Documentation
¶
Index ¶
Constants ¶
View Source
const ( // DefaultDockerSocket is the default socket to use to communicate with docker DefaultDockerSocket = "/var/run/docker.sock" // DefaultDockerSocketType is unix DefaultDockerSocketType = "unix" )
View Source
const ( // DefaultRemoteArg is the default arguments for a remote enforcer DefaultRemoteArg = "enforce" // DefaultConnMark is the default conn mark for all data packets DefaultConnMark = uint32(0xEEEE) )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type ImplementationType ¶
type ImplementationType int
ImplementationType defines the type of iptables or ipsets implementation
const ( // IPSets mandates an IPset supervisor implementation IPSets ImplementationType = iota // IPTables mandates an IPTable supervisor implementation IPTables )
type ModeType ¶
type ModeType int
ModeType defines the mode of the enforcement and supervisor.
const ( // RemoteContainer indicates that the Supervisor is implemented in the // container namespace RemoteContainer ModeType = iota // LocalContainer indicates that the Supervisor is implemented in the host // namespace LocalContainer // LocalServer indicates that the Supervisor applies to Linux processes LocalServer )
type PUType ¶
type PUType int
PUType defines the PU type
const ( // ContainerPU indicates that this PU is a container ContainerPU PUType = iota // LinuxProcessPU indicates that this is Linux process LinuxProcessPU // KubernetesPU indicates that this is KubernetesPod KubernetesPU // UIDLoginPU -- PU representing a user session UIDLoginPU // TransientPU PU -- placeholder to run processing. This should not // be inserted in any cache. This is valid only for processing a packet TransientPU // HostPU indicates that we must apply policy to the host namespace HostPU )
Source Files
Click to show internal directories.
Click to hide internal directories.