selinux

package
v1.16.3 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Nov 9, 2022 License: Apache-2.0 Imports: 8 Imported by: 0

Documentation

Overview

Package selinux contains code for validating and defaulting the SELinux context of a pod according to a security policy.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type SELinuxStrategy

type SELinuxStrategy interface {
	// Generate creates the SELinuxOptions based on constraint rules.
	Generate(pod *api.Pod, container *api.Container) (*api.SELinuxOptions, error)
	// Validate ensures that the specified values fall within the range of the strategy.
	Validate(fldPath *field.Path, pod *api.Pod, container *api.Container, options *api.SELinuxOptions) field.ErrorList
}

SELinuxStrategy defines the interface for all SELinux constraint strategies.

func NewMustRunAs

func NewMustRunAs(options *policy.SELinuxStrategyOptions) (SELinuxStrategy, error)

func NewRunAsAny

func NewRunAsAny(options *policy.SELinuxStrategyOptions) (SELinuxStrategy, error)

NewRunAsAny provides a strategy that will return the configured se linux context or nil.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL