const isNegativeErrorMsg …
const isInvalidQuotaResource …
const fieldImmutableErrorMsg …
const isNotIntegerErrorMsg …
const isNotPositiveErrorMsg …
var pdPartitionErrorMsg …
var fileModeErrorMsg …
var BannedOwners …
var iscsiInitiatorIqnRegex …
var iscsiInitiatorEuiRegex …
var iscsiInitiatorNaaRegex …
var allowedEphemeralContainerFields …
var validOS …
func ValidateHasLabel(meta metav1.ObjectMeta, fldPath *field.Path, key, expectedValue string) field.ErrorList { … }
func ValidateAnnotations(annotations map[string]string, fldPath *field.Path) field.ErrorList { … }
func ValidateDNS1123Label(value string, fldPath *field.Path) field.ErrorList { … }
func ValidateQualifiedName(value string, fldPath *field.Path) field.ErrorList { … }
func ValidateDNS1123SubdomainWithUnderScore(value string, fldPath *field.Path) field.ErrorList { … }
func ValidateDNS1123Subdomain(value string, fldPath *field.Path) field.ErrorList { … }
func ValidatePodSpecificAnnotations(annotations map[string]string, spec *core.PodSpec, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateTolerationsInPodAnnotations(annotations map[string]string, fldPath *field.Path) field.ErrorList { … }
func ValidatePodSpecificAnnotationUpdates(newPod, oldPod *core.Pod, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateEndpointsSpecificAnnotations(annotations map[string]string, fldPath *field.Path) field.ErrorList { … }
type ValidateNameFunc …
var ValidatePodName …
var ValidateReplicationControllerName …
var ValidateServiceName …
var ValidateNodeName …
var ValidateNamespaceName …
var ValidateLimitRangeName …
var ValidateResourceQuotaName …
var ValidateSecretName …
var ValidateServiceAccountName …
var ValidateEndpointsName …
var ValidateClassName …
var ValidatePriorityClassName …
var ValidateResourceClaimName …
var ValidateResourceClaimTemplateName …
func ValidateRuntimeClassName(name string, fldPath *field.Path) field.ErrorList { … }
func validateOverhead(overhead core.ResourceList, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateNonnegativeField(value int64, fldPath *field.Path) field.ErrorList { … }
func ValidateNonnegativeQuantity(value resource.Quantity, fldPath *field.Path) field.ErrorList { … }
func ValidatePositiveQuantityValue(value resource.Quantity, fldPath *field.Path) field.ErrorList { … }
func ValidateImmutableField(newVal, oldVal interface{ … }
func ValidateImmutableAnnotation(newVal string, oldVal string, annotation string, fldPath *field.Path) field.ErrorList { … }
func ValidateObjectMeta(meta *metav1.ObjectMeta, requiresNamespace bool, nameFn ValidateNameFunc, fldPath *field.Path) field.ErrorList { … }
func ValidateObjectMetaUpdate(newMeta, oldMeta *metav1.ObjectMeta, fldPath *field.Path) field.ErrorList { … }
func ValidateVolumes(volumes []core.Volume, podMeta *metav1.ObjectMeta, fldPath *field.Path, opts PodValidationOptions) (map[string]core.VolumeSource, field.ErrorList) { … }
func IsMatchedVolume(name string, volumes map[string]core.VolumeSource) bool { … }
func isMatchedDevice(name string, volumes map[string]core.VolumeSource) (isMatched bool, isPVC bool) { … }
func mountNameAlreadyExists(name string, devices map[string]string) bool { … }
func mountPathAlreadyExists(mountPath string, devices map[string]string) bool { … }
func deviceNameAlreadyExists(name string, mounts map[string]string) bool { … }
func devicePathAlreadyExists(devicePath string, mounts map[string]string) bool { … }
func validateVolumeSource(source *core.VolumeSource, fldPath *field.Path, volName string, podMeta *metav1.ObjectMeta, opts PodValidationOptions) field.ErrorList { … }
func validateHostPathVolumeSource(hostPath *core.HostPathVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateGitRepoVolumeSource(gitRepo *core.GitRepoVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateISCSIVolumeSource(iscsi *core.ISCSIVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateISCSIPersistentVolumeSource(iscsi *core.ISCSIPersistentVolumeSource, pvName string, fldPath *field.Path) field.ErrorList { … }
func validateFCVolumeSource(fc *core.FCVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateGCEPersistentDiskVolumeSource(pd *core.GCEPersistentDiskVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateAWSElasticBlockStoreVolumeSource(PD *core.AWSElasticBlockStoreVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateSecretVolumeSource(secretSource *core.SecretVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateConfigMapVolumeSource(configMapSource *core.ConfigMapVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateKeyToPath(kp *core.KeyToPath, fldPath *field.Path) field.ErrorList { … }
func validatePersistentClaimVolumeSource(claim *core.PersistentVolumeClaimVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateNFSVolumeSource(nfs *core.NFSVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateQuobyteVolumeSource(quobyte *core.QuobyteVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateGlusterfsVolumeSource(glusterfs *core.GlusterfsVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateGlusterfsPersistentVolumeSource(glusterfs *core.GlusterfsPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateFlockerVolumeSource(flocker *core.FlockerVolumeSource, fldPath *field.Path) field.ErrorList { … }
var validVolumeDownwardAPIFieldPathExpressions …
func validateDownwardAPIVolumeFile(file *core.DownwardAPIVolumeFile, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateDownwardAPIVolumeSource(downwardAPIVolume *core.DownwardAPIVolumeSource, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateProjectionSources(projection *core.ProjectedVolumeSource, projectionMode *int32, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateProjectedVolumeSource(projection *core.ProjectedVolumeSource, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
var supportedHostPathTypes …
func validateHostPathType(hostPathType *core.HostPathType, fldPath *field.Path) field.ErrorList { … }
func validateLocalDescendingPath(targetPath string, fldPath *field.Path) field.ErrorList { … }
func validatePathNoBacksteps(targetPath string, fldPath *field.Path) field.ErrorList { … }
func validateMountPropagation(mountPropagation *core.MountPropagationMode, container *core.Container, fldPath *field.Path) field.ErrorList { … }
func validateMountRecursiveReadOnly(mount core.VolumeMount, fldPath *field.Path) field.ErrorList { … }
func ValidateLocalNonReservedPath(targetPath string, fldPath *field.Path) field.ErrorList { … }
func validateRBDVolumeSource(rbd *core.RBDVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateRBDPersistentVolumeSource(rbd *core.RBDPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateCinderVolumeSource(cd *core.CinderVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateCinderPersistentVolumeSource(cd *core.CinderPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateCephFSVolumeSource(cephfs *core.CephFSVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateCephFSPersistentVolumeSource(cephfs *core.CephFSPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateFlexVolumeSource(fv *core.FlexVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateFlexPersistentVolumeSource(fv *core.FlexPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateAzureFile(azure *core.AzureFileVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateAzureFilePV(azure *core.AzureFilePersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateAzureDisk(azure *core.AzureDiskVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateVsphereVolumeSource(cd *core.VsphereVirtualDiskVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validatePhotonPersistentDiskVolumeSource(cd *core.PhotonPersistentDiskVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validatePortworxVolumeSource(pwx *core.PortworxVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateScaleIOVolumeSource(sio *core.ScaleIOVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateScaleIOPersistentVolumeSource(sio *core.ScaleIOPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateLocalVolumeSource(ls *core.LocalVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateStorageOSVolumeSource(storageos *core.StorageOSVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateStorageOSPersistentVolumeSource(storageos *core.StorageOSPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validatePVSecretReference(secretRef *core.SecretReference, fldPath *field.Path) field.ErrorList { … }
func ValidateCSIDriverName(driverName string, fldPath *field.Path) field.ErrorList { … }
func validateCSIPersistentVolumeSource(csi *core.CSIPersistentVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateCSIVolumeSource(csi *core.CSIVolumeSource, fldPath *field.Path) field.ErrorList { … }
func validateEphemeralVolumeSource(ephemeral *core.EphemeralVolumeSource, fldPath *field.Path) field.ErrorList { … }
func ValidatePersistentVolumeClaimTemplate(claimTemplate *core.PersistentVolumeClaimTemplate, fldPath *field.Path, opts PersistentVolumeClaimSpecValidationOptions) field.ErrorList { … }
func ValidateTemplateObjectMeta(objMeta *metav1.ObjectMeta, fldPath *field.Path) field.ErrorList { … }
var allowedTemplateObjectMetaFields …
type PersistentVolumeSpecValidationOptions …
var ValidatePersistentVolumeName …
var supportedAccessModes …
var supportedReclaimPolicy …
var supportedVolumeModes …
func ValidationOptionsForPersistentVolume(pv, oldPv *core.PersistentVolume) PersistentVolumeSpecValidationOptions { … }
