github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-01 07:47:56 +00:00
Code Issues Projects Releases Wiki Activity

fix nil deref in exec admission

Browse Source
This commit is contained in:
Seth Jennings 2017-01-30 13:51:00 -06:00
parent 722c8b065a
commit 071c66a011
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
plugin/pkg/admission/exec/admission.go
View File

@ -110,7 +110,7 @@ func (d *denyExec) Admit(a admission.Attributes) (err error) {
// isPrivileged will return true a pod has any privileged containers // isPrivileged will return true a pod has any privileged containers
func isPrivileged(pod *api.Pod) bool { func isPrivileged(pod *api.Pod) bool {
for _, c := range pod.Spec.InitContainers { for _, c := range pod.Spec.InitContainers {
if c.SecurityContext == nil { if c.SecurityContext == nil || c.SecurityContext.Privileged == nil {
continue continue
} }
if *c.SecurityContext.Privileged { if *c.SecurityContext.Privileged {
@ -118,7 +118,7 @@ func isPrivileged(pod *api.Pod) bool {
} }
} }
for _, c := range pod.Spec.Containers { for _, c := range pod.Spec.Containers {
if c.SecurityContext == nil { if c.SecurityContext == nil || c.SecurityContext.Privileged == nil {
continue continue
} }
if *c.SecurityContext.Privileged { if *c.SecurityContext.Privileged {