kyverno/pkg/jobs/controller.go

package jobs

import (
	"fmt"
	apierrors "k8s.io/apimachinery/pkg/api/errors"
	"strings"
	"sync"
	"time"

	"github.com/nirmata/kyverno/pkg/config"
	v1 "k8s.io/api/batch/v1"
	apiv1 "k8s.io/api/core/v1"
	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
	"k8s.io/apimachinery/pkg/runtime"

	"github.com/go-logr/logr"

	"github.com/nirmata/kyverno/pkg/constant"

	dclient "github.com/nirmata/kyverno/pkg/dclient"
	utilruntime "k8s.io/apimachinery/pkg/util/runtime"
	"k8s.io/apimachinery/pkg/util/wait"
	"k8s.io/client-go/util/workqueue"
)

const workQueueName = "policy-violation-controller"
const workQueueRetryLimit = 3

//Job creates policy report
type Job struct {
	dclient       *dclient.Client
	log           logr.Logger
	queue         workqueue.RateLimitingInterface
	dataStore     *dataStore
	configHandler config.Interface
	mux           sync.Mutex
}

// Job Info Define Job Type
type JobInfo struct {
	JobType string
	JobData string
}

func (i JobInfo) toKey() string {
	return fmt.Sprintf("kyverno-%v", i.JobType)
}

//NewDataStore returns an instance of data store
func newDataStore() *dataStore {
	ds := dataStore{
		data: make(map[string]JobInfo),
	}
	return &ds
}

type dataStore struct {
	data map[string]JobInfo
	mu   sync.RWMutex
}

func (ds *dataStore) add(keyHash string, info JobInfo) {
	ds.mu.Lock()
	defer ds.mu.Unlock()
	// queue the key hash
	ds.data[keyHash] = info
}

func (ds *dataStore) lookup(keyHash string) JobInfo {
	ds.mu.RLock()
	defer ds.mu.RUnlock()
	return ds.data[keyHash]
}

func (ds *dataStore) delete(keyHash string) {
	ds.mu.Lock()
	defer ds.mu.Unlock()
	delete(ds.data, keyHash)
}

// make the struct hashable

//JobsInterface provides API to create PVs
type JobsInterface interface {
	Add(infos ...JobInfo)
}

// NewJobsJob returns a new instance of policy violation generator
func NewJobsJob(dclient *dclient.Client,
	configHandler config.Interface,
	log logr.Logger) *Job {
	gen := Job{
		dclient:       dclient,
		queue:         workqueue.NewNamedRateLimitingQueue(workqueue.DefaultControllerRateLimiter(), workQueueName),
		dataStore:     newDataStore(),
		configHandler: configHandler,
		log:           log,
	}
	return &gen
}

func (j *Job) enqueue(info JobInfo) {
	// add to data map
	keyHash := info.toKey()
	// add to
	// queue the key hash

	j.dataStore.add(keyHash, info)
	j.queue.Add(keyHash)
}

//Add queues a policy violation create request
func (j *Job) Add(infos ...JobInfo) {
	for _, info := range infos {
		j.enqueue(info)
	}
}

// Run starts the workers
func (j *Job) Run(workers int, stopCh <-chan struct{}) {
	logger := j.log
	defer utilruntime.HandleCrash()
	logger.Info("start")
	defer logger.Info("shutting down")
	for i := 0; i < workers; i++ {
		go wait.Until(j.runWorker, constant.PolicyViolationControllerResync, stopCh)
	}
	<-stopCh
}

func (j *Job) runWorker() {
	for j.processNextWorkItem() {
	}
}

func (j *Job) handleErr(err error, key interface{}) {
	logger := j.log
	if err == nil {
		j.queue.Forget(key)
		return
	}

	// retires requests if there is error
	if j.queue.NumRequeues(key) < workQueueRetryLimit {
		logger.Error(err, "failed to sync policy violation", "key", key)
		// Re-enqueue the key rate limited. Based on the rate limiter on the
		// queue and the re-enqueue history, the key will be processed later again.
		j.queue.AddRateLimited(key)
		return
	}
	j.queue.Forget(key)
	// remove from data store
	if keyHash, ok := key.(string); ok {
		j.dataStore.delete(keyHash)
	}
	logger.Error(err, "dropping key out of the queue", "key", key)
}

func (j *Job) processNextWorkItem() bool {
	logger := j.log
	obj, shutdown := j.queue.Get()
	if shutdown {
		return false
	}

	err := func(obj interface{}) error {
		defer j.queue.Done(obj)
		var keyHash string
		var ok bool

		if keyHash, ok = obj.(string); !ok {
			j.queue.Forget(obj)
			logger.Info("incorrect type; expecting type 'string'", "obj", obj)
			return nil
		}

		// lookup data store
		info := j.dataStore.lookup(keyHash)
		err := j.syncHandler(info)
		j.handleErr(err, obj)
		return nil
	}(obj)

	if err != nil {
		logger.Error(err, "failed to process item")
		return true
	}

	return true
}

func (j *Job) syncHandler(info JobInfo) error {
	defer func() {
		j.mux.Unlock()
	}()
	j.mux.Lock()
	var wg sync.WaitGroup
	if info.JobType == "POLICYSYNC" {
		wg.Add(1)
		go j.syncKyverno(&wg, "All", "SYNC", info.JobData)
	}else if info.JobType == "CONFIGMAP" {
		if info.JobData != "" {
			str := strings.Split(info.JobData, ",")
			wg.Add(len(str))
			for _, scope := range str {
				go j.syncKyverno(&wg, scope, "CONFIGMAP", "")
			}
		}
	}
	return nil
}

func (j *Job) syncKyverno(wg *sync.WaitGroup, jobType, scope, data string) {
	var args []string
	var mode string
	if scope == "SYNC" || scope == "POLICYSYNC" {
		mode = "cli"
	} else {
		mode = "configmap"
	}

	switch jobType {
	case "Helm":
		args = []string{
			"report",
			"helm",
			fmt.Sprintf("--mode=%s", mode),
		}
		break
	case "Namespace":
		args = []string{
			"report",
			"namespace",
			fmt.Sprintf("--mode=%s", mode),
		}
		break
	case "Cluster":
		args = []string{
			"report",
			"cluster",
			fmt.Sprintf("--mode=%s", mode),
		}
		break
	case "All":
		args = []string{
			"report",
			"all",
			fmt.Sprintf("--mode=%s", mode),
		}
		break
	}

	if scope == "POLICYSYNC" && data != "" {
		args = append(args, fmt.Sprintf("-p=%s", data))
	}
	resourceList, err := j.dclient.ListResource("", "Job", config.KubePolicyNamespace, &metav1.LabelSelector{
		MatchLabels: map[string]string{
			"scope" : scope,
			"type" : jobType,
		},
	})
	if err != nil {
		j.log.Error(err, "failed to get job")
	}
	if len(resourceList.Items) == 0 {
		go j.CreateJob(args, jobType, scope, wg)
		wg.Wait()
	}else{
		wg.Done()
	}

}

// CreateJob will create Job template for background scan
func (j *Job) CreateJob(args []string, jobType, scope string, wg *sync.WaitGroup) {
	job := &v1.Job{
		ObjectMeta: metav1.ObjectMeta{
			Namespace: config.KubePolicyNamespace,
			Labels: map[string]string{
				"scope": scope,
				"type":  jobType,
			},
		},
		Spec: v1.JobSpec{
			Template: apiv1.PodTemplateSpec{
				Spec: apiv1.PodSpec{
					Containers: []apiv1.Container{
						{
							Name:            strings.ToLower(fmt.Sprintf("%s-%s", jobType, scope)),
							Image:           config.KyvernoCliImage,
							ImagePullPolicy: "Always",
							Args:            args,
						},
					},
					ServiceAccountName: "kyverno-service-account",
					RestartPolicy:      "OnFailure",
				},
			},
		},
	}
	job.SetGenerateName("kyverno-policyreport-")
	resource, err := j.dclient.CreateResource("", "Job", config.KubePolicyNamespace, job, false)
	if err != nil {
		return
	}
	if err := runtime.DefaultUnstructuredConverter.FromUnstructured(resource.UnstructuredContent(), &job); err != nil {
		j.log.Error(err, "Error in converting job Default Unstructured Converter", "job_name", job.GetName())
		return
	}
	deadline := time.Now().Add(150 * time.Second)
	for {
			time.Sleep(20 * time.Second)
			resource, err := j.dclient.GetResource("", "Job", config.KubePolicyNamespace, job.GetName())
			if err != nil {
				if apierrors.IsNotFound(err) {
					j.log.Error(err, "job is already deleted", "job_name", job.GetName())
					break
				}
				continue
			}
			job := v1.Job{}
			if err := runtime.DefaultUnstructuredConverter.FromUnstructured(resource.UnstructuredContent(), &job); err != nil {
				j.log.Error(err, "Error in converting job Default Unstructured Converter", "job_name", job.GetName())
				continue
			}
			if time.Now().After(deadline) {
				if err := j.dclient.DeleteResource("", "Job", config.KubePolicyNamespace, job.GetName(), false); err != nil {
					j.log.Error(err, "Error in deleting jobs", "job_name", job.GetName())
					continue
				}
				break
			}
	}
	wg.Done()
}
added jobs 2020-08-27 13:19:41 +05:30			`package jobs`

			`import (`
bug fixes 2020-09-09 02:08:04 -07:00			`"fmt"`
added job trigger if needed 2020-09-10 10:19:36 -07:00			`apierrors "k8s.io/apimachinery/pkg/api/errors"`
bug fixes 2020-09-09 02:08:04 -07:00			`"strings"`
			`"sync"`
			`"time"`

added jobs 2020-08-27 13:19:41 +05:30			`"github.com/nirmata/kyverno/pkg/config"`
added logic for jobs 2020-08-31 00:06:21 +05:30			`v1 "k8s.io/api/batch/v1"`
added jobs 2020-08-27 13:19:41 +05:30			`apiv1 "k8s.io/api/core/v1"`
added logic for jobs 2020-08-31 00:06:21 +05:30			`metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"`
added logic for cli 2020-08-31 23:18:25 +05:30			`"k8s.io/apimachinery/pkg/runtime"`
added jobs 2020-08-27 13:19:41 +05:30
			`"github.com/go-logr/logr"`

			`"github.com/nirmata/kyverno/pkg/constant"`

			`dclient "github.com/nirmata/kyverno/pkg/dclient"`
			`utilruntime "k8s.io/apimachinery/pkg/util/runtime"`
			`"k8s.io/apimachinery/pkg/util/wait"`
			`"k8s.io/client-go/util/workqueue"`
			`)`

			`const workQueueName = "policy-violation-controller"`
			`const workQueueRetryLimit = 3`

count bug fix 2020-09-02 01:10:08 +05:30			`//Job creates policy report`
added logic for kyverno cli 2020-08-30 04:13:22 +05:30			`type Job struct {`
bug fixes 2020-09-10 05:10:29 -07:00			`dclient *dclient.Client`
			`log logr.Logger`
			`queue workqueue.RateLimitingInterface`
			`dataStore *dataStore`
			`configHandler config.Interface`
			`mux sync.Mutex`
added jobs 2020-08-27 13:19:41 +05:30			`}`

count bug fix 2020-09-02 01:10:08 +05:30			`// Job Info Define Job Type`
added jobs 2020-08-27 13:19:41 +05:30			`type JobInfo struct {`
added logic for jobs 2020-08-31 00:06:21 +05:30			`JobType string`
bug fixes 2020-09-10 05:10:29 -07:00			`JobData string`
added jobs 2020-08-27 13:19:41 +05:30			`}`

			`func (i JobInfo) toKey() string {`
bug fixes 2020-09-10 05:10:29 -07:00			`return fmt.Sprintf("kyverno-%v", i.JobType)`
added jobs 2020-08-27 13:19:41 +05:30			`}`

			`//NewDataStore returns an instance of data store`
			`func newDataStore() *dataStore {`
			`ds := dataStore{`
			`data: make(map[string]JobInfo),`
			`}`
			`return &ds`
			`}`

			`type dataStore struct {`
			`data map[string]JobInfo`
			`mu sync.RWMutex`
			`}`

			`func (ds *dataStore) add(keyHash string, info JobInfo) {`
			`ds.mu.Lock()`
			`defer ds.mu.Unlock()`
			`// queue the key hash`
			`ds.data[keyHash] = info`
			`}`

			`func (ds *dataStore) lookup(keyHash string) JobInfo {`
			`ds.mu.RLock()`
			`defer ds.mu.RUnlock()`
			`return ds.data[keyHash]`
			`}`

			`func (ds *dataStore) delete(keyHash string) {`
			`ds.mu.Lock()`
			`defer ds.mu.Unlock()`
			`delete(ds.data, keyHash)`
			`}`

			`// make the struct hashable`

			`//JobsInterface provides API to create PVs`
			`type JobsInterface interface {`
			`Add(infos ...JobInfo)`
			`}`

added logic for kyverno cli 2020-08-30 04:13:22 +05:30			`// NewJobsJob returns a new instance of policy violation generator`
added logic for jobs 2020-08-30 23:57:30 +05:30			`func NewJobsJob(dclient *dclient.Client,`
bug fixes 2020-09-10 05:10:29 -07:00			`configHandler config.Interface,`
added logic for kyverno cli 2020-08-30 04:13:22 +05:30			`log logr.Logger) *Job {`
			`gen := Job{`
bug fixes 2020-09-10 05:10:29 -07:00			`dclient: dclient,`
			`queue: workqueue.NewNamedRateLimitingQueue(workqueue.DefaultControllerRateLimiter(), workQueueName),`
			`dataStore: newDataStore(),`
			`configHandler: configHandler,`
			`log: log,`
added jobs 2020-08-27 13:19:41 +05:30			`}`
			`return &gen`
			`}`

added logic for jobs 2020-08-30 23:57:30 +05:30			`func (j *Job) enqueue(info JobInfo) {`
added jobs 2020-08-27 13:19:41 +05:30			`// add to data map`
			`keyHash := info.toKey()`
			`// add to`
			`// queue the key hash`

added logic for jobs 2020-08-30 23:57:30 +05:30			`j.dataStore.add(keyHash, info)`
			`j.queue.Add(keyHash)`
added jobs 2020-08-27 13:19:41 +05:30			`}`

			`//Add queues a policy violation create request`
added logic for jobs 2020-08-30 23:57:30 +05:30			`func (j *Job) Add(infos ...JobInfo) {`
added jobs 2020-08-27 13:19:41 +05:30			`for _, info := range infos {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.enqueue(info)`
added jobs 2020-08-27 13:19:41 +05:30			`}`
			`}`

			`// Run starts the workers`
added logic for jobs 2020-08-30 23:57:30 +05:30			`func (j *Job) Run(workers int, stopCh <-chan struct{}) {`
			`logger := j.log`
added jobs 2020-08-27 13:19:41 +05:30			`defer utilruntime.HandleCrash()`
			`logger.Info("start")`
			`defer logger.Info("shutting down")`
			`for i := 0; i < workers; i++ {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`go wait.Until(j.runWorker, constant.PolicyViolationControllerResync, stopCh)`
added jobs 2020-08-27 13:19:41 +05:30			`}`
			`<-stopCh`
			`}`

added logic for jobs 2020-08-30 23:57:30 +05:30			`func (j *Job) runWorker() {`
			`for j.processNextWorkItem() {`
added jobs 2020-08-27 13:19:41 +05:30			`}`
			`}`

added logic for jobs 2020-08-30 23:57:30 +05:30			`func (j *Job) handleErr(err error, key interface{}) {`
			`logger := j.log`
added jobs 2020-08-27 13:19:41 +05:30			`if err == nil {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.queue.Forget(key)`
added jobs 2020-08-27 13:19:41 +05:30			`return`
			`}`

			`// retires requests if there is error`
added logic for jobs 2020-08-30 23:57:30 +05:30			`if j.queue.NumRequeues(key) < workQueueRetryLimit {`
added jobs 2020-08-27 13:19:41 +05:30			`logger.Error(err, "failed to sync policy violation", "key", key)`
			`// Re-enqueue the key rate limited. Based on the rate limiter on the`
			`// queue and the re-enqueue history, the key will be processed later again.`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.queue.AddRateLimited(key)`
added jobs 2020-08-27 13:19:41 +05:30			`return`
			`}`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.queue.Forget(key)`
added jobs 2020-08-27 13:19:41 +05:30			`// remove from data store`
			`if keyHash, ok := key.(string); ok {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.dataStore.delete(keyHash)`
added jobs 2020-08-27 13:19:41 +05:30			`}`
			`logger.Error(err, "dropping key out of the queue", "key", key)`
			`}`

added logic for jobs 2020-08-30 23:57:30 +05:30			`func (j *Job) processNextWorkItem() bool {`
			`logger := j.log`
			`obj, shutdown := j.queue.Get()`
added jobs 2020-08-27 13:19:41 +05:30			`if shutdown {`
			`return false`
			`}`

			`err := func(obj interface{}) error {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`defer j.queue.Done(obj)`
added jobs 2020-08-27 13:19:41 +05:30			`var keyHash string`
			`var ok bool`

			`if keyHash, ok = obj.(string); !ok {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.queue.Forget(obj)`
added jobs 2020-08-27 13:19:41 +05:30			`logger.Info("incorrect type; expecting type 'string'", "obj", obj)`
			`return nil`
			`}`

			`// lookup data store`
added logic for jobs 2020-08-30 23:57:30 +05:30			`info := j.dataStore.lookup(keyHash)`
			`err := j.syncHandler(info)`
			`j.handleErr(err, obj)`
added jobs 2020-08-27 13:19:41 +05:30			`return nil`
			`}(obj)`

			`if err != nil {`
			`logger.Error(err, "failed to process item")`
			`return true`
			`}`

			`return true`
			`}`

added logic for jobs 2020-08-30 23:57:30 +05:30			`func (j *Job) syncHandler(info JobInfo) error {`
added logic for jobs 2020-08-31 00:06:21 +05:30			`defer func() {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.mux.Unlock()`
added jobs 2020-08-27 13:19:41 +05:30			`}()`
added logic for jobs 2020-08-30 23:57:30 +05:30			`j.mux.Lock()`
added job trigger if needed 2020-09-10 10:19:36 -07:00			`var wg sync.WaitGroup`
bug fixes 2020-09-10 05:10:29 -07:00			`if info.JobType == "POLICYSYNC" {`
improvment added in jobs sheduler 2020-09-15 06:59:05 -07:00			`wg.Add(1)`
			`go j.syncKyverno(&wg, "All", "SYNC", info.JobData)`
policy report yaml added 2020-09-15 08:07:01 -07:00			`}else if info.JobType == "CONFIGMAP" {`
added job trigger if needed 2020-09-10 10:19:36 -07:00			`if info.JobData != "" {`
packages adde 2020-09-12 05:54:04 -07:00			`str := strings.Split(info.JobData, ",")`
added job trigger if needed 2020-09-10 10:19:36 -07:00			`wg.Add(len(str))`
packages adde 2020-09-12 05:54:04 -07:00			`for _, scope := range str {`
			`go j.syncKyverno(&wg, scope, "CONFIGMAP", "")`
added job trigger if needed 2020-09-10 10:19:36 -07:00			`}`
			`}`
bug fixes 2020-09-10 05:10:29 -07:00			`}`
added jobs 2020-08-27 13:19:41 +05:30			`return nil`
			`}`