func ValidatePersistentVolumeSpec(pvSpec *core.PersistentVolumeSpec, pvName string, validateInlinePersistentVolumeSpec bool, fldPath *field.Path, opts PersistentVolumeSpecValidationOptions) field.ErrorList { … }
func ValidatePersistentVolume(pv *core.PersistentVolume, opts PersistentVolumeSpecValidationOptions) field.ErrorList { … }
func ValidatePersistentVolumeUpdate(newPv, oldPv *core.PersistentVolume, opts PersistentVolumeSpecValidationOptions) field.ErrorList { … }
func ValidatePersistentVolumeStatusUpdate(newPv, oldPv *core.PersistentVolume) field.ErrorList { … }
type PersistentVolumeClaimSpecValidationOptions …
func ValidationOptionsForPersistentVolumeClaim(pvc, oldPvc *core.PersistentVolumeClaim) PersistentVolumeClaimSpecValidationOptions { … }
func ValidationOptionsForPersistentVolumeClaimTemplate(claimTemplate, oldClaimTemplate *core.PersistentVolumeClaimTemplate) PersistentVolumeClaimSpecValidationOptions { … }
func allowInvalidAPIGroupInDataSourceOrRef(spec *core.PersistentVolumeClaimSpec) bool { … }
func ValidatePersistentVolumeClaim(pvc *core.PersistentVolumeClaim, opts PersistentVolumeClaimSpecValidationOptions) field.ErrorList { … }
func validateDataSource(dataSource *core.TypedLocalObjectReference, fldPath *field.Path, allowInvalidAPIGroupInDataSourceOrRef bool) field.ErrorList { … }
func validateDataSourceRef(dataSourceRef *core.TypedObjectReference, fldPath *field.Path, allowInvalidAPIGroupInDataSourceOrRef bool) field.ErrorList { … }
func ValidatePersistentVolumeClaimSpec(spec *core.PersistentVolumeClaimSpec, fldPath *field.Path, opts PersistentVolumeClaimSpecValidationOptions) field.ErrorList { … }
func isDataSourceEqualDataSourceRef(dataSource *core.TypedLocalObjectReference, dataSourceRef *core.TypedObjectReference) bool { … }
func ValidatePersistentVolumeClaimUpdate(newPvc, oldPvc *core.PersistentVolumeClaim, opts PersistentVolumeClaimSpecValidationOptions) field.ErrorList { … }
func validateStorageClassUpgradeFromAnnotation(oldAnnotations, newAnnotations map[string]string, oldScName, newScName *string) bool { … }
func validateStorageClassUpgradeFromNil(oldAnnotations map[string]string, oldScName, newScName *string, opts PersistentVolumeClaimSpecValidationOptions) bool { … }
func validatePersistentVolumeClaimResourceKey(value string, fldPath *field.Path) field.ErrorList { … }
var resizeStatusSet …
func ValidatePersistentVolumeClaimStatusUpdate(newPvc, oldPvc *core.PersistentVolumeClaim, validationOpts PersistentVolumeClaimSpecValidationOptions) field.ErrorList { … }
var supportedPortProtocols …
func validateContainerPorts(ports []core.ContainerPort, fldPath *field.Path) field.ErrorList { … }
func ValidateEnv(vars []core.EnvVar, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
var validEnvDownwardAPIFieldPathExpressions …
var validContainerResourceFieldPathExpressions …
var validContainerResourceFieldPathPrefixesWithDownwardAPIHugePages …
const hugepagesRequestsPrefixDownwardAPI …
const hugepagesLimitsPrefixDownwardAPI …
func validateEnvVarValueFrom(ev core.EnvVar, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateObjectFieldSelector(fs *core.ObjectFieldSelector, expressions *sets.Set[string], fldPath *field.Path) field.ErrorList { … }
func validateDownwardAPIHostIPs(fieldSel *core.ObjectFieldSelector, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateContainerResourceFieldSelector(fs *core.ResourceFieldSelector, expressions *sets.Set[string], prefixes *sets.Set[string], fldPath *field.Path, volume bool) field.ErrorList { … }
func ValidateEnvFrom(vars []core.EnvFromSource, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateConfigMapEnvSource(configMapSource *core.ConfigMapEnvSource, fldPath *field.Path) field.ErrorList { … }
func validateSecretEnvSource(secretSource *core.SecretEnvSource, fldPath *field.Path) field.ErrorList { … }
var validContainerResourceDivisorForCPU …
var validContainerResourceDivisorForMemory …
var validContainerResourceDivisorForHugePages …
var validContainerResourceDivisorForEphemeralStorage …
func validateContainerResourceDivisor(rName string, divisor resource.Quantity, fldPath *field.Path) field.ErrorList { … }
func validateConfigMapKeySelector(s *core.ConfigMapKeySelector, fldPath *field.Path) field.ErrorList { … }
func validateSecretKeySelector(s *core.SecretKeySelector, fldPath *field.Path) field.ErrorList { … }
func GetVolumeMountMap(mounts []core.VolumeMount) map[string]string { … }
func GetVolumeDeviceMap(devices []core.VolumeDevice) map[string]string { … }
func ValidateVolumeMounts(mounts []core.VolumeMount, voldevices map[string]string, volumes map[string]core.VolumeSource, container *core.Container, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateVolumeDevices(devices []core.VolumeDevice, volmounts map[string]string, volumes map[string]core.VolumeSource, fldPath *field.Path) field.ErrorList { … }
