Documentation ¶
Index ¶
Constants ¶
View Source
const All = "ALL"
All is a special value used to add/drop all known capabilities. Useful on the CLI for `--cap-add=all` etc.
Variables ¶
View Source
var ( // ErrUnknownCapability is thrown when an unknown capability is processed. ErrUnknownCapability = errors.New("unknown capability") // ContainerImageLabels - label can indicate the required // capabilities required by containers to run the container image. ContainerImageLabels = []string{"io.containers.capabilities"} )
Functions ¶
func AllCapabilities ¶
func AllCapabilities() []string
AllCapabilities returns all capabilities supported by the running kernel.
func BoundingSet ¶ added in v0.35.3
BoundingSet returns the capabilities in the current bounding set.
func MergeCapabilities ¶
MergeCapabilities computes a set of capabilities by adding capabilities to or dropping them from base.
Note that: "ALL" in capAdd adds returns known capabilities "All" in capDrop returns only the capabilities specified in capAdd
func NormalizeCapabilities ¶ added in v0.14.8
NormalizeCapabilities normalizes caps by adding a "CAP_" prefix (if not yet present).
func ValidateCapabilities ¶
ValidateCapabilities validates if caps only contains valid capabilities.
Types ¶
This section is empty.
Click to show internal directories.
Click to hide internal directories.