kubernetes: k8s.io/kubernetes/pkg/security/apparmor Index | Files

package apparmor

import "k8s.io/kubernetes/pkg/security/apparmor"

Index

Package Files

helpers.go validate.go

func GetProfileName Uses

func GetProfileName(pod *v1.Pod, containerName string) string

GetProfileName returns the name of the profile to use with the container.

func GetProfileNameFromPodAnnotations Uses

func GetProfileNameFromPodAnnotations(annotations map[string]string, containerName string) string

GetProfileNameFromPodAnnotations gets the name of the profile to use with container from pod annotations

func IsAppArmorEnabled Uses

func IsAppArmorEnabled() bool

IsAppArmorEnabled returns true if apparmor is enabled for the host. This function is forked from https://github.com/opencontainers/runc/blob/1a81e9ab1f138c091fe5c86d0883f87716088527/libcontainer/apparmor/apparmor.go to avoid the libapparmor dependency.

func SetProfileName Uses

func SetProfileName(pod *v1.Pod, containerName, profileName string) error

SetProfileName sets the name of the profile to use with the container.

func SetProfileNameFromPodAnnotations Uses

func SetProfileNameFromPodAnnotations(annotations map[string]string, containerName, profileName string) error

SetProfileNameFromPodAnnotations sets the name of the profile to use with the container.

func ValidateProfileFormat Uses

func ValidateProfileFormat(profile string) error

ValidateProfileFormat checks the format of the profile.

type Validator Uses

type Validator interface {
    Validate(pod *v1.Pod) error
    ValidateHost() error
}

Validator is a interface for validating that a pod with an AppArmor profile can be run by a Node.

func NewValidator Uses

func NewValidator(runtime string) Validator

NewValidator is in order to find AppArmor FS

Package apparmor imports 13 packages (graph) and is imported by 279 packages. Updated 2020-04-17. Refresh now. Tools for package owners.