Documentation

Index

Constants

View Source
const (
	// DefaultDockerSocket is the default socket to use to communicate with docker
	DefaultDockerSocket = "/var/run/docker.sock"

	// DefaultDockerSocketType is unix
	DefaultDockerSocketType = "unix"
)
View Source
const (
	// DefaultRemoteArg is the default arguments for a remote enforcer
	DefaultRemoteArg = "enforce"
	// DefaultConnMark is the default conn mark for all data packets
	DefaultConnMark = uint32(0xEEEE)
)

Variables

This section is empty.

Functions

This section is empty.

Types

type ImplementationType

type ImplementationType int

    ImplementationType defines the type of iptables or ipsets implementation

    const (
    	// IPSets mandates an IPset supervisor implementation
    	IPSets ImplementationType = iota
    	// IPTables mandates an IPTable supervisor implementation
    	IPTables
    )

    type ModeType

    type ModeType int

      ModeType defines the mode of the enforcement and supervisor.

      const (
      	// RemoteContainer indicates that the Supervisor is implemented in the
      	// container namespace
      	RemoteContainer ModeType = iota
      	// LocalContainer indicates that the Supervisor is implemented in the host
      	// namespace
      	LocalContainer
      	// LocalServer indicates that the Supervisor applies to Linux processes
      	LocalServer
      )

      type PUType

      type PUType int

        PUType defines the PU type

        const (
        	// ContainerPU indicates that this PU is a container
        	ContainerPU PUType = iota
        	// LinuxProcessPU indicates that this is Linux process
        	LinuxProcessPU
        	// KubernetesPU indicates that this is KubernetesPod
        	KubernetesPU
        	// UIDLoginPU -- PU representing a user session
        	UIDLoginPU
        	// TransientPU PU -- placeholder to run processing. This should not
        	// be inserted in any cache. This is valid only for processing a packet
        	TransientPU
        	// HostPU indicates that we must apply policy to the host namespace
        	HostPU
        )

        Source Files