Documentation ¶
Overview ¶
nolint: dupl,golint
nolint: dupl,golint
nolint: dupl,golint
nolint: dupl,golint
nolint: dupl,golint
nolint: dupl,golint
Index ¶
- Variables
- type APID
- func (o *APID) Condition(config runtime.Configurator) conditions.Condition
- func (o *APID) DependsOn(config runtime.Configurator) []string
- func (o *APID) HealthFunc(runtime.Configurator) health.Check
- func (o *APID) HealthSettings(runtime.Configurator) *health.Settings
- func (o *APID) ID(config runtime.Configurator) string
- func (o *APID) PostFunc(config runtime.Configurator) (err error)
- func (o *APID) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (o *APID) Runner(config runtime.Configurator) (runner.Runner, error)
- type Bootkube
- func (b *Bootkube) Condition(config runtime.Configurator) conditions.Condition
- func (b *Bootkube) DependsOn(config runtime.Configurator) []string
- func (b *Bootkube) ID(config runtime.Configurator) string
- func (b *Bootkube) PostFunc(config runtime.Configurator) (err error)
- func (b *Bootkube) PreFunc(ctx context.Context, config runtime.Configurator) (err error)
- func (b *Bootkube) Runner(config runtime.Configurator) (runner.Runner, error)
- type Containerd
- func (c *Containerd) Condition(config runtime.Configurator) conditions.Condition
- func (c *Containerd) DependsOn(config runtime.Configurator) []string
- func (c *Containerd) HealthFunc(runtime.Configurator) health.Check
- func (c *Containerd) HealthSettings(runtime.Configurator) *health.Settings
- func (c *Containerd) ID(config runtime.Configurator) string
- func (c *Containerd) PostFunc(config runtime.Configurator) (err error)
- func (c *Containerd) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (c *Containerd) Runner(config runtime.Configurator) (runner.Runner, error)
- type Etcd
- func (e *Etcd) Condition(config runtime.Configurator) conditions.Condition
- func (e *Etcd) DependsOn(config runtime.Configurator) []string
- func (e *Etcd) ID(config runtime.Configurator) string
- func (e *Etcd) PostFunc(config runtime.Configurator) (err error)
- func (e *Etcd) PreFunc(ctx context.Context, config runtime.Configurator) (err error)
- func (e *Etcd) Runner(config runtime.Configurator) (runner.Runner, error)
- type Kubelet
- func (k *Kubelet) Condition(config runtime.Configurator) conditions.Condition
- func (k *Kubelet) DependsOn(config runtime.Configurator) []string
- func (k *Kubelet) HealthFunc(runtime.Configurator) health.Check
- func (k *Kubelet) HealthSettings(runtime.Configurator) *health.Settings
- func (k *Kubelet) ID(config runtime.Configurator) string
- func (k *Kubelet) PostFunc(config runtime.Configurator) (err error)
- func (k *Kubelet) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (k *Kubelet) Runner(config runtime.Configurator) (runner.Runner, error)
- type MachinedAPI
- func (c *MachinedAPI) Condition(config runtime.Configurator) conditions.Condition
- func (c *MachinedAPI) DependsOn(config runtime.Configurator) []string
- func (c *MachinedAPI) ID(config runtime.Configurator) string
- func (c *MachinedAPI) PostFunc(config runtime.Configurator) (err error)
- func (c *MachinedAPI) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (c *MachinedAPI) Runner(config runtime.Configurator) (runner.Runner, error)
- type NTPd
- func (n *NTPd) APIRestartAllowed(config runtime.Configurator) bool
- func (n *NTPd) APIStartAllowed(config runtime.Configurator) bool
- func (n *NTPd) Condition(config runtime.Configurator) conditions.Condition
- func (n *NTPd) DependsOn(config runtime.Configurator) []string
- func (n *NTPd) ID(config runtime.Configurator) string
- func (n *NTPd) PostFunc(config runtime.Configurator) (err error)