packages adde 2020-09-12 05:54:04 -07:00			`func (j Job) syncKyverno(wg sync.WaitGroup, jobType, scope, data string) {`
added logic for jobs 2020-08-31 00:06:21 +05:30			`var args []string`
added logic for jobs 2020-08-30 23:57:30 +05:30			`var mode string`
bug fixes 2020-09-10 05:10:29 -07:00			`if scope == "SYNC" \|\| scope == "POLICYSYNC" {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`mode = "cli"`
added logic for jobs 2020-08-31 00:06:21 +05:30			`} else {`
added logic for jobs 2020-08-30 23:57:30 +05:30			`mode = "configmap"`
added jobs 2020-08-27 13:19:41 +05:30			`}`

			`switch jobType {`
count bug fix 2020-09-02 01:10:08 +05:30			`case "Helm":`
added logic for jobs 2020-08-30 23:57:30 +05:30			`args = []string{`
			`"report",`
			`"helm",`
added logic for jobs 2020-08-31 00:06:21 +05:30			`fmt.Sprintf("--mode=%s", mode),`
added logic for jobs 2020-08-30 23:57:30 +05:30			`}`
added logic for jobs 2020-08-31 00:06:21 +05:30			`break`
count bug fix 2020-09-02 01:10:08 +05:30			`case "Namespace":`
added logic for jobs 2020-08-30 23:57:30 +05:30			`args = []string{`
			`"report",`
			`"namespace",`
added logic for jobs 2020-08-31 00:06:21 +05:30			`fmt.Sprintf("--mode=%s", mode),`
added logic for jobs 2020-08-30 23:57:30 +05:30			`}`
added logic for jobs 2020-08-31 00:06:21 +05:30			`break`
count bug fix 2020-09-02 01:10:08 +05:30			`case "Cluster":`
added logic for jobs 2020-08-30 23:57:30 +05:30			`args = []string{`
			`"report",`
			`"cluster",`
added logic for jobs 2020-08-31 00:06:21 +05:30			`fmt.Sprintf("--mode=%s", mode),`
added logic for jobs 2020-08-30 23:57:30 +05:30			`}`
added jobs 2020-08-27 13:19:41 +05:30			`break`
improvment added in jobs sheduler 2020-09-15 06:59:05 -07:00			`case "All":`
			`args = []string{`
			`"report",`
			`"all",`
			`fmt.Sprintf("--mode=%s", mode),`
			`}`
			`break`
added jobs 2020-08-27 13:19:41 +05:30			`}`
bug fixes 2020-09-09 02:08:04 -07:00
bug fixes 2020-09-10 05:10:29 -07:00			`if scope == "POLICYSYNC" && data != "" {`
packages adde 2020-09-12 05:54:04 -07:00			`args = append(args, fmt.Sprintf("-p=%s", data))`
bug fixes 2020-09-10 05:10:29 -07:00			`}`
improvment added in jobs sheduler 2020-09-15 06:59:05 -07:00			`resourceList, err := j.dclient.ListResource("", "Job", config.KubePolicyNamespace, &metav1.LabelSelector{`
			`MatchLabels: map[string]string{`
			`"scope" : scope,`
			`"type" : jobType,`
			`},`
			`})`
			`if err != nil {`
			`j.log.Error(err, "failed to get job")`
			`}`
			`if len(resourceList.Items) == 0 {`
			`go j.CreateJob(args, jobType, scope, wg)`
			`wg.Wait()`
			`}else{`
			`wg.Done()`
			`}`

