Affected by GO-2022-0617 and 16 other vulnerabilities

GO-2022-0617: WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes

GO-2022-0907: Access Restriction Bypass in kube-apiserver in k8s.io/kubernetes

GO-2022-0908: Incomplete List of Disallowed Inputs in Kubernetes in k8s.io/kubernetes

GO-2022-0910: Files or Directories Accessible to External Parties in kubernetes in k8s.io/kubernetes

GO-2022-0983: ANSI escape characters not filtered in kubectl in k8s.io/kubernetes

GO-2023-1864: Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes

GO-2023-1891: Vulnerable to policy bypass in kube-apiserver in k8s.io/kubernetes

GO-2023-1892: Kubernetes mountable secrets policy bypass in k8s.io/kubernetes

GO-2023-2159: Kube-proxy may unintentionally forward traffic in k8s.io/kubernetes

GO-2023-2341: Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes

GO-2024-2994: Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes

GO-2024-3277: Kubernetes Nil pointer dereference in KCM after v1 HPA patch request in k8s.io/kubernetes

GO-2025-3465: Node Denial of Service via kubelet Checkpoint API in k8s.io/kubernetes

GO-2025-3521: Kubernetes GitRepo Volume Inadvertent Local Repository Access in k8s.io/kubernetes

GO-2025-3522: Kubernetes allows Command Injection affecting Windows nodes via nodes/*/logs/query API in k8s.io/kubernetes

GO-2025-3547: Kubernetes kube-apiserver Vulnerable to Race Condition in k8s.io/kubernetes

GO-2025-3915: Kubernetes Nodes can delete themselves by adding an OwnerReference in k8s.io/kubernetes

ttlafterfinished

package

v1.20.1-rc.1 Latest Latest Go to latest Published: Dec 8, 2020 License: Apache-2.0 Imports: 22 Imported by: 19

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/kubernetes/kubernetes

Links

Open Source Insights

Documentation ¶

Index ¶

type Controller
- func New(jobInformer batchinformers.JobInformer, client clientset.Interface) *Controller
- func (tc *Controller) Run(workers int, stopCh <-chan struct{})

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Controller ¶

type Controller struct {
	// contains filtered or unexported fields
}

Controller watches for changes of Jobs API objects. Triggered by Job creation and updates, it enqueues Jobs that have non-nil `.spec.ttlSecondsAfterFinished` to the `queue`. The Controller has workers who consume `queue`, check whether the Job TTL has expired or not; if the Job TTL hasn't expired, it will add the Job to the queue after the TTL is expected to expire; if the TTL has expired, the worker will send requests to the API server to delete the Jobs accordingly. This is implemented outside of Job controller for separation of concerns, and because it will be extended to handle other finishable resource types.

func New ¶

func New(jobInformer batchinformers.JobInformer, client clientset.Interface) *Controller

New creates an instance of Controller

func (*Controller) Run ¶

func (tc *Controller) Run(workers int, stopCh <-chan struct{})

Run starts the workers to clean up Jobs.

Source Files ¶

View all Source files

ttlafterfinished_controller.go

Directories ¶

Path	Synopsis
config
v1alpha1

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL