// determineEffectiveSecurityContext gets container's security context from v1.Pod and v1.Container. func (m *kubeGenericRuntimeManager) determineEffectiveSecurityContext(pod *v1.Pod, container *v1.Container, uid *int64, username string) (*runtimeapi.LinuxContainerSecurityContext, error) { … } // convertToRuntimeSecurityContext converts v1.SecurityContext to runtimeapi.SecurityContext. func convertToRuntimeSecurityContext(securityContext *v1.SecurityContext) *runtimeapi.LinuxContainerSecurityContext { … } // convertToRuntimeSELinuxOption converts v1.SELinuxOptions to runtimeapi.SELinuxOption. func convertToRuntimeSELinuxOption(opts *v1.SELinuxOptions) *runtimeapi.SELinuxOption { … } // convertToRuntimeCapabilities converts v1.Capabilities to runtimeapi.Capability. func convertToRuntimeCapabilities(opts *v1.Capabilities) *runtimeapi.Capability { … }
Codebase Browser
kubernetes