-
-
Notifications
You must be signed in to change notification settings - Fork 2.4k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Improvements to osquery AWS logic (#7714)
- Introduce the flag aws_imdsv2_request_attempts to specify how many attempts should be done to retrieve an IMDSv2 token to do a secure request. - Introduce the flag aws_imdsv2_request_interval to specify the base seconds to wait between attempts, which scales quadratically with the number of attempts. - Introduce the flag aws_disable_imdsv1_fallback which disables IMDSv1 as a fallback if the IMDSv2 token fails to be retrieved. - Remove the automatic check to see if osquery is running on an EC2 instance. - Improve the retrieval of instance id and region. If the retrieval keeps failing, don't cache empty values, keep retrying on next requests until it has success, then cache the values. - Improve error message when STS credentials fail to be retrieved. The hardcoded error was hiding the true reason for the failure.
- Loading branch information
Showing
5 changed files
with
179 additions
and
115 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.