ceph-csi/vendor/k8s.io/cloud-provider
Humble Chirammal 78211b694b build: update client-go and other kube dependencies to 1.20.6
client-go 1.20.6 has a fix for below CVE: This patch address this
via updating client-go and other dependencies.

CVE-2019-11250 : The MITRE CVE dictionary describes this issue as:

The Kubernetes client-go library logs request headers at verbosity
levels of 7 or higher. This can disclose credentials to unauthorized
users via logs or command output. Kubernetes components (such as
kube-apiserver) prior to v1.16.0, which make use of basic or bearer
token authentication, and run at high verbosity levels, are affected.

Ref# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11250

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
2021-05-26 09:14:10 +00:00
..
volume rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
cloud.go rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
code-of-conduct.md Migrate from dep to go module 2020-03-17 10:44:07 +00:00
CONTRIBUTING.md Migrate from dep to go module 2020-03-17 10:44:07 +00:00
doc.go vendor update for E2E framework 2019-06-04 11:39:42 +05:30
go.mod build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
go.sum build: update client-go and other kube dependencies to 1.20.6 2021-05-26 09:14:10 +00:00
LICENSE vendor update for E2E framework 2019-06-04 11:39:42 +05:30
OWNERS rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
plugins.go rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
ports.go rebase: update kubernetes to v1.20.0 2020-12-17 16:04:54 +00:00
README.md Migrate from dep to go module 2020-03-17 10:44:07 +00:00
SECURITY_CONTACTS Migrate from dep to go module 2020-03-17 10:44:07 +00:00

cloud-provider

This repository defines the cloud-provider interface and mechanism to initialize a cloud-provider implementation into Kubernetes. Currently multiple processes use this code although the intent is that it will eventually only be cloud controller manager.

Note: go-get or vendor this package as k8s.io/cloud-provider.

Purpose

This library is a shared dependency for processes which need to be able to integrate with cloud-provider specific functionality.

Compatibility

Cloud Providers are expected to keep the HEAD of their implementations in sync with the HEAD of this repository.

Where does it come from?

cloud-provider is synced from https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/cloud-provider. Code changes are made in that location, merged into k8s.io/kubernetes and later synced here.

Things you should NOT do

  1. Add an cloud provider specific code to this repo.
  2. Directly modify anything under vendor/k8s.io/cloud-provider in this repo. Those are driven from k8s.io/kubernetes/staging/src/k8s.io/cloud-provider.
  3. Make interface changes without first discussing them with sig-cloudprovider.