- func (n *NTPd) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (n *NTPd) Runner(config runtime.Configurator) (runner.Runner, error)
- type Networkd
- func (n *Networkd) Condition(config runtime.Configurator) conditions.Condition
- func (n *Networkd) DependsOn(config runtime.Configurator) []string
- func (n *Networkd) HealthFunc(runtime.Configurator) health.Check
- func (n *Networkd) HealthSettings(runtime.Configurator) *health.Settings
- func (n *Networkd) ID(config runtime.Configurator) string
- func (n *Networkd) PostFunc(config runtime.Configurator) (err error)
- func (n *Networkd) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (n *Networkd) Runner(config runtime.Configurator) (runner.Runner, error)
- type OSD
- func (o *OSD) Condition(config runtime.Configurator) conditions.Condition
- func (o *OSD) DependsOn(config runtime.Configurator) []string
- func (o *OSD) HealthFunc(runtime.Configurator) health.Check
- func (o *OSD) HealthSettings(runtime.Configurator) *health.Settings
- func (o *OSD) ID(config runtime.Configurator) string
- func (o *OSD) PostFunc(config runtime.Configurator) (err error)
- func (o *OSD) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (o *OSD) Runner(config runtime.Configurator) (runner.Runner, error)
- type SystemContainerd
- func (c *SystemContainerd) Condition(config runtime.Configurator) conditions.Condition
- func (c *SystemContainerd) DependsOn(config runtime.Configurator) []string
- func (c *SystemContainerd) HealthFunc(runtime.Configurator) health.Check
- func (c *SystemContainerd) HealthSettings(runtime.Configurator) *health.Settings
- func (c *SystemContainerd) ID(config runtime.Configurator) string
- func (c *SystemContainerd) PostFunc(config runtime.Configurator) (err error)
- func (c *SystemContainerd) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (c *SystemContainerd) Runner(config runtime.Configurator) (runner.Runner, error)
- type Trustd
- func (t *Trustd) Condition(config runtime.Configurator) conditions.Condition
- func (t *Trustd) DependsOn(config runtime.Configurator) []string
- func (t *Trustd) HealthFunc(runtime.Configurator) health.Check
- func (t *Trustd) HealthSettings(runtime.Configurator) *health.Settings
- func (t *Trustd) ID(config runtime.Configurator) string
- func (t *Trustd) PostFunc(config runtime.Configurator) (err error)
- func (t *Trustd) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (t *Trustd) Runner(config runtime.Configurator) (runner.Runner, error)
- type Udevd
- func (c *Udevd) Condition(config runtime.Configurator) conditions.Condition
- func (c *Udevd) DependsOn(config runtime.Configurator) []string
- func (c *Udevd) ID(config runtime.Configurator) string
- func (c *Udevd) PostFunc(config runtime.Configurator) (err error)
- func (c *Udevd) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (c *Udevd) Runner(config runtime.Configurator) (runner.Runner, error)
- type UdevdTrigger
- func (c *UdevdTrigger) APIRestartAllowed(config runtime.Configurator) bool
- func (c *UdevdTrigger) APIStartAllowed(config runtime.Configurator) bool
- func (c *UdevdTrigger) APIStopAllowed(config runtime.Configurator) bool
- func (c *UdevdTrigger) Condition(config runtime.Configurator) conditions.Condition
- func (c *UdevdTrigger) DependsOn(config runtime.Configurator) []string
- func (c *UdevdTrigger) ID(config runtime.Configurator) string
- func (c *UdevdTrigger) PostFunc(config runtime.Configurator) (err error)
- func (c *UdevdTrigger) PreFunc(ctx context.Context, config runtime.Configurator) error
- func (c *UdevdTrigger) Runner(config runtime.Configurator) (runner.Runner, error)
Constants ¶
This section is empty.
