selinux

package
v1.4.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 12, 2024 License: Apache-2.0 Imports: 17 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var POLICY_FILES = []string{"virt_launcher"}

Functions

func GetVirtLauncherContext added in v0.58.2 

func GetVirtLauncherContext(vmi *v1.VirtualMachineInstance) (string, error)

func RelabelFiles added in v0.46.0 

func RelabelFiles(newLabel string, continueOnError bool, files ...*safepath.Path) error

Types

type ContextExecutor added in v0.39.0 

type ContextExecutor struct {
	// contains filtered or unexported fields
}

func NewContextExecutor added in v0.39.0 

func NewContextExecutor(pid int, cmd *exec.Cmd) (*ContextExecutor, error)

func (*ContextExecutor) Execute added in v0.39.0 

func (ce *ContextExecutor) Execute() error

type Executor added in v0.39.1 

type Executor interface {
	NewSELinux() (SELinux, bool, error)
	FileLabel(filepath string) (string, error)
	SetExecLabel(label string) error
	LockOSThread()
	UnlockOSThread()
	CloseOnExec(fd int)
	Run(cmd *exec.Cmd) error
}

type MockExecutor added in v0.39.1 

type MockExecutor struct {
	// contains filtered or unexported fields
}

Mock of Executor interface

func NewMockExecutor added in v0.39.1 

func NewMockExecutor(ctrl *gomock.Controller) *MockExecutor

func (*MockExecutor) CloseOnExec added in v0.39.1 

func (_m *MockExecutor) CloseOnExec(fd int)

func (*MockExecutor) EXPECT added in v0.39.1 

func (_m *MockExecutor) EXPECT() *_MockExecutorRecorder

func (*MockExecutor) FileLabel added in v0.39.1 

func (_m *MockExecutor) FileLabel(filepath string) (string, error)

func (*MockExecutor) LockOSThread added in v0.39.1 

func (_m *MockExecutor) LockOSThread()

func (*MockExecutor) NewSELinux added in v0.39.1 

func (_m *MockExecutor) NewSELinux() (SELinux, bool, error)

func (*MockExecutor) Run added in v0.39.1 

func (_m *MockExecutor) Run(cmd *exec.Cmd) error

func (*MockExecutor) SetExecLabel added in v0.39.1 

func (_m *MockExecutor) SetExecLabel(label string) error

func (*MockExecutor) UnlockOSThread added in v0.39.1 

func (_m *MockExecutor) UnlockOSThread()

type SELinux 

type SELinux interface {
	InstallPolicy(dir string) (err error)
	Mode() string
	IsPermissive() bool
}

func NewSELinux 

func NewSELinux() (SELinux, bool, error)

type SELinuxExecutor added in v0.39.1 

type SELinuxExecutor struct {
}

func (SELinuxExecutor) CloseOnExec added in v0.39.1 

func (se SELinuxExecutor) CloseOnExec(fd int)

func (SELinuxExecutor) FileLabel added in v0.39.1 

func (se SELinuxExecutor) FileLabel(filepath string) (string, error)

func (SELinuxExecutor) LockOSThread added in v0.39.1 

func (se SELinuxExecutor) LockOSThread()

func (SELinuxExecutor) NewSELinux added in v0.39.1 

func (se SELinuxExecutor) NewSELinux() (SELinux, bool, error)

func (SELinuxExecutor) Run added in v0.39.1 

func (se SELinuxExecutor) Run(cmd *exec.Cmd) error

func (SELinuxExecutor) SetExecLabel added in v0.39.1 

func (se SELinuxExecutor) SetExecLabel(label string) error

func (SELinuxExecutor) UnlockOSThread added in v0.39.1 

func (se SELinuxExecutor) UnlockOSThread()

type SELinuxImpl 

type SELinuxImpl struct {
	Paths []string
	// contains filtered or unexported fields
}

func (*SELinuxImpl) InstallPolicy added in v0.21.0 

func (se *SELinuxImpl) InstallPolicy(dir string) (err error)

func (*SELinuxImpl) IsPermissive added in v0.22.0 

func (se *SELinuxImpl) IsPermissive() bool

func (*SELinuxImpl) IsPresent 

func (se *SELinuxImpl) IsPresent() (present bool, mode string, err error)

func (*SELinuxImpl) Mode added in v0.32.0 

func (se *SELinuxImpl) Mode() string

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.