search

aquasecurity / kube-hunter

Hunt for security weaknesses in Kubernetes clusters
Apache License 2.0
4.75k stars 585 forks source link

Network operations timeout #317

Closed iyehuda closed 4 years ago

iyehuda commented 4 years ago

Description

When probing kube-apiserver or any other network service, timeout after given amount of seconds.

This prevents kube-hunter from running for long time, when you hit slowly responding server during the discovery/network is blocked by firewall.

Contribution Guidelines

Please Read through the Contribution Guidelines.

Fixed Issues

Fixes #35

Contribution checklist

Notes

Originally written by @invidian

lizrice commented 4 years ago

Codecov Report

Merging #317 into master will decrease coverage by 0.45%. The diff coverage is n/a.

Impacted file tree graph

@@            Coverage Diff             @@
##           master     #317      +/-   ##
==========================================
- Coverage   60.46%   60.01%   -0.46%     
==========================================
  Files          41       41              
  Lines        1945     1963      +18     
==========================================
+ Hits         1176     1178       +2     
- Misses        769      785      +16
Impacted Files Coverage Δ
kube_hunter/modules/hunting/apiserver.py 69.63% <0.00%> (-1.99%) :arrow_down:
kube_hunter/core/events/handler.py 90.90% <0.00%> (+1.01%) :arrow_up:
kube_hunter/modules/discovery/ports.py 88.46% <0.00%> (+11.53%) :arrow_up:

Continue to review full report at Codecov.

Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update 69a31f8...e40672c. Read the comment docs.