| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 |
- package label
- import (
- "github.com/opencontainers/selinux/go-selinux"
- )
- // Deprecated: use selinux.ROFileLabel
- var ROMountLabel = selinux.ROFileLabel
- // SetProcessLabel takes a process label and tells the kernel to assign the
- // label to the next program executed by the current process.
- // Deprecated: use selinux.SetExecLabel
- var SetProcessLabel = selinux.SetExecLabel
- // ProcessLabel returns the process label that the kernel will assign
- // to the next program executed by the current process. If "" is returned
- // this indicates that the default labeling will happen for the process.
- // Deprecated: use selinux.ExecLabel
- var ProcessLabel = selinux.ExecLabel
- // SetSocketLabel takes a process label and tells the kernel to assign the
- // label to the next socket that gets created
- // Deprecated: use selinux.SetSocketLabel
- var SetSocketLabel = selinux.SetSocketLabel
- // SocketLabel retrieves the current default socket label setting
- // Deprecated: use selinux.SocketLabel
- var SocketLabel = selinux.SocketLabel
- // SetKeyLabel takes a process label and tells the kernel to assign the
- // label to the next kernel keyring that gets created
- // Deprecated: use selinux.SetKeyLabel
- var SetKeyLabel = selinux.SetKeyLabel
- // KeyLabel retrieves the current default kernel keyring label setting
- // Deprecated: use selinux.KeyLabel
- var KeyLabel = selinux.KeyLabel
- // FileLabel returns the label for specified path
- // Deprecated: use selinux.FileLabel
- var FileLabel = selinux.FileLabel
- // PidLabel will return the label of the process running with the specified pid
- // Deprecated: use selinux.PidLabel
- var PidLabel = selinux.PidLabel
- // Init initialises the labeling system
- func Init() {
- selinux.GetEnabled()
- }
- // ClearLabels will clear all reserved labels
- // Deprecated: use selinux.ClearLabels
- var ClearLabels = selinux.ClearLabels
- // ReserveLabel will record the fact that the MCS label has already been used.
- // This will prevent InitLabels from using the MCS label in a newly created
- // container
- // Deprecated: use selinux.ReserveLabel
- func ReserveLabel(label string) error {
- selinux.ReserveLabel(label)
- return nil
- }
- // ReleaseLabel will remove the reservation of the MCS label.
- // This will allow InitLabels to use the MCS label in a newly created
- // containers
- // Deprecated: use selinux.ReleaseLabel
- func ReleaseLabel(label string) error {
- selinux.ReleaseLabel(label)
- return nil
- }
- // DupSecOpt takes a process label and returns security options that
- // can be used to set duplicate labels on future container processes
- // Deprecated: use selinux.DupSecOpt
- var DupSecOpt = selinux.DupSecOpt
|
