Affected by GO-2023-1643 and 13 other vulnerabilities

GO-2023-1643: Potential network policy bypass when routing IPv6 traffic in github.com/cilium/cilium

GO-2023-1644: Cilium eBPF filters may be temporarily removed during agent restart in github.com/cilium/cilium

GO-2023-1730: Debug mode leaks confidential data in Cilium in github.com/cilium/cilium

GO-2023-1785: Potential HTTP policy bypass when using header rules in Cilium in github.com/cilium/cilium

GO-2023-1862: Cilium vulnerable to information leakage via incorrect ReferenceGrant handling in github.com/cilium/cilium

GO-2023-2078: Kubernetes users may update Pod labels to bypass network policy in github.com/cilium/cilium

GO-2023-2079: Specific Cilium configurations vulnerable to DoS via Kubernetes annotations in github.com/cilium/cilium

GO-2023-2080: Cilium vulnerable to bypass of namespace restrictions in CiliumNetworkPolicy in github.com/cilium/cilium

GO-2024-2656: Unencrypted traffic between nodes with IPsec in github.com/cilium/cilium

GO-2024-2666: Insecure IPsec transparent encryption in github.com/cilium/cilium

GO-2024-2922: Cilium leaks sensitive information in cilium-bugtool in github.com/cilium/cilium

GO-2024-3072: Policy bypass for Host Firewall policy due to race condition in Cilium agent in github.com/cilium/cilium

GO-2025-3635: In Cilium, packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters in github.com/cilium/cilium

GO-2025-4167: Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic in Ciliumgithub.com/cilium/cilium

debug

package

v1.13.0 Latest Latest Go to latest Published: Feb 15, 2023 License: Apache-2.0 Imports: 2 Imported by: 9

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/cilium/cilium

Links

Documentation ¶

Index ¶

func RegisterStatusFunc(name string, fn StatusFunc) error
func RegisterStatusObject(name string, obj StatusObject) error
type StatusFunc
type StatusMap
- func CollectSubsystemStatus() StatusMap
type StatusObject

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func RegisterStatusFunc ¶

func RegisterStatusFunc(name string, fn StatusFunc) error

RegisterStatusFunc registers a subsystem and associates a status function to call for debug status collection

func RegisterStatusObject ¶

func RegisterStatusObject(name string, obj StatusObject) error

RegisterStatusObject registers a subsystem and associated a status object on which DebugStatus() is called to collect debug status

Types ¶

type StatusFunc ¶

type StatusFunc func() string

StatusFunc is a function returning the debug status of a subsytem. It is passed into RegisterStatusFunc().

type StatusMap ¶

type StatusMap map[string]string

StatusMap is the collection of debug status of all subsystems. The key is the subsystem name. The value is the subsystem debug status.

func CollectSubsystemStatus ¶

func CollectSubsystemStatus() StatusMap

CollectSubsystemStatus collects the status of all subsystems and returns it

type StatusObject ¶

type StatusObject interface {
	// DebugStatus() is the equivalent of StatusFunc. It must return the
	// debug status as a string.
	DebugStatus() string
}

StatusObject is the interface an object must impelement to be able to be passed into RegisterStatusObject().

Source Files ¶

View all Source files

subsystem.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL