github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #103517 from liggitt/podsecurity-fixture-cleanup

Browse Source 
Podsecurity fixture cleanup
This commit is contained in:
Kubernetes Prow Robot 2021-07-06 13:16:31 -07:00 committed by GitHub
commit 59e5b849c9
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
158 changed files with 10 additions and 2100 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
staging/src/k8s.io/pod-security-admission/test/fixtures.go
View File

@ -170,8 +170,8 @@ func getFixtures(key fixtureKey) (fixtureData, error) {
if len(data.expectErrorSubstring) == 0 {
data.expectErrorSubstring = key.check
}
if len(data.pass) == 0 || len(data.fail) == 0 {
return fixtureData{}, fmt.Errorf("generatePass/generateFail for %#v must return at least one pod each", key)
if len(data.fail) == 0 {
return fixtureData{}, fmt.Errorf("generateFail for %#v must return at least one pod", key)
}
return data, nil
}

6
staging/src/k8s.io/pod-security-admission/test/fixtures_allowPrivilegeEscalation.go
View File

@ -34,10 +34,8 @@ containerFields: []string{
func init() {
fixtureData_1_8 := fixtureGenerator{
generatePass: func(p *corev1.Pod) []*corev1.Pod {
return []*corev1.Pod{
// only valid pod is to explicitly set allowPrivilegeEscalation to false in all containers
p,
}
// minimal valid pod already captures all valid combinations
return nil
},
generateFail: func(p *corev1.Pod) []*corev1.Pod {
return []*corev1.Pod{

3
staging/src/k8s.io/pod-security-admission/test/fixtures_hostNamespaces.go
View File

@ -30,7 +30,8 @@ func init() {
fixtureData_1_0 := fixtureGenerator{
expectErrorSubstring: "host namespaces",
generatePass: func(p *corev1.Pod) []*corev1.Pod {
return []*corev1.Pod{p} // minimal valid pod
// minimal valid pod already captures all valid combinations
return nil
},
generateFail: func(p *corev1.Pod) []*corev1.Pod {
return []*corev1.Pod{

3
staging/src/k8s.io/pod-security-admission/test/fixtures_hostPath.go
View File

@ -30,7 +30,8 @@ func init() {
fixtureData_1_0 := fixtureGenerator{
expectErrorSubstring: "hostPath volumes",
generatePass: func(p *corev1.Pod) []*corev1.Pod {
return []*corev1.Pod{p} // minimal valid pod
// minimal valid pod already captures all valid combinations
return nil
},
generateFail: func(p *corev1.Pod) []*corev1.Pod {
return []*corev1.Pod{

3
staging/src/k8s.io/pod-security-admission/test/fixtures_hostProcess.go
View File

@ -39,7 +39,8 @@ func init() {
fixtureData_1_0 := fixtureGenerator{
generatePass: func(p *corev1.Pod) []*corev1.Pod {
return []*corev1.Pod{p}
// minimal valid pod already captures all valid combinations
return nil
},
failRequiresFeatures: []featuregate.Feature{"WindowsHostProcessContainers"},
generateFail: func(p *corev1.Pod) []*corev1.Pod {

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.11/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.11/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.11/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.12/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.12/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.12/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.13/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.13/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.13/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.14/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.14/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.14/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.15/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.15/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.15/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.16/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.16/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.16/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.17/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.17/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.17/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.18/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.18/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.18/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.19/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.19/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.19/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.2/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.2/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.2/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.20/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.20/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.20/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.21/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.21/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.21/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.22/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.22/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.22/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.3/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.3/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.3/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.4/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.4/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.4/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.5/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.5/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.5/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.6/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.6/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.6/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.7/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.7/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.7/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.8/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.8/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.8/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.9/pass/hostnamespaces0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.9/pass/hostpath0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

11
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.9/pass/hostprocess0.yaml vendored
View File

@ -1,11 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.0/pass/hostnamespaces0.yaml vendored
View File

@ -1,13 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
runAsNonRoot: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.0/pass/hostpath0.yaml vendored
View File

@ -1,13 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
runAsNonRoot: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.0/pass/hostprocess0.yaml vendored
View File

@ -1,13 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
runAsNonRoot: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.1/pass/hostnamespaces0.yaml vendored
View File

@ -1,13 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
runAsNonRoot: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.1/pass/hostpath0.yaml vendored
View File

@ -1,13 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
runAsNonRoot: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.1/pass/hostprocess0.yaml vendored
View File

@ -1,13 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/pass/allowprivilegeescalation0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: allowprivilegeescalation0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/pass/hostnamespaces0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/pass/hostpath0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/pass/hostprocess0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/pass/allowprivilegeescalation0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: allowprivilegeescalation0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/pass/hostnamespaces0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/pass/hostpath0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/pass/hostprocess0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/pass/allowprivilegeescalation0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: allowprivilegeescalation0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/pass/hostnamespaces0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/pass/hostpath0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/pass/hostprocess0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/pass/allowprivilegeescalation0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: allowprivilegeescalation0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/pass/hostnamespaces0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/pass/hostpath0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/pass/hostprocess0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.14/pass/allowprivilegeescalation0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: allowprivilegeescalation0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.14/pass/hostnamespaces0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostnamespaces0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.14/pass/hostpath0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

17
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.14/pass/hostprocess0.yaml vendored
View File

@ -1,17 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostprocess0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true

Some files were not shown because too many files have changed in this diff Show More