Variables ¶
var DefaultPodSecurityPolicy = []byte(`---
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: psp:privileged
rules:
- apiGroups: ['policy']
resources: ['podsecuritypolicies']
verbs: ['use']
resourceNames:
- privileged
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: psp:privileged
roleRef:
kind: ClusterRole
name: psp:privileged
apiGroup: rbac.authorization.k8s.io
subjects:
# Authorize all service accounts in a namespace:
- kind: Group
apiGroup: rbac.authorization.k8s.io
name: system:serviceaccounts
# Authorize all authenticated users in a namespace:
- kind: Group
apiGroup: rbac.authorization.k8s.io
name: system:authenticated
---
apiVersion: policy/v1beta1
kind: PodSecurityPolicy
metadata:
name: privileged
spec:
fsGroup:
rule: RunAsAny
privileged: true
runAsUser:
rule: RunAsAny
seLinux:
rule: RunAsAny
supplementalGroups:
rule: RunAsAny
volumes:
- '*'
allowedCapabilities:
- '*'
hostPID: true
hostIPC: true
hostNetwork: true
hostPorts:
- min: 1
max: 65536
`)
DefaultPodSecurityPolicy is the default PSP.
Functions ¶
This section is empty.
Types ¶
type APID ¶ added in v0.3.0
type APID struct{}
APID implements the Service interface. It serves as the concrete type with the required methods.
func (*APID) Condition ¶ added in v0.3.0
func (o *APID) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*APID) DependsOn ¶ added in v0.3.0
func (o *APID) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*APID) HealthFunc ¶ added in v0.3.0
func (o *APID) HealthFunc(runtime.Configurator) health.Check
HealthFunc implements the HealthcheckedService interface
func (*APID) HealthSettings ¶ added in v0.3.0
func (o *APID) HealthSettings(runtime.Configurator) *health.Settings
HealthSettings implements the HealthcheckedService interface
func (*APID) ID ¶ added in v0.3.0
func (o *APID) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*APID) PostFunc ¶ added in v0.3.0
func (o *APID) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type Bootkube ¶ added in v0.3.0
type Bootkube struct{}
Bootkube implements the Service interface. It serves as the concrete type with the required methods.
func (*Bootkube) Condition ¶ added in v0.3.0
func (b *Bootkube) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*Bootkube) DependsOn ¶ added in v0.3.0
func (b *Bootkube) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*Bootkube) ID ¶ added in v0.3.0
func (b *Bootkube) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*Bootkube) PostFunc ¶ added in v0.3.0
func (b *Bootkube) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type Containerd ¶
type Containerd struct{}
Containerd implements the Service interface. It serves as the concrete type with the required methods.
func (*Containerd) Condition ¶
func (c *Containerd) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*Containerd) DependsOn ¶
func (c *Containerd) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*Containerd) HealthFunc ¶
func (c *Containerd) HealthFunc(runtime.Configurator) health.Check
HealthFunc implements the HealthcheckedService interface
func (*Containerd) HealthSettings ¶
func (c *Containerd) HealthSettings(runtime.Configurator) *health.Settings
HealthSettings implements the HealthcheckedService interface
func (*Containerd) ID ¶
func (c *Containerd) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*Containerd) PostFunc ¶
func (c *Containerd) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
func (*Containerd) PreFunc ¶
func (c *Containerd) PreFunc(ctx context.Context, config runtime.Configurator) error
PreFunc implements the Service interface.
func (*Containerd) Runner ¶
func (c *Containerd) Runner(config runtime.Configurator) (runner.Runner, error)
Runner implements the Service interface.
type Etcd ¶ added in v0.3.0
type Etcd struct{}
Etcd implements the Service interface. It serves as the concrete type with the required methods.
func (*Etcd) Condition ¶ added in v0.3.0
func (e *Etcd) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*Etcd) DependsOn ¶ added in v0.3.0
func (e *Etcd) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*Etcd) ID ¶ added in v0.3.0
func (e *Etcd) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*Etcd) PostFunc ¶ added in v0.3.0
func (e *Etcd) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type Kubelet ¶
type Kubelet struct{}
Kubelet implements the Service interface. It serves as the concrete type with the required methods.
