Affected by GO-2022-0617 and 18 other vulnerabilities

GO-2022-0617: WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes

GO-2022-0885: Improper Authentication in Kubernetes in k8s.io/kubernetes

GO-2022-0890: Server Side Request Forgery (SSRF) in Kubernetes in k8s.io/kubernetes

GO-2022-0907: Access Restriction Bypass in kube-apiserver in k8s.io/kubernetes

GO-2022-0908: Incomplete List of Disallowed Inputs in Kubernetes in k8s.io/kubernetes

GO-2022-0910: Files or Directories Accessible to External Parties in kubernetes in k8s.io/kubernetes

GO-2022-0983: kubectl ANSI escape characters not filtered in k8s.io/kubernetes

GO-2023-1864: Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes

GO-2023-1891: kube-apiserver vulnerable to policy bypass in k8s.io/kubernetes

GO-2023-1892: Kubernetes mountable secrets policy bypass in k8s.io/kubernetes

GO-2023-2159: Kube-proxy may unintentionally forward traffic in k8s.io/kubernetes

GO-2023-2170: Kubernetes privilege escalation vulnerability in k8s.io/kubernetes

GO-2023-2330: Kubernetes privilege escalation vulnerability in k8s.io/kubernetes

GO-2023-2341: Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes

GO-2024-2748: Privilege Escalation in Kubernetes in k8s.io/apimachinery

GO-2024-2753: Denial of service in Kubernetes in k8s.io/kubernetes

GO-2024-2754: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes

GO-2024-2755: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes

GO-2024-2994: Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes

role

package

v1.17.4-beta.0 Latest Latest Go to latest Published: Feb 11, 2020 License: Apache-2.0 Imports: 12 Imported by: 63

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubernetes/kubernetes

Documentation ¶

Overview ¶

Package role provides Registry interface and its RESTStorage implementation for storing Role objects.

Index ¶

Variables
type AuthorizerAdapter
- func (a AuthorizerAdapter) GetRole(namespace, name string) (*rbacv1.Role, error)
type Registry
- func NewRegistry(s rest.StandardStorage) Registry

Constants ¶

This section is empty.

Variables ¶

View Source

var Strategy = strategy{legacyscheme.Scheme, names.SimpleNameGenerator}

Strategy is the default logic that applies when creating and updating Role objects.

Functions ¶

This section is empty.

Types ¶

type AuthorizerAdapter ¶

type AuthorizerAdapter struct {
	Registry Registry
}

AuthorizerAdapter adapts the registry to the authorizer interface

func (AuthorizerAdapter) GetRole ¶

func (a AuthorizerAdapter) GetRole(namespace, name string) (*rbacv1.Role, error)

GetRole returns the corresponding Role by name in specified namespace

type Registry ¶

type Registry interface {
	GetRole(ctx context.Context, name string, options *metav1.GetOptions) (*rbacv1.Role, error)
}

Registry is an interface for things that know how to store Roles.

func NewRegistry ¶

func NewRegistry(s rest.StandardStorage) Registry

NewRegistry returns a new Registry interface for the given Storage. Any mismatched types will panic.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
policybased Package policybased implements a standard storage for Role that prevents privilege escalation.	Package policybased implements a standard storage for Role that prevents privilege escalation.
storage

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL