constants

package
v3.1.0+incompatible Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Nov 29, 2017 License: GPL-2.0 Imports: 0 Imported by: 0

Documentation

Index

Constants

View Source
const (
	// DefaultDockerSocket is the default socket to use to communicate with docker
	DefaultDockerSocket = "/var/run/docker.sock"

	// DefaultDockerSocketType is unix
	DefaultDockerSocketType = "unix"
)
View Source
const (
	// DefaultRemoteArg is the default arguments for a remote enforcer
	DefaultRemoteArg = "enforce"
	// DefaultConnMark is the default conn mark for all data packets
	DefaultConnMark = uint32(0xEEEE)
)
View Source
const (
	//DefaultProxyPort  the default port the l4 proxy listens on
	DefaultProxyPort = "5000"
	//DefaultProcMountPoint The default proc mountpoint
	DefaultProcMountPoint = "/proc"
	//DefaultAporetoProcMountPoint The aporeto proc mountpoint just in case we are launched with some specific docker config
	DefaultAporetoProcMountPoint = "/aporetoproc"
)
View Source
const (

	// AporetoEnvMountPoint is an environment variable which will contain the mount point
	AporetoEnvMountPoint = "APORETO_ENV_PROC_MOUNTPOINT"

	// AporetoEnvContextSocket stores the path to the context specific socket
	AporetoEnvContextSocket = "APORETO_ENV_SOCKET_PATH"

	// AporetoEnvStatsChannel stores the path to the stats channel
	AporetoEnvStatsChannel = "APORETO_ENV_STATS_CHANNEL_PATH"

	// AporetoEnvRPCClientSecret is the secret used between RPC client/server
	AporetoEnvRPCClientSecret = "APORETO_ENV_SECRET"

	// AporetoEnvStatsSecret is the secret to be used for the stats channel
	AporetoEnvStatsSecret = "APORETO_ENV_STATS_SECRET"

	// AporetoEnvContainerPID is the PID of the container
	AporetoEnvContainerPID = "APORETO_ENV_CONTAINER_PID"

	// AporetoEnvNSPath is the path of the network namespace
	AporetoEnvNSPath = "APORETO_ENV_NS_PATH"

	// AporetoEnvNsenterErrorState stores the error state as reported by remote enforcer
	AporetoEnvNsenterErrorState = "APORETO_ENV_NSENTER_ERROR_STATE"

	// AporetoEnvNsenterLogs stores the logs as reported by remote enforcer
	AporetoEnvNsenterLogs = "APORETO_ENV_NSENTER_LOGS"
)

Variables

This section is empty.

Functions

This section is empty.

Types

type ImplementationType

type ImplementationType int

ImplementationType defines the type of iptables or ipsets implementation

const (
	// IPSets mandates an IPset supervisor implementation
	IPSets ImplementationType = iota
	// IPTables mandates an IPTable supervisor implementation
	IPTables
)

type ModeType

type ModeType int

ModeType defines the mode of the enforcement and supervisor.

const (
	// RemoteContainer indicates that the Supervisor is implemented in the
	// container namespace
	RemoteContainer ModeType = iota
	// LocalContainer indicates that the Supervisor is implemented in the host
	// namespace
	LocalContainer
	// LocalServer indicates that the Supervisor applies to Linux processes
	LocalServer
)

type PUType

type PUType int

PUType defines the PU type

const (
	// ContainerPU indicates that this PU is a container
	ContainerPU PUType = iota
	// LinuxProcessPU indicates that this is Linux process
	LinuxProcessPU
	// KubernetesPU indicates that this is KubernetesPod
	KubernetesPU
	// UIDLoginPU -- PU representing a user session
	UIDLoginPU
	// TransientPU PU -- placeholder to run processing. This should not
	// be inserted in any cache. This is valid only for processing a packet
	TransientPU
	// HostPU indicates that we must apply policy to the host namespace
	HostPU
)

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL