-
Notifications
You must be signed in to change notification settings - Fork 24
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
clammit runtime error #24
Comments
ouch. From the stacktrace the problem is near here in go-clamd it appears that sending data to clamd didn't fail, but no response was received, so the response is Can you check the clamd logs or syslog for a clamd crash? Also, could you please share the clammit and clamd config file and provide a sample of the file that you're attempting to scan? That'll help me in reproducing the issue. Anyway, considering also the current memory leak #22, go-clamd deserves a pull request to fix these. I'll try to work on this in the upcoming days, but of course any help is welcome :-) |
Reviewing the clamd man page, indeed It looks trivial to fix, so I'll attempt working on it in the coming days. Eventually - I am not really up to date on virus scanning best practices, but from experience I remember that there is not much value in scanning very large files, as it is unlikely they contain threats. |
First, I am not yet scanning files, actively. Not yet and especially no big ones, yet. I have just prepared the runtime environment and pod configuration. This is upcoming work on my desk for tomorrow... :)
I can reproduce the issue which pops up when restarting As a suggestion, to overcome these common cases, there could be a retry loop around every call to
|
Thanks, will review. |
It seems that clammit does not die when clamd is not reachable. It just outputs a bunch of these panics / stack traces I put above, |
Hi @ITler, sorry for not being able to work on this yet. I'm happy that the current behaviour is good enough for your use case. As soon as I get a chance, I'll anyway handle this case and output a more appropriate log message rather than a discomforting panic stack trace. Thanks |
Could i please share some insights what this output means?
I especially would need to know if with this kind of error the clammit stops working entirely (then it would be a good target for a liveness probe btw), or if just the connection to the clamd fails for one try? Does the app recover from this by itself?
Some more infos. I am running the clammit with 1 vCPU and a minium of 756MB RAM, because I want the clammit to keep a payload of 500MB in RAM and I leave 256MB for the app itself (which feels quite too much for a golang app).
Is this sufficient? Would increasing resources solve the mentioned issue?
The text was updated successfully, but these errors were encountered: