Affected by GO-2024-3071 and 8 other vulnerabilities

GO-2024-3071: Gateway API route matching order contradicts specification in github.com/cilium/cilium

GO-2024-3074: Cilium leaks information via incorrect ReferenceGrant update logic in Gateway API in github.com/cilium/cilium

GO-2024-3290: Cilium's Layer 7 policy enforcement may not occur in policies with wildcarded port ranges in github.com/cilium/cilium

GO-2025-3415: DoS in Cilium agent DNS proxy from crafted DNS responses in github.com/cilium/cilium

GO-2025-3416: Cilium has an information leakage via insecure default Hubble UI CORS header in github.com/cilium/cilium

GO-2025-3560: Cilium East-west traffic not subject to egress policy enforcement for requests via Gateway API load balancers in github.com/cilium/cilium

GO-2025-3561: Cilium node based network policies may incorrectly allow workload traffic in github.com/cilium/cilium

GO-2025-3635: In Cilium, packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters in github.com/cilium/cilium

GO-2025-4167: Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic in Ciliumgithub.com/cilium/cilium

exec

package

v1.16.0 Latest Latest Go to latest Published: Jul 24, 2024 License: Apache-2.0 Imports: 8 Imported by: 36

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/cilium/cilium

Links

Documentation ¶

Overview ¶

Package exec provides useful wrappers around the standard "exec" library.

Index ¶

type Cmd
- func (c *Cmd) CombinedOutput(scopedLog *logrus.Entry, verbose bool) ([]byte, error)
- func (c *Cmd) Output(scopedLog *logrus.Entry, verbose bool) ([]byte, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Cmd ¶

type Cmd struct {
	*exec.Cmd
	// contains filtered or unexported fields
}

Cmd wraps exec.Cmd with a context to provide convenient execution of a command with nice checking of the context timeout in the form:

err := exec.Prog().WithTimeout(5*time.Second, myprog, myargs...).CombinedOutput(log, verbose)

func CommandContext ¶

func CommandContext(ctx context.Context, prog string, args ...string) *Cmd

CommandContext wraps exec.CommandContext to allow this package to be used as a drop-in replacement for the standard exec library.

func WithCancel ¶

func WithCancel(ctx context.Context, prog string, args ...string) (*Cmd, context.CancelFunc)

WithCancel creates a Cmd with a context that can be cancelled by calling the resulting Cancel() function.

func WithTimeout ¶

func WithTimeout(timeout time.Duration, prog string, args ...string) *Cmd

WithTimeout creates a Cmd with a context that times out after the specified duration.

func (*Cmd) CombinedOutput ¶

func (c *Cmd) CombinedOutput(scopedLog *logrus.Entry, verbose bool) ([]byte, error)

CombinedOutput runs the command and returns its combined standard output and standard error. Unlike the standard library, if the context is exceeded, it will return an error indicating so.

Logs any errors that occur to the specified logger.

func (*Cmd) Output ¶

func (c *Cmd) Output(scopedLog *logrus.Entry, verbose bool) ([]byte, error)

Output runs the command and returns only standard output, but not the standard error. Unlike the standard library, if the context is exceeded, it will return an error indicating so.

Logs any errors that occur to the specified logger.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL