kyverno/pkg/policy/report.go

package policy

import (
	"fmt"

	"github.com/golang/glog"
	"github.com/nirmata/kyverno/pkg/event"
	"github.com/nirmata/kyverno/pkg/info"
	"github.com/nirmata/kyverno/pkg/policyviolation"
)

func (pc *PolicyController) report(policyInfos []info.PolicyInfo) {
	// generate events
	// generate policy violations
	for _, policyInfo := range policyInfos {
		// events
		// success - policy applied on resource
		// failure - policy/rule failed to apply on the resource
		reportEvents(policyInfo, pc.eventGen)
		// policy violations
		// failure - policy/rule failed to apply on the resource
	}

	// generate policy violation
	policyviolation.GeneratePolicyViolations(pc.pvListerSynced, pc.pvLister, pc.kyvernoClient, policyInfos)
}

//reportEvents generates events for the failed resources
func reportEvents(policyInfo info.PolicyInfo, eventGen event.Interface) {

	if policyInfo.IsSuccessful() {
		return
	}
	glog.V(4).Infof("reporting results for policy %s application on resource %s/%s/%s", policyInfo.Name, policyInfo.RKind, policyInfo.RNamespace, policyInfo.RName)
	for _, rule := range policyInfo.Rules {
		if rule.IsSuccessful() {
			continue
		}

		// generate event on resource for each failed rule
		e := &event.Info{}
		e.Kind = policyInfo.RKind
		e.Namespace = policyInfo.RNamespace
		e.Name = policyInfo.RName
		e.Reason = "Failure"
		e.Message = fmt.Sprintf("policy %s (%s) rule %s failed to apply. %v", policyInfo.Name, rule.RuleType.String(), rule.Name, rule.GetErrorString())
		eventGen.Add(e)

	}
	// generate a event on policy for all failed rules
	e := &event.Info{}
	e.Kind = "Policy"
	e.Namespace = ""
	e.Name = policyInfo.Name
	e.Reason = "Failure"
	e.Message = fmt.Sprintf("failed to apply rules %s on resource %s/%s/%s", policyInfo.FailedRules(), policyInfo.RKind, policyInfo.RNamespace, policyInfo.RName)
	eventGen.Add(e)
}
existing resource reporting 2019-08-13 13:15:04 -07:00			`package policy`

			`import (`
			`"fmt"`

clean up 2019-08-14 10:01:47 -07:00			`"github.com/golang/glog"`
existing resource reporting 2019-08-13 13:15:04 -07:00			`"github.com/nirmata/kyverno/pkg/event"`
			`"github.com/nirmata/kyverno/pkg/info"`
			`"github.com/nirmata/kyverno/pkg/policyviolation"`
			`)`

			`func (pc *PolicyController) report(policyInfos []info.PolicyInfo) {`
			`// generate events`
			`// generate policy violations`
			`for _, policyInfo := range policyInfos {`
			`// events`
			`// success - policy applied on resource`
			`// failure - policy/rule failed to apply on the resource`
clean up 2019-08-14 10:01:47 -07:00			`reportEvents(policyInfo, pc.eventGen)`
existing resource reporting 2019-08-13 13:15:04 -07:00			`// policy violations`
			`// failure - policy/rule failed to apply on the resource`
			`}`

			`// generate policy violation`
			`policyviolation.GeneratePolicyViolations(pc.pvListerSynced, pc.pvLister, pc.kyvernoClient, policyInfos)`
			`}`

clean up 2019-08-14 10:01:47 -07:00			`//reportEvents generates events for the failed resources`
			`func reportEvents(policyInfo info.PolicyInfo, eventGen event.Interface) {`
existing resource reporting 2019-08-13 13:15:04 -07:00
			`if policyInfo.IsSuccessful() {`
			`return`
			`}`
clean up 2019-08-14 10:01:47 -07:00			`glog.V(4).Infof("reporting results for policy %s application on resource %s/%s/%s", policyInfo.Name, policyInfo.RKind, policyInfo.RNamespace, policyInfo.RName)`
existing resource reporting 2019-08-13 13:15:04 -07:00			`for _, rule := range policyInfo.Rules {`
			`if rule.IsSuccessful() {`
			`continue`
			`}`

			`// generate event on resource for each failed rule`
			`e := &event.Info{}`
			`e.Kind = policyInfo.RKind`
			`e.Namespace = policyInfo.RNamespace`
			`e.Name = policyInfo.RName`
			`e.Reason = "Failure"`
			`e.Message = fmt.Sprintf("policy %s (%s) rule %s failed to apply. %v", policyInfo.Name, rule.RuleType.String(), rule.Name, rule.GetErrorString())`
			`eventGen.Add(e)`

			`}`
			`// generate a event on policy for all failed rules`
			`e := &event.Info{}`
			`e.Kind = "Policy"`
			`e.Namespace = ""`
			`e.Name = policyInfo.Name`
			`e.Reason = "Failure"`
			`e.Message = fmt.Sprintf("failed to apply rules %s on resource %s/%s/%s", policyInfo.FailedRules(), policyInfo.RKind, policyInfo.RNamespace, policyInfo.RName)`
			`eventGen.Add(e)`
			`}`