kyverno/pkg/policy/report.go

package policy

import (
	"github.com/go-logr/logr"
	"github.com/kyverno/kyverno/pkg/engine/response"
	"github.com/kyverno/kyverno/pkg/event"
)

func generateSuccessEvents(log logr.Logger, ers []*response.EngineResponse) (eventInfos []event.Info) {
	for _, er := range ers {
		logger := log.WithValues("policy", er.PolicyResponse.Policy, "kind", er.PolicyResponse.Resource.Kind, "namespace", er.PolicyResponse.Resource.Namespace, "name", er.PolicyResponse.Resource.Name)
		if !er.IsFailed() {
			logger.V(4).Info("generating event on policy for success rules")
			e := event.NewPolicyAppliedEvent(event.PolicyController, er)
			eventInfos = append(eventInfos, e)
		}
	}

	return eventInfos
}

func generateFailEvents(log logr.Logger, ers []*response.EngineResponse) (eventInfos []event.Info) {
	for _, er := range ers {
		eventInfos = append(eventInfos, generateFailEventsPerEr(log, er)...)
	}
	return eventInfos
}

func generateFailEventsPerEr(log logr.Logger, er *response.EngineResponse) []event.Info {
	var eventInfos []event.Info
	logger := log.WithValues("policy", er.PolicyResponse.Policy.Name,
		"kind", er.PolicyResponse.Resource.Kind, "namespace", er.PolicyResponse.Resource.Namespace,
		"name", er.PolicyResponse.Resource.Name)

	for i, rule := range er.PolicyResponse.Rules {
		if rule.Status != response.RuleStatusPass && rule.Status != response.RuleStatusSkip {
			eventResource := event.NewResourceViolationEvent(event.PolicyController, event.PolicyViolation, er, &er.PolicyResponse.Rules[i])
			eventInfos = append(eventInfos, eventResource)

			eventPolicy := event.NewPolicyFailEvent(event.PolicyController, event.PolicyViolation, er, &er.PolicyResponse.Rules[i], false)
			eventInfos = append(eventInfos, eventPolicy)
		}
	}

	if len(eventInfos) > 0 {
		logger.V(4).Info("generating events for policy", "events", eventInfos)
	}

	return eventInfos
}
existing resource reporting 2019-08-13 13:15:04 -07:00			`package policy`

			`import (`
refactor logging 2020-03-17 16:25:34 -07:00			`"github.com/go-logr/logr"`
update nirmata/kyverno to kyverno/kyverno 2020-10-07 11:12:31 -07:00			`"github.com/kyverno/kyverno/pkg/engine/response"`
			`"github.com/kyverno/kyverno/pkg/event"`
existing resource reporting 2019-08-13 13:15:04 -07:00			`)`

Configurable success events on policies & resources. Generating failure events on policies by default. (#1939) * Remove unused event.Reason const Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate failure events on policies Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate success events on policy Signed-off-by: Velkov <valentin.velkov@sap.com> * Introduce 'generateSuccessEvents' flag Signed-off-by: Velkov <valentin.velkov@sap.com> * Unit tests & chart fix Signed-off-by: Velkov <valentin.velkov@sap.com> 2021-06-30 00:43:11 +03:00			`func generateSuccessEvents(log logr.Logger, ers []*response.EngineResponse) (eventInfos []event.Info) {`
introduce policy violation generator 2019-11-12 14:41:29 -08:00			`for _, er := range ers {`
Configurable success events on policies & resources. Generating failure events on policies by default. (#1939) * Remove unused event.Reason const Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate failure events on policies Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate success events on policy Signed-off-by: Velkov <valentin.velkov@sap.com> * Introduce 'generateSuccessEvents' flag Signed-off-by: Velkov <valentin.velkov@sap.com> * Unit tests & chart fix Signed-off-by: Velkov <valentin.velkov@sap.com> 2021-06-30 00:43:11 +03:00			`logger := log.WithValues("policy", er.PolicyResponse.Policy, "kind", er.PolicyResponse.Resource.Kind, "namespace", er.PolicyResponse.Resource.Namespace, "name", er.PolicyResponse.Resource.Name)`
			`if !er.IsFailed() {`
			`logger.V(4).Info("generating event on policy for success rules")`
cleanup event messages and sources (#3741) * cleanup events Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sonatype issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-05-01 22:14:32 -07:00			`e := event.NewPolicyAppliedEvent(event.PolicyController, er)`
release event memory (#4138) Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com> 2022-06-22 09:37:46 -07:00			`eventInfos = append(eventInfos, e)`
introduce policy violation generator 2019-11-12 14:41:29 -08:00			`}`
			`}`
cleanup event messages and sources (#3741) * cleanup events Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sonatype issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-05-01 22:14:32 -07:00
introduce policy violation generator 2019-11-12 14:41:29 -08:00			`return eventInfos`
			`}`
existing resource reporting 2019-08-13 13:15:04 -07:00
Configurable success events on policies & resources. Generating failure events on policies by default. (#1939) * Remove unused event.Reason const Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate failure events on policies Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate success events on policy Signed-off-by: Velkov <valentin.velkov@sap.com> * Introduce 'generateSuccessEvents' flag Signed-off-by: Velkov <valentin.velkov@sap.com> * Unit tests & chart fix Signed-off-by: Velkov <valentin.velkov@sap.com> 2021-06-30 00:43:11 +03:00			`func generateFailEvents(log logr.Logger, ers []*response.EngineResponse) (eventInfos []event.Info) {`
			`for _, er := range ers {`
			`eventInfos = append(eventInfos, generateFailEventsPerEr(log, er)...)`
			`}`
			`return eventInfos`
			`}`

			`func generateFailEventsPerEr(log logr.Logger, er *response.EngineResponse) []event.Info {`
introduce policy violation generator 2019-11-12 14:41:29 -08:00			`var eventInfos []event.Info`
cleanup event messages and sources (#3741) * cleanup events Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sonatype issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-05-01 22:14:32 -07:00			`logger := log.WithValues("policy", er.PolicyResponse.Policy.Name,`
			`"kind", er.PolicyResponse.Resource.Kind, "namespace", er.PolicyResponse.Resource.Namespace,`
			`"name", er.PolicyResponse.Resource.Name)`
Events fix (#1006) * remove success event * remove event success message * remove events generated on clusterpolicy 2020-07-20 08:00:02 -07:00
cleanup event messages and sources (#3741) * cleanup events Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sonatype issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-05-01 22:14:32 -07:00			`for i, rule := range er.PolicyResponse.Rules {`
[Cleanup] Disable PolicySkipped events (#4913) * remove skip events Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * update conditions Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * improve conditions Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * remove redundant function Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> 2022-10-13 14:02:20 +05:30			`if rule.Status != response.RuleStatusPass && rule.Status != response.RuleStatusSkip {`
feature: added new type of event, PolicySkipped (#4251) * feature: added new type of event, PolicySkipped Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> * fix html docs Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-07-28 11:31:50 +05:30			`eventResource := event.NewResourceViolationEvent(event.PolicyController, event.PolicyViolation, er, &er.PolicyResponse.Rules[i])`
			`eventInfos = append(eventInfos, eventResource)`
cleanup event messages and sources (#3741) * cleanup events Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sonatype issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-05-01 22:14:32 -07:00
feature: added new type of event, PolicySkipped (#4251) * feature: added new type of event, PolicySkipped Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> * fix html docs Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-07-28 11:31:50 +05:30			`eventPolicy := event.NewPolicyFailEvent(event.PolicyController, event.PolicyViolation, er, &er.PolicyResponse.Rules[i], false)`
			`eventInfos = append(eventInfos, eventPolicy)`
			`}`
introduce policy violation generator 2019-11-12 14:41:29 -08:00			`}`

cleanup event messages and sources (#3741) * cleanup events Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sonatype issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-05-01 22:14:32 -07:00			`if len(eventInfos) > 0 {`
			`logger.V(4).Info("generating events for policy", "events", eventInfos)`
Configurable success events on policies & resources. Generating failure events on policies by default. (#1939) * Remove unused event.Reason const Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate failure events on policies Signed-off-by: Velkov <valentin.velkov@sap.com> * Generate success events on policy Signed-off-by: Velkov <valentin.velkov@sap.com> * Introduce 'generateSuccessEvents' flag Signed-off-by: Velkov <valentin.velkov@sap.com> * Unit tests & chart fix Signed-off-by: Velkov <valentin.velkov@sap.com> 2021-06-30 00:43:11 +03:00			`}`
cleanup event messages and sources (#3741) * cleanup events Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix sonatype issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> 2022-05-01 22:14:32 -07:00
introduce policy violation generator 2019-11-12 14:41:29 -08:00			`return eventInfos`
existing resource reporting 2019-08-13 13:15:04 -07:00			`}`