policy

package
v0.0.0-...-43dac14 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 6, 2021 License: LGPL-3.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type FileBasedPolicy 

type FileBasedPolicy struct {
	FileName string
	// contains filtered or unexported fields
}

func GeneratePolicyFromYAML 

func GeneratePolicyFromYAML(l *log.Logger, policyFile string) (FileBasedPolicy, error)

func (FileBasedPolicy) CheckPathOp 

func (p FileBasedPolicy) CheckPathOp(path string, op PathOps, mode int) bool

func (FileBasedPolicy) GetAllowedSyscalls 

func (p FileBasedPolicy) GetAllowedSyscalls() []string

func (FileBasedPolicy) GetExecAllowance 

func (p FileBasedPolicy) GetExecAllowance() int

func (FileBasedPolicy) GetExtraEnvs 

func (p FileBasedPolicy) GetExtraEnvs() []string

func (FileBasedPolicy) GetForkAllowance 

func (p FileBasedPolicy) GetForkAllowance() int

func (FileBasedPolicy) GetMaxChildProcs 

func (p FileBasedPolicy) GetMaxChildProcs() int

func (FileBasedPolicy) GetPreservedEnvKeys 

func (p FileBasedPolicy) GetPreservedEnvKeys() []string

func (FileBasedPolicy) GetTracedSyscalls 

func (p FileBasedPolicy) GetTracedSyscalls() []string

type GitPolicy 

type GitPolicy struct {
}

func (*GitPolicy) CheckPathExecutable 

func (p *GitPolicy) CheckPathExecutable(path string) bool

func (*GitPolicy) CheckPathOp 

func (p *GitPolicy) CheckPathOp(path string, op PathOps, mode int) bool

func (*GitPolicy) GetExecAllowance 

func (p *GitPolicy) GetExecAllowance() int

func (*GitPolicy) GetExtraEnvs 

func (p *GitPolicy) GetExtraEnvs() []string

func (*GitPolicy) GetForkAllowance 

func (p *GitPolicy) GetForkAllowance() int

func (*GitPolicy) GetMaxChildProcs 

func (p *GitPolicy) GetMaxChildProcs() uint

func (*GitPolicy) GetPreservedEnvKeys 

func (p *GitPolicy) GetPreservedEnvKeys() []string

type JuliaPolicy 

type JuliaPolicy struct {
}

func (JuliaPolicy) CheckPathOp 

func (p JuliaPolicy) CheckPathOp(path string, op PathOps, mode int) bool

func (JuliaPolicy) GetExecAllowance 

func (p JuliaPolicy) GetExecAllowance() int

func (JuliaPolicy) GetExtraEnvs 

func (p JuliaPolicy) GetExtraEnvs() []string

func (JuliaPolicy) GetForkAllowance 

func (p JuliaPolicy) GetForkAllowance() int

func (JuliaPolicy) GetMaxChildProcs 

func (p JuliaPolicy) GetMaxChildProcs() uint

func (JuliaPolicy) GetPreservedEnvKeys 

func (p JuliaPolicy) GetPreservedEnvKeys() []string

type PathOps 

type PathOps int
const (
	OP_OPEN PathOps = iota
	OP_ACCESS
	OP_EXEC
	OP_STAT
	OP_CHMOD
)

func (*PathOps) UnmarshalYAML 

func (o *PathOps) UnmarshalYAML(unmarshal func(interface{}) error) error

type PatternMatcher 

type PatternMatcher struct {
	glob.Glob
}

func (*PatternMatcher) UnmarshalYAML 

func (p *PatternMatcher) UnmarshalYAML(unmarshal func(interface{}) error) error

type PolicyConf 

type PolicyConf struct {
	DiffToDefault    bool                         `yaml:"diff_to_default"`
	WhitelistPaths   map[PathOps][]PatternMatcher `yaml:"whitelist_paths"`
	ExecAllowance    int                          `yaml:"exec_allowance"`
	ForkAllowance    int                          `yaml:"fork_allowance"`
	MaxChildProcs    int                          `yaml:"max_child_procs"`
	ExtraEnvs        []string                     `yaml:"extra_envs"`
	PreservedEnvKeys []string                     `yaml:"preserved_env_keys"`
	TracedSyscalls   []string                     `yaml:"traced_syscalls"`
	AllowedSyscalls  []string                     `yaml:"allowed_syscalls"`
}

type PythonPolicy 

type PythonPolicy struct {
}

func (PythonPolicy) CheckPathOp 

func (p PythonPolicy) CheckPathOp(path string, op PathOps, mode int) bool

func (PythonPolicy) GetExecAllowance 

func (p PythonPolicy) GetExecAllowance() int

func (PythonPolicy) GetExtraEnvs 

func (p PythonPolicy) GetExtraEnvs() []string

func (PythonPolicy) GetForkAllowance 

func (p PythonPolicy) GetForkAllowance() int

func (PythonPolicy) GetMaxChildProcs 

func (p PythonPolicy) GetMaxChildProcs() uint

func (PythonPolicy) GetPreservedEnvKeys 

func (p PythonPolicy) GetPreservedEnvKeys() []string

type PythonTensorFlowPolicy 

type PythonTensorFlowPolicy struct {
}

func (PythonTensorFlowPolicy) CheckPathOp 

func (p PythonTensorFlowPolicy) CheckPathOp(path string, op PathOps, mode int) bool

func (PythonTensorFlowPolicy) GetExecAllowance 

func (p PythonTensorFlowPolicy) GetExecAllowance() int

func (PythonTensorFlowPolicy) GetExtraEnvs 

func (p PythonTensorFlowPolicy) GetExtraEnvs() []string

func (PythonTensorFlowPolicy) GetForkAllowance 

func (p PythonTensorFlowPolicy) GetForkAllowance() int

func (PythonTensorFlowPolicy) GetMaxChildProcs 

func (p PythonTensorFlowPolicy) GetMaxChildProcs() uint

func (PythonTensorFlowPolicy) GetPreservedEnvKeys 

func (p PythonTensorFlowPolicy) GetPreservedEnvKeys() []string

type SandboxPolicy 

type SandboxPolicy interface {
	CheckPathOp(path string, op PathOps, mode int) bool
	GetExecAllowance() int
	GetForkAllowance() int
	GetMaxChildProcs() int
	GetExtraEnvs() []string
	GetPreservedEnvKeys() []string
	GetTracedSyscalls() []string
	GetAllowedSyscalls() []string
}

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.