2020-01-07 10:33:28 -08:00
|
|
|
package cleanup
|
|
|
|
|
|
|
|
|
|
import (
|
2021-10-11 14:40:45 +05:30
|
|
|
"strconv"
|
|
|
|
|
|
2020-03-17 16:25:34 -07:00
|
|
|
"github.com/go-logr/logr"
|
2022-04-25 20:20:40 +08:00
|
|
|
urkyverno "github.com/kyverno/kyverno/api/kyverno/v1beta1"
|
2020-10-07 11:12:31 -07:00
|
|
|
dclient "github.com/kyverno/kyverno/pkg/dclient"
|
2020-02-10 12:44:20 -08:00
|
|
|
apierrors "k8s.io/apimachinery/pkg/api/errors"
|
2020-01-07 10:33:28 -08:00
|
|
|
)
|
|
|
|
|
|
2022-04-29 19:05:49 +08:00
|
|
|
func (c *Controller) processUR(ur urkyverno.UpdateRequest) error {
|
|
|
|
|
logger := c.log.WithValues("kind", ur.Kind, "namespace", ur.Namespace, "name", ur.Name)
|
2020-02-10 12:44:20 -08:00
|
|
|
// 1- Corresponding policy has been deleted
|
2020-12-22 11:07:31 -08:00
|
|
|
// then we don't delete the generated resources
|
2020-01-07 10:33:28 -08:00
|
|
|
|
2020-02-10 12:44:20 -08:00
|
|
|
// 2- The trigger resource is deleted, then delete the generated resources
|
2022-04-29 19:05:49 +08:00
|
|
|
if !ownerResourceExists(logger, c.client, ur) {
|
|
|
|
|
deleteUR := false
|
2021-10-11 14:40:45 +05:30
|
|
|
// check retry count in annotaion
|
2022-04-29 19:05:49 +08:00
|
|
|
urAnnotations := ur.Annotations
|
|
|
|
|
if val, ok := urAnnotations["generate.kyverno.io/retry-count"]; ok {
|
2021-10-11 14:40:45 +05:30
|
|
|
retryCount, err := strconv.ParseUint(val, 10, 32)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error(err, "unable to convert retry-count")
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if retryCount >= 5 {
|
2022-04-29 19:05:49 +08:00
|
|
|
deleteUR = true
|
2021-10-11 14:40:45 +05:30
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-04-29 19:05:49 +08:00
|
|
|
if deleteUR {
|
|
|
|
|
if err := deleteGeneratedResources(logger, c.client, ur); err != nil {
|
2021-10-11 14:40:45 +05:30
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
// - trigger-resource is deleted
|
|
|
|
|
// - generated-resources are deleted
|
2022-04-29 19:05:49 +08:00
|
|
|
// - > Now delete the UpdateRequest CR
|
|
|
|
|
return c.control.Delete(ur.Name)
|
2020-01-07 10:33:28 -08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-05-03 07:30:04 +02:00
|
|
|
func ownerResourceExists(log logr.Logger, client dclient.Interface, ur urkyverno.UpdateRequest) bool {
|
2022-04-29 19:05:49 +08:00
|
|
|
_, err := client.GetResource("", ur.Spec.Resource.Kind, ur.Spec.Resource.Namespace, ur.Spec.Resource.Name)
|
2020-02-10 12:44:20 -08:00
|
|
|
// trigger resources has been deleted
|
|
|
|
|
if apierrors.IsNotFound(err) {
|
2020-01-07 10:33:28 -08:00
|
|
|
return false
|
|
|
|
|
}
|
2020-02-10 12:44:20 -08:00
|
|
|
if err != nil {
|
2022-04-29 19:05:49 +08:00
|
|
|
log.Error(err, "failed to get resource", "genKind", ur.Spec.Resource.Kind, "genNamespace", ur.Spec.Resource.Namespace, "genName", ur.Spec.Resource.Name)
|
2020-02-10 12:44:20 -08:00
|
|
|
}
|
2020-12-22 11:07:31 -08:00
|
|
|
// if there was an error while querying the resources we don't delete the generated resources
|
2020-02-10 12:44:20 -08:00
|
|
|
// but expect the deletion in next reconciliation loop
|
2020-01-07 10:33:28 -08:00
|
|
|
return true
|
|
|
|
|
}
|
2020-01-07 15:13:57 -08:00
|
|
|
|
2022-05-03 07:30:04 +02:00
|
|
|
func deleteGeneratedResources(log logr.Logger, client dclient.Interface, ur urkyverno.UpdateRequest) error {
|
2022-04-29 19:05:49 +08:00
|
|
|
for _, genResource := range ur.Status.GeneratedResources {
|
2020-08-07 09:47:33 +05:30
|
|
|
err := client.DeleteResource("", genResource.Kind, genResource.Namespace, genResource.Name, false)
|
2020-11-20 14:14:59 -08:00
|
|
|
if err != nil && !apierrors.IsNotFound(err) {
|
2020-01-07 15:13:57 -08:00
|
|
|
return err
|
|
|
|
|
}
|
2020-01-24 12:05:53 -08:00
|
|
|
|
2022-04-29 19:05:49 +08:00
|
|
|
log.V(3).Info("generated resource deleted", "genKind", ur.Spec.Resource.Kind, "genNamespace", ur.Spec.Resource.Namespace, "genName", ur.Spec.Resource.Name)
|
2020-01-07 15:13:57 -08:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
