- Kube-apiserver: Made the subresources `pods/exec`, `pods/attach`, and `pods/portforward` require `create` permission for both SPDY and Websocket API requests. Previously, SPDY requests required `create` permission, but Websocket requests only required `get` permission. This change is gated by the `AuthorizePo...

	pc            int64 // virtual PC; count of Progs; doesn't advance for GLOBL or DATA.
	input         []lex.Token
	inputPos      int
	pendingLabels []string // Labels to attach to next instruction.
	labels        map[string]*obj.Prog
	toPatch       []Patch
	addr          []obj.Addr
	arch          *arch.Arch
	ctxt          *obj.Link
	firstProg     *obj.Prog
	lastProg      *obj.Prog

### Other (Cleanup or Flake)

public key, pub. If the hash is longer // than the bit-length of the private key's curve order, the hash will be // truncated to that length. // // The inputs are not considered confidential, and may leak through timing side // channels, or if an attacker has control of part of the inputs. func Verify[P Point[P]](c *Curve[P], pub *PublicKey, hash []byte, sig *Signature) error { if pub.curve != c.curve { return errors.New("ecdsa: public key does not match curve") } fips140.RecordApproved() fipsSelfTest()...

public key, pub. If the hash is longer // than the bit-length of the private key's curve order, the hash will be // truncated to that length. // // The inputs are not considered confidential, and may leak through timing side // channels, or if an attacker has control of part of the inputs. func Verify[P Point[P]](c *Curve[P], pub *PublicKey, hash []byte, sig *Signature) error { if pub.curve != c.curve { return errors.New("ecdsa: public key does not match curve") } fips140.RecordApproved() fipsSelfTest()...