k8sclustersyncv1

package
v1.3.14 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 13, 2026 License: Apache-2.0 Imports: 12 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	KubernetesInfoService_SendKubernetesResources_FullMethodName    = "/illumio.cloud.k8sclustersync.v1.KubernetesInfoService/SendKubernetesResources"
	KubernetesInfoService_SendKubernetesNetworkFlows_FullMethodName = "/illumio.cloud.k8sclustersync.v1.KubernetesInfoService/SendKubernetesNetworkFlows"
	KubernetesInfoService_SendLogs_FullMethodName                   = "/illumio.cloud.k8sclustersync.v1.KubernetesInfoService/SendLogs"
	KubernetesInfoService_GetConfigurationUpdates_FullMethodName    = "/illumio.cloud.k8sclustersync.v1.KubernetesInfoService/GetConfigurationUpdates"
)

Variables

View Source 
var (
	FlowCollector_name = map[int32]string{
		0: "FLOW_COLLECTOR_UNSPECIFIED",
		1: "FLOW_COLLECTOR_DISABLED",
		2: "FLOW_COLLECTOR_CILIUM",
		3: "FLOW_COLLECTOR_FALCO",
		4: "FLOW_COLLECTOR_OVNK",
	}
	FlowCollector_value = map[string]int32{
		"FLOW_COLLECTOR_UNSPECIFIED": 0,
		"FLOW_COLLECTOR_DISABLED":    1,
		"FLOW_COLLECTOR_CILIUM":      2,
		"FLOW_COLLECTOR_FALCO":       3,
		"FLOW_COLLECTOR_OVNK":        4,
	}
)

Enum value maps for FlowCollector.

View Source 
var (
	TrafficDirection_name = map[int32]string{
		0: "TRAFFIC_DIRECTION_TRAFFIC_DIRECTION_UNKNOWN_UNSPECIFIED",
		1: "TRAFFIC_DIRECTION_INGRESS",
		2: "TRAFFIC_DIRECTION_EGRESS",
	}
	TrafficDirection_value = map[string]int32{
		"TRAFFIC_DIRECTION_TRAFFIC_DIRECTION_UNKNOWN_UNSPECIFIED": 0,
		"TRAFFIC_DIRECTION_INGRESS":                               1,
		"TRAFFIC_DIRECTION_EGRESS":                                2,
	}
)

Enum value maps for TrafficDirection.

View Source 
var (
	Verdict_name = map[int32]string{
		0: "VERDICT_UNKNOWN_UNSPECIFIED",
		1: "VERDICT_FORWARDED",
		2: "VERDICT_DROPPED",
		3: "VERDICT_ERROR",
		4: "VERDICT_AUDIT",
		5: "VERDICT_REDIRECTED",
		6: "VERDICT_TRACED",
		7: "VERDICT_TRANSLATED",
	}
	Verdict_value = map[string]int32{
		"VERDICT_UNKNOWN_UNSPECIFIED": 0,
		"VERDICT_FORWARDED":           1,
		"VERDICT_DROPPED":             2,
		"VERDICT_ERROR":               3,
		"VERDICT_AUDIT":               4,
		"VERDICT_REDIRECTED":          5,
		"VERDICT_TRACED":              6,
		"VERDICT_TRANSLATED":          7,
	}
)

Enum value maps for Verdict.

View Source 
var (
	IPVersion_name = map[int32]string{
		0: "IP_VERSION_IP_NOT_USED_UNSPECIFIED",
		1: "IP_VERSION_IPV4",
		2: "IP_VERSION_IPV6",
	}
	IPVersion_value = map[string]int32{
		"IP_VERSION_IP_NOT_USED_UNSPECIFIED": 0,
		"IP_VERSION_IPV4":                    1,
		"IP_VERSION_IPV6":                    2,
	}
)

Enum value maps for IPVersion.

View Source 
var (
	LogLevel_name = map[int32]string{
		0: "LOG_LEVEL_UNSPECIFIED",
		1: "LOG_LEVEL_DEBUG",
		2: "LOG_LEVEL_INFO",
		3: "LOG_LEVEL_WARN",
		4: "LOG_LEVEL_ERROR",
	}
	LogLevel_value = map[string]int32{
		"LOG_LEVEL_UNSPECIFIED": 0,
		"LOG_LEVEL_DEBUG":       1,
		"LOG_LEVEL_INFO":        2,
		"LOG_LEVEL_WARN":        3,
		"LOG_LEVEL_ERROR":       4,
	}
)

Enum value maps for LogLevel.

View Source 
var (
	Port_Protocol_name = map[int32]string{
		0: "PROTOCOL_TCP_UNSPECIFIED",
		1: "PROTOCOL_UDP",
		2: "PROTOCOL_SCTP",
	}
	Port_Protocol_value = map[string]int32{
		"PROTOCOL_TCP_UNSPECIFIED": 0,
		"PROTOCOL_UDP":             1,
		"PROTOCOL_SCTP":            2,
	}
)

Enum value maps for Port_Protocol.

View Source 
var File_illumio_cloud_k8sclustersync_v1_k8s_info_proto protoreflect.FileDescriptor
View Source 
var KubernetesInfoService_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "illumio.cloud.k8sclustersync.v1.KubernetesInfoService",
	HandlerType: (*KubernetesInfoServiceServer)(nil),
	Methods:     []grpc.MethodDesc{},
	Streams: []grpc.StreamDesc{
		{
			StreamName:    "SendKubernetesResources",
			Handler:       _KubernetesInfoService_SendKubernetesResources_Handler,
			ServerStreams: true,
			ClientStreams: true,
		},
		{
			StreamName:    "SendKubernetesNetworkFlows",
			Handler:       _KubernetesInfoService_SendKubernetesNetworkFlows_Handler,
			ServerStreams: true,
			ClientStreams: true,
		},
		{
			StreamName:    "SendLogs",
			Handler:       _KubernetesInfoService_SendLogs_Handler,
			ServerStreams: true,
			ClientStreams: true,
		},
		{
			StreamName:    "GetConfigurationUpdates",
			Handler:       _KubernetesInfoService_GetConfigurationUpdates_Handler,
			ServerStreams: true,
			ClientStreams: true,
		},
	},
	Metadata: "illumio/cloud/k8sclustersync/v1/k8s_info.proto",
}

KubernetesInfoService_ServiceDesc is the grpc.ServiceDesc for KubernetesInfoService service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

Functions

func RegisterKubernetesInfoServiceServer 

func RegisterKubernetesInfoServiceServer(s grpc.ServiceRegistrar, srv KubernetesInfoServiceServer)

Types

type CiliumCIDRGroup added in v1.3.14 

type CiliumCIDRGroup struct {

	// ExternalCIDRs is a list of CIDRs selecting peers outside the clusters.
	ExternalCidrs []string `protobuf:"bytes,1,rep,name=external_cidrs,json=externalCidrs,proto3" json:"external_cidrs,omitempty"`
	// contains filtered or unexported fields
}

CiliumCIDRGroup defines the specification for a CiliumCIDRGroup. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/k8s/apis/cilium.io/v2/cidrgroups_types.go#L34-L40

func (*CiliumCIDRGroup) Descriptor deprecated added in v1.3.14 

func (*CiliumCIDRGroup) Descriptor() ([]byte, []int)

Deprecated: Use CiliumCIDRGroup.ProtoReflect.Descriptor instead.

func (*CiliumCIDRGroup) GetExternalCidrs added in v1.3.14 

func (x *CiliumCIDRGroup) GetExternalCidrs() []string

func (*CiliumCIDRGroup) ProtoMessage added in v1.3.14 

func (*CiliumCIDRGroup) ProtoMessage()

func (*CiliumCIDRGroup) ProtoReflect added in v1.3.14 

func (x *CiliumCIDRGroup) ProtoReflect() protoreflect.Message

func (*CiliumCIDRGroup) Reset added in v1.3.14 

func (x *CiliumCIDRGroup) Reset()

func (*CiliumCIDRGroup) String added in v1.3.14 

func (x *CiliumCIDRGroup) String() string

type CiliumFlow 

type CiliumFlow struct {

	// Time when flow occurred.
	Time *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=time,proto3" json:"time,omitempty"`
	// node_name is the name of the node from which this Flow was captured.
	NodeName string `protobuf:"bytes,2,opt,name=node_name,json=nodeName,proto3" json:"node_name,omitempty"`
	// traffic_direction distinguishes direction of the connection, e.g. ingress or egress.
	TrafficDirection TrafficDirection `` /* 164-byte string literal not displayed */
	// verdict of the flow, indicating the outcome of the network packet processing.
	Verdict Verdict `protobuf:"varint,4,opt,name=verdict,proto3,enum=illumio.cloud.k8sclustersync.v1.Verdict" json:"verdict,omitempty"`
	// layer3 IP layer, source, destination and ip_version
	Layer3 *IP `protobuf:"bytes,5,opt,name=layer3,proto3" json:"layer3,omitempty"`
	// layer4 contains protocol used
	Layer4 *Layer4 `protobuf:"bytes,6,opt,name=layer4,proto3" json:"layer4,omitempty"`
	// is_reply indicates that this was a packet (L4) or message (L7) in the
	// reply direction. May be absent (in which case it is unknown whether it
	// is a reply or not).
	IsReply *wrapperspb.BoolValue `protobuf:"bytes,7,opt,name=is_reply,json=isReply,proto3" json:"is_reply,omitempty"`
	// endpoint of source ip with metadata
	SourceEndpoint *Endpoint `protobuf:"bytes,8,opt,name=source_endpoint,json=sourceEndpoint,proto3,oneof" json:"source_endpoint,omitempty"`
	// endpoint of destination ip with metadata
	DestinationEndpoint *Endpoint `protobuf:"bytes,9,opt,name=destination_endpoint,json=destinationEndpoint,proto3,oneof" json:"destination_endpoint,omitempty"`
	// destination_service contains the service name of the destination
	DestinationService *Service `protobuf:"bytes,10,opt,name=destination_service,json=destinationService,proto3" json:"destination_service,omitempty"`
	// The CiliumNetworkPolicies allowing the egress of the flow.
	EgressAllowedBy []*Policy `protobuf:"bytes,11,rep,name=egress_allowed_by,json=egressAllowedBy,proto3" json:"egress_allowed_by,omitempty"`
	// The CiliumNetworkPolicies allowing the ingress of the flow.
	IngressAllowedBy []*Policy `protobuf:"bytes,12,rep,name=ingress_allowed_by,json=ingressAllowedBy,proto3" json:"ingress_allowed_by,omitempty"`
	// The CiliumNetworkPolicies denying the egress of the flow.
	EgressDeniedBy []*Policy `protobuf:"bytes,13,rep,name=egress_denied_by,json=egressDeniedBy,proto3" json:"egress_denied_by,omitempty"`
	// The CiliumNetworkPolicies denying the ingress of the flow.
	IngressDeniedBy []*Policy `protobuf:"bytes,14,rep,name=ingress_denied_by,json=ingressDeniedBy,proto3" json:"ingress_denied_by,omitempty"`
	// contains filtered or unexported fields
}

A flow received from Cilium Hubble Relay using the Observer service's GetFlows RPC. https://github.com/cilium/cilium/blob/main/api/v1/observer/observer.proto

func (*CiliumFlow) Descriptor deprecated 

func (*CiliumFlow) Descriptor() ([]byte, []int)

Deprecated: Use CiliumFlow.ProtoReflect.Descriptor instead.

func (*CiliumFlow) GetDestinationEndpoint 

func (x *CiliumFlow) GetDestinationEndpoint() *Endpoint

func (*CiliumFlow) GetDestinationService 

func (x *CiliumFlow) GetDestinationService() *Service

func (*CiliumFlow) GetEgressAllowedBy 

func (x *CiliumFlow) GetEgressAllowedBy() []*Policy

func (*CiliumFlow) GetEgressDeniedBy 

func (x *CiliumFlow) GetEgressDeniedBy() []*Policy

func (*CiliumFlow) GetIngressAllowedBy 

func (x *CiliumFlow) GetIngressAllowedBy() []*Policy

func (*CiliumFlow) GetIngressDeniedBy 

func (x *CiliumFlow) GetIngressDeniedBy() []*Policy

func (*CiliumFlow) GetIsReply 

func (x *CiliumFlow) GetIsReply() *wrapperspb.BoolValue

func (*CiliumFlow) GetLayer3 

func (x *CiliumFlow) GetLayer3() *IP

func (*CiliumFlow) GetLayer4 

func (x *CiliumFlow) GetLayer4() *Layer4

func (*CiliumFlow) GetNodeName 

func (x *CiliumFlow) GetNodeName() string

func (*CiliumFlow) GetSourceEndpoint 

func (x *CiliumFlow) GetSourceEndpoint() *Endpoint

func (*CiliumFlow) GetTime 

func (x *CiliumFlow) GetTime() *timestamppb.Timestamp

func (*CiliumFlow) GetTrafficDirection 

func (x *CiliumFlow) GetTrafficDirection() TrafficDirection

func (*CiliumFlow) GetVerdict 

func (x *CiliumFlow) GetVerdict() Verdict

func (*CiliumFlow) Key added in v1.1.3 

func (flow *CiliumFlow) Key() any

func (*CiliumFlow) ProtoMessage 

func (*CiliumFlow) ProtoMessage()

func (*CiliumFlow) ProtoReflect 

func (x *CiliumFlow) ProtoReflect() protoreflect.Message

func (*CiliumFlow) Reset 

func (x *CiliumFlow) Reset()

func (*CiliumFlow) StartTimestamp added in v1.1.3 

func (flow *CiliumFlow) StartTimestamp() time.Time

func (*CiliumFlow) String 

func (x *CiliumFlow) String() string

type CiliumFlowKey added in v1.1.3 

type CiliumFlowKey struct {
	SourceIP           string
	DestinationIP      string
	SourcePort         int
	DestinationPort    int
	Protocol           string
	SourceK8sMeta      uint32
	DestinationK8sMeta uint32
}

type CiliumPolicyAWSGroup added in v1.3.14 

type CiliumPolicyAWSGroup struct {

	// AWS security groups tags.
	Labels map[string]string `` /* 139-byte string literal not displayed */
	// Security group IDs (Cilium supports multiple per group selector)
	SecurityGroupIds   []string `protobuf:"bytes,2,rep,name=security_group_ids,json=securityGroupIds,proto3" json:"security_group_ids,omitempty"`
	SecurityGroupNames []string `protobuf:"bytes,3,rep,name=security_group_names,json=securityGroupNames,proto3" json:"security_group_names,omitempty"`
	Region             *string  `protobuf:"bytes,4,opt,name=region,proto3,oneof" json:"region,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyAWSGroup defines AWS-specific security group selector fields. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/groups.go#L34-L39

func (*CiliumPolicyAWSGroup) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyAWSGroup) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyAWSGroup.ProtoReflect.Descriptor instead.

func (*CiliumPolicyAWSGroup) GetLabels added in v1.3.14 

func (x *CiliumPolicyAWSGroup) GetLabels() map[string]string

func (*CiliumPolicyAWSGroup) GetRegion added in v1.3.14 

func (x *CiliumPolicyAWSGroup) GetRegion() string

func (*CiliumPolicyAWSGroup) GetSecurityGroupIds added in v1.3.14 

func (x *CiliumPolicyAWSGroup) GetSecurityGroupIds() []string

func (*CiliumPolicyAWSGroup) GetSecurityGroupNames added in v1.3.14 

func (x *CiliumPolicyAWSGroup) GetSecurityGroupNames() []string

func (*CiliumPolicyAWSGroup) ProtoMessage added in v1.3.14 

func (*CiliumPolicyAWSGroup) ProtoMessage()

func (*CiliumPolicyAWSGroup) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyAWSGroup) ProtoReflect() protoreflect.Message

func (*CiliumPolicyAWSGroup) Reset added in v1.3.14 

func (x *CiliumPolicyAWSGroup) Reset()

func (*CiliumPolicyAWSGroup) String added in v1.3.14 

func (x *CiliumPolicyAWSGroup) String() string

type CiliumPolicyAuthentication added in v1.3.14 

type CiliumPolicyAuthentication struct {

	// Authentication mode: "disabled", "required", or "test-always-fail"
	Mode string `protobuf:"bytes,1,opt,name=mode,proto3" json:"mode,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyAuthentication defines authentication requirements for allowed traffic. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/rule.go#L13-L29

func (*CiliumPolicyAuthentication) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyAuthentication) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyAuthentication.ProtoReflect.Descriptor instead.

func (*CiliumPolicyAuthentication) GetMode added in v1.3.14 

func (x *CiliumPolicyAuthentication) GetMode() string

func (*CiliumPolicyAuthentication) ProtoMessage added in v1.3.14 

func (*CiliumPolicyAuthentication) ProtoMessage()

func (*CiliumPolicyAuthentication) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyAuthentication) ProtoReflect() protoreflect.Message

func (*CiliumPolicyAuthentication) Reset added in v1.3.14 

func (x *CiliumPolicyAuthentication) Reset()

func (*CiliumPolicyAuthentication) String added in v1.3.14 

func (x *CiliumPolicyAuthentication) String() string

type CiliumPolicyCIDRSet added in v1.3.14 

type CiliumPolicyCIDRSet struct {

	// cidr, cidr_group_ref, and cidr_group_selector are mutually exclusive
	// CIDR range (e.g., "10.0.0.0/8")
	Cidr *string `protobuf:"bytes,1,opt,name=cidr,proto3,oneof" json:"cidr,omitempty"`
	// Reference to a CiliumCIDRGroup custom resource by name
	CidrGroupRef *string `protobuf:"bytes,2,opt,name=cidr_group_ref,json=cidrGroupRef,proto3,oneof" json:"cidr_group_ref,omitempty"`
	// Selects CiliumCIDRGroups by their labels, rather than by name
	CidrGroupSelector *LabelSelector `protobuf:"bytes,3,opt,name=cidr_group_selector,json=cidrGroupSelector,proto3,oneof" json:"cidr_group_selector,omitempty"`
	// Exception CIDRs to exclude from the range
	Except []string `protobuf:"bytes,4,rep,name=except,proto3" json:"except,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyCIDRSet defines a CIDR range with optional exceptions. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/cidr.go#L26-L59

func (*CiliumPolicyCIDRSet) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyCIDRSet) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyCIDRSet.ProtoReflect.Descriptor instead.

func (*CiliumPolicyCIDRSet) GetCidr added in v1.3.14 

func (x *CiliumPolicyCIDRSet) GetCidr() string

func (*CiliumPolicyCIDRSet) GetCidrGroupRef added in v1.3.14 

func (x *CiliumPolicyCIDRSet) GetCidrGroupRef() string

func (*CiliumPolicyCIDRSet) GetCidrGroupSelector added in v1.3.14 

func (x *CiliumPolicyCIDRSet) GetCidrGroupSelector() *LabelSelector

func (*CiliumPolicyCIDRSet) GetExcept added in v1.3.14 

func (x *CiliumPolicyCIDRSet) GetExcept() []string

func (*CiliumPolicyCIDRSet) ProtoMessage added in v1.3.14 

func (*CiliumPolicyCIDRSet) ProtoMessage()

func (*CiliumPolicyCIDRSet) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyCIDRSet) ProtoReflect() protoreflect.Message

func (*CiliumPolicyCIDRSet) Reset added in v1.3.14 

func (x *CiliumPolicyCIDRSet) Reset()

func (*CiliumPolicyCIDRSet) String added in v1.3.14 

func (x *CiliumPolicyCIDRSet) String() string

type CiliumPolicyDefaultDeny added in v1.3.14 

type CiliumPolicyDefaultDeny struct {

	// If true, enables default deny for ingress traffic.
	Ingress *bool `protobuf:"varint,1,opt,name=ingress,proto3,oneof" json:"ingress,omitempty"`
	// If true, enables default deny for egress traffic.
	Egress *bool `protobuf:"varint,2,opt,name=egress,proto3,oneof" json:"egress,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyDefaultDeny controls default deny behavior for a spec. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/rule.go#L33-L45

func (*CiliumPolicyDefaultDeny) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyDefaultDeny) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyDefaultDeny.ProtoReflect.Descriptor instead.

func (*CiliumPolicyDefaultDeny) GetEgress added in v1.3.14 

func (x *CiliumPolicyDefaultDeny) GetEgress() bool

func (*CiliumPolicyDefaultDeny) GetIngress added in v1.3.14 

func (x *CiliumPolicyDefaultDeny) GetIngress() bool

func (*CiliumPolicyDefaultDeny) ProtoMessage added in v1.3.14 

func (*CiliumPolicyDefaultDeny) ProtoMessage()

func (*CiliumPolicyDefaultDeny) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyDefaultDeny) ProtoReflect() protoreflect.Message

func (*CiliumPolicyDefaultDeny) Reset added in v1.3.14 

func (x *CiliumPolicyDefaultDeny) Reset()

func (*CiliumPolicyDefaultDeny) String added in v1.3.14 

func (x *CiliumPolicyDefaultDeny) String() string

type CiliumPolicyEgressRule added in v1.3.14 

type CiliumPolicyEgressRule struct {

	// ToEndpoints selects destination endpoints by labels.
	// Wrapped to distinguish nil (implicit wildcard when to_ports is set) from empty (selects nothing).
	ToEndpoints *LabelSelectorList `protobuf:"bytes,1,opt,name=to_endpoints,json=toEndpoints,proto3,oneof" json:"to_endpoints,omitempty"`
	// ToCIDR allows/denies traffic to specific CIDR ranges.
	ToCidr []string `protobuf:"bytes,2,rep,name=to_cidr,json=toCidr,proto3" json:"to_cidr,omitempty"`
	// ToCIDRSet allows/denies traffic to CIDR ranges with exceptions.
	ToCidrSet []*CiliumPolicyCIDRSet `protobuf:"bytes,3,rep,name=to_cidr_set,json=toCidrSet,proto3" json:"to_cidr_set,omitempty"`
	// ToEntities allows/denies traffic to Cilium-defined entities (e.g., "world", "cluster", "host").
	ToEntities []string `protobuf:"bytes,4,rep,name=to_entities,json=toEntities,proto3" json:"to_entities,omitempty"`
	// ToFQDNs allows traffic to DNS names (e.g., "*.example.com").
	// Note: Not applicable for deny rules (field is ignored).
	ToFqdns []*CiliumPolicyFQDNSelector `protobuf:"bytes,5,rep,name=to_fqdns,json=toFqdns,proto3" json:"to_fqdns,omitempty"`
	// ToServices allows/denies traffic to Kubernetes services.
	ToServices []*CiliumPolicyService `protobuf:"bytes,6,rep,name=to_services,json=toServices,proto3" json:"to_services,omitempty"`
	// ToGroups allows/denies traffic to cloud provider security groups.
	ToGroups []*CiliumPolicyGroup `protobuf:"bytes,7,rep,name=to_groups,json=toGroups,proto3" json:"to_groups,omitempty"`
	// ToNodes selects destination nodes by labels (for host policies).
	ToNodes []*LabelSelector `protobuf:"bytes,8,rep,name=to_nodes,json=toNodes,proto3" json:"to_nodes,omitempty"`
	// ToPorts specifies the destination ports and protocols.
	ToPorts []*CiliumPolicyPortRule `protobuf:"bytes,9,rep,name=to_ports,json=toPorts,proto3" json:"to_ports,omitempty"`
	// ICMPs specifies ICMP type/code matching rules.
	Icmps []*CiliumPolicyICMPRule `protobuf:"bytes,10,rep,name=icmps,proto3" json:"icmps,omitempty"`
	// Authentication specifies required authentication for allowed traffic.
	// Note: Not applicable for deny rules (field is ignored).
	Authentication *CiliumPolicyAuthentication `protobuf:"bytes,11,opt,name=authentication,proto3,oneof" json:"authentication,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyEgressRule defines a Cilium egress rule. Used for both allow and deny rules; allow vs deny is determined by which array the rule belongs to (egress_rules vs egress_deny_rules) in CiliumPolicyRule. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/egress.go#L138-L183

func (*CiliumPolicyEgressRule) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyEgressRule) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyEgressRule.ProtoReflect.Descriptor instead.

func (*CiliumPolicyEgressRule) GetAuthentication added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetAuthentication() *CiliumPolicyAuthentication

func (*CiliumPolicyEgressRule) GetIcmps added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetIcmps() []*CiliumPolicyICMPRule

func (*CiliumPolicyEgressRule) GetToCidr added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToCidr() []string

func (*CiliumPolicyEgressRule) GetToCidrSet added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToCidrSet() []*CiliumPolicyCIDRSet

func (*CiliumPolicyEgressRule) GetToEndpoints added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToEndpoints() *LabelSelectorList

func (*CiliumPolicyEgressRule) GetToEntities added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToEntities() []string

func (*CiliumPolicyEgressRule) GetToFqdns added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToFqdns() []*CiliumPolicyFQDNSelector

func (*CiliumPolicyEgressRule) GetToGroups added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToGroups() []*CiliumPolicyGroup

func (*CiliumPolicyEgressRule) GetToNodes added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToNodes() []*LabelSelector

func (*CiliumPolicyEgressRule) GetToPorts added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToPorts() []*CiliumPolicyPortRule

func (*CiliumPolicyEgressRule) GetToServices added in v1.3.14 

func (x *CiliumPolicyEgressRule) GetToServices() []*CiliumPolicyService

func (*CiliumPolicyEgressRule) ProtoMessage added in v1.3.14 

func (*CiliumPolicyEgressRule) ProtoMessage()

func (*CiliumPolicyEgressRule) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyEgressRule) ProtoReflect() protoreflect.Message

func (*CiliumPolicyEgressRule) Reset added in v1.3.14 

func (x *CiliumPolicyEgressRule) Reset()

func (*CiliumPolicyEgressRule) String added in v1.3.14 

func (x *CiliumPolicyEgressRule) String() string

type CiliumPolicyFQDNSelector added in v1.3.14 

type CiliumPolicyFQDNSelector struct {

	// match_name and match_pattern are mutually exclusive
	// matchName matches exact DNS names (e.g., "my-service.example.com")
	MatchName *string `protobuf:"bytes,1,opt,name=match_name,json=matchName,proto3,oneof" json:"match_name,omitempty"`
	// matchPattern matches DNS names using wildcards (e.g., "*.example.com")
	MatchPattern *string `protobuf:"bytes,2,opt,name=match_pattern,json=matchPattern,proto3,oneof" json:"match_pattern,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyFQDNSelector defines DNS-based egress rules. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/fqdn.go#L33-L66

func (*CiliumPolicyFQDNSelector) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyFQDNSelector) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyFQDNSelector.ProtoReflect.Descriptor instead.

func (*CiliumPolicyFQDNSelector) GetMatchName added in v1.3.14 

func (x *CiliumPolicyFQDNSelector) GetMatchName() string

func (*CiliumPolicyFQDNSelector) GetMatchPattern added in v1.3.14 

func (x *CiliumPolicyFQDNSelector) GetMatchPattern() string

func (*CiliumPolicyFQDNSelector) ProtoMessage added in v1.3.14 

func (*CiliumPolicyFQDNSelector) ProtoMessage()

func (*CiliumPolicyFQDNSelector) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyFQDNSelector) ProtoReflect() protoreflect.Message

func (*CiliumPolicyFQDNSelector) Reset added in v1.3.14 

func (x *CiliumPolicyFQDNSelector) Reset()

func (*CiliumPolicyFQDNSelector) String added in v1.3.14 

func (x *CiliumPolicyFQDNSelector) String() string

type CiliumPolicyGroup added in v1.3.14 

type CiliumPolicyGroup struct {

	// Types that are valid to be assigned to CloudProvider:
	//
	//	*CiliumPolicyGroup_Aws
	CloudProvider isCiliumPolicyGroup_CloudProvider `protobuf_oneof:"cloud_provider"`
	// contains filtered or unexported fields
}

CiliumPolicyGroup defines a cloud provider security group selector. In Cilium's CRD, each group has a cloud provider key (aws, azure, etc.) containing provider-specific fields. We model this as a oneof to match Cilium's structure. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/groups.go#L29-L31

func (*CiliumPolicyGroup) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyGroup) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyGroup.ProtoReflect.Descriptor instead.

func (*CiliumPolicyGroup) GetAws added in v1.3.14 

func (x *CiliumPolicyGroup) GetAws() *CiliumPolicyAWSGroup

func (*CiliumPolicyGroup) GetCloudProvider added in v1.3.14 

func (x *CiliumPolicyGroup) GetCloudProvider() isCiliumPolicyGroup_CloudProvider

func (*CiliumPolicyGroup) ProtoMessage added in v1.3.14 

func (*CiliumPolicyGroup) ProtoMessage()

func (*CiliumPolicyGroup) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyGroup) ProtoReflect() protoreflect.Message

func (*CiliumPolicyGroup) Reset added in v1.3.14 

func (x *CiliumPolicyGroup) Reset()

func (*CiliumPolicyGroup) String added in v1.3.14 

func (x *CiliumPolicyGroup) String() string

type CiliumPolicyGroup_Aws added in v1.3.14 

type CiliumPolicyGroup_Aws struct {
	Aws *CiliumPolicyAWSGroup `protobuf:"bytes,1,opt,name=aws,proto3,oneof"` // Future: Add azure, gcp when needed
}

type CiliumPolicyICMPField added in v1.3.14 

type CiliumPolicyICMPField struct {

	// IP family: "IPv4" or "IPv6"
	Family *string `protobuf:"bytes,1,opt,name=family,proto3,oneof" json:"family,omitempty"`
	// ICMP type can be numeric (e.g., 8) or named (e.g., "EchoReply")
	//
	// Types that are valid to be assigned to Type:
	//
	//	*CiliumPolicyICMPField_TypeInt
	//	*CiliumPolicyICMPField_TypeString
	Type isCiliumPolicyICMPField_Type `protobuf_oneof:"type"`
	// contains filtered or unexported fields
}

CiliumPolicyICMPField defines a single ICMP type match. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/icmp.go#L80-L109

func (*CiliumPolicyICMPField) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyICMPField) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyICMPField.ProtoReflect.Descriptor instead.

func (*CiliumPolicyICMPField) GetFamily added in v1.3.14 

func (x *CiliumPolicyICMPField) GetFamily() string

func (*CiliumPolicyICMPField) GetType added in v1.3.14 

func (x *CiliumPolicyICMPField) GetType() isCiliumPolicyICMPField_Type

func (*CiliumPolicyICMPField) GetTypeInt added in v1.3.14 

func (x *CiliumPolicyICMPField) GetTypeInt() uint32

func (*CiliumPolicyICMPField) GetTypeString added in v1.3.14 

func (x *CiliumPolicyICMPField) GetTypeString() string

func (*CiliumPolicyICMPField) ProtoMessage added in v1.3.14 

func (*CiliumPolicyICMPField) ProtoMessage()

func (*CiliumPolicyICMPField) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyICMPField) ProtoReflect() protoreflect.Message

func (*CiliumPolicyICMPField) Reset added in v1.3.14 

func (x *CiliumPolicyICMPField) Reset()

func (*CiliumPolicyICMPField) String added in v1.3.14 

func (x *CiliumPolicyICMPField) String() string

type CiliumPolicyICMPField_TypeInt added in v1.3.14 

type CiliumPolicyICMPField_TypeInt struct {
	TypeInt uint32 `protobuf:"varint,2,opt,name=type_int,json=typeInt,proto3,oneof"`
}

type CiliumPolicyICMPField_TypeString added in v1.3.14 

type CiliumPolicyICMPField_TypeString struct {
	TypeString string `protobuf:"bytes,3,opt,name=type_string,json=typeString,proto3,oneof"`
}

type CiliumPolicyICMPRule added in v1.3.14 

type CiliumPolicyICMPRule struct {

	// ICMP fields for IPv4 or IPv6
	Fields []*CiliumPolicyICMPField `protobuf:"bytes,1,rep,name=fields,proto3" json:"fields,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyICMPRule defines ICMP type/code matching for Cilium policies. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/icmp.go#L68-L74

func (*CiliumPolicyICMPRule) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyICMPRule) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyICMPRule.ProtoReflect.Descriptor instead.

func (*CiliumPolicyICMPRule) GetFields added in v1.3.14 

func (x *CiliumPolicyICMPRule) GetFields() []*CiliumPolicyICMPField

func (*CiliumPolicyICMPRule) ProtoMessage added in v1.3.14 

func (*CiliumPolicyICMPRule) ProtoMessage()

func (*CiliumPolicyICMPRule) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyICMPRule) ProtoReflect() protoreflect.Message

func (*CiliumPolicyICMPRule) Reset added in v1.3.14 

func (x *CiliumPolicyICMPRule) Reset()

func (*CiliumPolicyICMPRule) String added in v1.3.14 

func (x *CiliumPolicyICMPRule) String() string

type CiliumPolicyIngressRule added in v1.3.14 

type CiliumPolicyIngressRule struct {

	// FromEndpoints selects source endpoints by labels.
	// Wrapped to distinguish nil (implicit wildcard when to_ports is set) from empty (selects nothing).
	FromEndpoints *LabelSelectorList `protobuf:"bytes,1,opt,name=from_endpoints,json=fromEndpoints,proto3,oneof" json:"from_endpoints,omitempty"`
	// FromCIDR allows/denies traffic from specific CIDR ranges.
	FromCidr []string `protobuf:"bytes,2,rep,name=from_cidr,json=fromCidr,proto3" json:"from_cidr,omitempty"`
	// FromCIDRSet allows/denies traffic from CIDR ranges with exceptions.
	FromCidrSet []*CiliumPolicyCIDRSet `protobuf:"bytes,3,rep,name=from_cidr_set,json=fromCidrSet,proto3" json:"from_cidr_set,omitempty"`
	// FromEntities allows/denies traffic from Cilium-defined entities (e.g., "world", "cluster", "host").
	FromEntities []string `protobuf:"bytes,4,rep,name=from_entities,json=fromEntities,proto3" json:"from_entities,omitempty"`
	// FromGroups allows/denies traffic from cloud provider security groups.
	FromGroups []*CiliumPolicyGroup `protobuf:"bytes,5,rep,name=from_groups,json=fromGroups,proto3" json:"from_groups,omitempty"`
	// FromNodes selects source nodes by labels (for host policies).
	FromNodes []*LabelSelector `protobuf:"bytes,6,rep,name=from_nodes,json=fromNodes,proto3" json:"from_nodes,omitempty"`
	// ToPorts specifies the destination ports and protocols.
	ToPorts []*CiliumPolicyPortRule `protobuf:"bytes,7,rep,name=to_ports,json=toPorts,proto3" json:"to_ports,omitempty"`
	// ICMPs specifies ICMP type/code matching rules.
	Icmps []*CiliumPolicyICMPRule `protobuf:"bytes,8,rep,name=icmps,proto3" json:"icmps,omitempty"`
	// Authentication specifies required authentication for allowed traffic.
	// Note: Not applicable for deny rules (field is ignored).
	Authentication *CiliumPolicyAuthentication `protobuf:"bytes,9,opt,name=authentication,proto3,oneof" json:"authentication,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyIngressRule defines a Cilium ingress rule. Used for both allow and deny rules; allow vs deny is determined by which array the rule belongs to (ingress_rules vs ingress_deny_rules) in CiliumPolicyRule. Separate from CiliumPolicyEgressRule to mirror Cilium's CRD structure and ensure ingress rules only have from_* fields. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/ingress.go#L133-L162

func (*CiliumPolicyIngressRule) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyIngressRule) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyIngressRule.ProtoReflect.Descriptor instead.

func (*CiliumPolicyIngressRule) GetAuthentication added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetAuthentication() *CiliumPolicyAuthentication

func (*CiliumPolicyIngressRule) GetFromCidr added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetFromCidr() []string

func (*CiliumPolicyIngressRule) GetFromCidrSet added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetFromCidrSet() []*CiliumPolicyCIDRSet

func (*CiliumPolicyIngressRule) GetFromEndpoints added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetFromEndpoints() *LabelSelectorList

func (*CiliumPolicyIngressRule) GetFromEntities added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetFromEntities() []string

func (*CiliumPolicyIngressRule) GetFromGroups added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetFromGroups() []*CiliumPolicyGroup

func (*CiliumPolicyIngressRule) GetFromNodes added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetFromNodes() []*LabelSelector

func (*CiliumPolicyIngressRule) GetIcmps added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetIcmps() []*CiliumPolicyICMPRule

func (*CiliumPolicyIngressRule) GetToPorts added in v1.3.14 

func (x *CiliumPolicyIngressRule) GetToPorts() []*CiliumPolicyPortRule

func (*CiliumPolicyIngressRule) ProtoMessage added in v1.3.14 

func (*CiliumPolicyIngressRule) ProtoMessage()

func (*CiliumPolicyIngressRule) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyIngressRule) ProtoReflect() protoreflect.Message

func (*CiliumPolicyIngressRule) Reset added in v1.3.14 

func (x *CiliumPolicyIngressRule) Reset()

func (*CiliumPolicyIngressRule) String added in v1.3.14 

func (x *CiliumPolicyIngressRule) String() string

type CiliumPolicyK8SService added in v1.3.14 

type CiliumPolicyK8SService struct {
	ServiceName *string `protobuf:"bytes,1,opt,name=service_name,json=serviceName,proto3,oneof" json:"service_name,omitempty"`
	// Kubernetes namespace (optional, defaults to policy namespace)
	Namespace *string `protobuf:"bytes,2,opt,name=namespace,proto3,oneof" json:"namespace,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyK8sService selects a service by name. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/service.go#L21-24

func (*CiliumPolicyK8SService) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyK8SService) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyK8SService.ProtoReflect.Descriptor instead.

func (*CiliumPolicyK8SService) GetNamespace added in v1.3.14 

func (x *CiliumPolicyK8SService) GetNamespace() string

func (*CiliumPolicyK8SService) GetServiceName added in v1.3.14 

func (x *CiliumPolicyK8SService) GetServiceName() string

func (*CiliumPolicyK8SService) ProtoMessage added in v1.3.14 

func (*CiliumPolicyK8SService) ProtoMessage()

func (*CiliumPolicyK8SService) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyK8SService) ProtoReflect() protoreflect.Message

func (*CiliumPolicyK8SService) Reset added in v1.3.14 

func (x *CiliumPolicyK8SService) Reset()

func (*CiliumPolicyK8SService) String added in v1.3.14 

func (x *CiliumPolicyK8SService) String() string

type CiliumPolicyK8SServiceSelector added in v1.3.14 

type CiliumPolicyK8SServiceSelector struct {
	Selector *LabelSelector `protobuf:"bytes,1,opt,name=selector,proto3" json:"selector,omitempty"`
	// Kubernetes namespace (optional, defaults to policy namespace)
	Namespace *string `protobuf:"bytes,2,opt,name=namespace,proto3,oneof" json:"namespace,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyK8sServiceSelector selects services by labels. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/service.go#L27-31

func (*CiliumPolicyK8SServiceSelector) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyK8SServiceSelector) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyK8SServiceSelector.ProtoReflect.Descriptor instead.

func (*CiliumPolicyK8SServiceSelector) GetNamespace added in v1.3.14 

func (x *CiliumPolicyK8SServiceSelector) GetNamespace() string

func (*CiliumPolicyK8SServiceSelector) GetSelector added in v1.3.14 

func (x *CiliumPolicyK8SServiceSelector) GetSelector() *LabelSelector

func (*CiliumPolicyK8SServiceSelector) ProtoMessage added in v1.3.14 

func (*CiliumPolicyK8SServiceSelector) ProtoMessage()

func (*CiliumPolicyK8SServiceSelector) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyK8SServiceSelector) ProtoReflect() protoreflect.Message

func (*CiliumPolicyK8SServiceSelector) Reset added in v1.3.14 

func (x *CiliumPolicyK8SServiceSelector) Reset()

func (*CiliumPolicyK8SServiceSelector) String added in v1.3.14 

func (x *CiliumPolicyK8SServiceSelector) String() string

type CiliumPolicyPort added in v1.3.14 

type CiliumPolicyPort struct {

	// Port number or named port (e.g., "80", "http")
	Port string `protobuf:"bytes,1,opt,name=port,proto3" json:"port,omitempty"`
	// End of port range (0-65535). If specified, port must be numeric.
	// Traffic to ports [port, end_port] will be matched.
	EndPort *int32 `protobuf:"varint,2,opt,name=end_port,json=endPort,proto3,oneof" json:"end_port,omitempty"`
	// Protocol for this port rule:
	// https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/l4.go#L9-L28
	Protocol *string `protobuf:"bytes,3,opt,name=protocol,proto3,oneof" json:"protocol,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyPort defines a single port with protocol, with optional port range support. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/l4.go#L42-L74

func (*CiliumPolicyPort) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyPort) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyPort.ProtoReflect.Descriptor instead.

func (*CiliumPolicyPort) GetEndPort added in v1.3.14 

func (x *CiliumPolicyPort) GetEndPort() int32

func (*CiliumPolicyPort) GetPort added in v1.3.14 

func (x *CiliumPolicyPort) GetPort() string

func (*CiliumPolicyPort) GetProtocol added in v1.3.14 

func (x *CiliumPolicyPort) GetProtocol() string

func (*CiliumPolicyPort) ProtoMessage added in v1.3.14 

func (*CiliumPolicyPort) ProtoMessage()

func (*CiliumPolicyPort) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyPort) ProtoReflect() protoreflect.Message

func (*CiliumPolicyPort) Reset added in v1.3.14 

func (x *CiliumPolicyPort) Reset()

func (*CiliumPolicyPort) String added in v1.3.14 

func (x *CiliumPolicyPort) String() string

type CiliumPolicyPortRule added in v1.3.14 

type CiliumPolicyPortRule struct {
	Ports []*CiliumPolicyPort `protobuf:"bytes,1,rep,name=ports,proto3" json:"ports,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyPortRule defines allowed ports and protocols for Cilium policies. Note that none of the L7 fields from Cilium's PortRule are included https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/l4.go#L210-L258

func (*CiliumPolicyPortRule) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyPortRule) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyPortRule.ProtoReflect.Descriptor instead.

func (*CiliumPolicyPortRule) GetPorts added in v1.3.14 

func (x *CiliumPolicyPortRule) GetPorts() []*CiliumPolicyPort

func (*CiliumPolicyPortRule) ProtoMessage added in v1.3.14 

func (*CiliumPolicyPortRule) ProtoMessage()

func (*CiliumPolicyPortRule) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyPortRule) ProtoReflect() protoreflect.Message

func (*CiliumPolicyPortRule) Reset added in v1.3.14 

func (x *CiliumPolicyPortRule) Reset()

func (*CiliumPolicyPortRule) String added in v1.3.14 

func (x *CiliumPolicyPortRule) String() string

type CiliumPolicyRule added in v1.3.14 

type CiliumPolicyRule struct {

	// Endpoint selector selects the pods to which this spec's rules apply.
	EndpointSelector *LabelSelector `protobuf:"bytes,1,opt,name=endpoint_selector,json=endpointSelector,proto3,oneof" json:"endpoint_selector,omitempty"`
	// Node selector selects the nodes to which this spec applies (for host policies).
	// May only be set in CiliumClusterwideNetworkPolicy resources.
	// endpoint_selector and node_selector are mutually exclusive.
	NodeSelector *LabelSelector `protobuf:"bytes,2,opt,name=node_selector,json=nodeSelector,proto3,oneof" json:"node_selector,omitempty"`
	// Human-readable description of this spec's purpose.
	Description *string `protobuf:"bytes,3,opt,name=description,proto3,oneof" json:"description,omitempty"`
	// Labels attached to this spec (separate from K8s metadata labels).
	Labels map[string]string `` /* 139-byte string literal not displayed */
	// Controls whether this spec enables default deny for ingress/egress.
	EnableDefaultDeny *CiliumPolicyDefaultDeny `protobuf:"bytes,5,opt,name=enable_default_deny,json=enableDefaultDeny,proto3,oneof" json:"enable_default_deny,omitempty"`
	// Ingress rules define allowed incoming traffic.
	IngressRules []*CiliumPolicyIngressRule `protobuf:"bytes,6,rep,name=ingress_rules,json=ingressRules,proto3" json:"ingress_rules,omitempty"`
	// Egress rules define allowed outgoing traffic.
	EgressRules []*CiliumPolicyEgressRule `protobuf:"bytes,7,rep,name=egress_rules,json=egressRules,proto3" json:"egress_rules,omitempty"`
	// IngressDeny rules explicitly deny incoming traffic.
	IngressDenyRules []*CiliumPolicyIngressRule `protobuf:"bytes,8,rep,name=ingress_deny_rules,json=ingressDenyRules,proto3" json:"ingress_deny_rules,omitempty"`
	// EgressDeny rules explicitly deny outgoing traffic.
	EgressDenyRules []*CiliumPolicyEgressRule `protobuf:"bytes,9,rep,name=egress_deny_rules,json=egressDenyRules,proto3" json:"egress_deny_rules,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyRule represents a single rule within a Cilium policy. Maps to Cilium's Rule type which contains selectors, metadata, and rules. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/rule.go#L70-L151

func (*CiliumPolicyRule) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyRule) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyRule.ProtoReflect.Descriptor instead.

func (*CiliumPolicyRule) GetDescription added in v1.3.14 

func (x *CiliumPolicyRule) GetDescription() string

func (*CiliumPolicyRule) GetEgressDenyRules added in v1.3.14 

func (x *CiliumPolicyRule) GetEgressDenyRules() []*CiliumPolicyEgressRule

func (*CiliumPolicyRule) GetEgressRules added in v1.3.14 

func (x *CiliumPolicyRule) GetEgressRules() []*CiliumPolicyEgressRule

func (*CiliumPolicyRule) GetEnableDefaultDeny added in v1.3.14 

func (x *CiliumPolicyRule) GetEnableDefaultDeny() *CiliumPolicyDefaultDeny

func (*CiliumPolicyRule) GetEndpointSelector added in v1.3.14 

func (x *CiliumPolicyRule) GetEndpointSelector() *LabelSelector

func (*CiliumPolicyRule) GetIngressDenyRules added in v1.3.14 

func (x *CiliumPolicyRule) GetIngressDenyRules() []*CiliumPolicyIngressRule

func (*CiliumPolicyRule) GetIngressRules added in v1.3.14 

func (x *CiliumPolicyRule) GetIngressRules() []*CiliumPolicyIngressRule

func (*CiliumPolicyRule) GetLabels added in v1.3.14 

func (x *CiliumPolicyRule) GetLabels() map[string]string

func (*CiliumPolicyRule) GetNodeSelector added in v1.3.14 

func (x *CiliumPolicyRule) GetNodeSelector() *LabelSelector

func (*CiliumPolicyRule) ProtoMessage added in v1.3.14 

func (*CiliumPolicyRule) ProtoMessage()

func (*CiliumPolicyRule) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyRule) ProtoReflect() protoreflect.Message

func (*CiliumPolicyRule) Reset added in v1.3.14 

func (x *CiliumPolicyRule) Reset()

func (*CiliumPolicyRule) String added in v1.3.14 

func (x *CiliumPolicyRule) String() string

type CiliumPolicyService added in v1.3.14 

type CiliumPolicyService struct {

	// k8s_service_selector and k8s_service are mutually exclusive
	K8SServiceSelector *CiliumPolicyK8SServiceSelector `protobuf:"bytes,1,opt,name=k8s_service_selector,json=k8sServiceSelector,proto3,oneof" json:"k8s_service_selector,omitempty"`
	K8SService         *CiliumPolicyK8SService         `protobuf:"bytes,2,opt,name=k8s_service,json=k8sService,proto3,oneof" json:"k8s_service,omitempty"`
	// contains filtered or unexported fields
}

CiliumPolicyService defines a Kubernetes service selector for egress rules. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/policy/api/service.go#L13-L18

func (*CiliumPolicyService) Descriptor deprecated added in v1.3.14 

func (*CiliumPolicyService) Descriptor() ([]byte, []int)

Deprecated: Use CiliumPolicyService.ProtoReflect.Descriptor instead.

func (*CiliumPolicyService) GetK8SService added in v1.3.14 

func (x *CiliumPolicyService) GetK8SService() *CiliumPolicyK8SService

func (*CiliumPolicyService) GetK8SServiceSelector added in v1.3.14 

func (x *CiliumPolicyService) GetK8SServiceSelector() *CiliumPolicyK8SServiceSelector

func (*CiliumPolicyService) ProtoMessage added in v1.3.14 

func (*CiliumPolicyService) ProtoMessage()

func (*CiliumPolicyService) ProtoReflect added in v1.3.14 

func (x *CiliumPolicyService) ProtoReflect() protoreflect.Message

func (*CiliumPolicyService) Reset added in v1.3.14 

func (x *CiliumPolicyService) Reset()

func (*CiliumPolicyService) String added in v1.3.14 

func (x *CiliumPolicyService) String() string

type ConfiguredKubernetesObjectData added in v1.3.14 

type ConfiguredKubernetesObjectData struct {

	// Unique identifier for tracking this object.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Kubernetes annotations to apply to this object.
	Annotations map[string]string `` /* 149-byte string literal not displayed */
	// Kubernetes labels to apply to this object.
	Labels map[string]string `` /* 139-byte string literal not displayed */
	// Kubernetes resource name for the object.
	Name string `protobuf:"bytes,4,opt,name=name,proto3" json:"name,omitempty"`
	// Kubernetes namespace for the object. Empty for clusterwide resources.
	Namespace *string `protobuf:"bytes,5,opt,name=namespace,proto3,oneof" json:"namespace,omitempty"`
	// Type-specific data for the Kubernetes resource kind.
	//
	// Types that are valid to be assigned to KindSpecific:
	//
	//	*ConfiguredKubernetesObjectData_CiliumNetworkPolicy
	//	*ConfiguredKubernetesObjectData_CiliumClusterwideNetworkPolicy
	//	*ConfiguredKubernetesObjectData_CiliumCidrGroup
	KindSpecific isConfiguredKubernetesObjectData_KindSpecific `protobuf_oneof:"kind_specific"`
	// contains filtered or unexported fields
}

Configured object data for snapshot or create/update operations.

func (*ConfiguredKubernetesObjectData) Descriptor deprecated added in v1.3.14 

func (*ConfiguredKubernetesObjectData) Descriptor() ([]byte, []int)

Deprecated: Use ConfiguredKubernetesObjectData.ProtoReflect.Descriptor instead.

func (*ConfiguredKubernetesObjectData) GetAnnotations added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetAnnotations() map[string]string

func (*ConfiguredKubernetesObjectData) GetCiliumCidrGroup added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetCiliumCidrGroup() *KubernetesCiliumCIDRGroupData

func (*ConfiguredKubernetesObjectData) GetCiliumClusterwideNetworkPolicy added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetCiliumClusterwideNetworkPolicy() *KubernetesCiliumClusterwideNetworkPolicyData

func (*ConfiguredKubernetesObjectData) GetCiliumNetworkPolicy added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetCiliumNetworkPolicy() *KubernetesCiliumNetworkPolicyData

func (*ConfiguredKubernetesObjectData) GetId added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetId() string

func (*ConfiguredKubernetesObjectData) GetKindSpecific added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetKindSpecific() isConfiguredKubernetesObjectData_KindSpecific

func (*ConfiguredKubernetesObjectData) GetLabels added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetLabels() map[string]string

func (*ConfiguredKubernetesObjectData) GetName added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetName() string

func (*ConfiguredKubernetesObjectData) GetNamespace added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) GetNamespace() string

func (*ConfiguredKubernetesObjectData) ProtoMessage added in v1.3.14 

func (*ConfiguredKubernetesObjectData) ProtoMessage()

func (*ConfiguredKubernetesObjectData) ProtoReflect added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) ProtoReflect() protoreflect.Message

func (*ConfiguredKubernetesObjectData) Reset added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) Reset()

func (*ConfiguredKubernetesObjectData) String added in v1.3.14 

func (x *ConfiguredKubernetesObjectData) String() string

type ConfiguredKubernetesObjectData_CiliumCidrGroup added in v1.3.14 

type ConfiguredKubernetesObjectData_CiliumCidrGroup struct {
	CiliumCidrGroup *KubernetesCiliumCIDRGroupData `protobuf:"bytes,102,opt,name=cilium_cidr_group,json=ciliumCidrGroup,proto3,oneof"`
}

type ConfiguredKubernetesObjectData_CiliumClusterwideNetworkPolicy added in v1.3.14 

type ConfiguredKubernetesObjectData_CiliumClusterwideNetworkPolicy struct {
	CiliumClusterwideNetworkPolicy *KubernetesCiliumClusterwideNetworkPolicyData `protobuf:"bytes,101,opt,name=cilium_clusterwide_network_policy,json=ciliumClusterwideNetworkPolicy,proto3,oneof"`
}

type ConfiguredKubernetesObjectData_CiliumNetworkPolicy added in v1.3.14 

type ConfiguredKubernetesObjectData_CiliumNetworkPolicy struct {
	CiliumNetworkPolicy *KubernetesCiliumNetworkPolicyData `protobuf:"bytes,100,opt,name=cilium_network_policy,json=ciliumNetworkPolicy,proto3,oneof"`
}

type ConfiguredKubernetesObjectMutation added in v1.3.14 

type ConfiguredKubernetesObjectMutation struct {

	// Types that are valid to be assigned to Mutation:
	//
	//	*ConfiguredKubernetesObjectMutation_CreateObject
	//	*ConfiguredKubernetesObjectMutation_UpdateObject
	//	*ConfiguredKubernetesObjectMutation_DeleteObject
	Mutation isConfiguredKubernetesObjectMutation_Mutation `protobuf_oneof:"mutation"`
	// contains filtered or unexported fields
}

A configured Kubernetes object mutation to apply in the cluster.

func (*ConfiguredKubernetesObjectMutation) Descriptor deprecated added in v1.3.14 

func (*ConfiguredKubernetesObjectMutation) Descriptor() ([]byte, []int)

Deprecated: Use ConfiguredKubernetesObjectMutation.ProtoReflect.Descriptor instead.

func (*ConfiguredKubernetesObjectMutation) GetCreateObject added in v1.3.14 

func (x *ConfiguredKubernetesObjectMutation) GetCreateObject() *ConfiguredKubernetesObjectData

func (*ConfiguredKubernetesObjectMutation) GetDeleteObject added in v1.3.14 

func (x *ConfiguredKubernetesObjectMutation) GetDeleteObject() *DeleteConfiguredKubernetesObject

func (*ConfiguredKubernetesObjectMutation) GetMutation added in v1.3.14 

func (x *ConfiguredKubernetesObjectMutation) GetMutation() isConfiguredKubernetesObjectMutation_Mutation

func (*ConfiguredKubernetesObjectMutation) GetUpdateObject added in v1.3.14 

func (x *ConfiguredKubernetesObjectMutation) GetUpdateObject() *ConfiguredKubernetesObjectData

func (*ConfiguredKubernetesObjectMutation) ProtoMessage added in v1.3.14 

func (*ConfiguredKubernetesObjectMutation) ProtoMessage()

func (*ConfiguredKubernetesObjectMutation) ProtoReflect added in v1.3.14 

func (x *ConfiguredKubernetesObjectMutation) ProtoReflect() protoreflect.Message

func (*ConfiguredKubernetesObjectMutation) Reset added in v1.3.14 

func (x *ConfiguredKubernetesObjectMutation) Reset()

func (*ConfiguredKubernetesObjectMutation) String added in v1.3.14 

func (x *ConfiguredKubernetesObjectMutation) String() string

type ConfiguredKubernetesObjectMutation_CreateObject added in v1.3.14 

type ConfiguredKubernetesObjectMutation_CreateObject struct {
	// A new configured object to create in the cluster.
	CreateObject *ConfiguredKubernetesObjectData `protobuf:"bytes,1,opt,name=create_object,json=createObject,proto3,oneof"`
}

type ConfiguredKubernetesObjectMutation_DeleteObject added in v1.3.14 

type ConfiguredKubernetesObjectMutation_DeleteObject struct {
	// An existing configured object to delete from the cluster.
	DeleteObject *DeleteConfiguredKubernetesObject `protobuf:"bytes,3,opt,name=delete_object,json=deleteObject,proto3,oneof"`
}

type ConfiguredKubernetesObjectMutation_UpdateObject added in v1.3.14 

type ConfiguredKubernetesObjectMutation_UpdateObject struct {
	// An existing configured object to update in the cluster.
	UpdateObject *ConfiguredKubernetesObjectData `protobuf:"bytes,2,opt,name=update_object,json=updateObject,proto3,oneof"`
}

type ConfiguredKubernetesObjectSnapshotComplete added in v1.3.14 

type ConfiguredKubernetesObjectSnapshotComplete struct {
	// contains filtered or unexported fields
}

Empty on purpose since this type is just expected when configured object snapshot is done.

func (*ConfiguredKubernetesObjectSnapshotComplete) Descriptor deprecated added in v1.3.14 

func (*ConfiguredKubernetesObjectSnapshotComplete) Descriptor() ([]byte, []int)

Deprecated: Use ConfiguredKubernetesObjectSnapshotComplete.ProtoReflect.Descriptor instead.

func (*ConfiguredKubernetesObjectSnapshotComplete) ProtoMessage added in v1.3.14 

func (*ConfiguredKubernetesObjectSnapshotComplete) ProtoMessage()

func (*ConfiguredKubernetesObjectSnapshotComplete) ProtoReflect added in v1.3.14 

func (x *ConfiguredKubernetesObjectSnapshotComplete) ProtoReflect() protoreflect.Message

func (*ConfiguredKubernetesObjectSnapshotComplete) Reset added in v1.3.14 

func (x *ConfiguredKubernetesObjectSnapshotComplete) Reset()

func (*ConfiguredKubernetesObjectSnapshotComplete) String added in v1.3.14 

func (x *ConfiguredKubernetesObjectSnapshotComplete) String() string

type DeleteConfiguredKubernetesObject added in v1.3.14 

type DeleteConfiguredKubernetesObject struct {

	// Unique identifier for tracking this object.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

Configured Kubernetes object reference for delete operations. Only the ID is needed because the full ConfiguredKubernetesObjectData is stored in memory, which contains all fields required to delete from the cluster.

func (*DeleteConfiguredKubernetesObject) Descriptor deprecated added in v1.3.14 

func (*DeleteConfiguredKubernetesObject) Descriptor() ([]byte, []int)

Deprecated: Use DeleteConfiguredKubernetesObject.ProtoReflect.Descriptor instead.

func (*DeleteConfiguredKubernetesObject) GetId added in v1.3.14 

func (x *DeleteConfiguredKubernetesObject) GetId() string

func (*DeleteConfiguredKubernetesObject) ProtoMessage added in v1.3.14 

func (*DeleteConfiguredKubernetesObject) ProtoMessage()

func (*DeleteConfiguredKubernetesObject) ProtoReflect added in v1.3.14 

func (x *DeleteConfiguredKubernetesObject) ProtoReflect() protoreflect.Message

func (*DeleteConfiguredKubernetesObject) Reset added in v1.3.14 

func (x *DeleteConfiguredKubernetesObject) Reset()

func (*DeleteConfiguredKubernetesObject) String added in v1.3.14 

func (x *DeleteConfiguredKubernetesObject) String() string

type Endpoint 

type Endpoint struct {
	Uid         uint32      `protobuf:"varint,1,opt,name=uid,proto3" json:"uid,omitempty"`
	ClusterName string      `protobuf:"bytes,7,opt,name=cluster_name,json=clusterName,proto3" json:"cluster_name,omitempty"`
	Namespace   string      `protobuf:"bytes,3,opt,name=namespace,proto3" json:"namespace,omitempty"`
	Labels      []string    `protobuf:"bytes,4,rep,name=labels,proto3" json:"labels,omitempty"`
	PodName     string      `protobuf:"bytes,5,opt,name=pod_name,json=podName,proto3" json:"pod_name,omitempty"`
	Workloads   []*Workload `protobuf:"bytes,6,rep,name=workloads,proto3" json:"workloads,omitempty"`
	// contains filtered or unexported fields
}

Endpoint contains the Endpoint header fields of a flow https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-endpoint

func (*Endpoint) Descriptor deprecated 

func (*Endpoint) Descriptor() ([]byte, []int)

Deprecated: Use Endpoint.ProtoReflect.Descriptor instead.

func (*Endpoint) GetClusterName 

func (x *Endpoint) GetClusterName() string

func (*Endpoint) GetLabels 

func (x *Endpoint) GetLabels() []string

func (*Endpoint) GetNamespace 

func (x *Endpoint) GetNamespace() string

func (*Endpoint) GetPodName 

func (x *Endpoint) GetPodName() string

func (*Endpoint) GetUid 

func (x *Endpoint) GetUid() uint32

func (*Endpoint) GetWorkloads 

func (x *Endpoint) GetWorkloads() []*Workload

func (*Endpoint) ProtoMessage 

func (*Endpoint) ProtoMessage()

func (*Endpoint) ProtoReflect 

func (x *Endpoint) ProtoReflect() protoreflect.Message

func (*Endpoint) Reset 

func (x *Endpoint) Reset()

func (*Endpoint) String 

func (x *Endpoint) String() string

type FiveTupleFlow added in v1.3.0 

type FiveTupleFlow struct {

	// layer3 IP layer, source, destination and ip_version
	Layer3 *IP `protobuf:"bytes,1,opt,name=layer3,proto3" json:"layer3,omitempty"`
	// Proto contains protocol used
	Layer4 *Layer4 `protobuf:"bytes,2,opt,name=layer4,proto3" json:"layer4,omitempty"`
	// Types that are valid to be assigned to Ts:
	//
	//	*FiveTupleFlow_Time
	//	*FiveTupleFlow_Timestamp
	Ts isFiveTupleFlow_Ts `protobuf_oneof:"ts"`
	// contains filtered or unexported fields
}

A flow with a simple 5-tuple flow key received from a CNI plugin

func (*FiveTupleFlow) Descriptor deprecated added in v1.3.0 

func (*FiveTupleFlow) Descriptor() ([]byte, []int)

Deprecated: Use FiveTupleFlow.ProtoReflect.Descriptor instead.

func (*FiveTupleFlow) GetLayer3 added in v1.3.0 

func (x *FiveTupleFlow) GetLayer3() *IP

func (*FiveTupleFlow) GetLayer4 added in v1.3.0 

func (x *FiveTupleFlow) GetLayer4() *Layer4

func (*FiveTupleFlow) GetTime deprecated added in v1.3.0 

func (x *FiveTupleFlow) GetTime() string

Deprecated: Marked as deprecated in illumio/cloud/k8sclustersync/v1/k8s_info.proto.

func (*FiveTupleFlow) GetTimestamp added in v1.3.0 

func (x *FiveTupleFlow) GetTimestamp() *timestamppb.Timestamp

func (*FiveTupleFlow) GetTs added in v1.3.0 

func (x *FiveTupleFlow) GetTs() isFiveTupleFlow_Ts

func (*FiveTupleFlow) Key added in v1.3.0 

func (flow *FiveTupleFlow) Key() any

func (*FiveTupleFlow) ProtoMessage added in v1.3.0 

func (*FiveTupleFlow) ProtoMessage()

func (*FiveTupleFlow) ProtoReflect added in v1.3.0 

func (x *FiveTupleFlow) ProtoReflect() protoreflect.Message

func (*FiveTupleFlow) Reset added in v1.3.0 

func (x *FiveTupleFlow) Reset()

func (*FiveTupleFlow) StartTimestamp added in v1.3.0 

func (flow *FiveTupleFlow) StartTimestamp() time.Time

func (*FiveTupleFlow) String added in v1.3.0 

func (x *FiveTupleFlow) String() string

type FiveTupleFlowKey added in v1.3.0 

type FiveTupleFlowKey struct {
	SourceIP        string
	DestinationIP   string
	SourcePort      int
	DestinationPort int
	Protocol        string
}

type FiveTupleFlow_Time added in v1.3.0 

type FiveTupleFlow_Time struct {
	// time contains the unparsed timestamp string received from a CNI plugin; parse it and set timestamp instead
	//
	// Deprecated: Marked as deprecated in illumio/cloud/k8sclustersync/v1/k8s_info.proto.
	Time string `protobuf:"bytes,3,opt,name=time,proto3,oneof"`
}

type FiveTupleFlow_Timestamp added in v1.3.0 

type FiveTupleFlow_Timestamp struct {
	Timestamp *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=timestamp,proto3,oneof"`
}

type Flow added in v1.1.3 

type Flow interface {
	// StartTimestamp is the start timestamp of this flow.
	StartTimestamp() time.Time
	// Key is this flow's flow key. The returned value is Comparable.
	Key() any
}

Flow is a network flow that is collected or exported.

type FlowCollector added in v1.1.2 

type FlowCollector int32

Network flow collection mechanism configured in the operator. 

const (
	// Default value. This value is unused and should not be set.
	FlowCollector_FLOW_COLLECTOR_UNSPECIFIED FlowCollector = 0
	// Indicates that no suitable network flow collection mechanism is available in the k8s cluster.
	FlowCollector_FLOW_COLLECTOR_DISABLED FlowCollector = 1
	// Indicates that the Cilium CNI plugin is deployed with Hubble Relay and is used for collecting network flows.
	FlowCollector_FLOW_COLLECTOR_CILIUM FlowCollector = 2
	// Indicates that Falco is deployed and configured for collecting network flows.
	FlowCollector_FLOW_COLLECTOR_FALCO FlowCollector = 3
	// Indicates that OVN-Kubernetes is deployed and configured for collecting network flows.
	FlowCollector_FLOW_COLLECTOR_OVNK FlowCollector = 4
)

func (FlowCollector) Descriptor added in v1.1.2 

func (FlowCollector) Descriptor() protoreflect.EnumDescriptor

func (FlowCollector) Enum added in v1.1.2 

func (x FlowCollector) Enum() *FlowCollector

func (FlowCollector) EnumDescriptor deprecated added in v1.1.2 

func (FlowCollector) EnumDescriptor() ([]byte, []int)

Deprecated: Use FlowCollector.Descriptor instead.

func (FlowCollector) Number added in v1.1.2 

func (x FlowCollector) Number() protoreflect.EnumNumber

func (FlowCollector) String added in v1.1.2 

func (x FlowCollector) String() string

func (FlowCollector) Type added in v1.1.2 

func (FlowCollector) Type() protoreflect.EnumType

type GetConfigurationUpdatesRequest added in v1.1.2 

type GetConfigurationUpdatesRequest struct {

	// Types that are valid to be assigned to Request:
	//
	//	*GetConfigurationUpdatesRequest_Keepalive
	Request isGetConfigurationUpdatesRequest_Request `protobuf_oneof:"request"`
	// contains filtered or unexported fields
}

Message to encapsulate a request to send configuration updates.

func (*GetConfigurationUpdatesRequest) Descriptor deprecated added in v1.1.2 

func (*GetConfigurationUpdatesRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetConfigurationUpdatesRequest.ProtoReflect.Descriptor instead.

func (*GetConfigurationUpdatesRequest) GetKeepalive added in v1.1.2 

func (x *GetConfigurationUpdatesRequest) GetKeepalive() *Keepalive

func (*GetConfigurationUpdatesRequest) GetRequest added in v1.1.2 

func (x *GetConfigurationUpdatesRequest) GetRequest() isGetConfigurationUpdatesRequest_Request

func (*GetConfigurationUpdatesRequest) ProtoMessage added in v1.1.2 

func (*GetConfigurationUpdatesRequest) ProtoMessage()

func (*GetConfigurationUpdatesRequest) ProtoReflect added in v1.1.2 

func (x *GetConfigurationUpdatesRequest) ProtoReflect() protoreflect.Message

func (*GetConfigurationUpdatesRequest) Reset added in v1.1.2 

func (x *GetConfigurationUpdatesRequest) Reset()

func (*GetConfigurationUpdatesRequest) String added in v1.1.2 

func (x *GetConfigurationUpdatesRequest) String() string

type GetConfigurationUpdatesRequest_Keepalive added in v1.1.2 

type GetConfigurationUpdatesRequest_Keepalive struct {
	Keepalive *Keepalive `protobuf:"bytes,1,opt,name=keepalive,proto3,oneof"`
}

type GetConfigurationUpdatesResponse added in v1.1.2 

type GetConfigurationUpdatesResponse struct {

	// Types that are valid to be assigned to Response:
	//
	//	*GetConfigurationUpdatesResponse_UpdateConfiguration
	//	*GetConfigurationUpdatesResponse_ResourceData
	//	*GetConfigurationUpdatesResponse_ResourceSnapshotComplete
	//	*GetConfigurationUpdatesResponse_ResourceMutation
	Response isGetConfigurationUpdatesResponse_Response `protobuf_oneof:"response"`
	// contains filtered or unexported fields
}

Message sent by the server in a GetConfigurationUpdates response stream. The stream carries two independent message sequences that may be interleaved:

Log level configuration: 

(0+) update_configuration, sent whenever the log level changes.

Configured Kubernetes objects:

  1. (0+) resource_data, one message for each object in the initial snapshot.
  2. (1) resource_snapshot_complete, indicates the initial snapshot is complete.
  3. (0+) resource_mutation, one message for each object create/update/delete.

On stream reconnection, the server sends a new full snapshot of configured objects.

func (*GetConfigurationUpdatesResponse) Descriptor deprecated added in v1.1.2 

func (*GetConfigurationUpdatesResponse) Descriptor() ([]byte, []int)

Deprecated: Use GetConfigurationUpdatesResponse.ProtoReflect.Descriptor instead.

func (*GetConfigurationUpdatesResponse) GetResourceData added in v1.3.14 

func (x *GetConfigurationUpdatesResponse) GetResourceData() *ConfiguredKubernetesObjectData

func (*GetConfigurationUpdatesResponse) GetResourceMutation added in v1.3.14 

func (x *GetConfigurationUpdatesResponse) GetResourceMutation() *ConfiguredKubernetesObjectMutation

func (*GetConfigurationUpdatesResponse) GetResourceSnapshotComplete added in v1.3.14 

func (x *GetConfigurationUpdatesResponse) GetResourceSnapshotComplete() *ConfiguredKubernetesObjectSnapshotComplete

func (*GetConfigurationUpdatesResponse) GetResponse added in v1.1.2 

func (x *GetConfigurationUpdatesResponse) GetResponse() isGetConfigurationUpdatesResponse_Response

func (*GetConfigurationUpdatesResponse) GetUpdateConfiguration added in v1.1.2 

func (x *GetConfigurationUpdatesResponse) GetUpdateConfiguration() *GetConfigurationUpdatesResponse_Configuration

func (*GetConfigurationUpdatesResponse) ProtoMessage added in v1.1.2 

func (*GetConfigurationUpdatesResponse) ProtoMessage()

func (*GetConfigurationUpdatesResponse) ProtoReflect added in v1.1.2 

func (x *GetConfigurationUpdatesResponse) ProtoReflect() protoreflect.Message

func (*GetConfigurationUpdatesResponse) Reset added in v1.1.2 

func (x *GetConfigurationUpdatesResponse) Reset()

func (*GetConfigurationUpdatesResponse) String added in v1.1.2 

func (x *GetConfigurationUpdatesResponse) String() string

type GetConfigurationUpdatesResponse_Configuration added in v1.1.2 

type GetConfigurationUpdatesResponse_Configuration struct {

	// The operator's log level.
	LogLevel LogLevel `` /* 132-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*GetConfigurationUpdatesResponse_Configuration) Descriptor deprecated added in v1.1.2 

func (*GetConfigurationUpdatesResponse_Configuration) Descriptor() ([]byte, []int)

Deprecated: Use GetConfigurationUpdatesResponse_Configuration.ProtoReflect.Descriptor instead.

func (*GetConfigurationUpdatesResponse_Configuration) GetLogLevel added in v1.1.2 

func (x *GetConfigurationUpdatesResponse_Configuration) GetLogLevel() LogLevel

func (*GetConfigurationUpdatesResponse_Configuration) ProtoMessage added in v1.1.2 

func (*GetConfigurationUpdatesResponse_Configuration) ProtoMessage()

func (*GetConfigurationUpdatesResponse_Configuration) ProtoReflect added in v1.1.2 

func (x *GetConfigurationUpdatesResponse_Configuration) ProtoReflect() protoreflect.Message

func (*GetConfigurationUpdatesResponse_Configuration) Reset added in v1.1.2 

func (x *GetConfigurationUpdatesResponse_Configuration) Reset()

func (*GetConfigurationUpdatesResponse_Configuration) String added in v1.1.2 

func (x *GetConfigurationUpdatesResponse_Configuration) String() string

type GetConfigurationUpdatesResponse_ResourceData added in v1.3.14 

type GetConfigurationUpdatesResponse_ResourceData struct {
	// Data about a Kubernetes object to configure in the cluster.
	ResourceData *ConfiguredKubernetesObjectData `protobuf:"bytes,2,opt,name=resource_data,json=resourceData,proto3,oneof"`
}

type GetConfigurationUpdatesResponse_ResourceMutation added in v1.3.14 

type GetConfigurationUpdatesResponse_ResourceMutation struct {
	// A mutation to a Kubernetes object in the cluster.
	ResourceMutation *ConfiguredKubernetesObjectMutation `protobuf:"bytes,4,opt,name=resource_mutation,json=resourceMutation,proto3,oneof"`
}

type GetConfigurationUpdatesResponse_ResourceSnapshotComplete added in v1.3.14 

type GetConfigurationUpdatesResponse_ResourceSnapshotComplete struct {
	// Indicates that all resource_data have been sent to report all the objects in the cluster in the initial snapshot.
	ResourceSnapshotComplete *ConfiguredKubernetesObjectSnapshotComplete `protobuf:"bytes,3,opt,name=resource_snapshot_complete,json=resourceSnapshotComplete,proto3,oneof"`
}

type GetConfigurationUpdatesResponse_UpdateConfiguration added in v1.1.2 

type GetConfigurationUpdatesResponse_UpdateConfiguration struct {
	UpdateConfiguration *GetConfigurationUpdatesResponse_Configuration `protobuf:"bytes,1,opt,name=update_configuration,json=updateConfiguration,proto3,oneof"`
}

type ICMPv4 

type ICMPv4 struct {
	Type uint32 `protobuf:"varint,1,opt,name=type,proto3" json:"type,omitempty"`
	Code uint32 `protobuf:"varint,2,opt,name=code,proto3" json:"code,omitempty"`
	// contains filtered or unexported fields
}

ICMPv4 contains the ICMPv4 header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-icmpv4

func (*ICMPv4) Descriptor deprecated 

func (*ICMPv4) Descriptor() ([]byte, []int)

Deprecated: Use ICMPv4.ProtoReflect.Descriptor instead.

func (*ICMPv4) GetCode 

func (x *ICMPv4) GetCode() uint32

func (*ICMPv4) GetType 

func (x *ICMPv4) GetType() uint32

func (*ICMPv4) ProtoMessage 

func (*ICMPv4) ProtoMessage()

func (*ICMPv4) ProtoReflect 

func (x *ICMPv4) ProtoReflect() protoreflect.Message

func (*ICMPv4) Reset 

func (x *ICMPv4) Reset()

func (*ICMPv4) String 

func (x *ICMPv4) String() string

type ICMPv6 

type ICMPv6 struct {
	Type uint32 `protobuf:"varint,1,opt,name=type,proto3" json:"type,omitempty"`
	Code uint32 `protobuf:"varint,2,opt,name=code,proto3" json:"code,omitempty"`
	// contains filtered or unexported fields
}

ICMPv6 contains the ICMPv6 header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-icmpv6

func (*ICMPv6) Descriptor deprecated 

func (*ICMPv6) Descriptor() ([]byte, []int)

Deprecated: Use ICMPv6.ProtoReflect.Descriptor instead.

func (*ICMPv6) GetCode 

func (x *ICMPv6) GetCode() uint32

func (*ICMPv6) GetType 

func (x *ICMPv6) GetType() uint32

func (*ICMPv6) ProtoMessage 

func (*ICMPv6) ProtoMessage()

func (*ICMPv6) ProtoReflect 

func (x *ICMPv6) ProtoReflect() protoreflect.Message

func (*ICMPv6) Reset 

func (x *ICMPv6) Reset()

func (*ICMPv6) String 

func (x *ICMPv6) String() string

type IP 

type IP struct {
	Source      string    `protobuf:"bytes,1,opt,name=source,proto3" json:"source,omitempty"`
	Destination string    `protobuf:"bytes,2,opt,name=destination,proto3" json:"destination,omitempty"`
	IpVersion   IPVersion `` /* 136-byte string literal not displayed */
	// contains filtered or unexported fields
}

IP contains the IP header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-ip

func (*IP) Descriptor deprecated 

func (*IP) Descriptor() ([]byte, []int)

Deprecated: Use IP.ProtoReflect.Descriptor instead.

func (*IP) GetDestination 

func (x *IP) GetDestination() string

func (*IP) GetIpVersion 

func (x *IP) GetIpVersion() IPVersion

func (*IP) GetSource 

func (x *IP) GetSource() string

func (*IP) ProtoMessage 

func (*IP) ProtoMessage()

func (*IP) ProtoReflect 

func (x *IP) ProtoReflect() protoreflect.Message

func (*IP) Reset 

func (x *IP) Reset()

func (*IP) String 

func (x *IP) String() string

type IPBlock added in v1.2.0 

type IPBlock struct {
	Cidr   string   `protobuf:"bytes,1,opt,name=cidr,proto3" json:"cidr,omitempty"`
	Except []string `protobuf:"bytes,2,rep,name=except,proto3" json:"except,omitempty"`
	// contains filtered or unexported fields
}

IPBlock defines a particular CIDR (Ex: 10.10.10.0/24).

func (*IPBlock) Descriptor deprecated added in v1.2.0 

func (*IPBlock) Descriptor() ([]byte, []int)

Deprecated: Use IPBlock.ProtoReflect.Descriptor instead.

func (*IPBlock) GetCidr added in v1.2.0 

func (x *IPBlock) GetCidr() string

func (*IPBlock) GetExcept added in v1.2.0 

func (x *IPBlock) GetExcept() []string

func (*IPBlock) ProtoMessage added in v1.2.0 

func (*IPBlock) ProtoMessage()

func (*IPBlock) ProtoReflect added in v1.2.0 

func (x *IPBlock) ProtoReflect() protoreflect.Message

func (*IPBlock) Reset added in v1.2.0 

func (x *IPBlock) Reset()

func (*IPBlock) String added in v1.2.0 

func (x *IPBlock) String() string

type IPVersion 

type IPVersion int32

IPVersion contains the IPVersion header flags of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-ipversion 

const (
	IPVersion_IP_VERSION_IP_NOT_USED_UNSPECIFIED IPVersion = 0
	IPVersion_IP_VERSION_IPV4                    IPVersion = 1
	IPVersion_IP_VERSION_IPV6                    IPVersion = 2
)

func (IPVersion) Descriptor 

func (IPVersion) Descriptor() protoreflect.EnumDescriptor

func (IPVersion) Enum 

func (x IPVersion) Enum() *IPVersion

func (IPVersion) EnumDescriptor deprecated 

func (IPVersion) EnumDescriptor() ([]byte, []int)

Deprecated: Use IPVersion.Descriptor instead.

func (IPVersion) Number 

func (x IPVersion) Number() protoreflect.EnumNumber

func (IPVersion) String 

func (x IPVersion) String() string

func (IPVersion) Type 

func (IPVersion) Type() protoreflect.EnumType

type Keepalive added in v1.1.0 

type Keepalive struct {
	// contains filtered or unexported fields
}

Application-level keepalives. While gRPC already has an HTTP-level keepalive mechanism, we have seen deployments where the server lives behind an ingress. The gRPC system-level keepalive (represented by the `-`s in the diagram) terminates at the ingress, and thus doesn't work end-to-end. This is solved with an application level keepalive (represented by the `=`s in the diagram)

+----------------+ +---------+ +--------+ | +------>+ + + | | cloud-operator + + ingress + + server | | +======>+ +=========>+ | +----------------+ +---------+ +--------+

Keepalives are important to us, because when the server restarts, the connection may be closed between the Ingress and the server - but not between the cloud-operator and the Ingress. Application-level keepalives will re-establish connections to the server faster than if we wait for reasons to send data over the channel

func (*Keepalive) Descriptor deprecated added in v1.1.0 

func (*Keepalive) Descriptor() ([]byte, []int)

Deprecated: Use Keepalive.ProtoReflect.Descriptor instead.

func (*Keepalive) ProtoMessage added in v1.1.0 

func (*Keepalive) ProtoMessage()

func (*Keepalive) ProtoReflect added in v1.1.0 

func (x *Keepalive) ProtoReflect() protoreflect.Message

func (*Keepalive) Reset added in v1.1.0 

func (x *Keepalive) Reset()

func (*Keepalive) String added in v1.1.0 

func (x *Keepalive) String() string

type KubernetesCiliumCIDRGroupData added in v1.3.14 

type KubernetesCiliumCIDRGroupData struct {

	// Spec contains the CIDRGroup specification.
	Spec *CiliumCIDRGroup `protobuf:"bytes,1,opt,name=spec,proto3" json:"spec,omitempty"`
	// contains filtered or unexported fields
}

KubernetesCiliumCIDRGroupData contains information specific to a CiliumCIDRGroup object. CiliumCIDRGroup is a list of external CIDRs (i.e., CIDRs selecting peers outside the clusters) that can be referenced as a single entity from CiliumNetworkPolicies. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/k8s/apis/cilium.io/v2/cidrgroups_types.go#L23-L32

func (*KubernetesCiliumCIDRGroupData) Descriptor deprecated added in v1.3.14 

func (*KubernetesCiliumCIDRGroupData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesCiliumCIDRGroupData.ProtoReflect.Descriptor instead.

func (*KubernetesCiliumCIDRGroupData) GetSpec added in v1.3.14 

func (x *KubernetesCiliumCIDRGroupData) GetSpec() *CiliumCIDRGroup

func (*KubernetesCiliumCIDRGroupData) ProtoMessage added in v1.3.14 

func (*KubernetesCiliumCIDRGroupData) ProtoMessage()

func (*KubernetesCiliumCIDRGroupData) ProtoReflect added in v1.3.14 

func (x *KubernetesCiliumCIDRGroupData) ProtoReflect() protoreflect.Message

func (*KubernetesCiliumCIDRGroupData) Reset added in v1.3.14 

func (x *KubernetesCiliumCIDRGroupData) Reset()

func (*KubernetesCiliumCIDRGroupData) String added in v1.3.14 

func (x *KubernetesCiliumCIDRGroupData) String() string

type KubernetesCiliumClusterwideNetworkPolicyData added in v1.3.14 

type KubernetesCiliumClusterwideNetworkPolicyData struct {

	// Rules from both `spec` (single) and `specs` (array) fields, unified as an array.
	Specs []*CiliumPolicyRule `protobuf:"bytes,1,rep,name=specs,proto3" json:"specs,omitempty"`
	// contains filtered or unexported fields
}

KubernetesCiliumClusterwideNetworkPolicyData contains information specific to a CiliumClusterwideNetworkPolicy object. CiliumClusterwideNetworkPolicy is a cluster-scoped policy that applies across all namespaces. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/k8s/apis/cilium.io/v2/cnp_types.go#L33-L55

func (*KubernetesCiliumClusterwideNetworkPolicyData) Descriptor deprecated added in v1.3.14 

func (*KubernetesCiliumClusterwideNetworkPolicyData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesCiliumClusterwideNetworkPolicyData.ProtoReflect.Descriptor instead.

func (*KubernetesCiliumClusterwideNetworkPolicyData) GetSpecs added in v1.3.14 

func (x *KubernetesCiliumClusterwideNetworkPolicyData) GetSpecs() []*CiliumPolicyRule

func (*KubernetesCiliumClusterwideNetworkPolicyData) ProtoMessage added in v1.3.14 

func (*KubernetesCiliumClusterwideNetworkPolicyData) ProtoMessage()

func (*KubernetesCiliumClusterwideNetworkPolicyData) ProtoReflect added in v1.3.14 

func (x *KubernetesCiliumClusterwideNetworkPolicyData) ProtoReflect() protoreflect.Message

func (*KubernetesCiliumClusterwideNetworkPolicyData) Reset added in v1.3.14 

func (x *KubernetesCiliumClusterwideNetworkPolicyData) Reset()

func (*KubernetesCiliumClusterwideNetworkPolicyData) String added in v1.3.14 

func (x *KubernetesCiliumClusterwideNetworkPolicyData) String() string

type KubernetesCiliumNetworkPolicyData added in v1.3.14 

type KubernetesCiliumNetworkPolicyData struct {

	// Rules from both `spec` (single) and `specs` (array) fields, unified as an array.
	Specs []*CiliumPolicyRule `protobuf:"bytes,1,rep,name=specs,proto3" json:"specs,omitempty"`
	// contains filtered or unexported fields
}

KubernetesCiliumNetworkPolicyData contains information specific to a CiliumNetworkPolicy object. CiliumNetworkPolicy is a namespaced policy that applies to pods selected by the endpoint selector. https://github.com/cilium/cilium/blob/40fafc202f3c16dfa287af9eb4dc3f3e72a120f3/pkg/k8s/apis/cilium.io/v2/ccnp_types.go#L29-L54

func (*KubernetesCiliumNetworkPolicyData) Descriptor deprecated added in v1.3.14 

func (*KubernetesCiliumNetworkPolicyData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesCiliumNetworkPolicyData.ProtoReflect.Descriptor instead.

func (*KubernetesCiliumNetworkPolicyData) GetSpecs added in v1.3.14 

func (x *KubernetesCiliumNetworkPolicyData) GetSpecs() []*CiliumPolicyRule

func (*KubernetesCiliumNetworkPolicyData) ProtoMessage added in v1.3.14 

func (*KubernetesCiliumNetworkPolicyData) ProtoMessage()

func (*KubernetesCiliumNetworkPolicyData) ProtoReflect added in v1.3.14 

func (x *KubernetesCiliumNetworkPolicyData) ProtoReflect() protoreflect.Message

func (*KubernetesCiliumNetworkPolicyData) Reset added in v1.3.14 

func (x *KubernetesCiliumNetworkPolicyData) Reset()

func (*KubernetesCiliumNetworkPolicyData) String added in v1.3.14 

func (x *KubernetesCiliumNetworkPolicyData) String() string

type KubernetesClusterMetadata 

type KubernetesClusterMetadata struct {

	// Unique ID of the client operator's Kubernetes cluster.
	// This is the UID of the cluster's kube-system namespace, which is considered globally unique.
	Uid string `protobuf:"bytes,1,opt,name=uid,proto3" json:"uid,omitempty"`
	// Kubernetes version of the operator's cluster.
	// https://pkg.go.dev/k8s.io/client-go/discovery#DiscoveryClient.ServerVersion
	KubernetesVersion string `protobuf:"bytes,2,opt,name=kubernetes_version,json=kubernetesVersion,proto3" json:"kubernetes_version,omitempty"`
	// Version of the operator. This version is following the Semver 2.0.0 format, e.g. "1.2.0".
	// https://semver.org/spec/v2.0.0.html
	OperatorVersion string `protobuf:"bytes,3,opt,name=operator_version,json=operatorVersion,proto3" json:"operator_version,omitempty"`
	// The network flow collection mechanism configured in the operator's cluster
	FlowCollector FlowCollector `` /* 152-byte string literal not displayed */
	// Optional: Cluster name specified by users in Helm configuration.
	// For self-managed clusters, this can be set via Helm configuration.
	// The Helm configuration takes precedence over the node labels.
	ClusterName *string `protobuf:"bytes,5,opt,name=cluster_name,json=clusterName,proto3,oneof" json:"cluster_name,omitempty"`
	// contains filtered or unexported fields
}

Metadata about the client operator and Kubernetes cluster. Sent as the first message in each KubernetesResources RPC request stream.

func (*KubernetesClusterMetadata) Descriptor deprecated 

func (*KubernetesClusterMetadata) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesClusterMetadata.ProtoReflect.Descriptor instead.

func (*KubernetesClusterMetadata) GetClusterName added in v1.3.13 

func (x *KubernetesClusterMetadata) GetClusterName() string

func (*KubernetesClusterMetadata) GetFlowCollector added in v1.1.2 

func (x *KubernetesClusterMetadata) GetFlowCollector() FlowCollector

func (*KubernetesClusterMetadata) GetKubernetesVersion 

func (x *KubernetesClusterMetadata) GetKubernetesVersion() string

func (*KubernetesClusterMetadata) GetOperatorVersion 

func (x *KubernetesClusterMetadata) GetOperatorVersion() string

func (*KubernetesClusterMetadata) GetUid 

func (x *KubernetesClusterMetadata) GetUid() string

func (*KubernetesClusterMetadata) ProtoMessage 

func (*KubernetesClusterMetadata) ProtoMessage()

func (*KubernetesClusterMetadata) ProtoReflect 

func (x *KubernetesClusterMetadata) ProtoReflect() protoreflect.Message

func (*KubernetesClusterMetadata) Reset 

func (x *KubernetesClusterMetadata) Reset()

func (*KubernetesClusterMetadata) String 

func (x *KubernetesClusterMetadata) String() string

type KubernetesInfoServiceClient 

type KubernetesInfoServiceClient interface {
	// Continuously syncs the inventory of the Kubernetes resources in the cluster into CloudSecure.
	SendKubernetesResources(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[SendKubernetesResourcesRequest, SendKubernetesResourcesResponse], error)
	// Continuously sends network flows exported by the CNI plugin in the cluster to CloudSecure.
	SendKubernetesNetworkFlows(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[SendKubernetesNetworkFlowsRequest, SendKubernetesNetworkFlowsResponse], error)
	// Continuously syncs logs from operator and cluster.
	SendLogs(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[SendLogsRequest, SendLogsResponse], error)
	// Continuously receives configuration updates from CloudSecure.
	GetConfigurationUpdates(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[GetConfigurationUpdatesRequest, GetConfigurationUpdatesResponse], error)
}

KubernetesInfoServiceClient is the client API for KubernetesInfoService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

Syncs the inventory of the Kubernetes resources in the cluster into CloudSecure.

func NewKubernetesInfoServiceClient 

func NewKubernetesInfoServiceClient(cc grpc.ClientConnInterface) KubernetesInfoServiceClient

type KubernetesInfoServiceServer 

type KubernetesInfoServiceServer interface {
	// Continuously syncs the inventory of the Kubernetes resources in the cluster into CloudSecure.
	SendKubernetesResources(grpc.BidiStreamingServer[SendKubernetesResourcesRequest, SendKubernetesResourcesResponse]) error
	// Continuously sends network flows exported by the CNI plugin in the cluster to CloudSecure.
	SendKubernetesNetworkFlows(grpc.BidiStreamingServer[SendKubernetesNetworkFlowsRequest, SendKubernetesNetworkFlowsResponse]) error
	// Continuously syncs logs from operator and cluster.
	SendLogs(grpc.BidiStreamingServer[SendLogsRequest, SendLogsResponse]) error
	// Continuously receives configuration updates from CloudSecure.
	GetConfigurationUpdates(grpc.BidiStreamingServer[GetConfigurationUpdatesRequest, GetConfigurationUpdatesResponse]) error
	// contains filtered or unexported methods
}

KubernetesInfoServiceServer is the server API for KubernetesInfoService service. All implementations must embed UnimplementedKubernetesInfoServiceServer for forward compatibility.

Syncs the inventory of the Kubernetes resources in the cluster into CloudSecure.

type KubernetesInfoService_GetConfigurationUpdatesClient added in v1.1.2 

type KubernetesInfoService_GetConfigurationUpdatesClient = grpc.BidiStreamingClient[GetConfigurationUpdatesRequest, GetConfigurationUpdatesResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesInfoService_GetConfigurationUpdatesServer added in v1.1.2 

type KubernetesInfoService_GetConfigurationUpdatesServer = grpc.BidiStreamingServer[GetConfigurationUpdatesRequest, GetConfigurationUpdatesResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesInfoService_SendKubernetesNetworkFlowsClient 

type KubernetesInfoService_SendKubernetesNetworkFlowsClient = grpc.BidiStreamingClient[SendKubernetesNetworkFlowsRequest, SendKubernetesNetworkFlowsResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesInfoService_SendKubernetesNetworkFlowsServer 

type KubernetesInfoService_SendKubernetesNetworkFlowsServer = grpc.BidiStreamingServer[SendKubernetesNetworkFlowsRequest, SendKubernetesNetworkFlowsResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesInfoService_SendKubernetesResourcesClient 

type KubernetesInfoService_SendKubernetesResourcesClient = grpc.BidiStreamingClient[SendKubernetesResourcesRequest, SendKubernetesResourcesResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesInfoService_SendKubernetesResourcesServer 

type KubernetesInfoService_SendKubernetesResourcesServer = grpc.BidiStreamingServer[SendKubernetesResourcesRequest, SendKubernetesResourcesResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesInfoService_SendLogsClient 

type KubernetesInfoService_SendLogsClient = grpc.BidiStreamingClient[SendLogsRequest, SendLogsResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesInfoService_SendLogsServer 

type KubernetesInfoService_SendLogsServer = grpc.BidiStreamingServer[SendLogsRequest, SendLogsResponse]

This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name.

type KubernetesNetworkPolicyData added in v1.2.0 

type KubernetesNetworkPolicyData struct {
	Ingress      bool                 `protobuf:"varint,1,opt,name=ingress,proto3" json:"ingress,omitempty"`                              // True if Ingress policy is enabled
	Egress       bool                 `protobuf:"varint,2,opt,name=egress,proto3" json:"egress,omitempty"`                                // True if Egress policy is enabled
	PodSelector  *LabelSelector       `protobuf:"bytes,3,opt,name=pod_selector,json=podSelector,proto3" json:"pod_selector,omitempty"`    // Pod selector for the policy
	IngressRules []*NetworkPolicyRule `protobuf:"bytes,4,rep,name=ingress_rules,json=ingressRules,proto3" json:"ingress_rules,omitempty"` // Ingress rules for the policy
	EgressRules  []*NetworkPolicyRule `protobuf:"bytes,5,rep,name=egress_rules,json=egressRules,proto3" json:"egress_rules,omitempty"`    // Egress rules for the policy
	// contains filtered or unexported fields
}

KubernetesNetworkPolicyData contains information specific to a NetworkPolicy object.

func (*KubernetesNetworkPolicyData) Descriptor deprecated added in v1.2.0 

func (*KubernetesNetworkPolicyData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesNetworkPolicyData.ProtoReflect.Descriptor instead.

func (*KubernetesNetworkPolicyData) GetEgress added in v1.2.0 

func (x *KubernetesNetworkPolicyData) GetEgress() bool

func (*KubernetesNetworkPolicyData) GetEgressRules added in v1.2.0 

func (x *KubernetesNetworkPolicyData) GetEgressRules() []*NetworkPolicyRule

func (*KubernetesNetworkPolicyData) GetIngress added in v1.2.0 

func (x *KubernetesNetworkPolicyData) GetIngress() bool

func (*KubernetesNetworkPolicyData) GetIngressRules added in v1.2.0 

func (x *KubernetesNetworkPolicyData) GetIngressRules() []*NetworkPolicyRule

func (*KubernetesNetworkPolicyData) GetPodSelector added in v1.2.0 

func (x *KubernetesNetworkPolicyData) GetPodSelector() *LabelSelector

func (*KubernetesNetworkPolicyData) ProtoMessage added in v1.2.0 

func (*KubernetesNetworkPolicyData) ProtoMessage()

func (*KubernetesNetworkPolicyData) ProtoReflect added in v1.2.0 

func (x *KubernetesNetworkPolicyData) ProtoReflect() protoreflect.Message

func (*KubernetesNetworkPolicyData) Reset added in v1.2.0 

func (x *KubernetesNetworkPolicyData) Reset()

func (*KubernetesNetworkPolicyData) String added in v1.2.0 

func (x *KubernetesNetworkPolicyData) String() string

type KubernetesNodeData added in v0.0.11 

type KubernetesNodeData struct {

	// Node.spec.providerID
	ProviderId string `protobuf:"bytes,1,opt,name=provider_id,json=providerId,proto3" json:"provider_id,omitempty"`
	// List of ip addresses that are tied to Node so we can resolve them as workloads
	IpAddresses []string `protobuf:"bytes,2,rep,name=ip_addresses,json=ipAddresses,proto3" json:"ip_addresses,omitempty"`
	// contains filtered or unexported fields
}

KubernetesNodeData contains information specific to a Node Object.

func (*KubernetesNodeData) Descriptor deprecated added in v0.0.11 

func (*KubernetesNodeData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesNodeData.ProtoReflect.Descriptor instead.

func (*KubernetesNodeData) GetIpAddresses added in v1.0.5 

func (x *KubernetesNodeData) GetIpAddresses() []string

func (*KubernetesNodeData) GetProviderId added in v0.0.11 

func (x *KubernetesNodeData) GetProviderId() string

func (*KubernetesNodeData) ProtoMessage added in v0.0.11 

func (*KubernetesNodeData) ProtoMessage()

func (*KubernetesNodeData) ProtoReflect added in v0.0.11 

func (x *KubernetesNodeData) ProtoReflect() protoreflect.Message

func (*KubernetesNodeData) Reset added in v0.0.11 

func (x *KubernetesNodeData) Reset()

func (*KubernetesNodeData) String added in v0.0.11 

func (x *KubernetesNodeData) String() string

type KubernetesObjectData added in v0.0.6 

type KubernetesObjectData struct {
	Annotations       map[string]string      `` /* 149-byte string literal not displayed */
	CreationTimestamp *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=creation_timestamp,json=creationTimestamp,proto3" json:"creation_timestamp,omitempty"`
	Kind              string                 `protobuf:"bytes,3,opt,name=kind,proto3" json:"kind,omitempty"`
	Labels            map[string]string      `` /* 139-byte string literal not displayed */
	Name              string                 `protobuf:"bytes,5,opt,name=name,proto3" json:"name,omitempty"`
	// Empty for clusterwide resources which have no namespace.
	Namespace       *string                     `protobuf:"bytes,6,opt,name=namespace,proto3,oneof" json:"namespace,omitempty"`
	OwnerReferences []*KubernetesOwnerReference `protobuf:"bytes,7,rep,name=owner_references,json=ownerReferences,proto3" json:"owner_references,omitempty"`
	ResourceVersion string                      `protobuf:"bytes,8,opt,name=resource_version,json=resourceVersion,proto3" json:"resource_version,omitempty"`
	Uid             string                      `protobuf:"bytes,9,opt,name=uid,proto3" json:"uid,omitempty"`
	ApiGroup        string                      `protobuf:"bytes,10,opt,name=api_group,json=apiGroup,proto3" json:"api_group,omitempty"`
	ApiVersion      string                      `protobuf:"bytes,11,opt,name=api_version,json=apiVersion,proto3" json:"api_version,omitempty"`
	// Types that are valid to be assigned to KindSpecific:
	//
	//	*KubernetesObjectData_Pod
	//	*KubernetesObjectData_Node
	//	*KubernetesObjectData_Service
	//	*KubernetesObjectData_NetworkPolicy
	//	*KubernetesObjectData_CiliumNetworkPolicy
	//	*KubernetesObjectData_CiliumClusterwideNetworkPolicy
	//	*KubernetesObjectData_CiliumCidrGroup
	KindSpecific isKubernetesObjectData_KindSpecific `protobuf_oneof:"kind_specific"`
	// contains filtered or unexported fields
}

Metadata associated with a Kubernetes resource. https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.29/#objectmeta-v1-meta

func (*KubernetesObjectData) Descriptor deprecated added in v0.0.6 

func (*KubernetesObjectData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesObjectData.ProtoReflect.Descriptor instead.

func (*KubernetesObjectData) GetAnnotations added in v0.0.6 

func (x *KubernetesObjectData) GetAnnotations() map[string]string

func (*KubernetesObjectData) GetApiGroup added in v1.3.14 

func (x *KubernetesObjectData) GetApiGroup() string

func (*KubernetesObjectData) GetApiVersion added in v1.3.14 

func (x *KubernetesObjectData) GetApiVersion() string

func (*KubernetesObjectData) GetCiliumCidrGroup added in v1.3.14 

func (x *KubernetesObjectData) GetCiliumCidrGroup() *KubernetesCiliumCIDRGroupData

func (*KubernetesObjectData) GetCiliumClusterwideNetworkPolicy added in v1.3.14 

func (x *KubernetesObjectData) GetCiliumClusterwideNetworkPolicy() *KubernetesCiliumClusterwideNetworkPolicyData

func (*KubernetesObjectData) GetCiliumNetworkPolicy added in v1.3.14 

func (x *KubernetesObjectData) GetCiliumNetworkPolicy() *KubernetesCiliumNetworkPolicyData

func (*KubernetesObjectData) GetCreationTimestamp added in v0.0.6 

func (x *KubernetesObjectData) GetCreationTimestamp() *timestamppb.Timestamp

func (*KubernetesObjectData) GetKind added in v0.0.6 

func (x *KubernetesObjectData) GetKind() string

func (*KubernetesObjectData) GetKindSpecific added in v0.0.6 

func (x *KubernetesObjectData) GetKindSpecific() isKubernetesObjectData_KindSpecific

func (*KubernetesObjectData) GetLabels added in v0.0.6 

func (x *KubernetesObjectData) GetLabels() map[string]string

func (*KubernetesObjectData) GetName added in v0.0.6 

func (x *KubernetesObjectData) GetName() string

func (*KubernetesObjectData) GetNamespace added in v0.0.6 

func (x *KubernetesObjectData) GetNamespace() string

func (*KubernetesObjectData) GetNetworkPolicy added in v1.2.0 

func (x *KubernetesObjectData) GetNetworkPolicy() *KubernetesNetworkPolicyData

func (*KubernetesObjectData) GetNode added in v0.0.11 

func (x *KubernetesObjectData) GetNode() *KubernetesNodeData

func (*KubernetesObjectData) GetOwnerReferences added in v0.0.6 

func (x *KubernetesObjectData) GetOwnerReferences() []*KubernetesOwnerReference

func (*KubernetesObjectData) GetPod added in v0.0.6 

func (x *KubernetesObjectData) GetPod() *KubernetesPodData

func (*KubernetesObjectData) GetResourceVersion added in v0.0.6 

func (x *KubernetesObjectData) GetResourceVersion() string

func (*KubernetesObjectData) GetService added in v1.0.1 

func (x *KubernetesObjectData) GetService() *KubernetesServiceData

func (*KubernetesObjectData) GetUid added in v0.0.6 

func (x *KubernetesObjectData) GetUid() string

func (*KubernetesObjectData) ProtoMessage added in v0.0.6 

func (*KubernetesObjectData) ProtoMessage()

func (*KubernetesObjectData) ProtoReflect added in v0.0.6 

func (x *KubernetesObjectData) ProtoReflect() protoreflect.Message

func (*KubernetesObjectData) Reset added in v0.0.6 

func (x *KubernetesObjectData) Reset()

func (*KubernetesObjectData) String added in v0.0.6 

func (x *KubernetesObjectData) String() string

type KubernetesObjectData_CiliumCidrGroup added in v1.3.14 

type KubernetesObjectData_CiliumCidrGroup struct {
	CiliumCidrGroup *KubernetesCiliumCIDRGroupData `protobuf:"bytes,106,opt,name=cilium_cidr_group,json=ciliumCidrGroup,proto3,oneof"`
}

type KubernetesObjectData_CiliumClusterwideNetworkPolicy added in v1.3.14 

type KubernetesObjectData_CiliumClusterwideNetworkPolicy struct {
	CiliumClusterwideNetworkPolicy *KubernetesCiliumClusterwideNetworkPolicyData `protobuf:"bytes,105,opt,name=cilium_clusterwide_network_policy,json=ciliumClusterwideNetworkPolicy,proto3,oneof"`
}

type KubernetesObjectData_CiliumNetworkPolicy added in v1.3.14 

type KubernetesObjectData_CiliumNetworkPolicy struct {
	CiliumNetworkPolicy *KubernetesCiliumNetworkPolicyData `protobuf:"bytes,104,opt,name=cilium_network_policy,json=ciliumNetworkPolicy,proto3,oneof"`
}

type KubernetesObjectData_NetworkPolicy added in v1.2.0 

type KubernetesObjectData_NetworkPolicy struct {
	NetworkPolicy *KubernetesNetworkPolicyData `protobuf:"bytes,103,opt,name=network_policy,json=networkPolicy,proto3,oneof"`
}

type KubernetesObjectData_Node added in v0.0.11 

type KubernetesObjectData_Node struct {
	Node *KubernetesNodeData `protobuf:"bytes,101,opt,name=node,proto3,oneof"`
}

type KubernetesObjectData_Pod added in v0.0.6 

type KubernetesObjectData_Pod struct {
	Pod *KubernetesPodData `protobuf:"bytes,100,opt,name=pod,proto3,oneof"`
}

type KubernetesObjectData_Service added in v1.0.1 

type KubernetesObjectData_Service struct {
	Service *KubernetesServiceData `protobuf:"bytes,102,opt,name=service,proto3,oneof"`
}

type KubernetesOwnerReference 

type KubernetesOwnerReference struct {
	ApiVersion         string `protobuf:"bytes,1,opt,name=api_version,json=apiVersion,proto3" json:"api_version,omitempty"`
	BlockOwnerDeletion bool   `protobuf:"varint,2,opt,name=block_owner_deletion,json=blockOwnerDeletion,proto3" json:"block_owner_deletion,omitempty"`
	Controller         bool   `protobuf:"varint,3,opt,name=controller,proto3" json:"controller,omitempty"`
	Kind               string `protobuf:"bytes,4,opt,name=kind,proto3" json:"kind,omitempty"`
	Name               string `protobuf:"bytes,5,opt,name=name,proto3" json:"name,omitempty"`
	Uid                string `protobuf:"bytes,6,opt,name=uid,proto3" json:"uid,omitempty"`
	// contains filtered or unexported fields
}

Information identifying an object owning a Kubernetes resource. https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.29/#ownerreference-v1-meta

func (*KubernetesOwnerReference) Descriptor deprecated 

func (*KubernetesOwnerReference) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesOwnerReference.ProtoReflect.Descriptor instead.

func (*KubernetesOwnerReference) GetApiVersion 

func (x *KubernetesOwnerReference) GetApiVersion() string

func (*KubernetesOwnerReference) GetBlockOwnerDeletion 

func (x *KubernetesOwnerReference) GetBlockOwnerDeletion() bool

func (*KubernetesOwnerReference) GetController 

func (x *KubernetesOwnerReference) GetController() bool

func (*KubernetesOwnerReference) GetKind 

func (x *KubernetesOwnerReference) GetKind() string

func (*KubernetesOwnerReference) GetName 

func (x *KubernetesOwnerReference) GetName() string

func (*KubernetesOwnerReference) GetUid 

func (x *KubernetesOwnerReference) GetUid() string

func (*KubernetesOwnerReference) ProtoMessage 

func (*KubernetesOwnerReference) ProtoMessage()

func (*KubernetesOwnerReference) ProtoReflect 

func (x *KubernetesOwnerReference) ProtoReflect() protoreflect.Message

func (*KubernetesOwnerReference) Reset 

func (x *KubernetesOwnerReference) Reset()

func (*KubernetesOwnerReference) String 

func (x *KubernetesOwnerReference) String() string

type KubernetesPodData added in v0.0.6 

type KubernetesPodData struct {
	IpAddresses []string `protobuf:"bytes,1,rep,name=ip_addresses,json=ipAddresses,proto3" json:"ip_addresses,omitempty"`
	// contains filtered or unexported fields
}

KubernetesPodData contains information specific to a Pod object. It currently holds the IP addresses allocated to a pod. If this field is specified, the 0th entry must match the podIP field. A Pod may be allocated at most 1 value for each of IPv4 and IPv6. This list is empty if no IPs have been allocated yet.

func (*KubernetesPodData) Descriptor deprecated added in v0.0.6 

func (*KubernetesPodData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesPodData.ProtoReflect.Descriptor instead.

func (*KubernetesPodData) GetIpAddresses added in v0.0.6 

func (x *KubernetesPodData) GetIpAddresses() []string

func (*KubernetesPodData) ProtoMessage added in v0.0.6 

func (*KubernetesPodData) ProtoMessage()

func (*KubernetesPodData) ProtoReflect added in v0.0.6 

func (x *KubernetesPodData) ProtoReflect() protoreflect.Message

func (*KubernetesPodData) Reset added in v0.0.6 

func (x *KubernetesPodData) Reset()

func (*KubernetesPodData) String added in v0.0.6 

func (x *KubernetesPodData) String() string

type KubernetesResourceMutation 

type KubernetesResourceMutation struct {

	// Send any of these "mutation" messages that can contain any of
	// The documented types
	//
	// Types that are valid to be assigned to Mutation:
	//
	//	*KubernetesResourceMutation_CreateResource
	//	*KubernetesResourceMutation_UpdateResource
	//	*KubernetesResourceMutation_DeleteResource
	Mutation isKubernetesResourceMutation_Mutation `protobuf_oneof:"mutation"`
	// contains filtered or unexported fields
}

A mutation to a Kubernetes resource in the cluster. Each mutation contains the full resource metadata after mutation (on create or update) or before mutation (on delete).

func (*KubernetesResourceMutation) Descriptor deprecated 

func (*KubernetesResourceMutation) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesResourceMutation.ProtoReflect.Descriptor instead.

func (*KubernetesResourceMutation) GetCreateResource 

func (x *KubernetesResourceMutation) GetCreateResource() *KubernetesObjectData

func (*KubernetesResourceMutation) GetDeleteResource 

func (x *KubernetesResourceMutation) GetDeleteResource() *KubernetesObjectData

func (*KubernetesResourceMutation) GetMutation 

func (x *KubernetesResourceMutation) GetMutation() isKubernetesResourceMutation_Mutation

func (*KubernetesResourceMutation) GetUpdateResource 

func (x *KubernetesResourceMutation) GetUpdateResource() *KubernetesObjectData

func (*KubernetesResourceMutation) ProtoMessage 

func (*KubernetesResourceMutation) ProtoMessage()

func (*KubernetesResourceMutation) ProtoReflect 

func (x *KubernetesResourceMutation) ProtoReflect() protoreflect.Message

func (*KubernetesResourceMutation) Reset 

func (x *KubernetesResourceMutation) Reset()

func (*KubernetesResourceMutation) String 

func (x *KubernetesResourceMutation) String() string

type KubernetesResourceMutation_CreateResource 

type KubernetesResourceMutation_CreateResource struct {
	// Metadata of a newly created Kubernetes resource.
	CreateResource *KubernetesObjectData `protobuf:"bytes,1,opt,name=create_resource,json=createResource,proto3,oneof"`
}

type KubernetesResourceMutation_DeleteResource 

type KubernetesResourceMutation_DeleteResource struct {
	// Metadata of a deleted Kubernetes resource, before deletion.
	DeleteResource *KubernetesObjectData `protobuf:"bytes,3,opt,name=delete_resource,json=deleteResource,proto3,oneof"`
}

type KubernetesResourceMutation_UpdateResource 

type KubernetesResourceMutation_UpdateResource struct {
	// Metadata of an updated Kubernetes resource, after update.
	UpdateResource *KubernetesObjectData `protobuf:"bytes,2,opt,name=update_resource,json=updateResource,proto3,oneof"`
}

type KubernetesResourceSnapshotComplete 

type KubernetesResourceSnapshotComplete struct {
	// contains filtered or unexported fields
}

Empty on purpose since this type is just expected when snapshot stream is done.

func (*KubernetesResourceSnapshotComplete) Descriptor deprecated 

func (*KubernetesResourceSnapshotComplete) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesResourceSnapshotComplete.ProtoReflect.Descriptor instead.

func (*KubernetesResourceSnapshotComplete) ProtoMessage 

func (*KubernetesResourceSnapshotComplete) ProtoMessage()

func (*KubernetesResourceSnapshotComplete) ProtoReflect 

func (x *KubernetesResourceSnapshotComplete) ProtoReflect() protoreflect.Message

func (*KubernetesResourceSnapshotComplete) Reset 

func (x *KubernetesResourceSnapshotComplete) Reset()

func (*KubernetesResourceSnapshotComplete) String 

func (x *KubernetesResourceSnapshotComplete) String() string

type KubernetesServiceData added in v1.0.1 

type KubernetesServiceData struct {

	// List of IP addresses associated with the Kubernetes service
	IpAddresses []string `protobuf:"bytes,1,rep,name=ip_addresses,json=ipAddresses,proto3" json:"ip_addresses,omitempty"`
	// List of service ports details
	Ports []*KubernetesServiceData_ServicePort `protobuf:"bytes,2,rep,name=ports,proto3" json:"ports,omitempty"`
	// Type of Kubernetes service (e.g., ClusterIP, NodePort, LoadBalancer, etc.)
	Type string `protobuf:"bytes,3,opt,name=type,proto3" json:"type,omitempty"`
	// The external reference that discovery mechanisms will
	// return as an alias for this service
	ExternalName *string `protobuf:"bytes,4,opt,name=external_name,json=externalName,proto3,oneof" json:"external_name,omitempty"`
	// The class of the load balancer implementation this Service belongs to
	LoadBalancerClass *string `protobuf:"bytes,5,opt,name=load_balancer_class,json=loadBalancerClass,proto3,oneof" json:"load_balancer_class,omitempty"`
	// contains filtered or unexported fields
}

func (*KubernetesServiceData) Descriptor deprecated added in v1.0.1 

func (*KubernetesServiceData) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesServiceData.ProtoReflect.Descriptor instead.

func (*KubernetesServiceData) GetExternalName added in v1.0.1 

func (x *KubernetesServiceData) GetExternalName() string

func (*KubernetesServiceData) GetIpAddresses added in v1.0.1 

func (x *KubernetesServiceData) GetIpAddresses() []string

func (*KubernetesServiceData) GetLoadBalancerClass added in v1.0.1 

func (x *KubernetesServiceData) GetLoadBalancerClass() string

func (*KubernetesServiceData) GetPorts added in v1.0.1 

func (x *KubernetesServiceData) GetPorts() []*KubernetesServiceData_ServicePort

func (*KubernetesServiceData) GetType added in v1.0.1 

func (x *KubernetesServiceData) GetType() string

func (*KubernetesServiceData) ProtoMessage added in v1.0.1 

func (*KubernetesServiceData) ProtoMessage()

func (*KubernetesServiceData) ProtoReflect added in v1.0.1 

func (x *KubernetesServiceData) ProtoReflect() protoreflect.Message

func (*KubernetesServiceData) Reset added in v1.0.1 

func (x *KubernetesServiceData) Reset()

func (*KubernetesServiceData) String added in v1.0.1 

func (x *KubernetesServiceData) String() string

type KubernetesServiceData_ServicePort added in v1.0.1 

type KubernetesServiceData_ServicePort struct {

	// The port on each node on which this service is exposed
	NodePort *uint32 `protobuf:"varint,1,opt,name=node_port,json=nodePort,proto3,oneof" json:"node_port,omitempty"`
	// The port that will be exposed by this service
	Port uint32 `protobuf:"varint,2,opt,name=port,proto3" json:"port,omitempty"`
	// The IP protocol for this port, supports "TCP", "UDP", and "SCTP"
	Protocol string `protobuf:"bytes,3,opt,name=protocol,proto3" json:"protocol,omitempty"`
	// List of ports exposing the service via a load balancer
	LoadBalancerPorts []string `protobuf:"bytes,4,rep,name=load_balancer_ports,json=loadBalancerPorts,proto3" json:"load_balancer_ports,omitempty"`
	// contains filtered or unexported fields
}

func (*KubernetesServiceData_ServicePort) Descriptor deprecated added in v1.0.1 

func (*KubernetesServiceData_ServicePort) Descriptor() ([]byte, []int)

Deprecated: Use KubernetesServiceData_ServicePort.ProtoReflect.Descriptor instead.

func (*KubernetesServiceData_ServicePort) GetLoadBalancerPorts added in v1.0.1 

func (x *KubernetesServiceData_ServicePort) GetLoadBalancerPorts() []string

func (*KubernetesServiceData_ServicePort) GetNodePort added in v1.0.1 

func (x *KubernetesServiceData_ServicePort) GetNodePort() uint32

func (*KubernetesServiceData_ServicePort) GetPort added in v1.0.1 

func (x *KubernetesServiceData_ServicePort) GetPort() uint32

func (*KubernetesServiceData_ServicePort) GetProtocol added in v1.0.1 

func (x *KubernetesServiceData_ServicePort) GetProtocol() string

func (*KubernetesServiceData_ServicePort) ProtoMessage added in v1.0.1 

func (*KubernetesServiceData_ServicePort) ProtoMessage()

func (*KubernetesServiceData_ServicePort) ProtoReflect added in v1.0.1 

func (x *KubernetesServiceData_ServicePort) ProtoReflect() protoreflect.Message

func (*KubernetesServiceData_ServicePort) Reset added in v1.0.1 

func (x *KubernetesServiceData_ServicePort) Reset()

func (*KubernetesServiceData_ServicePort) String added in v1.0.1 

func (x *KubernetesServiceData_ServicePort) String() string

type LabelSelector added in v1.2.0 

type LabelSelector struct {
	MatchLabels      map[string]string           `` /* 168-byte string literal not displayed */
	MatchExpressions []*LabelSelectorRequirement `protobuf:"bytes,2,rep,name=match_expressions,json=matchExpressions,proto3" json:"match_expressions,omitempty"`
	// contains filtered or unexported fields
}

LabelSelector selects a k8s resource (e.g., a pod or namespace) by its labels.

func (*LabelSelector) Descriptor deprecated added in v1.2.0 

func (*LabelSelector) Descriptor() ([]byte, []int)

Deprecated: Use LabelSelector.ProtoReflect.Descriptor instead.

func (*LabelSelector) GetMatchExpressions added in v1.2.0 

func (x *LabelSelector) GetMatchExpressions() []*LabelSelectorRequirement

func (*LabelSelector) GetMatchLabels added in v1.2.0 

func (x *LabelSelector) GetMatchLabels() map[string]string

func (*LabelSelector) ProtoMessage added in v1.2.0 

func (*LabelSelector) ProtoMessage()

func (*LabelSelector) ProtoReflect added in v1.2.0 

func (x *LabelSelector) ProtoReflect() protoreflect.Message

func (*LabelSelector) Reset added in v1.2.0 

func (x *LabelSelector) Reset()

func (*LabelSelector) String added in v1.2.0 

func (x *LabelSelector) String() string

type LabelSelectorList added in v1.3.14 

type LabelSelectorList struct {
	Items []*LabelSelector `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

LabelSelectorList wraps repeated LabelSelector to distinguish nil from empty.

func (*LabelSelectorList) Descriptor deprecated added in v1.3.14 

func (*LabelSelectorList) Descriptor() ([]byte, []int)

Deprecated: Use LabelSelectorList.ProtoReflect.Descriptor instead.

func (*LabelSelectorList) GetItems added in v1.3.14 

func (x *LabelSelectorList) GetItems() []*LabelSelector

func (*LabelSelectorList) ProtoMessage added in v1.3.14 

func (*LabelSelectorList) ProtoMessage()

func (*LabelSelectorList) ProtoReflect added in v1.3.14 

func (x *LabelSelectorList) ProtoReflect() protoreflect.Message

func (*LabelSelectorList) Reset added in v1.3.14 

func (x *LabelSelectorList) Reset()

func (*LabelSelectorList) String added in v1.3.14 

func (x *LabelSelectorList) String() string

type LabelSelectorRequirement added in v1.2.0 

type LabelSelectorRequirement struct {
	Key string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
	// operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
	Operator string   `protobuf:"bytes,2,opt,name=operator,proto3" json:"operator,omitempty"`
	Values   []string `protobuf:"bytes,3,rep,name=values,proto3" json:"values,omitempty"`
	// contains filtered or unexported fields
}

LabelSelectorRequirement is a selector that contains values, a key, and an operator that relates the key and values.

func (*LabelSelectorRequirement) Descriptor deprecated added in v1.2.0 

func (*LabelSelectorRequirement) Descriptor() ([]byte, []int)

Deprecated: Use LabelSelectorRequirement.ProtoReflect.Descriptor instead.

func (*LabelSelectorRequirement) GetKey added in v1.2.0 

func (x *LabelSelectorRequirement) GetKey() string

func (*LabelSelectorRequirement) GetOperator added in v1.2.0 

func (x *LabelSelectorRequirement) GetOperator() string

func (*LabelSelectorRequirement) GetValues added in v1.2.0 

func (x *LabelSelectorRequirement) GetValues() []string

func (*LabelSelectorRequirement) ProtoMessage added in v1.2.0 

func (*LabelSelectorRequirement) ProtoMessage()

func (*LabelSelectorRequirement) ProtoReflect added in v1.2.0 

func (x *LabelSelectorRequirement) ProtoReflect() protoreflect.Message

func (*LabelSelectorRequirement) Reset added in v1.2.0 

func (x *LabelSelectorRequirement) Reset()

func (*LabelSelectorRequirement) String added in v1.2.0 

func (x *LabelSelectorRequirement) String() string

type Layer4 

type Layer4 struct {

	// Types that are valid to be assigned to Protocol:
	//
	//	*Layer4_Tcp
	//	*Layer4_Udp
	//	*Layer4_Icmpv4
	//	*Layer4_Icmpv6
	//	*Layer4_Sctp
	Protocol isLayer4_Protocol `protobuf_oneof:"protocol"`
	// contains filtered or unexported fields
}

Layer4 contains the Layer-4 header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-layer4

func (*Layer4) Descriptor deprecated 

func (*Layer4) Descriptor() ([]byte, []int)

Deprecated: Use Layer4.ProtoReflect.Descriptor instead.

func (*Layer4) GetIcmpv4 

func (x *Layer4) GetIcmpv4() *ICMPv4

func (*Layer4) GetIcmpv6 

func (x *Layer4) GetIcmpv6() *ICMPv6

func (*Layer4) GetProtocol 

func (x *Layer4) GetProtocol() isLayer4_Protocol

func (*Layer4) GetSctp 

func (x *Layer4) GetSctp() *SCTP

func (*Layer4) GetTcp 

func (x *Layer4) GetTcp() *TCP

func (*Layer4) GetUdp 

func (x *Layer4) GetUdp() *UDP

func (*Layer4) ProtoMessage 

func (*Layer4) ProtoMessage()

func (*Layer4) ProtoReflect 

func (x *Layer4) ProtoReflect() protoreflect.Message

func (*Layer4) Reset 

func (x *Layer4) Reset()

func (*Layer4) String 

func (x *Layer4) String() string

type Layer4_Icmpv4 

type Layer4_Icmpv4 struct {
	// ICMP is technically not L4, but mutually exclusive with the above.
	Icmpv4 *ICMPv4 `protobuf:"bytes,3,opt,name=icmpv4,proto3,oneof"`
}

type Layer4_Icmpv6 

type Layer4_Icmpv6 struct {
	Icmpv6 *ICMPv6 `protobuf:"bytes,4,opt,name=icmpv6,proto3,oneof"`
}

type Layer4_Sctp 

type Layer4_Sctp struct {
	Sctp *SCTP `protobuf:"bytes,5,opt,name=sctp,proto3,oneof"`
}

type Layer4_Tcp 

type Layer4_Tcp struct {
	Tcp *TCP `protobuf:"bytes,1,opt,name=tcp,proto3,oneof"`
}

type Layer4_Udp 

type Layer4_Udp struct {
	Udp *UDP `protobuf:"bytes,2,opt,name=udp,proto3,oneof"`
}

type LogEntry 

type LogEntry struct {

	// The actual log message contents, as a JSON object.
	JsonMessage string `protobuf:"bytes,3,opt,name=json_message,json=jsonMessage,proto3" json:"json_message,omitempty"`
	// contains filtered or unexported fields
}

Message representing a log entry.

func (*LogEntry) Descriptor deprecated 

func (*LogEntry) Descriptor() ([]byte, []int)

Deprecated: Use LogEntry.ProtoReflect.Descriptor instead.

func (*LogEntry) GetJsonMessage 

func (x *LogEntry) GetJsonMessage() string

func (*LogEntry) ProtoMessage 

func (*LogEntry) ProtoMessage()

func (*LogEntry) ProtoReflect 

func (x *LogEntry) ProtoReflect() protoreflect.Message

func (*LogEntry) Reset 

func (x *LogEntry) Reset()

func (*LogEntry) String 

func (x *LogEntry) String() string

type LogLevel 

type LogLevel int32

Enumeration to define the different levels of logging. 

const (
	// Default unspecified log level.
	LogLevel_LOG_LEVEL_UNSPECIFIED LogLevel = 0
	// Debug log level, useful for development and troubleshooting.
	LogLevel_LOG_LEVEL_DEBUG LogLevel = 1
	// Informational log level for general application information.
	LogLevel_LOG_LEVEL_INFO LogLevel = 2
	// Warning log level for potentially problematic situations.
	LogLevel_LOG_LEVEL_WARN LogLevel = 3
	// Error log level indicating something went wrong.
	LogLevel_LOG_LEVEL_ERROR LogLevel = 4
)

func (LogLevel) Descriptor 

func (LogLevel) Descriptor() protoreflect.EnumDescriptor

func (LogLevel) Enum 

func (x LogLevel) Enum() *LogLevel

func (LogLevel) EnumDescriptor deprecated 

func (LogLevel) EnumDescriptor() ([]byte, []int)

Deprecated: Use LogLevel.Descriptor instead.

func (LogLevel) Number 

func (x LogLevel) Number() protoreflect.EnumNumber

func (LogLevel) String 

func (x LogLevel) String() string

func (LogLevel) Type 

func (LogLevel) Type() protoreflect.EnumType

type NetworkPolicyRule added in v1.2.0 

type NetworkPolicyRule struct {
	Peers []*Peer `protobuf:"bytes,1,rep,name=peers,proto3" json:"peers,omitempty"`
	Ports []*Port `protobuf:"bytes,2,rep,name=ports,proto3" json:"ports,omitempty"`
	// contains filtered or unexported fields
}

NetworkPolicyRule defines a single ingress or egress rule.

func (*NetworkPolicyRule) Descriptor deprecated added in v1.2.0 

func (*NetworkPolicyRule) Descriptor() ([]byte, []int)

Deprecated: Use NetworkPolicyRule.ProtoReflect.Descriptor instead.

func (*NetworkPolicyRule) GetPeers added in v1.2.0 

func (x *NetworkPolicyRule) GetPeers() []*Peer

func (*NetworkPolicyRule) GetPorts added in v1.2.0 

func (x *NetworkPolicyRule) GetPorts() []*Port

func (*NetworkPolicyRule) ProtoMessage added in v1.2.0 

func (*NetworkPolicyRule) ProtoMessage()

func (*NetworkPolicyRule) ProtoReflect added in v1.2.0 

func (x *NetworkPolicyRule) ProtoReflect() protoreflect.Message

func (*NetworkPolicyRule) Reset added in v1.2.0 

func (x *NetworkPolicyRule) Reset()

func (*NetworkPolicyRule) String added in v1.2.0 

func (x *NetworkPolicyRule) String() string

type Peer added in v1.2.0 

type Peer struct {

	// Types that are valid to be assigned to Peer:
	//
	//	*Peer_IpBlock
	//	*Peer_Pods
	Peer isPeer_Peer `protobuf_oneof:"peer"`
	// contains filtered or unexported fields
}

Peer defines a network peer as a set of IP addresses or a set of pods.

func (*Peer) Descriptor deprecated added in v1.2.0 

func (*Peer) Descriptor() ([]byte, []int)

Deprecated: Use Peer.ProtoReflect.Descriptor instead.

func (*Peer) GetIpBlock added in v1.2.0 

func (x *Peer) GetIpBlock() *IPBlock

func (*Peer) GetPeer added in v1.2.0 

func (x *Peer) GetPeer() isPeer_Peer

func (*Peer) GetPods added in v1.2.0 

func (x *Peer) GetPods() *PeerSelector

func (*Peer) ProtoMessage added in v1.2.0 

func (*Peer) ProtoMessage()

func (*Peer) ProtoReflect added in v1.2.0 

func (x *Peer) ProtoReflect() protoreflect.Message

func (*Peer) Reset added in v1.2.0 

func (x *Peer) Reset()

func (*Peer) String added in v1.2.0 

func (x *Peer) String() string

type PeerSelector added in v1.2.0 

type PeerSelector struct {

	// Selects namespaces using cluster-scoped labels.
	// An empty selector selects all namespaces.
	NamespaceSelector *LabelSelector `protobuf:"bytes,1,opt,name=namespace_selector,json=namespaceSelector,proto3,oneof" json:"namespace_selector,omitempty"`
	// Selects pods in the selected namespaces using pod labels.
	// An empty selectors selects all pods.
	PodSelector *LabelSelector `protobuf:"bytes,2,opt,name=pod_selector,json=podSelector,proto3,oneof" json:"pod_selector,omitempty"`
	// contains filtered or unexported fields
}

PeerSelector selects a set of pods.

func (*PeerSelector) Descriptor deprecated added in v1.2.0 

func (*PeerSelector) Descriptor() ([]byte, []int)

Deprecated: Use PeerSelector.ProtoReflect.Descriptor instead.

func (*PeerSelector) GetNamespaceSelector added in v1.2.0 

func (x *PeerSelector) GetNamespaceSelector() *LabelSelector

func (*PeerSelector) GetPodSelector added in v1.2.0 

func (x *PeerSelector) GetPodSelector() *LabelSelector

func (*PeerSelector) ProtoMessage added in v1.2.0 

func (*PeerSelector) ProtoMessage()

func (*PeerSelector) ProtoReflect added in v1.2.0 

func (x *PeerSelector) ProtoReflect() protoreflect.Message

func (*PeerSelector) Reset added in v1.2.0 

func (x *PeerSelector) Reset()

func (*PeerSelector) String added in v1.2.0 

func (x *PeerSelector) String() string

type Peer_IpBlock added in v1.2.0 

type Peer_IpBlock struct {
	IpBlock *IPBlock `protobuf:"bytes,1,opt,name=ip_block,json=ipBlock,proto3,oneof"`
}

type Peer_Pods added in v1.2.0 

type Peer_Pods struct {
	Pods *PeerSelector `protobuf:"bytes,2,opt,name=pods,proto3,oneof"`
}

type Policy 

type Policy struct {
	Name      string   `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	Namespace string   `protobuf:"bytes,2,opt,name=namespace,proto3" json:"namespace,omitempty"`
	Labels    []string `protobuf:"bytes,3,rep,name=labels,proto3" json:"labels,omitempty"`
	Revision  uint64   `protobuf:"varint,4,opt,name=revision,proto3" json:"revision,omitempty"`
	Kind      string   `protobuf:"bytes,5,opt,name=kind,proto3" json:"kind,omitempty"`
	// contains filtered or unexported fields
}

Policy contains the Policy header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-policy

func (*Policy) Descriptor deprecated 

func (*Policy) Descriptor() ([]byte, []int)

Deprecated: Use Policy.ProtoReflect.Descriptor instead.

func (*Policy) GetKind added in v1.2.0 

func (x *Policy) GetKind() string

func (*Policy) GetLabels 

func (x *Policy) GetLabels() []string

func (*Policy) GetName 

func (x *Policy) GetName() string

func (*Policy) GetNamespace 

func (x *Policy) GetNamespace() string

func (*Policy) GetRevision 

func (x *Policy) GetRevision() uint64

func (*Policy) ProtoMessage 

func (*Policy) ProtoMessage()

func (*Policy) ProtoReflect 

func (x *Policy) ProtoReflect() protoreflect.Message

func (*Policy) Reset 

func (x *Policy) Reset()

func (*Policy) String 

func (x *Policy) String() string

type Port added in v1.2.0 

type Port struct {
	Protocol Port_Protocol `protobuf:"varint,1,opt,name=protocol,proto3,enum=illumio.cloud.k8sclustersync.v1.Port_Protocol" json:"protocol,omitempty"`
	Port     *string       `protobuf:"bytes,2,opt,name=port,proto3,oneof" json:"port,omitempty"`
	EndPort  *int32        `protobuf:"varint,3,opt,name=end_port,json=endPort,proto3,oneof" json:"end_port,omitempty"`
	// contains filtered or unexported fields
}

Port defines a network port.

func (*Port) Descriptor deprecated added in v1.2.0 

func (*Port) Descriptor() ([]byte, []int)

Deprecated: Use Port.ProtoReflect.Descriptor instead.

func (*Port) GetEndPort added in v1.2.0 

func (x *Port) GetEndPort() int32

func (*Port) GetPort added in v1.2.0 

func (x *Port) GetPort() string

func (*Port) GetProtocol added in v1.2.0 

func (x *Port) GetProtocol() Port_Protocol

func (*Port) ProtoMessage added in v1.2.0 

func (*Port) ProtoMessage()

func (*Port) ProtoReflect added in v1.2.0 

func (x *Port) ProtoReflect() protoreflect.Message

func (*Port) Reset added in v1.2.0 

func (x *Port) Reset()

func (*Port) String added in v1.2.0 

func (x *Port) String() string

type Port_Protocol added in v1.2.0 

type Port_Protocol int32
const (
	Port_PROTOCOL_TCP_UNSPECIFIED Port_Protocol = 0 // Default value in Kubernetes
	Port_PROTOCOL_UDP             Port_Protocol = 1
	Port_PROTOCOL_SCTP            Port_Protocol = 2
)

func (Port_Protocol) Descriptor added in v1.2.0 

func (Port_Protocol) Descriptor() protoreflect.EnumDescriptor

func (Port_Protocol) Enum added in v1.2.0 

func (x Port_Protocol) Enum() *Port_Protocol

func (Port_Protocol) EnumDescriptor deprecated added in v1.2.0 

func (Port_Protocol) EnumDescriptor() ([]byte, []int)

Deprecated: Use Port_Protocol.Descriptor instead.

func (Port_Protocol) Number added in v1.2.0 

func (x Port_Protocol) Number() protoreflect.EnumNumber

func (Port_Protocol) String added in v1.2.0 

func (x Port_Protocol) String() string

func (Port_Protocol) Type added in v1.2.0 

func (Port_Protocol) Type() protoreflect.EnumType

type SCTP 

type SCTP struct {
	SourcePort      uint32 `protobuf:"varint,1,opt,name=source_port,json=sourcePort,proto3" json:"source_port,omitempty"`
	DestinationPort uint32 `protobuf:"varint,2,opt,name=destination_port,json=destinationPort,proto3" json:"destination_port,omitempty"`
	// contains filtered or unexported fields
}

SCTP contains the SCTP header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-sctp

func (*SCTP) Descriptor deprecated 

func (*SCTP) Descriptor() ([]byte, []int)

Deprecated: Use SCTP.ProtoReflect.Descriptor instead.

func (*SCTP) GetDestinationPort 

func (x *SCTP) GetDestinationPort() uint32

func (*SCTP) GetSourcePort 

func (x *SCTP) GetSourcePort() uint32

func (*SCTP) ProtoMessage 

func (*SCTP) ProtoMessage()

func (*SCTP) ProtoReflect 

func (x *SCTP) ProtoReflect() protoreflect.Message

func (*SCTP) Reset 

func (x *SCTP) Reset()

func (*SCTP) String 

func (x *SCTP) String() string

type SendKubernetesNetworkFlowsRequest 

type SendKubernetesNetworkFlowsRequest struct {

	// Types that are valid to be assigned to Request:
	//
	//	*SendKubernetesNetworkFlowsRequest_Keepalive
	//	*SendKubernetesNetworkFlowsRequest_CiliumFlow
	//	*SendKubernetesNetworkFlowsRequest_FiveTupleFlow
	Request isSendKubernetesNetworkFlowsRequest_Request `protobuf_oneof:"request"`
	// contains filtered or unexported fields
}

Flow exported by the CNI plugin in the cluster.

func (*SendKubernetesNetworkFlowsRequest) Descriptor deprecated 

func (*SendKubernetesNetworkFlowsRequest) Descriptor() ([]byte, []int)

Deprecated: Use SendKubernetesNetworkFlowsRequest.ProtoReflect.Descriptor instead.

func (*SendKubernetesNetworkFlowsRequest) GetCiliumFlow 

func (x *SendKubernetesNetworkFlowsRequest) GetCiliumFlow() *CiliumFlow

func (*SendKubernetesNetworkFlowsRequest) GetFiveTupleFlow added in v1.3.0 

func (x *SendKubernetesNetworkFlowsRequest) GetFiveTupleFlow() *FiveTupleFlow

func (*SendKubernetesNetworkFlowsRequest) GetKeepalive added in v1.1.0 

func (x *SendKubernetesNetworkFlowsRequest) GetKeepalive() *Keepalive

func (*SendKubernetesNetworkFlowsRequest) GetRequest 

func (x *SendKubernetesNetworkFlowsRequest) GetRequest() isSendKubernetesNetworkFlowsRequest_Request

func (*SendKubernetesNetworkFlowsRequest) ProtoMessage 

func (*SendKubernetesNetworkFlowsRequest) ProtoMessage()

func (*SendKubernetesNetworkFlowsRequest) ProtoReflect 

func (x *SendKubernetesNetworkFlowsRequest) ProtoReflect() protoreflect.Message

func (*SendKubernetesNetworkFlowsRequest) Reset 

func (x *SendKubernetesNetworkFlowsRequest) Reset()

func (*SendKubernetesNetworkFlowsRequest) String 

func (x *SendKubernetesNetworkFlowsRequest) String() string

type SendKubernetesNetworkFlowsRequest_CiliumFlow 

type SendKubernetesNetworkFlowsRequest_CiliumFlow struct {
	CiliumFlow *CiliumFlow `protobuf:"bytes,1,opt,name=cilium_flow,json=ciliumFlow,proto3,oneof"`
}

type SendKubernetesNetworkFlowsRequest_FiveTupleFlow added in v1.3.0 

type SendKubernetesNetworkFlowsRequest_FiveTupleFlow struct {
	FiveTupleFlow *FiveTupleFlow `protobuf:"bytes,2,opt,name=five_tuple_flow,json=fiveTupleFlow,proto3,oneof"`
}

type SendKubernetesNetworkFlowsRequest_Keepalive added in v1.1.0 

type SendKubernetesNetworkFlowsRequest_Keepalive struct {
	Keepalive *Keepalive `protobuf:"bytes,3,opt,name=keepalive,proto3,oneof"`
}

type SendKubernetesNetworkFlowsResponse 

type SendKubernetesNetworkFlowsResponse struct {
	// contains filtered or unexported fields
}

Message sent to the operator in a SendKubernetesNetworkFlows response stream.

func (*SendKubernetesNetworkFlowsResponse) Descriptor deprecated 

func (*SendKubernetesNetworkFlowsResponse) Descriptor() ([]byte, []int)

Deprecated: Use SendKubernetesNetworkFlowsResponse.ProtoReflect.Descriptor instead.

func (*SendKubernetesNetworkFlowsResponse) ProtoMessage 

func (*SendKubernetesNetworkFlowsResponse) ProtoMessage()

func (*SendKubernetesNetworkFlowsResponse) ProtoReflect 

func (x *SendKubernetesNetworkFlowsResponse) ProtoReflect() protoreflect.Message

func (*SendKubernetesNetworkFlowsResponse) Reset 

func (x *SendKubernetesNetworkFlowsResponse) Reset()

func (*SendKubernetesNetworkFlowsResponse) String 

func (x *SendKubernetesNetworkFlowsResponse) String() string

type SendKubernetesResourcesRequest 

type SendKubernetesResourcesRequest struct {

	// Send any of these "request" messages that can contain any of the documented types.
	//
	// Types that are valid to be assigned to Request:
	//
	//	*SendKubernetesResourcesRequest_Keepalive
	//	*SendKubernetesResourcesRequest_ClusterMetadata
	//	*SendKubernetesResourcesRequest_ResourceData
	//	*SendKubernetesResourcesRequest_ResourceSnapshotComplete
	//	*SendKubernetesResourcesRequest_KubernetesResourceMutation
	Request isSendKubernetesResourcesRequest_Request `protobuf_oneof:"request"`
	// contains filtered or unexported fields
}

Message sent by the operator in a KubernetesResources request stream. Message subtypes are sent in this order in each stream: 1. (1) cluster_metadata, to identify the client cluster and operator. 2. (0+) resource_metadata, one message for each resource in the cluster. 3. (1) resource_snapshot_complete, to indicate the initial snapshot of all resources in the cluster is complete. 4. (0+) resource_mutation, one message for each resource creation/update/deletion in the cluster.

func (*SendKubernetesResourcesRequest) Descriptor deprecated 

func (*SendKubernetesResourcesRequest) Descriptor() ([]byte, []int)

Deprecated: Use SendKubernetesResourcesRequest.ProtoReflect.Descriptor instead.

func (*SendKubernetesResourcesRequest) GetClusterMetadata 

func (x *SendKubernetesResourcesRequest) GetClusterMetadata() *KubernetesClusterMetadata

func (*SendKubernetesResourcesRequest) GetKeepalive added in v1.1.0 

func (x *SendKubernetesResourcesRequest) GetKeepalive() *Keepalive

func (*SendKubernetesResourcesRequest) GetKubernetesResourceMutation 

func (x *SendKubernetesResourcesRequest) GetKubernetesResourceMutation() *KubernetesResourceMutation

func (*SendKubernetesResourcesRequest) GetRequest 

func (x *SendKubernetesResourcesRequest) GetRequest() isSendKubernetesResourcesRequest_Request

func (*SendKubernetesResourcesRequest) GetResourceData added in v0.0.6 

func (x *SendKubernetesResourcesRequest) GetResourceData() *KubernetesObjectData

func (*SendKubernetesResourcesRequest) GetResourceSnapshotComplete 

func (x *SendKubernetesResourcesRequest) GetResourceSnapshotComplete() *KubernetesResourceSnapshotComplete

func (*SendKubernetesResourcesRequest) ProtoMessage 

func (*SendKubernetesResourcesRequest) ProtoMessage()

func (*SendKubernetesResourcesRequest) ProtoReflect 

func (x *SendKubernetesResourcesRequest) ProtoReflect() protoreflect.Message

func (*SendKubernetesResourcesRequest) Reset 

func (x *SendKubernetesResourcesRequest) Reset()

func (*SendKubernetesResourcesRequest) String 

func (x *SendKubernetesResourcesRequest) String() string

type SendKubernetesResourcesRequest_ClusterMetadata 

type SendKubernetesResourcesRequest_ClusterMetadata struct {
	// Metadata about the cluster and operator.
	ClusterMetadata *KubernetesClusterMetadata `protobuf:"bytes,1,opt,name=cluster_metadata,json=clusterMetadata,proto3,oneof"`
}

type SendKubernetesResourcesRequest_Keepalive added in v1.1.0 

type SendKubernetesResourcesRequest_Keepalive struct {
	Keepalive *Keepalive `protobuf:"bytes,5,opt,name=keepalive,proto3,oneof"`
}

type SendKubernetesResourcesRequest_KubernetesResourceMutation 

type SendKubernetesResourcesRequest_KubernetesResourceMutation struct {
	// A mutation to a Kubernetes resource in the cluster.
	KubernetesResourceMutation *KubernetesResourceMutation `protobuf:"bytes,4,opt,name=kubernetes_resource_mutation,json=kubernetesResourceMutation,proto3,oneof"`
}

type SendKubernetesResourcesRequest_ResourceData added in v0.0.6 

type SendKubernetesResourcesRequest_ResourceData struct {
	// Metadata about a Kubernetes resource in the cluster.
	ResourceData *KubernetesObjectData `protobuf:"bytes,2,opt,name=resource_data,json=resourceData,proto3,oneof"`
}

type SendKubernetesResourcesRequest_ResourceSnapshotComplete 

type SendKubernetesResourcesRequest_ResourceSnapshotComplete struct {
	// Indicates that all resource_metadata have been sent to report all the resources in the cluster in the initial snapshot.
	ResourceSnapshotComplete *KubernetesResourceSnapshotComplete `protobuf:"bytes,3,opt,name=resource_snapshot_complete,json=resourceSnapshotComplete,proto3,oneof"`
}

type SendKubernetesResourcesResponse 

type SendKubernetesResourcesResponse struct {
	// contains filtered or unexported fields
}

Message sent to the operator in a KubernetesResources response stream.

func (*SendKubernetesResourcesResponse) Descriptor deprecated 

func (*SendKubernetesResourcesResponse) Descriptor() ([]byte, []int)

Deprecated: Use SendKubernetesResourcesResponse.ProtoReflect.Descriptor instead.

func (*SendKubernetesResourcesResponse) ProtoMessage 

func (*SendKubernetesResourcesResponse) ProtoMessage()

func (*SendKubernetesResourcesResponse) ProtoReflect 

func (x *SendKubernetesResourcesResponse) ProtoReflect() protoreflect.Message

func (*SendKubernetesResourcesResponse) Reset 

func (x *SendKubernetesResourcesResponse) Reset()

func (*SendKubernetesResourcesResponse) String 

func (x *SendKubernetesResourcesResponse) String() string

type SendLogsRequest 

type SendLogsRequest struct {

	// Types that are valid to be assigned to Request:
	//
	//	*SendLogsRequest_Keepalive
	//	*SendLogsRequest_LogEntry
	Request isSendLogsRequest_Request `protobuf_oneof:"request"`
	// contains filtered or unexported fields
}

Message to encapsulate a request to send logs.

func (*SendLogsRequest) Descriptor deprecated 

func (*SendLogsRequest) Descriptor() ([]byte, []int)

Deprecated: Use SendLogsRequest.ProtoReflect.Descriptor instead.

func (*SendLogsRequest) GetKeepalive added in v1.1.0 

func (x *SendLogsRequest) GetKeepalive() *Keepalive

func (*SendLogsRequest) GetLogEntry 

func (x *SendLogsRequest) GetLogEntry() *LogEntry

func (*SendLogsRequest) GetRequest 

func (x *SendLogsRequest) GetRequest() isSendLogsRequest_Request

func (*SendLogsRequest) ProtoMessage 

func (*SendLogsRequest) ProtoMessage()

func (*SendLogsRequest) ProtoReflect 

func (x *SendLogsRequest) ProtoReflect() protoreflect.Message

func (*SendLogsRequest) Reset 

func (x *SendLogsRequest) Reset()

func (*SendLogsRequest) String 

func (x *SendLogsRequest) String() string

type SendLogsRequest_Keepalive added in v1.1.0 

type SendLogsRequest_Keepalive struct {
	Keepalive *Keepalive `protobuf:"bytes,2,opt,name=keepalive,proto3,oneof"`
}

type SendLogsRequest_LogEntry 

type SendLogsRequest_LogEntry struct {
	// A single log entry to be sent.
	LogEntry *LogEntry `protobuf:"bytes,1,opt,name=log_entry,json=logEntry,proto3,oneof"`
}

type SendLogsResponse 

type SendLogsResponse struct {
	// contains filtered or unexported fields
}

Message to encapsulate the response for sending logs.

func (*SendLogsResponse) Descriptor deprecated 

func (*SendLogsResponse) Descriptor() ([]byte, []int)

Deprecated: Use SendLogsResponse.ProtoReflect.Descriptor instead.

func (*SendLogsResponse) ProtoMessage 

func (*SendLogsResponse) ProtoMessage()

func (*SendLogsResponse) ProtoReflect 

func (x *SendLogsResponse) ProtoReflect() protoreflect.Message

func (*SendLogsResponse) Reset 

func (x *SendLogsResponse) Reset()

func (*SendLogsResponse) String 

func (x *SendLogsResponse) String() string

type Service 

type Service struct {
	Name      string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	Namespace string `protobuf:"bytes,2,opt,name=namespace,proto3" json:"namespace,omitempty"`
	// contains filtered or unexported fields
}

Service contains Service header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#Service

func (*Service) Descriptor deprecated 

func (*Service) Descriptor() ([]byte, []int)

Deprecated: Use Service.ProtoReflect.Descriptor instead.

func (*Service) GetName 

func (x *Service) GetName() string

func (*Service) GetNamespace 

func (x *Service) GetNamespace() string

func (*Service) ProtoMessage 

func (*Service) ProtoMessage()

func (*Service) ProtoReflect 

func (x *Service) ProtoReflect() protoreflect.Message

func (*Service) Reset 

func (x *Service) Reset()

func (*Service) String 

func (x *Service) String() string

type TCP 

type TCP struct {
	SourcePort      uint32    `protobuf:"varint,1,opt,name=source_port,json=sourcePort,proto3" json:"source_port,omitempty"`
	DestinationPort uint32    `protobuf:"varint,2,opt,name=destination_port,json=destinationPort,proto3" json:"destination_port,omitempty"`
	Flags           *TCPFlags `protobuf:"bytes,3,opt,name=flags,proto3" json:"flags,omitempty"`
	// contains filtered or unexported fields
}

TCP contains the TCP header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-tcp

func (*TCP) Descriptor deprecated 

func (*TCP) Descriptor() ([]byte, []int)

Deprecated: Use TCP.ProtoReflect.Descriptor instead.

func (*TCP) GetDestinationPort 

func (x *TCP) GetDestinationPort() uint32

func (*TCP) GetFlags 

func (x *TCP) GetFlags() *TCPFlags

func (*TCP) GetSourcePort 

func (x *TCP) GetSourcePort() uint32

func (*TCP) ProtoMessage 

func (*TCP) ProtoMessage()

func (*TCP) ProtoReflect 

func (x *TCP) ProtoReflect() protoreflect.Message

func (*TCP) Reset 

func (x *TCP) Reset()

func (*TCP) String 

func (x *TCP) String() string

type TCPFlags 

type TCPFlags struct {
	Fin bool `protobuf:"varint,1,opt,name=fin,proto3" json:"fin,omitempty"`
	Syn bool `protobuf:"varint,2,opt,name=syn,proto3" json:"syn,omitempty"`
	Rst bool `protobuf:"varint,3,opt,name=rst,proto3" json:"rst,omitempty"`
	Psh bool `protobuf:"varint,4,opt,name=psh,proto3" json:"psh,omitempty"`
	Ack bool `protobuf:"varint,5,opt,name=ack,proto3" json:"ack,omitempty"`
	Urg bool `protobuf:"varint,6,opt,name=urg,proto3" json:"urg,omitempty"`
	Ece bool `protobuf:"varint,7,opt,name=ece,proto3" json:"ece,omitempty"`
	Cwr bool `protobuf:"varint,8,opt,name=cwr,proto3" json:"cwr,omitempty"`
	Ns  bool `protobuf:"varint,9,opt,name=ns,proto3" json:"ns,omitempty"`
	// contains filtered or unexported fields
}

TCPFlags is the mask of TCP header flags observed in TCP packets in a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-tcpflags

func (*TCPFlags) Descriptor deprecated 

func (*TCPFlags) Descriptor() ([]byte, []int)

Deprecated: Use TCPFlags.ProtoReflect.Descriptor instead.

func (*TCPFlags) GetAck 

func (x *TCPFlags) GetAck() bool

func (*TCPFlags) GetCwr 

func (x *TCPFlags) GetCwr() bool

func (*TCPFlags) GetEce 

func (x *TCPFlags) GetEce() bool

func (*TCPFlags) GetFin 

func (x *TCPFlags) GetFin() bool

func (*TCPFlags) GetNs 

func (x *TCPFlags) GetNs() bool

func (*TCPFlags) GetPsh 

func (x *TCPFlags) GetPsh() bool

func (*TCPFlags) GetRst 

func (x *TCPFlags) GetRst() bool

func (*TCPFlags) GetSyn 

func (x *TCPFlags) GetSyn() bool

func (*TCPFlags) GetUrg 

func (x *TCPFlags) GetUrg() bool

func (*TCPFlags) ProtoMessage 

func (*TCPFlags) ProtoMessage()

func (*TCPFlags) ProtoReflect 

func (x *TCPFlags) ProtoReflect() protoreflect.Message

func (*TCPFlags) Reset 

func (x *TCPFlags) Reset()

func (*TCPFlags) String 

func (x *TCPFlags) String() string

type TrafficDirection 

type TrafficDirection int32

TrafficDirection contains TrafficDirectopm header flags of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-trafficdirection 

const (
	TrafficDirection_TRAFFIC_DIRECTION_TRAFFIC_DIRECTION_UNKNOWN_UNSPECIFIED TrafficDirection = 0
	TrafficDirection_TRAFFIC_DIRECTION_INGRESS                               TrafficDirection = 1
	TrafficDirection_TRAFFIC_DIRECTION_EGRESS                                TrafficDirection = 2
)

func (TrafficDirection) Descriptor 

func (TrafficDirection) Descriptor() protoreflect.EnumDescriptor

func (TrafficDirection) Enum 

func (x TrafficDirection) Enum() *TrafficDirection

func (TrafficDirection) EnumDescriptor deprecated 

func (TrafficDirection) EnumDescriptor() ([]byte, []int)

Deprecated: Use TrafficDirection.Descriptor instead.

func (TrafficDirection) Number 

func (x TrafficDirection) Number() protoreflect.EnumNumber

func (TrafficDirection) String 

func (x TrafficDirection) String() string

func (TrafficDirection) Type 

func (TrafficDirection) Type() protoreflect.EnumType

type UDP 

type UDP struct {
	SourcePort      uint32 `protobuf:"varint,1,opt,name=source_port,json=sourcePort,proto3" json:"source_port,omitempty"`
	DestinationPort uint32 `protobuf:"varint,2,opt,name=destination_port,json=destinationPort,proto3" json:"destination_port,omitempty"`
	// contains filtered or unexported fields
}

UDP contains the UDP header fields of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-udp

func (*UDP) Descriptor deprecated 

func (*UDP) Descriptor() ([]byte, []int)

Deprecated: Use UDP.ProtoReflect.Descriptor instead.

func (*UDP) GetDestinationPort 

func (x *UDP) GetDestinationPort() uint32

func (*UDP) GetSourcePort 

func (x *UDP) GetSourcePort() uint32

func (*UDP) ProtoMessage 

func (*UDP) ProtoMessage()

func (*UDP) ProtoReflect 

func (x *UDP) ProtoReflect() protoreflect.Message

func (*UDP) Reset 

func (x *UDP) Reset()

func (*UDP) String 

func (x *UDP) String() string

type UnimplementedKubernetesInfoServiceServer 

type UnimplementedKubernetesInfoServiceServer struct{}

UnimplementedKubernetesInfoServiceServer must be embedded to have forward compatible implementations.

NOTE: this should be embedded by value instead of pointer to avoid a nil pointer dereference when methods are called.

func (UnimplementedKubernetesInfoServiceServer) GetConfigurationUpdates added in v1.1.2 

func (UnimplementedKubernetesInfoServiceServer) GetConfigurationUpdates(grpc.BidiStreamingServer[GetConfigurationUpdatesRequest, GetConfigurationUpdatesResponse]) error

func (UnimplementedKubernetesInfoServiceServer) SendKubernetesNetworkFlows 

func (UnimplementedKubernetesInfoServiceServer) SendKubernetesNetworkFlows(grpc.BidiStreamingServer[SendKubernetesNetworkFlowsRequest, SendKubernetesNetworkFlowsResponse]) error

func (UnimplementedKubernetesInfoServiceServer) SendKubernetesResources 

func (UnimplementedKubernetesInfoServiceServer) SendKubernetesResources(grpc.BidiStreamingServer[SendKubernetesResourcesRequest, SendKubernetesResourcesResponse]) error

func (UnimplementedKubernetesInfoServiceServer) SendLogs 

func (UnimplementedKubernetesInfoServiceServer) SendLogs(grpc.BidiStreamingServer[SendLogsRequest, SendLogsResponse]) error

type UnsafeKubernetesInfoServiceServer 

type UnsafeKubernetesInfoServiceServer interface {
	// contains filtered or unexported methods
}

UnsafeKubernetesInfoServiceServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to KubernetesInfoServiceServer will result in compilation errors.

type Verdict 

type Verdict int32

Verdict contains Verdict header flags of a flow. https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-verdict 

const (
	Verdict_VERDICT_UNKNOWN_UNSPECIFIED Verdict = 0
	Verdict_VERDICT_FORWARDED           Verdict = 1
	Verdict_VERDICT_DROPPED             Verdict = 2
	Verdict_VERDICT_ERROR               Verdict = 3
	Verdict_VERDICT_AUDIT               Verdict = 4
	Verdict_VERDICT_REDIRECTED          Verdict = 5
	Verdict_VERDICT_TRACED              Verdict = 6
	Verdict_VERDICT_TRANSLATED          Verdict = 7
)

func (Verdict) Descriptor 

func (Verdict) Descriptor() protoreflect.EnumDescriptor

func (Verdict) Enum 

func (x Verdict) Enum() *Verdict

func (Verdict) EnumDescriptor deprecated 

func (Verdict) EnumDescriptor() ([]byte, []int)

Deprecated: Use Verdict.Descriptor instead.

func (Verdict) Number 

func (x Verdict) Number() protoreflect.EnumNumber

func (Verdict) String 

func (x Verdict) String() string

func (Verdict) Type 

func (Verdict) Type() protoreflect.EnumType

type Workload 

type Workload struct {
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	Kind string `protobuf:"bytes,2,opt,name=kind,proto3" json:"kind,omitempty"`
	// contains filtered or unexported fields
}

Workload contains the Workload header fields of a flow https://pkg.go.dev/github.com/cilium/cilium/api/v1/flow#readme-workload

func (*Workload) Descriptor deprecated 

func (*Workload) Descriptor() ([]byte, []int)

Deprecated: Use Workload.ProtoReflect.Descriptor instead.

func (*Workload) GetKind 

func (x *Workload) GetKind() string

func (*Workload) GetName 

func (x *Workload) GetName() string

func (*Workload) ProtoMessage 

func (*Workload) ProtoMessage()

func (*Workload) ProtoReflect 

func (x *Workload) ProtoReflect() protoreflect.Message

func (*Workload) Reset 

func (x *Workload) Reset()

func (*Workload) String 

func (x *Workload) String() string

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.