func validatePodResourceClaims(podMeta *metav1.ObjectMeta, claims []core.PodResourceClaim, fldPath *field.Path) field.ErrorList { … }
func gatherPodResourceClaimNames(claims []core.PodResourceClaim) sets.Set[string] { … }
func validatePodResourceClaim(podMeta *metav1.ObjectMeta, claim core.PodResourceClaim, podClaimNames *sets.Set[string], fldPath *field.Path) field.ErrorList { … }
func validateLivenessProbe(probe *core.Probe, gracePeriod *int64, fldPath *field.Path) field.ErrorList { … }
func validateReadinessProbe(probe *core.Probe, gracePeriod *int64, fldPath *field.Path) field.ErrorList { … }
func validateStartupProbe(probe *core.Probe, gracePeriod *int64, fldPath *field.Path) field.ErrorList { … }
func validateProbe(probe *core.Probe, gracePeriod *int64, fldPath *field.Path) field.ErrorList { … }
func validateInitContainerRestartPolicy(restartPolicy *core.ContainerRestartPolicy, fldPath *field.Path) field.ErrorList { … }
type commonHandler …
func handlerFromProbe(ph *core.ProbeHandler) commonHandler { … }
func handlerFromLifecycle(lh *core.LifecycleHandler) commonHandler { … }
func validateSleepAction(sleep *core.SleepAction, gracePeriod *int64, fldPath *field.Path) field.ErrorList { … }
func validateClientIPAffinityConfig(config *core.SessionAffinityConfig, fldPath *field.Path) field.ErrorList { … }
func validateAffinityTimeout(timeout *int32, fldPath *field.Path) field.ErrorList { … }
func AccumulateUniqueHostPorts(containers []core.Container, accumulator *sets.Set[string], fldPath *field.Path) field.ErrorList { … }
func checkHostPortConflicts(containers []core.Container, fldPath *field.Path) field.ErrorList { … }
func validateExecAction(exec *core.ExecAction, fldPath *field.Path) field.ErrorList { … }
var supportedHTTPSchemes …
func validateHTTPGetAction(http *core.HTTPGetAction, fldPath *field.Path) field.ErrorList { … }
func ValidatePortNumOrName(port intstr.IntOrString, fldPath *field.Path) field.ErrorList { … }
func validateTCPSocketAction(tcp *core.TCPSocketAction, fldPath *field.Path) field.ErrorList { … }
func validateGRPCAction(grpc *core.GRPCAction, fldPath *field.Path) field.ErrorList { … }
func validateHandler(handler commonHandler, gracePeriod *int64, fldPath *field.Path) field.ErrorList { … }
func validateLifecycle(lifecycle *core.Lifecycle, gracePeriod *int64, fldPath *field.Path) field.ErrorList { … }
var supportedPullPolicies …
func validatePullPolicy(policy core.PullPolicy, fldPath *field.Path) field.ErrorList { … }
var supportedResizeResources …
var supportedResizePolicies …
func validateResizePolicy(policyList []core.ContainerResizePolicy, fldPath *field.Path, podRestartPolicy *core.RestartPolicy) field.ErrorList { … }
func validateEphemeralContainers(ephemeralContainers []core.EphemeralContainer, containers, initContainers []core.Container, volumes map[string]core.VolumeSource, podClaimNames sets.Set[string], fldPath *field.Path, opts PodValidationOptions, podRestartPolicy *core.RestartPolicy, hostUsers bool) field.ErrorList { … }
func validateFieldAllowList(value interface{ … }
func validateInitContainers(containers []core.Container, regularContainers []core.Container, volumes map[string]core.VolumeSource, podClaimNames sets.Set[string], gracePeriod *int64, fldPath *field.Path, opts PodValidationOptions, podRestartPolicy *core.RestartPolicy, hostUsers bool) field.ErrorList { … }
func validateContainerCommon(ctr *core.Container, volumes map[string]core.VolumeSource, podClaimNames sets.Set[string], path *field.Path, opts PodValidationOptions, podRestartPolicy *core.RestartPolicy, hostUsers bool) field.ErrorList { … }
func validateHostUsers(spec *core.PodSpec, fldPath *field.Path) field.ErrorList { … }
func validateContainers(containers []core.Container, volumes map[string]core.VolumeSource, podClaimNames sets.Set[string], gracePeriod *int64, fldPath *field.Path, opts PodValidationOptions, podRestartPolicy *core.RestartPolicy, hostUsers bool) field.ErrorList { … }
func validateRestartPolicy(restartPolicy *core.RestartPolicy, fldPath *field.Path) field.ErrorList { … }
func ValidatePreemptionPolicy(preemptionPolicy *core.PreemptionPolicy, fldPath *field.Path) field.ErrorList { … }
func validateDNSPolicy(dnsPolicy *core.DNSPolicy, fldPath *field.Path) field.ErrorList { … }
var validFSGroupChangePolicies …
func validateFSGroupChangePolicy(fsGroupPolicy *core.PodFSGroupChangePolicy, fldPath *field.Path) field.ErrorList { … }
const MaxDNSNameservers …
const MaxDNSSearchPaths …
const MaxDNSSearchListChars …
func validateReadinessGates(readinessGates []core.PodReadinessGate, fldPath *field.Path) field.ErrorList { … }
func validateSchedulingGates(schedulingGates []core.PodSchedulingGate, fldPath *field.Path) field.ErrorList { … }
func validatePodDNSConfig(dnsConfig *core.PodDNSConfig, dnsPolicy *core.DNSPolicy, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validatePodHostNetworkDeps(spec *core.PodSpec, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateImagePullSecrets(imagePullSecrets []core.LocalObjectReference, fldPath *field.Path) field.ErrorList { … }
func validateAffinity(affinity *core.Affinity, opts PodValidationOptions, fldPath *field.Path) field.ErrorList { … }
func validateTaintEffect(effect *core.TaintEffect, allowEmpty bool, fldPath *field.Path) field.ErrorList { … }
func validateOnlyAddedTolerations(newTolerations []core.Toleration, oldTolerations []core.Toleration, fldPath *field.Path) field.ErrorList { … }
func validateOnlyDeletedSchedulingGates(newGates, oldGates []core.PodSchedulingGate, fldPath *field.Path) field.ErrorList { … }
func ValidateHostAliases(hostAliases []core.HostAlias, fldPath *field.Path) field.ErrorList { … }
func ValidateTolerations(tolerations []core.Toleration, fldPath *field.Path) field.ErrorList { … }
func validateContainersOnlyForPod(containers []core.Container, fldPath *field.Path) field.ErrorList { … }
func validateContainerOnlyForPod(ctr *core.Container, path *field.Path) field.ErrorList { … }
type PodValidationOptions …
func validatePodMetadataAndSpec(pod *core.Pod, opts PodValidationOptions) field.ErrorList { … }
func validatePodIPs(pod *core.Pod) field.ErrorList { … }
func validateHostIPs(pod *core.Pod) field.ErrorList { … }
func ValidatePodSpec(spec *core.PodSpec, podMeta *metav1.ObjectMeta, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateLinux(spec *core.PodSpec, fldPath *field.Path) field.ErrorList { … }
func validateWindows(spec *core.PodSpec, fldPath *field.Path) field.ErrorList { … }
func ValidateNodeSelectorRequirement(rq core.NodeSelectorRequirement, fldPath *field.Path) field.ErrorList { … }
var nodeFieldSelectorValidators …
func ValidateNodeFieldSelectorRequirement(req core.NodeSelectorRequirement, fldPath *field.Path) field.ErrorList { … }
func ValidateNodeSelectorTerm(term core.NodeSelectorTerm, fldPath *field.Path) field.ErrorList { … }
func ValidateNodeSelector(nodeSelector *core.NodeSelector, fldPath *field.Path) field.ErrorList { … }
func validateTopologySelectorLabelRequirement(rq core.TopologySelectorLabelRequirement, fldPath *field.Path) (sets.Set[string], field.ErrorList) { … }
func ValidateTopologySelectorTerm(term core.TopologySelectorTerm, fldPath *field.Path) (map[string]sets.Set[string], field.ErrorList) { … }
func ValidateAvoidPodsInNodeAnnotations(annotations map[string]string, fldPath *field.Path) field.ErrorList { … }
func validatePreferAvoidPodsEntry(avoidPodEntry core.PreferAvoidPodsEntry, fldPath *field.Path) field.ErrorList { … }
func ValidatePreferredSchedulingTerms(terms []core.PreferredSchedulingTerm, fldPath *field.Path) field.ErrorList { … }
func validatePodAffinityTerm(podAffinityTerm core.PodAffinityTerm, allowInvalidLabelValueInSelector bool, fldPath *field.Path) field.ErrorList { … }
func validatePodAffinityTerms(podAffinityTerms []core.PodAffinityTerm, allowInvalidLabelValueInSelector bool, fldPath *field.Path) field.ErrorList { … }
func validateWeightedPodAffinityTerms(weightedPodAffinityTerms []core.WeightedPodAffinityTerm, allowInvalidLabelValueInSelector bool, fldPath *field.Path) field.ErrorList { … }
func validatePodAntiAffinity(podAntiAffinity *core.PodAntiAffinity, allowInvalidLabelValueInSelector bool, fldPath *field.Path) field.ErrorList { … }
func validateNodeAffinity(na *core.NodeAffinity, fldPath *field.Path) field.ErrorList { … }
func validatePodAffinity(podAffinity *core.PodAffinity, allowInvalidLabelValueInSelector bool, fldPath *field.Path) field.ErrorList { … }
func validateSeccompProfileField(sp *core.SeccompProfile, fldPath *field.Path) field.ErrorList { … }
func ValidateSeccompProfile(p string, fldPath *field.Path) field.ErrorList { … }
func ValidateSeccompPodAnnotations(annotations map[string]string, fldPath *field.Path) field.ErrorList { … }
func validateSeccompProfileType(fldPath *field.Path, seccompProfileType core.SeccompProfileType) *field.Error { … }
func ValidateAppArmorProfileField(profile *core.AppArmorProfile, fldPath *field.Path) field.ErrorList { … }
func ValidateAppArmorPodAnnotations(annotations map[string]string, spec *core.PodSpec, fldPath *field.Path) field.ErrorList { … }
func ValidateAppArmorProfileFormat(profile string) error { … }
func validateAppArmorAnnotationsAndFieldsMatchOnCreate(objectMeta metav1.ObjectMeta, podSpec *core.PodSpec, specPath *field.Path) field.ErrorList { … }
func podSpecHasContainer(spec *core.PodSpec, containerName string) bool { … }
const SysctlSegmentFmt …
const SysctlContainSlashFmt …
const SysctlMaxLength …
var sysctlContainSlashRegexp …
func IsValidSysctlName(name string) bool { … }
func validateSysctls(securityContext *core.PodSecurityContext, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateHostSysctl(sysctl string, securityContext *core.PodSecurityContext, fldPath *field.Path) *field.Error { … }
func validatePodSpecSecurityContext(securityContext *core.PodSecurityContext, spec *core.PodSpec, specPath, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateContainerUpdates(newContainers, oldContainers []core.Container, fldPath *field.Path) (allErrs field.ErrorList, stop bool) { … }
func ValidatePodCreate(pod *core.Pod, opts PodValidationOptions) field.ErrorList { … }
func validateSeccompAnnotationsAndFields(objectMeta metav1.ObjectMeta, podSpec *core.PodSpec, specPath *field.Path) field.ErrorList { … }
func validateSeccompAnnotationsAndFieldsMatch(annotationValue string, seccompField *core.SeccompProfile, fldPath *field.Path) *field.Error { … }
var updatablePodSpecFields …
var updatablePodSpecFieldsNoResources …
func ValidatePodUpdate(newPod, oldPod *core.Pod, opts PodValidationOptions) field.ErrorList { … }
func ValidateContainerStateTransition(newStatuses, oldStatuses []core.ContainerStatus, fldpath *field.Path, restartPolicy core.RestartPolicy) field.ErrorList { … }
func ValidateInitContainerStateTransition(newStatuses, oldStatuses []core.ContainerStatus, fldpath *field.Path, podSpec *core.PodSpec) field.ErrorList { … }
func ValidatePodStatusUpdate(newPod, oldPod *core.Pod, opts PodValidationOptions) field.ErrorList { … }
func validatePodConditions(conditions []core.PodCondition, fldPath *field.Path) field.ErrorList { … }
func validatePodResourceClaimStatuses(statuses []core.PodResourceClaimStatus, podClaims []core.PodResourceClaim, fldPath *field.Path) field.ErrorList { … }
func havePodClaim(podClaims []core.PodResourceClaim, name string) bool { … }
func ValidatePodEphemeralContainersUpdate(newPod, oldPod *core.Pod, opts PodValidationOptions) field.ErrorList { … }
func ValidatePodBinding(binding *core.Binding) field.ErrorList { … }
func ValidatePodTemplate(pod *core.PodTemplate, opts PodValidationOptions) field.ErrorList { … }
func ValidatePodTemplateUpdate(newPod, oldPod *core.PodTemplate, opts PodValidationOptions) field.ErrorList { … }
var supportedSessionAffinityType …
var supportedServiceType …
var supportedServiceInternalTrafficPolicy …
var supportedServiceIPFamily …
var supportedServiceIPFamilyPolicy …
func ValidateService(service *core.Service) field.ErrorList { … }
func validateServicePort(sp *core.ServicePort, requireName, isHeadlessService bool, allNames *sets.Set[string], fldPath *field.Path) field.ErrorList { … }
var validExternalTrafficPolicies …
func validateServiceExternalTrafficPolicy(service *core.Service) field.ErrorList { … }
func validateServiceExternalTrafficFieldsUpdate(before, after *core.Service) field.ErrorList { … }
func validateServiceInternalTrafficFieldsValue(service *core.Service) field.ErrorList { … }
func validateServiceTrafficDistribution(service *core.Service) field.ErrorList { … }
func ValidateServiceCreate(service *core.Service) field.ErrorList { … }
func ValidateServiceUpdate(service, oldService *core.Service) field.ErrorList { … }
func ValidateServiceStatusUpdate(service, oldService *core.Service) field.ErrorList { … }
func ValidateReplicationController(controller *core.ReplicationController, opts PodValidationOptions) field.ErrorList { … }
func ValidateReplicationControllerUpdate(controller, oldController *core.ReplicationController, opts PodValidationOptions) field.ErrorList { … }
func ValidateReplicationControllerStatusUpdate(controller, oldController *core.ReplicationController) field.ErrorList { … }
func ValidateReplicationControllerStatus(status core.ReplicationControllerStatus, statusPath *field.Path) field.ErrorList { … }
func ValidateNonEmptySelector(selectorMap map[string]string, fldPath *field.Path) field.ErrorList { … }
func ValidatePodTemplateSpecForRC(template *core.PodTemplateSpec, selectorMap map[string]string, replicas int32, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateReplicationControllerSpec(spec, oldSpec *core.ReplicationControllerSpec, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidatePodTemplateSpec(spec *core.PodTemplateSpec, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateTaintsInNodeAnnotations(annotations map[string]string, fldPath *field.Path) field.ErrorList { … }
func validateNodeTaints(taints []core.Taint, fldPath *field.Path) field.ErrorList { … }
func ValidateNodeSpecificAnnotations(annotations map[string]string, fldPath *field.Path) field.ErrorList { … }
func ValidateNode(node *core.Node) field.ErrorList { … }
func ValidateNodeResources(node *core.Node) field.ErrorList { … }
func ValidateNodeUpdate(node, oldNode *core.Node) field.ErrorList { … }
func validateNodeConfigSourceSpec(source *core.NodeConfigSource, fldPath *field.Path) field.ErrorList { … }
func validateConfigMapNodeConfigSourceSpec(source *core.ConfigMapNodeConfigSource, fldPath *field.Path) field.ErrorList { … }
func validateNodeConfigStatus(status *core.NodeConfigStatus, fldPath *field.Path) field.ErrorList { … }
func validateNodeConfigSourceStatus(source *core.NodeConfigSource, fldPath *field.Path) field.ErrorList { … }
func validateConfigMapNodeConfigSourceStatus(source *core.ConfigMapNodeConfigSource, fldPath *field.Path) field.ErrorList { … }
func validateConfigMapNodeConfigSource(source *core.ConfigMapNodeConfigSource, fldPath *field.Path) field.ErrorList { … }
func validateResourceName(value core.ResourceName, fldPath *field.Path) field.ErrorList { … }
func validateContainerResourceName(value core.ResourceName, fldPath *field.Path) field.ErrorList { … }
func ValidateResourceQuotaResourceName(value core.ResourceName, fldPath *field.Path) field.ErrorList { … }
func validateLimitRangeTypeName(value core.LimitType, fldPath *field.Path) field.ErrorList { … }
func validateLimitRangeResourceName(limitType core.LimitType, value core.ResourceName, fldPath *field.Path) field.ErrorList { … }
func ValidateLimitRange(limitRange *core.LimitRange) field.ErrorList { … }
func ValidateServiceAccount(serviceAccount *core.ServiceAccount) field.ErrorList { … }
func ValidateServiceAccountUpdate(newServiceAccount, oldServiceAccount *core.ServiceAccount) field.ErrorList { … }
func ValidateSecret(secret *core.Secret) field.ErrorList { … }
func ValidateSecretUpdate(newSecret, oldSecret *core.Secret) field.ErrorList { … }
var ValidateConfigMapName …
func ValidateConfigMap(cfg *core.ConfigMap) field.ErrorList { … }
func ValidateConfigMapUpdate(newCfg, oldCfg *core.ConfigMap) field.ErrorList { … }
func validateBasicResource(quantity resource.Quantity, fldPath *field.Path) field.ErrorList { … }
func ValidateResourceRequirements(requirements *core.ResourceRequirements, podClaimNames sets.Set[string], fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func validateResourceClaimNames(claims []core.ResourceClaim, podClaimNames sets.Set[string], fldPath *field.Path) field.ErrorList { … }
func validateResourceQuantityHugePageValue(name core.ResourceName, quantity resource.Quantity, opts PodValidationOptions) error { … }
func validateResourceQuotaScopes(resourceQuotaSpec *core.ResourceQuotaSpec, fld *field.Path) field.ErrorList { … }
func validateScopedResourceSelectorRequirement(resourceQuotaSpec *core.ResourceQuotaSpec, fld *field.Path) field.ErrorList { … }
func validateScopeSelector(resourceQuotaSpec *core.ResourceQuotaSpec, fld *field.Path) field.ErrorList { … }
func ValidateResourceQuota(resourceQuota *core.ResourceQuota) field.ErrorList { … }
func ValidateResourceQuotaStatus(status *core.ResourceQuotaStatus, fld *field.Path) field.ErrorList { … }
func ValidateResourceQuotaSpec(resourceQuotaSpec *core.ResourceQuotaSpec, fld *field.Path) field.ErrorList { … }
func ValidateResourceQuantityValue(resource core.ResourceName, value resource.Quantity, fldPath *field.Path) field.ErrorList { … }
func ValidateResourceQuotaUpdate(newResourceQuota, oldResourceQuota *core.ResourceQuota) field.ErrorList { … }
func ValidateResourceQuotaStatusUpdate(newResourceQuota, oldResourceQuota *core.ResourceQuota) field.ErrorList { … }
func ValidateNamespace(namespace *core.Namespace) field.ErrorList { … }
func validateFinalizerName(stringValue string, fldPath *field.Path) field.ErrorList { … }
func validateKubeFinalizerName(stringValue string, fldPath *field.Path) field.ErrorList { … }
func ValidateNamespaceUpdate(newNamespace *core.Namespace, oldNamespace *core.Namespace) field.ErrorList { … }
func ValidateNamespaceStatusUpdate(newNamespace, oldNamespace *core.Namespace) field.ErrorList { … }
func ValidateNamespaceFinalizeUpdate(newNamespace, oldNamespace *core.Namespace) field.ErrorList { … }
func ValidateEndpoints(endpoints *core.Endpoints) field.ErrorList { … }
func ValidateEndpointsCreate(endpoints *core.Endpoints) field.ErrorList { … }
func ValidateEndpointsUpdate(newEndpoints, oldEndpoints *core.Endpoints) field.ErrorList { … }
func validateEndpointSubsets(subsets []core.EndpointSubset, fldPath *field.Path) field.ErrorList { … }
func validateEndpointAddress(address *core.EndpointAddress, fldPath *field.Path) field.ErrorList { … }
func ValidateNonSpecialIP(ipAddress string, fldPath *field.Path) field.ErrorList { … }
func validateEndpointPort(port *core.EndpointPort, requireName bool, fldPath *field.Path) field.ErrorList { … }
func ValidateSecurityContext(sc *core.SecurityContext, fldPath *field.Path, hostUsers bool) field.ErrorList { … }
const maxGMSACredentialSpecLengthInKiB …
const maxGMSACredentialSpecLength …
const maxRunAsUserNameDomainLength …
const maxRunAsUserNameUserLength …
var ctrlRegex …
var validNetBiosRegex …
var dnsLabelFormat …
var dnsSubdomainFormat …
var validWindowsUserDomainDNSRegex …
var invalidUserNameCharsRegex …
var invalidUserNameDotsSpacesRegex …
func validateWindowsSecurityContextOptions(windowsOptions *core.WindowsSecurityContextOptions, fieldPath *field.Path) field.ErrorList { … }
func validateWindowsHostProcessPod(podSpec *core.PodSpec, fieldPath *field.Path) field.ErrorList { … }
func validateOS(podSpec *core.PodSpec, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidatePodLogOptions(opts *core.PodLogOptions) field.ErrorList { … }
var supportedLoadBalancerIPMode …
func ValidateLoadBalancerStatus(status *core.LoadBalancerStatus, fldPath *field.Path, spec *core.ServiceSpec) field.ErrorList { … }
func validateVolumeNodeAffinity(nodeAffinity *core.VolumeNodeAffinity, fldPath *field.Path) (bool, field.ErrorList) { … }
func IsDecremented(update, old *int32) bool { … }
func ValidateProcMountType(fldPath *field.Path, procMountType core.ProcMountType) *field.Error { … }
var supportedScheduleActions …
func validateTopologySpreadConstraints(constraints []core.TopologySpreadConstraint, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }
func ValidateMaxSkew(fldPath *field.Path, maxSkew int32) *field.Error { … }
func validateMinDomains(fldPath *field.Path, minDomains *int32, action core.UnsatisfiableConstraintAction) field.ErrorList { … }
func ValidateTopologyKey(fldPath *field.Path, topologyKey string) *field.Error { … }
func ValidateWhenUnsatisfiable(fldPath *field.Path, action core.UnsatisfiableConstraintAction) *field.Error { … }
func ValidateSpreadConstraintNotRepeat(fldPath *field.Path, constraint core.TopologySpreadConstraint, restingConstraints []core.TopologySpreadConstraint) *field.Error { … }
var supportedPodTopologySpreadNodePolicies …
func validateNodeInclusionPolicy(fldPath *field.Path, policy *core.NodeInclusionPolicy) *field.Error { … }
func validateMatchLabelKeysAndMismatchLabelKeys(fldPath *field.Path, matchLabelKeys, mismatchLabelKeys []string, labelSelector *metav1.LabelSelector) field.ErrorList { … }
func validateMatchLabelKeysInTopologySpread(fldPath *field.Path, matchLabelKeys []string, labelSelector *metav1.LabelSelector) field.ErrorList { … }
func validateLabelKeys(fldPath *field.Path, labelKeys []string, labelSelector *metav1.LabelSelector) field.ErrorList { … }
func ValidateServiceClusterIPsRelatedFields(service *core.Service) field.ErrorList { … }
func validateUpgradeDowngradeClusterIPs(oldService, service *core.Service) field.ErrorList { … }
func validateUpgradeDowngradeIPFamilies(oldService, service *core.Service) field.ErrorList { … }
func isHeadlessService(service *core.Service) bool { … }
func validateLoadBalancerClassField(oldService, service *core.Service) field.ErrorList { … }
func isTypeLoadBalancer(service *core.Service) bool { … }
func sameLoadBalancerClass(oldService, service *core.Service) bool { … }
func ValidatePodAffinityTermSelector(podAffinityTerm core.PodAffinityTerm, allowInvalidLabelValueInSelector bool, fldPath *field.Path) field.ErrorList { … }
var betaToGALabel …
var maskNodeSelectorLabelChangeEqualities …
var initMaskNodeSelectorLabelChangeEqualities …
func getMaskNodeSelectorLabelChangeEqualities() conversion.Equalities { … }
func validatePvNodeAffinity(newPvNodeAffinity, oldPvNodeAffinity *core.VolumeNodeAffinity, fldPath *field.Path) field.ErrorList { … }
func validateNodeSelectorMutation(fldPath *field.Path, newNodeSelector, oldNodeSelector map[string]string) field.ErrorList { … }
func validateNodeAffinityMutation(nodeAffinityPath *field.Path, newNodeAffinity, oldNodeAffinity *core.NodeAffinity) field.ErrorList { … }
func validateNodeSelectorTermHasOnlyAdditions(newTerm, oldTerm core.NodeSelectorTerm) bool { … }
var validSupplementalGroupsPolicies …
func validateSupplementalGroupsPolicy(supplementalGroupsPolicy *core.SupplementalGroupsPolicy, fldPath *field.Path) field.ErrorList { … }
func validateContainerStatusUsers(containerStatuses []core.ContainerStatus, fldPath *field.Path, podOS *core.PodOS) field.ErrorList { … }
func validateContainerStatusNoAllocatedResourcesStatus(containerStatuses []core.ContainerStatus, fldPath *field.Path) field.ErrorList { … }
func validateContainerStatusAllocatedResourcesStatus(containerStatuses []core.ContainerStatus, fldPath *field.Path, containers []core.Container) field.ErrorList { … }
func validateLinuxContainerUser(linuxContainerUser *core.LinuxContainerUser, fldPath *field.Path) field.ErrorList { … }
func validateImageVolumeSource(imageVolume *core.ImageVolumeSource, fldPath *field.Path, opts PodValidationOptions) field.ErrorList { … }