func (*Kubelet) Condition ¶
func (k *Kubelet) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*Kubelet) DependsOn ¶
func (k *Kubelet) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*Kubelet) HealthFunc ¶
func (k *Kubelet) HealthFunc(runtime.Configurator) health.Check
HealthFunc implements the HealthcheckedService interface
func (*Kubelet) HealthSettings ¶
func (k *Kubelet) HealthSettings(runtime.Configurator) *health.Settings
HealthSettings implements the HealthcheckedService interface
func (*Kubelet) ID ¶
func (k *Kubelet) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*Kubelet) PostFunc ¶
func (k *Kubelet) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type MachinedAPI ¶
type MachinedAPI struct{}
MachinedAPI implements the Service interface. It serves as the concrete type with the required methods.
func (*MachinedAPI) Condition ¶
func (c *MachinedAPI) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*MachinedAPI) DependsOn ¶
func (c *MachinedAPI) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*MachinedAPI) ID ¶
func (c *MachinedAPI) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*MachinedAPI) PostFunc ¶
func (c *MachinedAPI) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
func (*MachinedAPI) PreFunc ¶
func (c *MachinedAPI) PreFunc(ctx context.Context, config runtime.Configurator) error
PreFunc implements the Service interface.
func (*MachinedAPI) Runner ¶
func (c *MachinedAPI) Runner(config runtime.Configurator) (runner.Runner, error)
Runner implements the Service interface.
type NTPd ¶
type NTPd struct{}
NTPd implements the Service interface. It serves as the concrete type with the required methods.
func (*NTPd) APIRestartAllowed ¶
func (n *NTPd) APIRestartAllowed(config runtime.Configurator) bool
APIRestartAllowed implements the APIRestartableService interface.
func (*NTPd) APIStartAllowed ¶
func (n *NTPd) APIStartAllowed(config runtime.Configurator) bool
APIStartAllowed implements the APIStartableService interface.
func (*NTPd) Condition ¶
func (n *NTPd) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*NTPd) DependsOn ¶
func (n *NTPd) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*NTPd) ID ¶
func (n *NTPd) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*NTPd) PostFunc ¶
func (n *NTPd) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type Networkd ¶
type Networkd struct{}
Networkd implements the Service interface. It serves as the concrete type with the required methods.
func (*Networkd) Condition ¶
func (n *Networkd) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*Networkd) DependsOn ¶
func (n *Networkd) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*Networkd) HealthFunc ¶ added in v0.3.0
func (n *Networkd) HealthFunc(runtime.Configurator) health.Check
HealthFunc implements the HealthcheckedService interface
func (*Networkd) HealthSettings ¶ added in v0.3.0
func (n *Networkd) HealthSettings(runtime.Configurator) *health.Settings
HealthSettings implements the HealthcheckedService interface
func (*Networkd) ID ¶
func (n *Networkd) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*Networkd) PostFunc ¶
func (n *Networkd) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type OSD ¶
type OSD struct{}
OSD implements the Service interface. It serves as the concrete type with the required methods.
func (*OSD) Condition ¶
func (o *OSD) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*OSD) DependsOn ¶
func (o *OSD) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*OSD) HealthFunc ¶
func (o *OSD) HealthFunc(runtime.Configurator) health.Check
HealthFunc implements the HealthcheckedService interface
func (*OSD) HealthSettings ¶
func (o *OSD) HealthSettings(runtime.Configurator) *health.Settings
HealthSettings implements the HealthcheckedService interface
func (*OSD) ID ¶
func (o *OSD) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*OSD) PostFunc ¶
func (o *OSD) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type SystemContainerd ¶
type SystemContainerd struct{}
SystemContainerd implements the Service interface. It serves as the concrete type with the required methods.
