gaspersic/kubedoom
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: gaspersic:0.4.0
Branches Tags
gaspersic:master
gaspersic:0.6.0 gaspersic:0.5.0 gaspersic:0.4.0 gaspersic:0.3.0 gaspersic:0.2.0
...
compare: gaspersic:0.5.0
Branches Tags
gaspersic:master
gaspersic:0.6.0 gaspersic:0.5.0 gaspersic:0.4.0 gaspersic:0.3.0 gaspersic:0.2.0

5 Commits
0.4.0 ... 0.5.0

Author SHA1 Message Date
David Zuber
759d3edd4e Change password and update to k8s 1.19 2020-10-09 18:48:37 +01:00
David Zuber
8d3e77803c Merge pull request #10 from welshstew/master 
Added instructions to run locally with podman
 2020-10-09 18:06:08 +01:00
Stuart Winchester
aa3f5d04ee Update README.md 2020-10-09 16:57:10 +01:00
David Zuber
7bbc9b23e1 Merge pull request #6 from AXDOOMER/master 
Fix buffer overflow in LoadDefaultCollection
 2020-06-26 10:40:50 +01:00
Alexandre-Xavier Labonté-Lamoureux
eb956f8a36 Fix buffer overflow in LoadDefaultCollection 
CVE-2020-15007: https://nvd.nist.gov/vuln/detail/CVE-2020-15007
 2020-06-25 23:25:43 -04:00
7 changed files with 42 additions and 16 deletions
Expand all files Collapse all files

7
CHANGELOG.md
View File

@@ -1,3 +1,10 @@
# 0.5.0
* New image storaxdev/kubedoom:1.0.0
* New default VNC password is `idbehold`.
* Update kubernetes to 1.19.1
* Update to Ubuntu 20.10
# 0.4.0
* New image storadev/kubedoom:0.4.0

4
Dockerfile
View File

@@ -4,7 +4,7 @@ WORKDIR /go/src/kubedoom
ADD kubedoom.go .
RUN CGO_ENABLED=0 GOOS=linux go build -a -installsuffix cgo -o kubedoom .
FROM ubuntu:19.10 AS ubuntu
FROM ubuntu:20.10 AS ubuntu
# make sure the package repository is up to date
RUN apt-get update
@@ -46,7 +46,7 @@ RUN apt-get install -y \
WORKDIR /root/
# Setup a password
RUN mkdir ~/.vnc && x11vnc -storepasswd 1234 ~/.vnc/passwd
RUN mkdir ~/.vnc && x11vnc -storepasswd idbehold ~/.vnc/passwd
COPY --from=ubuntu-deps /doom1.wad .
COPY --from=ubuntu-deps /usr/bin/kubectl /usr/bin/

37
README.md
View File

@@ -11,19 +11,39 @@ which was forked from psdoom.
![DOOM](assets/doom.jpg)
## Usage
## Running Locally
Run `storaxdev/kubedoom:0.4.0` locally:
In order to run locally you will need to
1. Run the kubedoom container
2. Attach a VNC client to the appropriate port (5901)
### With Docker
Run `storaxdev/kubedoom:0.5.0` with docker locally:
```console
$ docker run -p5901:5900 \
--net=host \
-v ~/.kube:/root/.kube \
--rm -it --name kubedoom \
storaxdev/kubedoom:0.4.0
storaxdev/kubedoom:0.5.0
```
Now start a VNC viewer and connect to `localhost:5901`. The password is `1234`:
### With Podman
Run `storaxdev/kubedoom:0.5.0` with podman locally:
```console
$ podman run -it -p5901:5900/tcp \
-v ~/.kube:/tmp/.kube --security-opt label=disable \
--env "KUBECONFIG=/tmp/.kube/config" --name kubedoom
storaxdev/kubedoom:0.5.0
```
### Attaching a VNC Client
Now start a VNC viewer and connect to `localhost:5901`. The password is `idbehold`:
```console
$ vncviewer viewer localhost:5901
```
@@ -44,7 +64,7 @@ $ docker run -p5901:5900 \
--net=host \
-v ~/.kube:/root/.kube \
--rm -it --name kubedoom \
storaxdev/kubedoom:0.4.0 \
storaxdev/kubedoom:0.5.0 \
-mode namespaces
```
@@ -57,7 +77,7 @@ example config from this repository:
```console
$ kind create cluster --config kind-config.yaml
Creating cluster "kind" ...
✓ Ensuring node image (kindest/node:v1.18.2) 🖼
✓ Ensuring node image (kindest/node:v1.19.1) 🖼
✓ Preparing nodes 📦 📦
✓ Writing configuration 📜
✓ Starting control-plane 🕹️
@@ -69,7 +89,7 @@ You can now use your cluster with:
kubectl cluster-info --context kind-kind
Not sure what to do next? 😅 Check out https://kind.sigs.k8s.io/docs/user/quick-start/
Not sure what to do next? 😅 Check out https://kind.sigs.k8s.io/docs/user/quick-start/
```
This will spin up a 2 node cluster inside docker, with port 5900 exposed from
@@ -77,7 +97,6 @@ the worker node. Then run kubedoom inside the cluster by applying the manifest
provided in this repository:
```console
$ export KUBECONFIG="$(kind get kubeconfig-path --name="kind")"
$ kubectl apply -f manifest/
namespace/kubedoom created
deployment.apps/kubedoom created
@@ -91,4 +110,4 @@ $ vncviewer viewer localhost:5900
```
Kubedoom requires a service account with permissions to list all pods and delete
them and uses kubectl 1.18.2.
them and uses kubectl 1.19.2.

2
dockerdoom/trunk/setup/configfile.c
View File

@@ -512,7 +512,7 @@ static void LoadDefaultCollection(default_collection_t *collection)
while (!feof(f))
{
if (fscanf (f, "%79s %[^\n]\n", defname, strparm) != 2)
if (fscanf (f, "%79s %99[^\n]\n", defname, strparm) != 2)
{
// This line doesn't match

2
dockerdoom/trunk/src/m_config.c
View File

@@ -1312,7 +1312,7 @@ static void LoadDefaultCollection(default_collection_t *collection)
while (!feof(f))
{
if (fscanf (f, "%79s %[^\n]\n", defname, strparm) != 2)
if (fscanf (f, "%79s %99[^\n]\n", defname, strparm) != 2)
{
// This line doesn't match

4
kind-config.yaml
View File

@@ -2,9 +2,9 @@ kind: Cluster
apiVersion: kind.x-k8s.io/v1alpha4
nodes:
- role: control-plane
image: kindest/node:v1.18.2@sha256:7b27a6d0f2517ff88ba444025beae41491b016bc6af573ba467b70c5e8e0d85f
image: kindest/node:v1.19.1@sha256:98cf5288864662e37115e362b23e4369c8c4a408f99cbc06e58ac30ddc721600
- role: worker
image: kindest/node:v1.18.2@sha256:7b27a6d0f2517ff88ba444025beae41491b016bc6af573ba467b70c5e8e0d85f
image: kindest/node:v1.19.1@sha256:98cf5288864662e37115e362b23e4369c8c4a408f99cbc06e58ac30ddc721600
extraPortMappings:
- containerPort: 5900
hostPort: 5900

2
manifest/deployment.yaml
View File

@@ -18,7 +18,7 @@ spec:
hostNetwork: true
serviceAccountName: kubedoom
containers:
- image: storaxdev/kubedoom:0.4.0
- image: storaxdev/kubedoom:0.5.0
name: kubedoom
ports:
- containerPort: 5900