Affected by GO-2022-0457 and 10 other vulnerabilities

GO-2022-0457: Access to Unix domain socket can lead to privileges escalation in Cilium in github.com/cilium/cilium

GO-2022-0458: Improper Privilege Management in Cilium in github.com/cilium/cilium

GO-2022-0959: Network Policies & (Clusterwide) Cilium Network Policies with namespace label selectors may unexpectedly select pods with maliciously crafted labels in github.com/cilium/cilium

GO-2023-1643: Potential network policy bypass when routing IPv6 traffic in github.com/cilium/cilium

GO-2023-1785: Potential HTTP policy bypass when using header rules in Cilium in github.com/cilium/cilium

GO-2023-2078: Kubernetes users may update Pod labels to bypass network policy in github.com/cilium/cilium

GO-2023-2079: Specific Cilium configurations vulnerable to DoS via Kubernetes annotations in github.com/cilium/cilium

GO-2023-2080: Cilium vulnerable to bypass of namespace restrictions in CiliumNetworkPolicy in github.com/cilium/cilium

GO-2024-2656: Unencrypted traffic between nodes with IPsec in github.com/cilium/cilium

GO-2024-2666: Insecure IPsec transparent encryption in github.com/cilium/cilium

GO-2024-3072: Policy bypass for Host Firewall policy due to race condition in Cilium agent in github.com/cilium/cilium

types

package

v1.6.10 Latest Latest Go to latest Published: Jul 2, 2020 License: Apache-2.0 Imports: 1 Imported by: 12

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cilium/cilium

Links

Open Source Insights

Documentation ¶

Index ¶

type InstanceMap
type Subnet
type SubnetMap
type Tags
- func (t Tags) Match(required Tags) bool
type Vpc
type VpcMap

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type InstanceMap ¶ added in v1.6.0

type InstanceMap map[string]*instance

InstanceMap is the list of all instances indexed by instance ID

func (InstanceMap) Add ¶ added in v1.6.0

func (m InstanceMap) Add(instanceID string, eni *v2.ENI)

Add adds an instance definition to the instance map. instanceMap may not be subject to concurrent access while add() is used.

func (InstanceMap) Get ¶ added in v1.6.0

func (m InstanceMap) Get(instanceID string) (enis []*v2.ENI)

Get returns the list of ENIs for a particular instance ID

func (InstanceMap) Update ¶ added in v1.6.0

func (m InstanceMap) Update(instanceID string, eni *v2.ENI)

Update updates the ENI definition of an ENI for a particular instance. If the ENI is already known, the definition is updated, otherwise the ENI is added to the instance.

type Subnet ¶ added in v1.6.0

type Subnet struct {
	// ID is the subnet ID
	ID string

	// Name is the subnet name
	Name string

	// CIDR is the CIDR associated with the subnet
	CIDR string

	// AvailabilityZone is the availability zone of the subnet
	AvailabilityZone string

	// VpcID is the VPC the subnet is in
	VpcID string

	// AvailableAddresses is the number of addresses available for
	// allocation
	AvailableAddresses int

	// Tags is the tags of the subnet
	Tags Tags
}

Subnet is a representation of an AWS subnet

type SubnetMap ¶ added in v1.6.0

type SubnetMap map[string]*Subnet

SubnetMap indexes AWS subnets by subnet ID

type Tags ¶ added in v1.6.0

type Tags map[string]string

Tags implements generic key value tags used by AWS

func (Tags) Match ¶ added in v1.6.0

func (t Tags) Match(required Tags) bool

Match returns true if the required tags are all found

type Vpc ¶ added in v1.6.0

type Vpc struct {
	// ID is the VPC ID
	ID string

	// PrimaryCIDR is the primary IPv4 CIDR
	PrimaryCIDR string
}

Vpc is the representation of an AWS VPC

type VpcMap ¶ added in v1.6.0

type VpcMap map[string]*Vpc

VpcMap indexes AWS VPCs by VPC ID

Source Files ¶

View all Source files

types.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL