Categoryk8s.io/kubernetespkgsecuritycontext
package
1.33.0-alpha.2
Repository: https://github.com/kubernetes/kubernetes.git
Documentation: pkg.go.dev
Versions
1
Dependencies
3
Dependents
462
Files
689 SLOC

# Functions

AddNoNewPrivileges returns if we should add the no_new_privs option.
ConvertToRuntimeMaskedPaths converts the ProcMountType to the specified or default masked paths.
ConvertToRuntimeReadonlyPaths converts the ProcMountType to the specified or default readonly paths.
DetermineEffectiveRunAsUser returns a pointer of UID from the provided pod's and container's security context and a bool value to indicate if it is absent.
DetermineEffectiveSecurityContext returns a synthesized SecurityContext for reading effective configurations from the provided pod's and container's security context.
HasWindowsHostProcessRequest returns true if container should run as HostProcess container, taking into account nils.
NewContainerSecurityContextAccessor returns an accessor for the provided container security context May be initialized with a nil SecurityContext.
NewContainerSecurityContextMutator returns a mutator for the provided container security context May be initialized with a nil SecurityContext.
NewEffectiveContainerSecurityContextAccessor returns an accessor for reading effective values for the provided pod security context and container security context.
NewEffectiveContainerSecurityContextMutator returns a mutator for reading and writing effective values for the provided pod security context and container security context.
NewPodSecurityContextAccessor returns an accessor for the given pod security context.
NewPodSecurityContextMutator returns a mutator for the given pod security context.
ValidInternalSecurityContextWithContainerDefaults creates a valid security context provider based on empty container defaults.
ValidSecurityContextWithContainerDefaults creates a valid security context provider based on empty container defaults.

# Interfaces

ContainerSecurityContextAccessor allows reading the values of a SecurityContext object.
ContainerSecurityContextMutator allows reading and writing the values of a SecurityContext object.
PodSecurityContextAccessor allows reading the values of a PodSecurityContext object.
PodSecurityContextMutator allows reading and writing the values of a PodSecurityContext object.