 Codename: alphaga BuildDate: 2024-06-05_14:25:55 GoVersion: 1.22.3 Platform: docker libre2: C++ User-Agent: crowdsec/v1.6.2-16bfab86-docker Constraint_parser: >= 1.0, <= 3.0 Constraint_scenario: >= 1.0, <= 3.0 Constraint_api: v1 Constraint_acquis: >= 1.0, < 2.0 ```

OS version

```console # On Linux: $ cat /etc/os-release # paste output here $ uname -a # paste output here # On Windows: C:\> wmic os get Caption, Version, BuildNumber, OSArchitecture # paste output here ```

Enabled collections and parsers

```console $ cscli hub list -o raw # paste output here ```

Acquisition config

```console # On Linux: $ cat /etc/crowdsec/acquis.yaml /etc/crowdsec/acquis.d/* # paste output here # On Windows: C:\> Get-Content C:\ProgramData\CrowdSec\config\acquis.yaml # paste output here

Config show

```console $ cscli config show # paste output here ```

Prometheus metrics

```console $ cscli metrics # paste output here ```

Related custom configs versions (if applicable) : notification plugins, custom scenarios, parsers etc.

github-actions[bot] commented 3 months ago

@OdinGitDat: Thanks for opening an issue, it is currently awaiting triage.

In the meantime, you can:

  1. Check Crowdsec Documentation to see if your issue can be self resolved.
  2. You can also join our Discord.
  3. Check Releases to make sure your agent is on the latest version.
Details I am a bot created to help the [crowdsecurity](https://github.com/crowdsecurity) developers manage community feedback and contributions. You can check out my [manifest file](https://github.com/crowdsecurity/crowdsec/blob/master/.github/governance.yml) to understand my behavior and what I can do. If you want to use this for your project, you can check out the [BirthdayResearch/oss-governance-bot](https://github.com/BirthdayResearch/oss-governance-bot) repository.
OdinGitDat commented 3 months ago

Sorry my bad, was mixing collections and parsers.

LaurenceJJones commented 3 months ago

We dont have a crowdsecurity/jellyfin-whitelist collection, it is a parser so it should be defined as:

environment:
  COLLECTIONS: "crowdsecurity/http-cve crowdsecurity/traefik"
  PARSERS: "crowdsecurity/jellyfin-whitelist crowdsecurity/nextcloud-whitelist"

Both the whitelist are just parsers included within the actual collection of LePresidente/jellyfin and crowdsecurity/nextcloud