kyverno/pkg/kyverno/common/common.go

package common

import (
	"bufio"
	"bytes"
	"encoding/json"
	"fmt"
	"io"
	"io/ioutil"
	"os"
	"path/filepath"

	jsonpatch "github.com/evanphx/json-patch"
	"github.com/go-logr/logr"
	v1 "github.com/kyverno/kyverno/pkg/api/kyverno/v1"
	sanitizederror "github.com/kyverno/kyverno/pkg/kyverno/sanitizedError"
	"github.com/kyverno/kyverno/pkg/policymutation"
	"github.com/kyverno/kyverno/pkg/utils"
	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
	"k8s.io/apimachinery/pkg/util/yaml"
	yaml_v2 "sigs.k8s.io/yaml"
)

// GetPolicies - Extracting the policies from multiple YAML
func GetPolicies(paths []string) (policies []*v1.ClusterPolicy, error error) {
	for _, path := range paths {
		path = filepath.Clean(path)
		fileDesc, err := os.Stat(path)
		if err != nil {
			return nil, err
		}
		if fileDesc.IsDir() {
			files, err := ioutil.ReadDir(path)
			if err != nil {
				return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to parse %v", path), err)
			}
			listOfFiles := make([]string, 0)
			for _, file := range files {
				listOfFiles = append(listOfFiles, filepath.Join(path, file.Name()))
			}
			policiesFromDir, err := GetPolicies(listOfFiles)
			if err != nil {
				return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to extract policies from %v", listOfFiles), err)
			}

			policies = append(policies, policiesFromDir...)
		} else {
			file, err := ioutil.ReadFile(path)
			if err != nil {
				return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to load file %v", path), err)
			}
			getPolicies, getErrors := utils.GetPolicy(file)
			var errString string
			for _, err := range getErrors {
				if err != nil {
					errString += err.Error() + "\n"
				}
			}
			if errString != "" {
				fmt.Printf("failed to extract policies: %s\n", errString)
				os.Exit(2)
			}

			policies = append(policies, getPolicies...)
		}
	}

	return policies, nil
}

//ValidateAndGetPolicies - validating policies
func ValidateAndGetPolicies(policyPaths []string) ([]*v1.ClusterPolicy, error) {
	policies, err := GetPolicies(policyPaths)
	if err != nil {
		if !sanitizederror.IsErrorSanitized(err) {
			return nil, sanitizederror.NewWithError((fmt.Sprintf("failed to parse %v path/s.", policyPaths)), err)
		}
		return nil, err
	}
	return policies, nil
}

// PolicyHasVariables - check for variables in the policy
func PolicyHasVariables(policy v1.ClusterPolicy) [][]string {
	policyRaw, _ := json.Marshal(policy)
	matches := RegexVariables.FindAllStringSubmatch(string(policyRaw), -1)
	return matches
}

// PolicyHasNonAllowedVariables - checks for unexpected variables in the policy
func PolicyHasNonAllowedVariables(policy v1.ClusterPolicy) bool {
	policyRaw, _ := json.Marshal(policy)

	matchesAll := RegexVariables.FindAllStringSubmatch(string(policyRaw), -1)
	matchesAllowed := AllowedVariables.FindAllStringSubmatch(string(policyRaw), -1)

	if len(matchesAll) > len(matchesAllowed) {
		// If rules contains Context then skip this validation
		for _, rule := range policy.Spec.Rules {
			if len(rule.Context) > 0 {
				return false
			}
		}

		return true
	}

	return false
}

// MutatePolicy - applies mutation to a policy
func MutatePolicy(policy *v1.ClusterPolicy, logger logr.Logger) (*v1.ClusterPolicy, error) {
	patches, _ := policymutation.GenerateJSONPatchesForDefaults(policy, logger)
	if len(patches) == 0 {
		return policy, nil
	}

	type jsonPatch struct {
		Path  string      `json:"path"`
		Op    string      `json:"op"`
		Value interface{} `json:"value"`
	}

	var jsonPatches []jsonPatch
	err := json.Unmarshal(patches, &jsonPatches)
	if err != nil {
		return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to unmarshal patches for %s policy", policy.Name), err)
	}

	patch, err := jsonpatch.DecodePatch(patches)
	if err != nil {
		return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to decode patch for %s policy", policy.Name), err)
	}

	policyBytes, _ := json.Marshal(policy)
	if err != nil {
		return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to marshal %s policy", policy.Name), err)
	}
	modifiedPolicy, err := patch.Apply(policyBytes)
	if err != nil {
		return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to apply %s policy", policy.Name), err)
	}

	var p v1.ClusterPolicy
	err = json.Unmarshal(modifiedPolicy, &p)
	if err != nil {
		return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to unmarshal %s policy", policy.Name), err)
	}

	return &p, nil
}

// GetCRDs - Extracting the crds from multiple YAML
func GetCRDs(paths []string) (unstructuredCrds []*unstructured.Unstructured, err error) {
	unstructuredCrds = make([]*unstructured.Unstructured, 0)
	for _, path := range paths {
		path = filepath.Clean(path)

		fileDesc, err := os.Stat(path)
		if err != nil {
			return nil, err
		}

		if fileDesc.IsDir() {
			files, err := ioutil.ReadDir(path)
			if err != nil {
				return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to parse %v", path), err)
			}

			listOfFiles := make([]string, 0)
			for _, file := range files {
				listOfFiles = append(listOfFiles, filepath.Join(path, file.Name()))
			}

			policiesFromDir, err := GetCRDs(listOfFiles)
			if err != nil {
				return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to extract crds from %v", listOfFiles), err)
			}

			unstructuredCrds = append(unstructuredCrds, policiesFromDir...)
		} else {
			getCRDs, err := GetCRD(path)
			if err != nil {
				fmt.Printf("\nError: failed to extract crds from %s.  \nCause: %s\n", path, err)
				os.Exit(2)
			}
			unstructuredCrds = append(unstructuredCrds, getCRDs...)
		}
	}
	return unstructuredCrds, nil
}

// GetCRD - Extracts crds from a YAML
func GetCRD(path string) (unstructuredCrds []*unstructured.Unstructured, err error) {
	path = filepath.Clean(path)
	unstructuredCrds = make([]*unstructured.Unstructured, 0)
	yamlbytes, err := ioutil.ReadFile(path)
	if err != nil {
		return nil, err
	}

	buf := bytes.NewBuffer(yamlbytes)
	reader := yaml.NewYAMLReader(bufio.NewReader(buf))

	for {
		// Read one YAML document at a time, until io.EOF is returned
		b, err := reader.Read()
		if err == io.EOF || len(b) == 0 {
			break
		} else if err != nil {
			fmt.Printf("\nError: unable to read crd from %s. Cause: %s\n", path, err)
			os.Exit(2)
		}
		var u unstructured.Unstructured
		err = yaml_v2.Unmarshal(b, &u)
		if err != nil {
			return nil, err
		}
		unstructuredCrds = append(unstructuredCrds, &u)
	}

	return unstructuredCrds, nil
}

// IsInputFromPipe - check if input is passed using pipe
func IsInputFromPipe() bool {
	fileInfo, _ := os.Stdin.Stat()
	return fileInfo.Mode()&os.ModeCharDevice == 0
}
Handling Multi Yaml (Policies and Resources) 2020-05-29 15:32:29 +05:30			`package common`

			`import (`
Fix build (#1092) * add watch policy to clusterrole kyverno:customresources * fix build 2020-09-01 09:38:49 -07:00			`"bufio"`
			`"bytes"`
Handling Multi Yaml (Policies and Resources) 2020-05-29 15:32:29 +05:30			`"encoding/json"`
			`"fmt"`
Fix build (#1092) * add watch policy to clusterrole kyverno:customresources * fix build 2020-09-01 09:38:49 -07:00			`"io"`
Handling Multi Yaml (Policies and Resources) 2020-05-29 15:32:29 +05:30			`"io/ioutil"`
fix regex for allowed variable to support spaces (#1200) * fix regex for allowed variable to support spaces * remove log * fix regex 2020-10-19 12:36:55 -07:00			`"os"`
			`"path/filepath"`
updated readme 2020-08-31 19:32:00 +05:30
Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`jsonpatch "github.com/evanphx/json-patch"`
			`"github.com/go-logr/logr"`
update nirmata/kyverno to kyverno/kyverno 2020-10-07 11:12:31 -07:00			`v1 "github.com/kyverno/kyverno/pkg/api/kyverno/v1"`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`sanitizederror "github.com/kyverno/kyverno/pkg/kyverno/sanitizedError"`
update nirmata/kyverno to kyverno/kyverno 2020-10-07 11:12:31 -07:00			`"github.com/kyverno/kyverno/pkg/policymutation"`
			`"github.com/kyverno/kyverno/pkg/utils"`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"`
			`"k8s.io/apimachinery/pkg/util/yaml"`
			`yaml_v2 "sigs.k8s.io/yaml"`
Handling Multi Yaml (Policies and Resources) 2020-05-29 15:32:29 +05:30			`)`

fixed issue commits 2020-06-01 16:49:40 +05:30			`// GetPolicies - Extracting the policies from multiple YAML`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`func GetPolicies(paths []string) (policies []*v1.ClusterPolicy, error error) {`
removed logic - policy in cluster 2020-11-03 01:25:32 +05:30			`for _, path := range paths {`
			`path = filepath.Clean(path)`
			`fileDesc, err := os.Stat(path)`
namespace changes 2020-10-21 20:05:05 +05:30			`if err != nil {`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`return nil, err`
namespace changes 2020-10-21 20:05:05 +05:30			`}`
removed logic - policy in cluster 2020-11-03 01:25:32 +05:30			`if fileDesc.IsDir() {`
			`files, err := ioutil.ReadDir(path)`
Feature/read from stdin validate (#1171) * temp * added pipe logic for validate * fixed test cases - policy mutation 2020-10-07 06:20:53 +05:30			`if err != nil {`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to parse %v", path), err)`
Feature/read from stdin validate (#1171) * temp * added pipe logic for validate * fixed test cases - policy mutation 2020-10-07 06:20:53 +05:30			`}`
removed logic - policy in cluster 2020-11-03 01:25:32 +05:30			`listOfFiles := make([]string, 0)`
			`for _, file := range files {`
			`listOfFiles = append(listOfFiles, filepath.Join(path, file.Name()))`
added readme for apply command 2020-11-01 20:44:25 +05:30			`}`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`policiesFromDir, err := GetPolicies(listOfFiles)`
policy support added 2020-11-01 23:18:58 +05:30			`if err != nil {`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to extract policies from %v", listOfFiles), err)`
policy support added 2020-11-01 23:18:58 +05:30			`}`

removed logic - policy in cluster 2020-11-03 01:25:32 +05:30			`policies = append(policies, policiesFromDir...)`
			`} else {`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`file, err := ioutil.ReadFile(path)`
policy support added 2020-11-01 23:18:58 +05:30			`if err != nil {`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to load file %v", path), err)`
removed logic - policy in cluster 2020-11-03 01:25:32 +05:30			`}`
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`getPolicies, getErrors := utils.GetPolicy(file)`
			`var errString string`
			`for _, err := range getErrors {`
			`if err != nil {`
			`errString += err.Error() + "\n"`
			`}`
			`}`
			`if errString != "" {`
			`fmt.Printf("failed to extract policies: %s\n", errString)`
			`os.Exit(2)`
policy support added 2020-11-01 23:18:58 +05:30			`}`
namespace changes 2020-10-21 20:05:05 +05:30
Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`policies = append(policies, getPolicies...)`
policy support added 2020-11-01 23:18:58 +05:30			`}`
namespace changes 2020-10-21 20:05:05 +05:30			`}`

Revert "ignore non-policy files while loading" This reverts commit c766512485e03af77ea1b55d063989c27b48b013. 2020-12-06 11:12:54 -08:00			`return policies, nil`
			`}`

			`//ValidateAndGetPolicies - validating policies`
			`func ValidateAndGetPolicies(policyPaths []string) ([]*v1.ClusterPolicy, error) {`
			`policies, err := GetPolicies(policyPaths)`
			`if err != nil {`
			`if !sanitizederror.IsErrorSanitized(err) {`
			`return nil, sanitizederror.NewWithError((fmt.Sprintf("failed to parse %v path/s.", policyPaths)), err)`
			`}`
			`return nil, err`
			`}`
			`return policies, nil`
Handling Multi Yaml (Policies and Resources) 2020-05-29 15:32:29 +05:30			`}`
added variable validation for validate 2020-07-07 16:20:55 +05:30
Allowing only few variables in the policies (#1063) * Checking for non whitelisted variables in the policy * method name change * small issue while rebasing 2020-08-24 03:41:03 +05:30			`// PolicyHasVariables - check for variables in the policy`
added skipped policy in policy report 2020-11-19 15:03:15 +05:30			`func PolicyHasVariables(policy v1.ClusterPolicy) [][]string {`
Allowing only few variables in the policies (#1063) * Checking for non whitelisted variables in the policy * method name change * small issue while rebasing 2020-08-24 03:41:03 +05:30			`policyRaw, _ := json.Marshal(policy)`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`matches := RegexVariables.FindAllStringSubmatch(string(policyRaw), -1)`
added skipped policy in policy report 2020-11-19 15:03:15 +05:30			`return matches`
Allowing only few variables in the policies (#1063) * Checking for non whitelisted variables in the policy * method name change * small issue while rebasing 2020-08-24 03:41:03 +05:30			`}`

