gather-runtime-scanner-logs.sh

#!/bin/bash
set -x #echo on

# Set to the namespace you are running Sysdig in
NAMESPACE=kube-system

SFX=`date +"%Y-%m-%d_%H-%M-%S"`
OUTPUT_DIR=sysdig-${SFX}

mkdir ${OUTPUT_DIR}
cd ${OUTPUT_DIR}

#SA_PODS=`kubectl get pods -n ${NAMESPACE} -o json | jq -r '.items[].metadata | select(.ownerReferences[].name=="sysdig-agent") | .name'`
#for pod in $SA_PODS
#do
#  mkdir sa-${pod}
#  cd sa-${pod}
#  #kubectl -n ${NAMESPACE} -c sysdig cp ${pod}:/opt/draios/logs .
#  kubectl -n ${NAMESPACE} -c sysdig cp ${pod}:/opt/draios/logs/draios.log draios.log
#  kubectl -n ${NAMESPACE} describe pod ${pod} > ${pod}_describe.txt
#  cd ..
#done

SANA_PODS=`kubectl get pods -n ${NAMESPACE} -o json | jq -r '.items[].metadata | select(.ownerReferences[].name=="sysdig-agent-node-analyzer") | .name'`
for pod in $SANA_PODS
do
  mkdir sana-${pod}
  cd sana-${pod}
  kubectl -n ${NAMESPACE} logs -c sysdig-runtime-scanner ${pod} > ${pod}.log
  kubectl -n ${NAMESPACE} describe pod ${pod} > ${pod}_describe.txt
  cd ..
done

#kubectl -n ${NAMESPACE} get ds sysdig-agent -o yaml > sa-ds.yaml
#kubectl -n ${NAMESPACE} get cm sysdig-agent -o yaml > sa-cm.yaml
#kubectl -n ${NAMESPACE} get ds sysdig-agent-node-analyzer -o yaml > sana-ds.yaml
#kubectl -n ${NAMESPACE} get cm sysdig-agent-runtime-scanner -o yaml > sana-cm.yaml
#kubectl get pods -n ${NAMESPACE} -o wide > sysdig-running-pods.txt
#kubectl get ds -n ${NAMESPACE} -o wide > sysdig-running-ds.txt
#kubectl get nodes -o json | jq -r '.items[].status.images[] | .sizeBytes' | sort -nr | head -1 > largest-image-size.txt
#kubectl cluster-info dump | grep -i clusterip > clusterip.txt
#kubectl describe nodes > nodes-describe.txt
#kubectl get events -A --sort-by=.metadata.creationTimestamp > all-events.txt 

cd ..
tar -czvf ${OUTPUT_DIR}.tar.gz ./${OUTPUT_DIR}
rm -r ./${OUTPUT_DIR}

echo "COMPLETE: Please send ${OUTPUT_DIR}.tar.gz to Sysdig"