Affected by GO-2022-0617 and 19 other vulnerabilities

GO-2022-0617: WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes

GO-2022-0703: XML Entity Expansion and Improper Input Validation in Kubernetes API server in k8s.io/kubernetes

GO-2022-0802: Kubernetes kubectl cp Vulnerable to Symlink Attack in k8s.io/kubernetes

GO-2022-0867: Allocation of Resources Without Limits or Throttling and Uncontrolled Memory Allocation in Kubernetes in k8s.io/kubernetes

GO-2022-0885: Improper Authentication in Kubernetes in k8s.io/kubernetes

GO-2022-0890: Server Side Request Forgery (SSRF) in Kubernetes in k8s.io/kubernetes

GO-2022-0907: Access Restriction Bypass in kube-apiserver in k8s.io/kubernetes

GO-2022-0910: Files or Directories Accessible to External Parties in kubernetes in k8s.io/kubernetes

GO-2022-0983: kubectl ANSI escape characters not filtered in k8s.io/kubernetes

GO-2023-1864: Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes

GO-2023-1891: kube-apiserver vulnerable to policy bypass in k8s.io/kubernetes

GO-2023-1892: Kubernetes mountable secrets policy bypass in k8s.io/kubernetes

GO-2023-2159: Kube-proxy may unintentionally forward traffic in k8s.io/kubernetes

GO-2023-2341: Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes

GO-2024-2748: Privilege Escalation in Kubernetes in k8s.io/apimachinery

GO-2024-2753: Denial of service in Kubernetes in k8s.io/kubernetes

GO-2024-2754: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes

GO-2024-2755: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes

GO-2024-2994: Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes

GO-2024-3277: Kubernetes Nil pointer dereference in KCM after v1 HPA patch request in k8s.io/kubernetes

exists

package

v1.15.4-beta.0 Latest Latest Go to latest Published: Aug 19, 2019 License: Apache-2.0 Imports: 10 Imported by: 103

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/kubernetes/kubernetes

Documentation ¶

Index ¶

Constants
func Register(plugins *admission.Plugins)
type Exists
- func NewExists() *Exists

Constants ¶

View Source

const PluginName = "NamespaceExists"

PluginName indicates name of admission plugin.

Variables ¶

This section is empty.

Functions ¶

func Register ¶ added in v1.7.0

func Register(plugins *admission.Plugins)

Register registers a plugin

Types ¶

type Exists ¶ added in v1.9.0

type Exists struct {
	*admission.Handler
	// contains filtered or unexported fields
}

Exists is an implementation of admission.Interface. It rejects all incoming requests in a namespace context if the namespace does not exist. It is useful in deployments that want to enforce pre-declaration of a Namespace resource.

func NewExists ¶

func NewExists() *Exists

NewExists creates a new namespace exists admission control handler

func (*Exists) SetExternalKubeClientSet ¶ added in v1.13.0

func (e *Exists) SetExternalKubeClientSet(client kubernetes.Interface)

SetExternalKubeClientSet implements the WantsExternalKubeClientSet interface.

func (*Exists) SetExternalKubeInformerFactory ¶ added in v1.13.0

func (e *Exists) SetExternalKubeInformerFactory(f informers.SharedInformerFactory)

SetExternalKubeInformerFactory implements the WantsExternalKubeInformerFactory interface.

func (*Exists) Validate ¶ added in v1.9.0

func (e *Exists) Validate(a admission.Attributes, o admission.ObjectInterfaces) error

Validate makes an admission decision based on the request attributes

func (*Exists) ValidateInitialization ¶ added in v1.9.0

func (e *Exists) ValidateInitialization() error

ValidateInitialization implements the InitializationValidator interface.

Source Files ¶

View all Source files

admission.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL