Affected by GO-2022-0278
and 6 other vulnerabilities
GO-2022-0278: Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux in github.com/containerd/containerd
GO-2022-0344: containerd CRI plugin: Insecure handling of image volumes in github.com/containerd/containerd
GO-2022-0360: Ambiguous OCI manifest parsing in github.com/containerd/containerd
GO-2022-0482: containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd
GO-2022-0921: Archive package allows chmod of file outside of unpack target directory in github.com/containerd/containerd
GO-2022-0938: Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd
GO-2022-1147: containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd
The highest tagged major version is
v2.
package
Version:
v1.5.2
Opens a new window with list of versions in this module.
Published: May 19, 2021
License: Apache-2.0
Opens a new window with license information.
Imports: 25
Opens a new window with list of imports.
Imported by: 73
Opens a new window with list of known importers.
Documentation
¶
RemoveSocket removes the socket at the specified address if
it exists on the filesystem
WithLocal uses an in process shim
Client is a shim client containing the connection to a shim
New returns a new shim client
Close the client connection
IsAlive returns true if the shim can be contacted.
NOTE: a negative answer doesn't mean that the process is gone.
KillShim kills the shim forcefully and wait for the process to disappear
StopShim signals the shim to exit and wait for the process to disappear
Opt is an option for a shim client configuration
func WithConnect(address string, onClose func()) Opt
WithConnect connects to an existing shim
func WithStart(binary, address, daemonAddress, cgroup string, debug bool, exitHandler func()) Opt
WithStart executes a new shim process
Source Files
¶
Click to show internal directories.
Click to hide internal directories.