kyverno/pkg/event/controller.go

package event

import (
	"time"

	"github.com/golang/glog"
	"github.com/nirmata/kyverno/pkg/client/clientset/versioned/scheme"
	policyscheme "github.com/nirmata/kyverno/pkg/client/clientset/versioned/scheme"
	v1alpha1 "github.com/nirmata/kyverno/pkg/client/listers/policy/v1alpha1"
	client "github.com/nirmata/kyverno/pkg/dclient"
	"github.com/nirmata/kyverno/pkg/sharedinformer"
	v1 "k8s.io/api/core/v1"
	"k8s.io/apimachinery/pkg/runtime"
	utilruntime "k8s.io/apimachinery/pkg/util/runtime"
	"k8s.io/apimachinery/pkg/util/wait"
	typedcorev1 "k8s.io/client-go/kubernetes/typed/core/v1"
	"k8s.io/client-go/tools/record"
	"k8s.io/client-go/util/workqueue"
)

type controller struct {
	client       *client.Client
	policyLister v1alpha1.PolicyLister
	queue        workqueue.RateLimitingInterface
	recorder     record.EventRecorder
}

//Generator to generate event
type Generator interface {
	Add(infoList ...*Info)
}

//Controller  api
type Controller interface {
	Generator
	Run(stopCh <-chan struct{})
	Stop()
}

//NewEventController to generate a new event controller
func NewEventController(client *client.Client,
	shareInformer sharedinformer.PolicyInformer) Controller {

	return &controller{
		client:       client,
		policyLister: shareInformer.GetLister(),
		queue:        workqueue.NewNamedRateLimitingQueue(workqueue.DefaultControllerRateLimiter(), eventWorkQueueName),
		recorder:     initRecorder(client),
	}
}

func initRecorder(client *client.Client) record.EventRecorder {
	// Initliaze Event Broadcaster
	err := policyscheme.AddToScheme(scheme.Scheme)
	if err != nil {
		glog.Error(err)
		return nil
	}
	eventBroadcaster := record.NewBroadcaster()
	eventBroadcaster.StartLogging(glog.Infof)
	eventInterface, err := client.GetEventsInterface()
	if err != nil {
		glog.Error(err) // TODO: add more specific error
		return nil
	}
	eventBroadcaster.StartRecordingToSink(
		&typedcorev1.EventSinkImpl{
			Interface: eventInterface})
	recorder := eventBroadcaster.NewRecorder(
		scheme.Scheme,
		v1.EventSource{Component: eventSource})
	return recorder
}

func (c *controller) Add(infos ...*Info) {
	for _, info := range infos {
		c.queue.Add(*info)
	}
}

func (c *controller) Run(stopCh <-chan struct{}) {
	defer utilruntime.HandleCrash()

	for i := 0; i < eventWorkerThreadCount; i++ {
		go wait.Until(c.runWorker, time.Second, stopCh)
	}
	glog.Info("Started eventbuilder controller workers")
}

func (c *controller) Stop() {
	defer c.queue.ShutDown()
	glog.Info("Shutting down eventbuilder controller workers")
}

func (c *controller) runWorker() {
	for c.processNextWorkItem() {
	}
}

func (c *controller) handleErr(err error, key interface{}) {
	if err == nil {
		c.queue.Forget(key)
		return
	}
	// This controller retries if something goes wrong. After that, it stops trying.
	if c.queue.NumRequeues(key) < workQueueRetryLimit {
		glog.Warningf("Error syncing events %v: %v", key, err)
		// Re-enqueue the key rate limited. Based on the rate limiter on the
		// queue and the re-enqueue history, the key will be processed later again.
		c.queue.AddRateLimited(key)
		return
	}
	c.queue.Forget(key)
	glog.Error(err)
	glog.Warningf("Dropping the key out of the queue: %v", err)
}

func (c *controller) processNextWorkItem() bool {
	obj, shutdown := c.queue.Get()
	if shutdown {
		return false
	}

	err := func(obj interface{}) error {
		defer c.queue.Done(obj)
		var key Info
		var ok bool

		if key, ok = obj.(Info); !ok {
			c.queue.Forget(obj)
			glog.Warningf("Expecting type info by got %v\n", obj)
			return nil
		}
		err := c.syncHandler(key)
		c.handleErr(err, obj)
		return nil
	}(obj)
	if err != nil {
		glog.Error(err)
		return true
	}
	return true
}

func (c *controller) syncHandler(key Info) error {
	var robj runtime.Object
	var err error

	switch key.Kind {
	case "Policy":
		//TODO: policy is clustered resource so wont need namespace
		robj, err = c.policyLister.Get(key.Name)
		if err != nil {
			glog.Errorf("Error creating event: unable to get policy %s, will retry ", key.Name)
			return err
		}
	default:
		robj, err = c.client.GetResource(key.Kind, key.Namespace, key.Name)
		if err != nil {
			glog.Errorf("Error creating event: unable to get resource %s, %s, will retry ", key.Kind, key.Namespace+"/"+key.Name)
			return err
		}
	}

	if key.Reason == PolicyApplied.String() {
		c.recorder.Event(robj, v1.EventTypeNormal, key.Reason, key.Message)
	} else {
		c.recorder.Event(robj, v1.EventTypeWarning, key.Reason, key.Message)
	}
	return nil
}

//NewEvent returns a new event
func NewEvent(rkind string, rnamespace string, rname string, reason Reason, message MsgKey, args ...interface{}) *Info {
	msgText, err := getEventMsg(message, args...)
	if err != nil {
		glog.Error(err)
	}
	return &Info{
		Kind:      rkind,
		Name:      rname,
		Namespace: rnamespace,
		Reason:    reason.String(),
		Message:   msgText,
	}
}
initial feature proposal 2019-05-10 00:05:21 -07:00			`package event`

			`import (`
			`"time"`

introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`"github.com/golang/glog"`
rename pkg to kyverno 2019-05-21 11:00:09 -07:00			`"github.com/nirmata/kyverno/pkg/client/clientset/versioned/scheme"`
			`policyscheme "github.com/nirmata/kyverno/pkg/client/clientset/versioned/scheme"`
			`v1alpha1 "github.com/nirmata/kyverno/pkg/client/listers/policy/v1alpha1"`
move client to pkg, helper script for self-signed certs & update documentation 2019-05-29 14:12:09 -07:00			`client "github.com/nirmata/kyverno/pkg/dclient"`
rename pkg to kyverno 2019-05-21 11:00:09 -07:00			`"github.com/nirmata/kyverno/pkg/sharedinformer"`
initial feature proposal 2019-05-10 00:05:21 -07:00			`v1 "k8s.io/api/core/v1"`
			`"k8s.io/apimachinery/pkg/runtime"`
			`utilruntime "k8s.io/apimachinery/pkg/util/runtime"`
			`"k8s.io/apimachinery/pkg/util/wait"`
			`typedcorev1 "k8s.io/client-go/kubernetes/typed/core/v1"`
			`"k8s.io/client-go/tools/record"`
			`"k8s.io/client-go/util/workqueue"`
			`)`

rename internal components 2019-05-10 10:38:38 -07:00			`type controller struct {`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`client *client.Client`
sharedinfomer factory + update status 2019-05-15 12:29:09 -07:00			`policyLister v1alpha1.PolicyLister`
initial feature proposal 2019-05-10 00:05:21 -07:00			`queue workqueue.RateLimitingInterface`
			`recorder record.EventRecorder`
			`}`

rename internal components 2019-05-10 10:38:38 -07:00			`//Generator to generate event`
			`type Generator interface {`
create violations 2019-06-27 11:43:07 -07:00			`Add(infoList ...*Info)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`
rename internal components 2019-05-10 10:38:38 -07:00
			`//Controller api`
			`type Controller interface {`
			`Generator`
Removed excess channel awaiting 2019-05-14 18:02:11 +03:00			`Run(stopCh <-chan struct{})`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`Stop()`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`

rename internal components 2019-05-10 10:38:38 -07:00			`//NewEventController to generate a new event controller`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`func NewEventController(client *client.Client,`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`shareInformer sharedinformer.PolicyInformer) Controller {`
Removed excess channel awaiting 2019-05-14 18:02:11 +03:00
annotation generation from policy controller 2019-07-17 17:53:13 -07:00			`return &controller{`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`client: client,`
sharedinfomer factory + update status 2019-05-15 12:29:09 -07:00			`policyLister: shareInformer.GetLister(),`
initial feature proposal 2019-05-10 00:05:21 -07:00			`queue: workqueue.NewNamedRateLimitingQueue(workqueue.DefaultControllerRateLimiter(), eventWorkQueueName),`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`recorder: initRecorder(client),`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`
			`}`

replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`func initRecorder(client *client.Client) record.EventRecorder {`
initial feature proposal 2019-05-10 00:05:21 -07:00			`// Initliaze Event Broadcaster`
PR code review changes 2019-05-21 09:27:04 -07:00			`err := policyscheme.AddToScheme(scheme.Scheme)`
			`if err != nil {`
replace utilruntime.HandleError with glog.Error 2019-06-20 11:20:09 -07:00			`glog.Error(err)`
PR code review changes 2019-05-21 09:27:04 -07:00			`return nil`
			`}`
initial feature proposal 2019-05-10 00:05:21 -07:00			`eventBroadcaster := record.NewBroadcaster()`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`eventBroadcaster.StartLogging(glog.Infof)`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`eventInterface, err := client.GetEventsInterface()`
			`if err != nil {`
replace utilruntime.HandleError with glog.Error 2019-06-20 11:20:09 -07:00			`glog.Error(err) // TODO: add more specific error`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`return nil`
			`}`
initial feature proposal 2019-05-10 00:05:21 -07:00			`eventBroadcaster.StartRecordingToSink(`
			`&typedcorev1.EventSinkImpl{`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`Interface: eventInterface})`
initial feature proposal 2019-05-10 00:05:21 -07:00			`recorder := eventBroadcaster.NewRecorder(`
			`scheme.Scheme,`
			`v1.EventSource{Component: eventSource})`
			`return recorder`
			`}`

create violations 2019-06-27 11:43:07 -07:00			`func (c controller) Add(infos ...Info) {`
			`for _, info := range infos {`
create event from policy info 2019-06-26 18:04:50 -07:00			`c.queue.Add(*info)`
			`}`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`

Removed excess channel awaiting 2019-05-14 18:02:11 +03:00			`func (c *controller) Run(stopCh <-chan struct{}) {`
initial feature proposal 2019-05-10 00:05:21 -07:00			`defer utilruntime.HandleCrash()`

			`for i := 0; i < eventWorkerThreadCount; i++ {`
rename internal components 2019-05-10 10:38:38 -07:00			`go wait.Until(c.runWorker, time.Second, stopCh)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Info("Started eventbuilder controller workers")`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`

replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`func (c *controller) Stop() {`
controller shutdown 2019-06-20 16:50:54 -07:00			`defer c.queue.ShutDown()`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Info("Shutting down eventbuilder controller workers")`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`}`
handle retrys events 2019-07-19 16:17:10 -07:00
rename internal components 2019-05-10 10:38:38 -07:00			`func (c *controller) runWorker() {`
			`for c.processNextWorkItem() {`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`
			`}`

handle retrys events 2019-07-19 16:17:10 -07:00			`func (c *controller) handleErr(err error, key interface{}) {`
			`if err == nil {`
			`c.queue.Forget(key)`
			`return`
			`}`
			`// This controller retries if something goes wrong. After that, it stops trying.`
correct case 2019-07-19 16:18:36 -07:00			`if c.queue.NumRequeues(key) < workQueueRetryLimit {`
handle retrys events 2019-07-19 16:17:10 -07:00			`glog.Warningf("Error syncing events %v: %v", key, err)`
			`// Re-enqueue the key rate limited. Based on the rate limiter on the`
			`// queue and the re-enqueue history, the key will be processed later again.`
			`c.queue.AddRateLimited(key)`
			`return`
			`}`
			`c.queue.Forget(key)`
			`glog.Error(err)`
			`glog.Warningf("Dropping the key out of the queue: %v", err)`
			`}`

rename internal components 2019-05-10 10:38:38 -07:00			`func (c *controller) processNextWorkItem() bool {`
			`obj, shutdown := c.queue.Get()`
initial feature proposal 2019-05-10 00:05:21 -07:00			`if shutdown {`
			`return false`
			`}`
handle retrys events 2019-07-19 16:17:10 -07:00
initial feature proposal 2019-05-10 00:05:21 -07:00			`err := func(obj interface{}) error {`
rename internal components 2019-05-10 10:38:38 -07:00			`defer c.queue.Done(obj)`
merge the changes with policy-engine 2019-05-10 12:36:55 -07:00			`var key Info`
initial feature proposal 2019-05-10 00:05:21 -07:00			`var ok bool`
handle retrys events 2019-07-19 16:17:10 -07:00
merge the changes with policy-engine 2019-05-10 12:36:55 -07:00			`if key, ok = obj.(Info); !ok {`
rename internal components 2019-05-10 10:38:38 -07:00			`c.queue.Forget(obj)`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Warningf("Expecting type info by got %v\n", obj)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`return nil`
			`}`
handle retrys events 2019-07-19 16:17:10 -07:00			`err := c.syncHandler(key)`
			`c.handleErr(err, obj)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`return nil`
			`}(obj)`
			`if err != nil {`
handle retrys events 2019-07-19 16:17:10 -07:00			`glog.Error(err)`
			`return true`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`
			`return true`
			`}`

handle retrys events 2019-07-19 16:17:10 -07:00			`func (c *controller) syncHandler(key Info) error {`
get name + namespace as arguments 2019-06-26 12:41:42 -07:00			`var robj runtime.Object`
initial feature proposal 2019-05-10 00:05:21 -07:00			`var err error`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00
initial feature proposal 2019-05-10 00:05:21 -07:00			`switch key.Kind {`
			`case "Policy":`
replace kubeclient & add dynamic client 2019-05-15 07:30:22 -07:00			`//TODO: policy is clustered resource so wont need namespace`
create events for policy and resource 2019-06-26 15:31:18 -07:00			`robj, err = c.policyLister.Get(key.Name)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`if err != nil {`
add events for generation 2019-07-08 16:53:34 -07:00			`glog.Errorf("Error creating event: unable to get policy %s, will retry ", key.Name)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`return err`
			`}`
			`default:`
get resource using kind & add cache invalidate mechanism and retry 2019-07-08 15:34:21 -07:00			`robj, err = c.client.GetResource(key.Kind, key.Namespace, key.Name)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`if err != nil {`
resolve merge conflict 2019-07-08 18:03:21 -07:00			`glog.Errorf("Error creating event: unable to get resource %s, %s, will retry ", key.Kind, key.Namespace+"/"+key.Name)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`return err`
			`}`
			`}`
add events for generation 2019-07-08 16:53:34 -07:00
get name + namespace as arguments 2019-06-26 12:41:42 -07:00			`if key.Reason == PolicyApplied.String() {`
			`c.recorder.Event(robj, v1.EventTypeNormal, key.Reason, key.Message)`
			`} else {`
			`c.recorder.Event(robj, v1.EventTypeWarning, key.Reason, key.Message)`
			`}`
initial feature proposal 2019-05-10 00:05:21 -07:00			`return nil`
			`}`

merge the changes with policy-engine 2019-05-10 12:36:55 -07:00			`//NewEvent returns a new event`
Merge branch '160_generate_events' into proposal_result_structure # Conflicts: # pkg/engine/engine.go # pkg/event/controller.go # pkg/event/msgbuilder.go # pkg/event/util.go # pkg/info/info.go # pkg/webhooks/server.go 2019-06-26 18:16:06 -07:00			`func NewEvent(rkind string, rnamespace string, rname string, reason Reason, message MsgKey, args ...interface{}) *Info {`
create events for policy and resource 2019-06-26 15:31:18 -07:00			`msgText, err := getEventMsg(message, args...)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`if err != nil {`
replace utilruntime.HandleError with glog.Error 2019-06-20 11:20:09 -07:00			`glog.Error(err)`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`
create event from policy info 2019-06-26 18:04:50 -07:00			`return &Info{`
get name + namespace as arguments 2019-06-26 12:41:42 -07:00			`Kind: rkind,`
			`Name: rname,`
			`Namespace: rnamespace,`
			`Reason: reason.String(),`
			`Message: msgText,`
initial feature proposal 2019-05-10 00:05:21 -07:00			`}`
			`}`