fix regex for allowed variable to support spaces (#1200) * fix regex for allowed variable to support spaces * remove log * fix regex 2020-10-19 12:36:55 -07:00			`// PolicyHasNonAllowedVariables - checks for unexpected variables in the policy`
Allowing only few variables in the policies (#1063) * Checking for non whitelisted variables in the policy * method name change * small issue while rebasing 2020-08-24 03:41:03 +05:30			`func PolicyHasNonAllowedVariables(policy v1.ClusterPolicy) bool {`
			`policyRaw, _ := json.Marshal(policy)`

fixes for golint ./... 2020-11-17 13:07:30 -08:00			`matchesAll := RegexVariables.FindAllStringSubmatch(string(policyRaw), -1)`
			`matchesAllowed := AllowedVariables.FindAllStringSubmatch(string(policyRaw), -1)`
Allowing only few variables in the policies (#1063) * Checking for non whitelisted variables in the policy * method name change * small issue while rebasing 2020-08-24 03:41:03 +05:30
fix regex for allowed variable to support spaces (#1200) * fix regex for allowed variable to support spaces * remove log * fix regex 2020-10-19 12:36:55 -07:00			`if len(matchesAll) > len(matchesAllowed) {`
Feature/configmaps var 724 (#1118) * added configmap data substitution for foreground mutate and validate * added configmap data substitution for foreground mutate and validate fmt * added configmap lookup for background * added comments to resource cache * added configmap data lookup in preConditions * added parse strings in In operator and configmap lookup docs * added configmap lookup docs * modified configmap lookup docs 2020-09-23 02:41:49 +05:30			`// If rules contains Context then skip this validation`
			`for _, rule := range policy.Spec.Rules {`
			`if len(rule.Context) > 0 {`
			`return false`
			`}`
			`}`
fix regex for allowed variable to support spaces (#1200) * fix regex for allowed variable to support spaces * remove log * fix regex 2020-10-19 12:36:55 -07:00
Allowing only few variables in the policies (#1063) * Checking for non whitelisted variables in the policy * method name change * small issue while rebasing 2020-08-24 03:41:03 +05:30			`return true`
			`}`
fix regex for allowed variable to support spaces (#1200) * fix regex for allowed variable to support spaces * remove log * fix regex 2020-10-19 12:36:55 -07:00
Allowing only few variables in the policies (#1063) * Checking for non whitelisted variables in the policy * method name change * small issue while rebasing 2020-08-24 03:41:03 +05:30			`return false`
			`}`

Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`// MutatePolicy - applies mutation to a policy`
			`func MutatePolicy(policy v1.ClusterPolicy, logger logr.Logger) (v1.ClusterPolicy, error) {`
			`patches, _ := policymutation.GenerateJSONPatchesForDefaults(policy, logger)`
return early in LCI if generated patches from policy mutation is nil 2020-08-19 15:11:21 -07:00			`if len(patches) == 0 {`
			`return policy, nil`
			`}`

Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`type jsonPatch struct {`
			Path string `json:"path"`
			Op string `json:"op"`
			Value interface{} `json:"value"`
			`}`

			`var jsonPatches []jsonPatch`
			`err := json.Unmarshal(patches, &jsonPatches)`
			`if err != nil {`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to unmarshal patches for %s policy", policy.Name), err)`
Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`}`
namespace changes 2020-10-21 20:05:05 +05:30
Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`patch, err := jsonpatch.DecodePatch(patches)`
			`if err != nil {`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to decode patch for %s policy", policy.Name), err)`
Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`}`

			`policyBytes, _ := json.Marshal(policy)`
			`if err != nil {`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to marshal %s policy", policy.Name), err)`
Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`}`
			`modifiedPolicy, err := patch.Apply(policyBytes)`
			`if err != nil {`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to apply %s policy", policy.Name), err)`
Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`}`

			`var p v1.ClusterPolicy`
			`err = json.Unmarshal(modifiedPolicy, &p)`
			`if err != nil {`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to unmarshal %s policy", policy.Name), err)`
Feature/print mutated policy (#1014) * added printing mutation policy * added mutated method in common * improved yaml print * updated readme * small fix * small fix 2020-07-29 21:41:58 +05:30			`}`

