Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-895

Unable to scan - The manifest for this tag could not be scanned for vulnerabilities

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Blocker Blocker
    • quay-v3.3.0
    • quay-v3.3.0
    • clair
    • None
    • Quay Enterprise

      I was able to install Clair with the following guide: https://access.redhat.com/documentation/en-us/red_hat_quay/3/html-single/deploy_red_hat_quay_on_openshift/index#appendix_a_red_hat_quay_on_openshift_configuration_files

      I am able to successfully push/pull images, but am unable to security scan any images:

       

      When I look at the logs on my quay-enterprise-app pod I get errors like this:

      securityworker stdout | 2020-07-22 03:06:20,841 [108] [ERROR] [util.secscan.api] Failed to decode JSON when analyzing layer 8ed08007-4fd7-4ff9-8aa1-094ec7797ff7.6cb2e6ca-d435-4daf-b532-15cb4d16a134
 File "util/secscan/api.py", line 392, in _response_json
 return self.scan_once(s, idx=_w(s, idx).end())
 securityworker stdout | 2020-07-22 03:06:20,842 [108] [ERROR] [util.secscan.analyzer] Got exception when trying to analyze layer 109 via security scanner
 File "util/secscan/analyzer.py", line 64, in _analyze_recursively_and_check
 File "util/secscan/analyzer.py", line 102, in _analyze_recursively
 File "util/secscan/analyzer.py", line 139, in _analyze
 File "util/secscan/api.py", line 419, in analyze_layer
 File "util/secscan/api.py", line 397, in _response_json
 securityworker stdout | 2020-07-22 03:06:20,857 [108] [INFO] [util.secscan.analyzer] Analyzing layer ed98faf6-0aa5-4a82-90dd-5d10edc5b782
 securityworker stdout | 2020-07-22 03:06:20,872 [108] [INFO] [util.secscan.api] Analyzing layer ed98faf6-0aa5-4a82-90dd-5d10edc5b782.c9afe897-6f3d-4abd-8a13-81ed7d2d5d2e
 securityworker stdout | 2020-07-22 03:06:20,884 [108] [ERROR] [util.secscan.api] Failed to decode JSON when analyzing layer ed98faf6-0aa5-4a82-90dd-5d10edc5b782.c9afe897-6f3d-4abd-8a13-81ed7d2d5d2e
 File "util/secscan/api.py", line 392, in _response_json
 return self.scan_once(s, idx=_w(s, idx).end())
 securityworker stdout | 2020-07-22 03:06:20,885 [108] [ERROR] [util.secscan.analyzer] Got exception when trying to analyze layer 110 via security scanner
 File "util/secscan/analyzer.py", line 64, in _analyze_recursively_and_check
 File "util/secscan/analyzer.py", line 102, in _analyze_recursively
 File "util/secscan/analyzer.py", line 139, in _analyze
 File "util/secscan/api.py", line 419, in analyze_layer
 File "util/secscan/api.py", line 397, in _response_json
 2020-07-22 03:06:20,899 [108] [INFO] [apscheduler.executors.default] Job "_index_in_scanner (trigger: interval[0:00:30], next run at: 2020-07-22 03:06:47 UTC)" executed successfully

       

      I have tried a variety of images, including this one which reported vulnerabilities for someone else https://developers.redhat.com/blog/2019/06/26/using-quay-io-to-find-vulnerabilities-in-your-container-images/, and none have been able to scan. How can I resolve this?

       

      Please reach out to be on Slack if you need more information for quicker resolution: ALuong@ibm.com

        1. Screenshot 2020-07-21 20.45.03.png
          Screenshot 2020-07-21 20.45.03.png
          99 kB
        2. Screenshot 2020-07-22 00.46.46.png
          Screenshot 2020-07-22 00.46.46.png
          112 kB
        3. Screenshot 2020-07-22 00.47.20.png
          Screenshot 2020-07-22 00.47.20.png
          173 kB

              Unassigned Unassigned
              aluongibm Alexander Luong (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: