accuknox · Ankurk99 · Oct 4, 2022 · Sep 27, 2022
diff --git a/src/conf/local-file.yaml b/src/conf/local-file.yaml
@@ -12,7 +12,7 @@ application:
     namespace-filter:
       - "!kube-system"
   system:
-    operation-mode: 1                         # 1: cronjob | 2: one-time-job
+    operation-mode: 1                       # 1: cronjob | 2: one-time-job
     operation-trigger: 5
     cron-job-time-interval: "0h0m10s"         # format: XhYmZs
     system-log-from: "kubearmor"              # db|kubearmor|feed-consumer

diff --git a/src/observability/kubearmor.go b/src/observability/kubearmor.go
@@ -178,8 +178,12 @@ func fetchSysServerConnDetail(log types.KubeArmorLog) (types.SysObsNwData, error
 	// get Syscall
 	if strings.Contains(log.Data, "tcp_connect") || strings.Contains(log.Data, "SYS_CONNECT") {
 		conn.InOut = "OUT"
+		conn.Count++
+		conn.UpdatedTime = time.UnixDate
 	} else if strings.Contains(log.Data, "tcp_accept") || strings.Contains(log.Data, "SYS_ACCEPT") {
 		conn.InOut = "IN"
+		conn.Count++
+		conn.UpdatedTime = time.UnixDate
 	} else {
 		return types.SysObsNwData{}, err
 	}
@@ -339,6 +343,7 @@ func GetKubearmorSummaryData(req *opb.Request) ([]types.SysObsProcFileData, []ty
 				Count:       systemTotal[sysindex],
 				UpdatedTime: t.Format(time.UnixDate),
 			})
+
 		} else if locSysLog.Operation == "Network" {
 			//ExtractNwData
 			nwobsdata, err := fetchSysServerConnDetail(locSysLog)

diff --git a/src/observability/summary.go b/src/observability/summary.go
@@ -17,7 +17,7 @@ func GetSummaryData(request *opb.Request) (*opb.Response, error) {
 		proc, file, nw, podInfo := GetKubearmorSummaryData(request)
 
 		if len(proc) <= 0 && len(file) <= 0 && len(nw) <= 0 {
-			return nil, errors.New("no system summary info present for the requested pod")
+			return nil, errors.New("no system summary info present for the requested pod name")
 		}
 
 		procResp := []*opb.SysProcFileSummaryData{}
@@ -59,21 +59,25 @@ func GetSummaryData(request *opb.Request) (*opb.Response, error) {
 			for _, loc_nw := range nw {
 				if loc_nw.InOut == "IN" {
 					inNwResp = append(inNwResp, &opb.SysNwSummaryData{
-						Protocol:  loc_nw.Protocol,
-						Command:   loc_nw.Command,
-						IP:        loc_nw.PodSvcIP,
-						Port:      loc_nw.ServerPort,
-						Labels:    loc_nw.Labels,
-						Namespace: loc_nw.Namespace,
+						Protocol:    loc_nw.Protocol,
+						Command:     loc_nw.Command,
+						IP:          loc_nw.PodSvcIP,
+						Port:        loc_nw.ServerPort,
+						Labels:      loc_nw.Labels,
+						Namespace:   loc_nw.Namespace,
+						Count:       strconv.Itoa(int(loc_nw.Count)),
+						UpdatedTime: loc_nw.UpdatedTime,
 					})
 				} else if loc_nw.InOut == "OUT" {
 					outNwResp = append(outNwResp, &opb.SysNwSummaryData{
-						Protocol:  loc_nw.Protocol,
-						Command:   loc_nw.Command,
-						IP:        loc_nw.PodSvcIP,
-						Port:      loc_nw.ServerPort,
-						Labels:    loc_nw.Labels,
-						Namespace: loc_nw.Namespace,
+						Protocol:    loc_nw.Protocol,
+						Command:     loc_nw.Command,
+						IP:          loc_nw.PodSvcIP,
+						Port:        loc_nw.ServerPort,
+						Labels:      loc_nw.Labels,
+						Namespace:   loc_nw.Namespace,
+						Count:       strconv.Itoa(int(loc_nw.Count)),
+						UpdatedTime: loc_nw.UpdatedTime,
 					})
 				}
 			}

diff --git a/src/protobuf/v1/analyzer/analyzer.pb.go b/src/protobuf/v1/analyzer/analyzer.pb.go
diff --git a/src/protobuf/v1/analyzer/analyzer_grpc.pb.go b/src/protobuf/v1/analyzer/analyzer_grpc.pb.go
diff --git a/src/protobuf/v1/config/config.pb.go b/src/protobuf/v1/config/config.pb.go
diff --git a/src/protobuf/v1/config/config_grpc.pb.go b/src/protobuf/v1/config/config_grpc.pb.go
diff --git a/src/protobuf/v1/consumer/consumer.pb.go b/src/protobuf/v1/consumer/consumer.pb.go
diff --git a/src/protobuf/v1/consumer/consumer_grpc.pb.go b/src/protobuf/v1/consumer/consumer_grpc.pb.go
diff --git a/src/protobuf/v1/discovery/discovery.pb.go b/src/protobuf/v1/discovery/discovery.pb.go
diff --git a/src/protobuf/v1/insight/insight.pb.go b/src/protobuf/v1/insight/insight.pb.go
diff --git a/src/protobuf/v1/insight/insight_grpc.pb.go b/src/protobuf/v1/insight/insight_grpc.pb.go
diff --git a/src/protobuf/v1/observability/observability.pb.go b/src/protobuf/v1/observability/observability.pb.go
diff --git a/src/protobuf/v1/observability/observability.proto b/src/protobuf/v1/observability/observability.proto
@@ -48,6 +48,8 @@ message SysNwSummaryData {
     string Port = 4;
     string Labels = 5;
     string Namespace = 6;
+    string Count = 7;
+    string UpdatedTime = 8;
 }
 
 message CiliumSummData {

diff --git a/src/protobuf/v1/worker/worker.pb.go b/src/protobuf/v1/worker/worker.pb.go
diff --git a/src/protobuf/v1/worker/worker_grpc.pb.go b/src/protobuf/v1/worker/worker_grpc.pb.go
diff --git a/src/types/logData.go b/src/types/logData.go
@@ -21,7 +21,7 @@ type KnoxNetworkLog struct {
 	DstIP    string `json:"dst_ip,omitempty" bson:"dst_ip"`
 	SrcPort  int    `json:"src_port,omitempty" bson:"src_port"`
 	DstPort  int    `json:"dst_port,omitempty" bson:"dst_port"`
-	ICMPType int    `json:"icmp_type, omitempty" bson:"icmp_type"`
+	ICMPType int    `json:"icmp_type,omitempty" bson:"icmp_type"`
 
 	SynFlag bool `json:"syn_flag,omitempty" bson:"syn_flag"` // for tcp
 	IsReply bool `json:"is_reply,omitempty" bson:"is_reply"` // is_reply

diff --git a/src/types/observability.go b/src/types/observability.go
@@ -151,13 +151,15 @@ type SysObsProcFileData struct {
 }
 
 type SysObsNwData struct {
-	InOut      string
-	Protocol   string
-	Command    string
-	PodSvcIP   string
-	ServerPort string
-	Namespace  string
-	Labels     string
+	InOut       string
+	Protocol    string
+	Command     string
+	PodSvcIP    string
+	ServerPort  string
+	Namespace   string
+	Labels      string
+	Count       uint32
+	UpdatedTime string
 }
 
 type NwObsIngressEgressData struct {