Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ServerVersion cache APIServer version information ServerVersion = &version.Info{} // appArmorGA is true if the APIServer version is 1.30 and above AppArmorGA = false // Namespace is the vArmor namespace Namespace = getNamespace() // ManagerName is the deployment name of vArmor manager ManagerName = "varmor-manager" // AgentName is the daemonset name of vArmor agent AgentName = "varmor-agent" // AgentReadinessPort is the port of agent service AgentServicePort = getAgentReadinessPort() // AgentReadinessPath is the path for checking readness health of agent AgentReadinessPath = "/health/readiness" // ClassifierName is the deployment name of vArmor classifier ClassifierName = "varmor-classifier" // ClassifierServiceName is the name of classification service ClassifierServiceName = "varmor-classifier-svc" // ClassifierServicePort is the port of classification service ClassifierServicePort = 5000 // ClassifierPathClassifyPath is the path for classifing path ClassifierPathClassifyPath = "/api/v1/path" // StatusServiceName is the name of status service StatusServiceName = "varmor-status-svc" // StatusServicePort is the port of status service StatusServicePort = 8080 // StatusSyncPath is the path for syncing status StatusSyncPath = "/api/v1/status" // DataSyncPath is the path for syncing data DataSyncPath = "/api/v1/data" // WebhookServiceName is the name of webhook service WebhookServiceName = "varmor-webhook-svc" // WebhookServicePort is the port of webhook service WebhookServicePort = 3443 // CertRenewalInterval is the renewal interval for rootCA CertRenewalInterval time.Duration = 12 * time.Hour // CertValidityDuration is the valid duration for a new cert CertValidityDuration time.Duration = 365 * 24 * time.Hour // CertCommonName is the Common Name of CA cert CertCommonName = "*.varmor.svc" // MutatingWebhookConfigurationName default resource mutating webhook configuration name MutatingWebhookConfigurationName = "varmor-resource-mutating-webhook-cfg" // MutatingWebhookConfigurationDebugName default resource mutating webhook configuration name for debug mode MutatingWebhookConfigurationDebugName = "varmor-resource-mutating-webhook-cfg-debug" // MutatingWorkloadWebhookName is the name of workload resource mutating webhook MutatingWorkloadWebhookName = "mutateworkload.varmor.org" // MutatingWorkloadWebhookName is the name of pod resource mutating webhook MutatingPodWebhookName = "mutatepod.varmor.org" // MutatingWebhookServicePath is the path for mutation webhook MutatingWebhookServicePath = "/mutate" // WebhookTimeout specifies the timeout seconds for the mutation webhook WebhookTimeout = 10 // LivenessServicePath is the path for checking liveness health of the webhook server LivenessServicePath = "/health/liveness" // ReadinessServicePath is the path for checking readness health of the webhook server ReadinessServicePath = "/health/readiness" // PackagedAppArmorProfiles include the AppArmor feature ABI, abstractions, tunables and default profiles that come from the development environment and upstream PackagedAppArmorProfiles = "/varmor/apparmor.d" // AppArmorProfileDir is the path of AppArmor profiles for agent AppArmorProfileDir = "/etc/apparmor.d" // SeccompProfileDir is the path of Seccomp profiles in the host SeccompProfileDir = "/var/lib/kubelet/seccomp" // WebhookSelectorLabel is used for matching the admission requests WebhookSelectorLabel = map[string]string{} // OmuxSocketPath is used for receiving the audit logs of AppArmor from rsyslog OmuxSocketPath = "/var/run/varmor/audit/omuxsock.sock" )
Functions ¶
Types ¶
This section is empty.
Source Files
Click to show internal directories.
Click to hide internal directories.