func (*SystemContainerd) Condition ¶
func (c *SystemContainerd) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*SystemContainerd) DependsOn ¶
func (c *SystemContainerd) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*SystemContainerd) HealthFunc ¶
func (c *SystemContainerd) HealthFunc(runtime.Configurator) health.Check
HealthFunc implements the HealthcheckedService interface
func (*SystemContainerd) HealthSettings ¶
func (c *SystemContainerd) HealthSettings(runtime.Configurator) *health.Settings
HealthSettings implements the HealthcheckedService interface
func (*SystemContainerd) ID ¶
func (c *SystemContainerd) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*SystemContainerd) PostFunc ¶
func (c *SystemContainerd) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
func (*SystemContainerd) PreFunc ¶
func (c *SystemContainerd) PreFunc(ctx context.Context, config runtime.Configurator) error
PreFunc implements the Service interface.
func (*SystemContainerd) Runner ¶
func (c *SystemContainerd) Runner(config runtime.Configurator) (runner.Runner, error)
Runner implements the Service interface.
type Trustd ¶
type Trustd struct{}
Trustd implements the Service interface. It serves as the concrete type with the required methods.
func (*Trustd) Condition ¶
func (t *Trustd) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*Trustd) DependsOn ¶
func (t *Trustd) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*Trustd) HealthFunc ¶
func (t *Trustd) HealthFunc(runtime.Configurator) health.Check
HealthFunc implements the HealthcheckedService interface
func (*Trustd) HealthSettings ¶
func (t *Trustd) HealthSettings(runtime.Configurator) *health.Settings
HealthSettings implements the HealthcheckedService interface
func (*Trustd) ID ¶
func (t *Trustd) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*Trustd) PostFunc ¶
func (t *Trustd) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type Udevd ¶
type Udevd struct{}
Udevd implements the Service interface. It serves as the concrete type with the required methods.
func (*Udevd) Condition ¶
func (c *Udevd) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*Udevd) DependsOn ¶
func (c *Udevd) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*Udevd) ID ¶
func (c *Udevd) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*Udevd) PostFunc ¶
func (c *Udevd) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
type UdevdTrigger ¶
type UdevdTrigger struct{}
UdevdTrigger implements the Service interface. It serves as the concrete type with the required methods.
func (*UdevdTrigger) APIRestartAllowed ¶
func (c *UdevdTrigger) APIRestartAllowed(config runtime.Configurator) bool
APIRestartAllowed implements the APIRestartableService interface.
func (*UdevdTrigger) APIStartAllowed ¶
func (c *UdevdTrigger) APIStartAllowed(config runtime.Configurator) bool
APIStartAllowed implements the APIStartableService interface.
func (*UdevdTrigger) APIStopAllowed ¶
func (c *UdevdTrigger) APIStopAllowed(config runtime.Configurator) bool
APIStopAllowed implements the APIStoppableService interface.
func (*UdevdTrigger) Condition ¶
func (c *UdevdTrigger) Condition(config runtime.Configurator) conditions.Condition
Condition implements the Service interface.
func (*UdevdTrigger) DependsOn ¶
func (c *UdevdTrigger) DependsOn(config runtime.Configurator) []string
DependsOn implements the Service interface.
func (*UdevdTrigger) ID ¶
func (c *UdevdTrigger) ID(config runtime.Configurator) string
ID implements the Service interface.
func (*UdevdTrigger) PostFunc ¶
func (c *UdevdTrigger) PostFunc(config runtime.Configurator) (err error)
PostFunc implements the Service interface.
func (*UdevdTrigger) PreFunc ¶
func (c *UdevdTrigger) PreFunc(ctx context.Context, config runtime.Configurator) error
PreFunc implements the Service interface.
func (*UdevdTrigger) Runner ¶
func (c *UdevdTrigger) Runner(config runtime.Configurator) (runner.Runner, error)
Runner implements the Service interface.