types

package
v0.9.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 12, 2025 License: Apache-2.0 Imports: 3 Imported by: 0

Documentation

Overview

Package types defines the types used in vArmor.

Index

Constants

View Source 
const (
	// Enforcer types
	AppArmor Enforcer = 0x00000001
	BPF      Enforcer = 0x00000002
	Seccomp  Enforcer = 0x00000004
	Unknown  Enforcer = 0x00000008

	// AppArmor Profile process Status
	Succeeded Status = "succeeded"
	Failed    Status = "failed"

	// AgentLabelSelector is the label selector for agents.
	AgentLabelSelector string = "app.kubernetes.io/component=varmor-agent"

	// Event type for the bpf tracer
	SchedProcessFork uint32 = 1
	SchedProcessExec uint32 = 2

	// ReconcileAnnotation control whether to force agents to update the profile
	ReconcileAnnotation string = "profile-reconcile-counter"
)

Variables

This section is empty.

Functions

This section is empty.

Types

type BehaviorData 

type BehaviorData struct {
	Namespace     string               `json:"namespace"`
	ProfileName   string               `json:"armorProfile"` //  varmor-{namespace}-{name}
	DynamicResult varmor.DynamicResult `json:"dynamicResult"`
	NodeName      string               `json:"nodeName"`
	Status        Status               `json:"status"`
	Message       string               `json:"message"`
}

BehaviorData describes the behavior data of the target container that collected by agents.

type EgressInfo added in v0.8.0 

type EgressInfo struct {
	ToPods     []Pod
	ToServices []Service
}

EgressInfo caches the pod and service rules that a policy wants to match.

func (*EgressInfo) DeepCopy added in v0.8.0 

func (in *EgressInfo) DeepCopy() *EgressInfo

func (*EgressInfo) DeepCopyInto added in v0.8.0 

func (in *EgressInfo) DeepCopyInto(out *EgressInfo)

type Enforcer added in v0.5.6 

type Enforcer int

Enforcer represents policy enforcement mechanisms.

func GetEnforcerType added in v0.5.6 

func GetEnforcerType(enforcer string) Enforcer

type ModelingStatus 

type ModelingStatus struct {
	CompletedNumber int32
	FailedNumber    int32
	NodeMessages    map[string]string // Use NodeName as its key
}

ModelingStatus used to cache the status of ArmorProfileModel objects.

type Pod added in v0.8.0 

type Pod struct {
	Mode        uint32
	Namespace   string
	PodSelector *metav1.LabelSelector
	Ports       []varmor.Port
}

Pod saves the rule for matching the traffic of pods

func (*Pod) DeepCopy added in v0.8.0 

func (in *Pod) DeepCopy() *Pod

func (*Pod) DeepCopyInto added in v0.8.0 

func (in *Pod) DeepCopyInto(out *Pod)

type PolicyStatus 

type PolicyStatus struct {
	SuccessedNumber int32
	FailedNumber    int32
	NodeMessages    map[string]string // Use NodeName as its key
}

PolicyStatus used to cache the status of ArmorProfile and VarmorProfile objects.

type ProfileStatus 

type ProfileStatus struct {
	Namespace   string `json:"namespace"`
	ProfileName string `json:"armorProfile"` //  varmor-{namespace}-{name} or varmor-cluster-{namespace}-{name}
	NodeName    string `json:"nodeName"`
	Status      Status `json:"status"`
	Message     string `json:"message"`
}

ProfileStatus describes the process result of an ArmorProfile object by agents.

type Service added in v0.8.0 

type Service struct {
	Mode            uint32
	Namespace       string
	Name            string
	ServiceSelector *metav1.LabelSelector
}

Service saves the rule for matching the traffic of services and endpointslices

func (*Service) DeepCopy added in v0.8.0 

func (in *Service) DeepCopy() *Service

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Service.

func (*Service) DeepCopyInto added in v0.8.0 

func (in *Service) DeepCopyInto(out *Service)

type Status 

type Status string

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.