checkInitialCapacity(2, 0, 1);
    checkInitialCapacity(2, 1, 1);
    checkInitialCapacity(2, 2, 1);
    checkInitialCapacity(2, 3, 2);
    checkInitialCapacity(2, 4, 2);
    checkInitialCapacity(2, 5, 4);
    checkInitialCapacity(2, 6, 4);
    checkInitialCapacity(2, 7, 4);
    checkInitialCapacity(2, 8, 4);

    checkInitialCapacity(4, 0, 1);
    checkInitialCapacity(4, 1, 1);

    checkInitialCapacity(2, 0, 1);
    checkInitialCapacity(2, 1, 1);
    checkInitialCapacity(2, 2, 1);
    checkInitialCapacity(2, 3, 2);
    checkInitialCapacity(2, 4, 2);
    checkInitialCapacity(2, 5, 4);
    checkInitialCapacity(2, 6, 4);
    checkInitialCapacity(2, 7, 4);
    checkInitialCapacity(2, 8, 4);

    checkInitialCapacity(4, 0, 1);
    checkInitialCapacity(4, 1, 1);

              minimumTtl:
                description: 'For multi hop sessions only: configure the minimum expected
                  TTL for an incoming BFD control packet.'
                format: int32
                maximum: 254
                minimum: 1
                type: integer
              passiveMode:
                description: 'Mark session as passive: a passive session will not

pkg syscall (linux-386), const RT_CLASS_LOCAL = 255
pkg syscall (linux-386), const RT_CLASS_MAIN = 254
pkg syscall (linux-386), const RT_CLASS_MAX = 255
pkg syscall (linux-386), const RT_CLASS_UNSPEC = 0
pkg syscall (linux-386), const RT_SCOPE_HOST = 254
pkg syscall (linux-386), const RT_SCOPE_LINK = 253
pkg syscall (linux-386), const RT_SCOPE_NOWHERE = 255

    checkInitialCapacity(2, 0, 1);
    checkInitialCapacity(2, 1, 1);
    checkInitialCapacity(2, 2, 1);
    checkInitialCapacity(2, 3, 2);
    checkInitialCapacity(2, 4, 2);
    checkInitialCapacity(2, 5, 4);
    checkInitialCapacity(2, 6, 4);
    checkInitialCapacity(2, 7, 4);
    checkInitialCapacity(2, 8, 4);

    checkInitialCapacity(4, 0, 1);
    checkInitialCapacity(4, 1, 1);

    checkInitialCapacity(2, 0, 1);
    checkInitialCapacity(2, 1, 1);
    checkInitialCapacity(2, 2, 1);
    checkInitialCapacity(2, 3, 2);
    checkInitialCapacity(2, 4, 2);
    checkInitialCapacity(2, 5, 4);
    checkInitialCapacity(2, 6, 4);
    checkInitialCapacity(2, 7, 4);
    checkInitialCapacity(2, 8, 4);

    checkInitialCapacity(4, 0, 1);
    checkInitialCapacity(4, 1, 1);

            .writeByte(-1),
        )
        .build(),
    )
    val response = getResponse(newRequest("/"))
    val inputStream = response.body.byteStream()
    assertThat(inputStream.read()).isEqualTo(254)
    assertThat(inputStream.read()).isEqualTo(255)
    assertThat(inputStream.read()).isEqualTo(-1)
  }

  @Test
  fun flushAfterStreamTransmittedWithChunkedEncoding() {

pkg syscall (freebsd-arm64), const IPPROTO_NSP ideal-int
pkg syscall (freebsd-arm64), const IPPROTO_NVPII = 11
pkg syscall (freebsd-arm64), const IPPROTO_NVPII ideal-int
pkg syscall (freebsd-arm64), const IPPROTO_OLD_DIVERT = 254
pkg syscall (freebsd-arm64), const IPPROTO_OLD_DIVERT ideal-int
pkg syscall (freebsd-arm64), const IPPROTO_OSPFIGP = 89
pkg syscall (freebsd-arm64), const IPPROTO_OSPFIGP ideal-int

pkg syscall (darwin-arm64), const IPPROTO_DDP ideal-int
pkg syscall (darwin-arm64), const IPPROTO_DGP = 86
pkg syscall (darwin-arm64), const IPPROTO_DGP ideal-int
pkg syscall (darwin-arm64), const IPPROTO_DIVERT = 254
pkg syscall (darwin-arm64), const IPPROTO_DIVERT ideal-int
pkg syscall (darwin-arm64), const IPPROTO_DONE = 257
pkg syscall (darwin-arm64), const IPPROTO_DONE ideal-int
pkg syscall (darwin-arm64), const IPPROTO_DSTOPTS = 60

  - kube-apiserver v1.24.0 - v1.24.7
  - kube-apiserver v1.23.0 - v1.23.13
  - kube-apiserver v1.22.0 - v1.22.15
  - kube-apiserver <= v1.21.?

**Fixed Versions**:
  - kube-apiserver v1.25.4
  - kube-apiserver v1.24.8
  - kube-apiserver v1.23.14
  - kube-apiserver v1.22.16

This vulnerability was reported by Richard Turnbull of NCC Group as part of the Kubernetes Audit