github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-22 11:21:47 +00:00
Code Issues Projects Releases Wiki Activity

PodSecurity: hostPathVolumes: regenerate files

Browse Source
This commit is contained in:
Jordan Liggitt 2021-07-07 17:54:38 -04:00
parent a39c448684
commit f709cf05f4
158 changed files with 1412 additions and 2010 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpath0.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpathvolumes0.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath0 name: hostpathvolumes0
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -10,18 +10,8 @@ spec:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {} - emptyDir: {}
name: volume-emptydir name: volume-emptydir
- configMap: - hostPath:
items: path: /a
- key: log_level name: volume-hostpath
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -11,11 +11,8 @@ spec:
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpath0.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpathvolumes0.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath0 name: hostpathvolumes0
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -10,18 +10,8 @@ spec:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {} - emptyDir: {}
name: volume-emptydir name: volume-emptydir
- configMap: - hostPath:
items: path: /a
- key: log_level name: volume-hostpath
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -11,11 +11,8 @@ spec:
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpath0.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpathvolumes0.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath0 name: hostpathvolumes0
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -10,18 +10,8 @@ spec:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {} - emptyDir: {}
name: volume-emptydir name: volume-emptydir
- configMap: - hostPath:
items: path: /a
- key: log_level name: volume-hostpath
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.11/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -11,11 +11,8 @@ spec:
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.11/fail/hostpath0.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.11/fail/hostpathvolumes0.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath0 name: hostpathvolumes0
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -10,18 +10,8 @@ spec:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {} - emptyDir: {}
name: volume-emptydir name: volume-emptydir
- configMap: - hostPath:
items: path: /a
- key: log_level name: volume-hostpath
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.11/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -11,11 +11,8 @@ spec:
name: initcontainer1 name: initcontainer1
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.12/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.12/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.12/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.12/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.13/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.13/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.13/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.13/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.14/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.14/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.14/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.14/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.15/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.15/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.15/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.15/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.16/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.16/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.16/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.16/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.17/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.17/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.17/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.17/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.18/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.18/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.18/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.18/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.19/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.19/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.19/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.19/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.2/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.2/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.2/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.2/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.20/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.20/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.20/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.20/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.21/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.21/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.21/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.21/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.22/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.22/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.22/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.22/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.3/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.3/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.3/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.3/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.4/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.4/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.4/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.4/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.5/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.5/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.5/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.5/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.6/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.6/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.6/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.6/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.7/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.7/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.7/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.7/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.8/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.8/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.8/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.8/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

27
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.9/fail/hostpath0.yaml vendored
View File

@ -1,27 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

21
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.9/fail/hostpath1.yaml vendored
View File

@ -1,21 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath-null
- hostPath:
path: /var/lib/docker
name: volume-hostpath-docker
- hostPath:
path: /sys
name: volume-hostpath-sys

17
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.9/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,17 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

18
staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.9/fail/hostpathvolumes1.yaml vendored Executable file
View File

@ -0,0 +1,18 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes1
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
volumes:
- hostPath:
path: /a
name: volume-hostpath-a
- hostPath:
path: /b
name: volume-hostpath-b

18
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.0/fail/hostpath0.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.0/fail/hostpathvolumes0.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath0 name: hostpathvolumes0
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -12,18 +12,8 @@ spec:
securityContext: securityContext:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {} - emptyDir: {}
name: volume-emptydir name: volume-emptydir
- configMap: - hostPath:
items: path: /a
- key: log_level name: volume-hostpath
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.0/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.0/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -13,11 +13,8 @@ spec:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

18
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.2/fail/hostpath0.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.1/fail/hostpathvolumes0.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath0 name: hostpathvolumes0
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -12,18 +12,8 @@ spec:
securityContext: securityContext:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {} - emptyDir: {}
name: volume-emptydir name: volume-emptydir
- configMap: - hostPath:
items: path: /a
- key: log_level name: volume-hostpath
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.1/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.1/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -13,11 +13,8 @@ spec:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

33
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/fail/hostpath0.yaml vendored
View File

@ -1,33 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

23
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,23 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -17,11 +17,8 @@ spec:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

33
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/fail/hostpath0.yaml vendored
View File

@ -1,33 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

23
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,23 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -17,11 +17,8 @@ spec:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

33
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/fail/hostpath0.yaml vendored
View File

@ -1,33 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

23
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,23 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.11/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.12/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -17,11 +17,8 @@ spec:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

33
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/fail/hostpath0.yaml vendored
View File

@ -1,33 +0,0 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpath0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- hostPath:
path: /dev/null
name: volume-hostpath
- emptyDir: {}
name: volume-emptydir
- configMap:
items:
- key: log_level
path: log_level
name: configmap
name: volume-configmap
- name: configmap
persistentVolumeClaim:
claimName: hello
readOnly: true

23
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/fail/hostpathvolumes0.yaml vendored Executable file
View File

@ -0,0 +1,23 @@
apiVersion: v1
kind: Pod
metadata:
name: hostpathvolumes0
spec:
containers:
- image: k8s.gcr.io/pause
name: container1
securityContext:
allowPrivilegeEscalation: false
initContainers:
- image: k8s.gcr.io/pause
name: initcontainer1
securityContext:
allowPrivilegeEscalation: false
securityContext:
runAsNonRoot: true
volumes:
- emptyDir: {}
name: volume-emptydir
- hostPath:
path: /a
name: volume-hostpath

13
staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.10/fail/hostpath1.yaml → staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.13/fail/hostpathvolumes1.yaml vendored
View File

@ -1,7 +1,7 @@
apiVersion: v1 apiVersion: v1
kind: Pod kind: Pod
metadata: metadata:
name: hostpath1 name: hostpathvolumes1
spec: spec:
containers: containers:
- image: k8s.gcr.io/pause - image: k8s.gcr.io/pause
@ -17,11 +17,8 @@ spec:
runAsNonRoot: true runAsNonRoot: true
volumes: volumes:
- hostPath: - hostPath:
path: /dev/null path: /a
name: volume-hostpath-null name: volume-hostpath-a
- hostPath: - hostPath:
path: /var/lib/docker path: /b
name: volume-hostpath-docker name: volume-hostpath-b
- hostPath:
path: /sys
name: volume-hostpath-sys

Some files were not shown because too many files have changed in this diff Show More