added jobs 2020-08-27 13:19:41 +05:30			`}`

count bug fix 2020-09-02 01:10:08 +05:30			`// CreateJob will create Job template for background scan`
bug fixes 2020-09-10 05:10:29 -07:00			`func (j Job) CreateJob(args []string, jobType, scope string, wg sync.WaitGroup) {`
added logic for cli 2020-08-31 23:18:25 +05:30			`job := &v1.Job{`
added jobs 2020-08-27 13:19:41 +05:30			`ObjectMeta: metav1.ObjectMeta{`
			`Namespace: config.KubePolicyNamespace,`
packages adde 2020-09-12 05:54:04 -07:00			`Labels: map[string]string{`
			`"scope": scope,`
			`"type": jobType,`
bug fixes 2020-09-10 05:10:29 -07:00			`},`
added jobs 2020-08-27 13:19:41 +05:30			`},`
added logic for jobs 2020-08-30 23:57:30 +05:30			`Spec: v1.JobSpec{`
added jobs 2020-08-27 13:19:41 +05:30			`Template: apiv1.PodTemplateSpec{`
			`Spec: apiv1.PodSpec{`
			`Containers: []apiv1.Container{`
			`{`
go fmt 2020-09-02 14:19:11 +05:30			`Name: strings.ToLower(fmt.Sprintf("%s-%s", jobType, scope)),`
remove policy controller for policyreport 2020-09-03 22:19:37 +05:30			`Image: config.KyvernoCliImage,`
added logic for cli 2020-08-31 23:18:25 +05:30			`ImagePullPolicy: "Always",`
go fmt 2020-09-02 14:19:11 +05:30			`Args: args,`
added jobs 2020-08-27 13:19:41 +05:30			`},`
			`},`
bug fixes 2020-09-09 02:08:04 -07:00			`ServiceAccountName: "kyverno-service-account",`
			`RestartPolicy: "OnFailure",`
added jobs 2020-08-27 13:19:41 +05:30			`},`
			`},`
			`},`
			`}`
added logic for cli 2020-08-31 23:18:25 +05:30			`job.SetGenerateName("kyverno-policyreport-")`
job deletation logic added 2020-09-11 05:11:40 -07:00			`resource, err := j.dclient.CreateResource("", "Job", config.KubePolicyNamespace, job, false)`
bug fixes 2020-09-10 05:10:29 -07:00			`if err != nil {`
			`return`
			`}`
job deletation logic added 2020-09-11 05:11:40 -07:00			`if err := runtime.DefaultUnstructuredConverter.FromUnstructured(resource.UnstructuredContent(), &job); err != nil {`
packages adde 2020-09-12 05:54:04 -07:00			`j.log.Error(err, "Error in converting job Default Unstructured Converter", "job_name", job.GetName())`
job deletation logic added 2020-09-11 05:11:40 -07:00			`return`
			`}`
improvment added in jobs sheduler 2020-09-15 06:59:05 -07:00			`deadline := time.Now().Add(150 * time.Second)`
bug fixes 2020-09-10 05:10:29 -07:00			`for {`
improvment added in jobs sheduler 2020-09-15 06:59:05 -07:00			`time.Sleep(20 * time.Second)`
			`resource, err := j.dclient.GetResource("", "Job", config.KubePolicyNamespace, job.GetName())`
			`if err != nil {`
			`if apierrors.IsNotFound(err) {`
			`j.log.Error(err, "job is already deleted", "job_name", job.GetName())`
			`break`
			`}`
			`continue`
added job trigger if needed 2020-09-10 10:19:36 -07:00			`}`
improvment added in jobs sheduler 2020-09-15 06:59:05 -07:00			`job := v1.Job{}`
			`if err := runtime.DefaultUnstructuredConverter.FromUnstructured(resource.UnstructuredContent(), &job); err != nil {`
			`j.log.Error(err, "Error in converting job Default Unstructured Converter", "job_name", job.GetName())`
bug fixes 2020-09-10 05:10:29 -07:00			`continue`
			`}`
improvment added in jobs sheduler 2020-09-15 06:59:05 -07:00			`if time.Now().After(deadline) {`
			`if err := j.dclient.DeleteResource("", "Job", config.KubePolicyNamespace, job.GetName(), false); err != nil {`
			`j.log.Error(err, "Error in deleting jobs", "job_name", job.GetName())`
			`continue`
			`}`
			`break`
			`}`
bug fixes 2020-09-10 05:10:29 -07:00			`}`
			`wg.Done()`
added jobs 2020-08-27 13:19:41 +05:30			`}`