Categorygithub.com/divinerapier/learn-kubernetespkgsecuritycontext
package
0.0.0-20191024030528-a481964b876e
Repository: https://github.com/divinerapier/learn-kubernetes.git
Documentation: pkg.go.dev
Overview
Versions
1
Dependencies
3
Dependents
2
Files
624 SLOC

# Functions

AddNoNewPrivileges returns if we should add the no_new_privs option.
ConvertToRuntimeMaskedPaths converts the ProcMountType to the specified or default masked paths.
ConvertToRuntimeReadonlyPaths converts the ProcMountType to the specified or default readonly paths.
DetermineEffectiveSecurityContext returns a synthesized SecurityContext for reading effective configurations from the provided pod's and container's security context.
HasCapabilitiesRequest returns true if Adds or Drops are defined in the security context capabilities, taking into account nils.
HasPrivilegedRequest returns the value of SecurityContext.Privileged, taking into account the possibility of nils.
NewContainerSecurityContextAccessor returns an accessor for the provided container security context May be initialized with a nil SecurityContext.
NewContainerSecurityContextMutator returns a mutator for the provided container security context May be initialized with a nil SecurityContext.
NewEffectiveContainerSecurityContextAccessor returns an accessor for reading effective values for the provided pod security context and container security context.
NewEffectiveContainerSecurityContextMutator returns a mutator for reading and writing effective values for the provided pod security context and container security context.
NewPodSecurityContextAccessor returns an accessor for the given pod security context.
NewPodSecurityContextMutator returns a mutator for the given pod security context.
ValidInternalSecurityContextWithContainerDefaults creates a valid security context provider based on empty container defaults.
ValidSecurityContextWithContainerDefaults creates a valid security context provider based on empty container defaults.

# Interfaces

ContainerSecurityContextAccessor allows reading the values of a SecurityContext object.
ContainerSecurityContextMutator allows reading and writing the values of a SecurityContext object.
PodSecurityContextAccessor allows reading the values of a PodSecurityContext object.
PodSecurityContextMutator allows reading and writing the values of a PodSecurityContext object.