			`return &p, nil`
			`}`
validation of policy against crd 2020-08-19 10:21:32 +05:30
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`// GetCRDs - Extracting the crds from multiple YAML`
			`func GetCRDs(paths []string) (unstructuredCrds []*unstructured.Unstructured, err error) {`
calling GetCRD's from validate 2020-08-31 18:43:58 +05:30			`unstructuredCrds = make([]*unstructured.Unstructured, 0)`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`for _, path := range paths {`
			`path = filepath.Clean(path)`

			`fileDesc, err := os.Stat(path)`
			`if err != nil {`
			`return nil, err`
			`}`

			`if fileDesc.IsDir() {`
			`files, err := ioutil.ReadDir(path)`
			`if err != nil {`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to parse %v", path), err)`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`}`

			`listOfFiles := make([]string, 0)`
			`for _, file := range files {`
			`listOfFiles = append(listOfFiles, filepath.Join(path, file.Name()))`
			`}`

			`policiesFromDir, err := GetCRDs(listOfFiles)`
			`if err != nil {`
fixes for golint ./... 2020-11-17 13:07:30 -08:00			`return nil, sanitizederror.NewWithError(fmt.Sprintf("failed to extract crds from %v", listOfFiles), err)`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`}`

			`unstructuredCrds = append(unstructuredCrds, policiesFromDir...)`
			`} else {`
			`getCRDs, err := GetCRD(path)`
			`if err != nil {`
cleanup cli output (#1180) 2020-10-10 03:49:28 +05:30			`fmt.Printf("\nError: failed to extract crds from %s. \nCause: %s\n", path, err)`
updated readme 2020-08-31 19:32:00 +05:30			`os.Exit(2)`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`}`
			`unstructuredCrds = append(unstructuredCrds, getCRDs...)`
			`}`
			`}`
calling GetCRD's from validate 2020-08-31 18:43:58 +05:30			`return unstructuredCrds, nil`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`}`

			`// GetCRD - Extracts crds from a YAML`
			`func GetCRD(path string) (unstructuredCrds []*unstructured.Unstructured, err error) {`
validation of policy against crd 2020-08-19 10:21:32 +05:30			`path = filepath.Clean(path)`
calling GetCRD's from validate 2020-08-31 18:43:58 +05:30			`unstructuredCrds = make([]*unstructured.Unstructured, 0)`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`yamlbytes, err := ioutil.ReadFile(path)`
validation of policy against crd 2020-08-19 10:21:32 +05:30			`if err != nil {`
working version of CRD validation for CLI 2020-08-30 20:43:05 +05:30			`return nil, err`
validation of policy against crd 2020-08-19 10:21:32 +05:30			`}`

split multi yaml in crd 2020-08-31 17:33:01 +05:30			`buf := bytes.NewBuffer(yamlbytes)`
			`reader := yaml.NewYAMLReader(bufio.NewReader(buf))`
validation of policy against crd 2020-08-19 10:21:32 +05:30
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`for {`
			`// Read one YAML document at a time, until io.EOF is returned`
			`b, err := reader.Read()`
			`if err == io.EOF \|\| len(b) == 0 {`
			`break`
			`} else if err != nil {`
cleanup cli output (#1180) 2020-10-10 03:49:28 +05:30			`fmt.Printf("\nError: unable to read crd from %s. Cause: %s\n", path, err)`
			`os.Exit(2)`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`}`
calling GetCRD's from validate 2020-08-31 18:43:58 +05:30			`var u unstructured.Unstructured`
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`err = yaml_v2.Unmarshal(b, &u)`
			`if err != nil {`
			`return nil, err`
			`}`
			`unstructuredCrds = append(unstructuredCrds, &u)`
validation of policy against crd 2020-08-19 10:21:32 +05:30			`}`
calling GetCRD's from validate 2020-08-31 18:43:58 +05:30
split multi yaml in crd 2020-08-31 17:33:01 +05:30			`return unstructuredCrds, nil`
validation of policy against crd 2020-08-19 10:21:32 +05:30			`}`
Feature/read from stdin validate (#1171) * temp * added pipe logic for validate * fixed test cases - policy mutation 2020-10-07 06:20:53 +05:30
			`// IsInputFromPipe - check if input is passed using pipe`
			`func IsInputFromPipe() bool {`
			`fileInfo, _ := os.Stdin.Stat()`
			`return fileInfo.Mode()&os.ModeCharDevice == 0`
			`}`