kubernetes

History

Akihiro Suda 821362bd1e SafeSysctlWhitelist: add net.ipv4.ping_group_range sysctl value `net.ipv4.ping_group_range` can be used for allowing `ping` command without `CAP_NET_RAW` capability. e.g. `net.ipv4.ping_group_range="0 42"` to allow ping for users with GID 0-GID 42. This sysctl value was introduced in kernel 3.0 and has been namespaced since its birth. `c319b4d76b (diff-5b536a7a92abed603bbb4caa61613270R57)` Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>		2019-11-20 07:26:02 +09:00
..
apparmor	Run hack/update-bazel.sh	2018-06-22 16:22:57 -07:00
capabilities	externalize psp admission controller	2018-10-24 00:22:07 +08:00
group	externalize psp admission controller	2018-10-24 00:22:07 +08:00
seccomp	optimize comments on exported constants (#83875 )	2019-10-16 22:25:30 -07:00
selinux	externalize psp admission controller	2018-10-24 00:22:07 +08:00
sysctl	SafeSysctlWhitelist: add net.ipv4.ping_group_range	2019-11-20 07:26:02 +09:00
user	externalize psp admission controller	2018-10-24 00:22:07 +08:00
util	CSI Inline Volume - API changes	2019-03-08 12:35:07 -05:00
BUILD	Update BUILD files for container helper	2019-06-21 08:32:04 +00:00
doc.go
factory.go	externalize psp admission controller	2018-10-24 00:22:07 +08:00
OWNERS	Updated OWNERS files to include link to docs	2019-02-04 22:33:12 +01:00
provider_test.go	Optimizing some format problems (#82983 )	2019-11-01 10:21:25 -07:00
provider.go	Restore early return for podSpecHasContainer	2019-06-26 14:17:13 +08:00
types.go	Refactor PSP provider	2019-03-25 11:46:36 -07:00