Documentation
¶
Overview ¶
Package selinux contains code for validating and defaulting the SELinux context of a pod according to a security policy.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type SELinuxStrategy ¶
type SELinuxStrategy interface {
// Generate creates the SELinuxOptions based on constraint rules.
Generate(pod *api.Pod, container *api.Container) (*api.SELinuxOptions, error)
// Validate ensures that the specified values fall within the range of the strategy.
Validate(pod *api.Pod, container *api.Container) field.ErrorList
}
SELinuxStrategy defines the interface for all SELinux constraint strategies.
func NewMustRunAs ¶
func NewMustRunAs(options *extensions.SELinuxStrategyOptions) (SELinuxStrategy, error)
func NewRunAsAny ¶
func NewRunAsAny(options *extensions.SELinuxStrategyOptions) (SELinuxStrategy, error)
NewRunAsAny provides a strategy that will return the configured se linux context or nil.
Source Files
Click to show internal directories.
Click to hide internal directories.