Affected by GO-2022-0617 and 10 other vulnerabilities

GO-2022-0617: WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes

GO-2022-0983: kubectl ANSI escape characters not filtered in k8s.io/kubernetes

GO-2023-1628: Kubernetes vulnerable to path traversal in k8s.io/kubernetes

GO-2023-1629: Kubernetes vulnerable to validation bypass in k8s.io/kubernetes

GO-2023-1864: Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes

GO-2023-1891: kube-apiserver vulnerable to policy bypass in k8s.io/kubernetes

GO-2023-1892: Kubernetes mountable secrets policy bypass in k8s.io/kubernetes

GO-2023-2170: Kubernetes privilege escalation vulnerability in k8s.io/kubernetes

GO-2023-2330: Kubernetes privilege escalation vulnerability in k8s.io/kubernetes

GO-2023-2341: Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes

GO-2024-2994: Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes

discovery

package

v1.25.2-rc.0 Latest Latest Go to latest Published: Sep 14, 2022 License: Apache-2.0 Imports: 10 Imported by: 32

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubernetes/kubernetes

Documentation ¶

Index ¶

Constants
func DiscoverValidatedKubeConfig(cfg *kubeadmapi.JoinConfiguration) (*clientcmdapi.Config, error)
func For(cfg *kubeadmapi.JoinConfiguration) (*clientcmdapi.Config, error)

Constants ¶

View Source

const TokenUser = "tls-bootstrap-token-user"

TokenUser defines token user

Variables ¶

This section is empty.

Functions ¶

func DiscoverValidatedKubeConfig ¶ added in v1.12.0

func DiscoverValidatedKubeConfig(cfg *kubeadmapi.JoinConfiguration) (*clientcmdapi.Config, error)

DiscoverValidatedKubeConfig returns a validated Config object that specifies where the cluster is and the CA cert to trust

func For ¶

func For(cfg *kubeadmapi.JoinConfiguration) (*clientcmdapi.Config, error)

For returns a kubeconfig object that can be used for doing the TLS Bootstrap with the right credentials Also, before returning anything, it makes sure it can trust the API Server

Types ¶

This section is empty.

Source Files ¶

View all Source files

discovery.go

Directories ¶

Path	Synopsis
file
https
token

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL