From 1e6f827f427e0e13da4b4cf0713efce3960a703d Mon Sep 17 00:00:00 2001
From: mohamedasifs123 <142201466+mohamedasifs123@users.noreply.github.com>
Date: Mon, 29 Jan 2024 05:16:09 +0530
Subject: [PATCH] Fix: not showing error during policy validation error (#9533)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* Update result.go

Signed-off-by: mohamedasifs123 <142201466+mohamedasifs123@users.noreply.github.com>

* Update command.go to call function policyvalerror

Signed-off-by: mohamedasifs123 <142201466+mohamedasifs123@users.noreply.github.com>

* Update cmd/cli/kubectl-kyverno/processor/result.go

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* Update cmd/cli/kubectl-kyverno/commands/apply/command.go

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* nit

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: mohamedasifs123 <142201466+mohamedasifs123@users.noreply.github.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---
 cmd/cli/kubectl-kyverno/commands/apply/command.go | 3 ++-
 cmd/cli/kubectl-kyverno/processor/result.go       | 4 ++++
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/cmd/cli/kubectl-kyverno/commands/apply/command.go b/cmd/cli/kubectl-kyverno/commands/apply/command.go
index c72038a6a0..7281d4caad 100644
--- a/cmd/cli/kubectl-kyverno/commands/apply/command.go
+++ b/cmd/cli/kubectl-kyverno/commands/apply/command.go
@@ -237,6 +237,7 @@ func (c *ApplyCommandConfig) applyPolicytoResource(
 	if vars != nil {
 		vars.SetInStore(store)
 	}
+	var rc processor.ResultCounts
 	// validate policies
 	var validPolicies []kyvernov1.PolicyInterface
 	for _, pol := range policies {
@@ -244,6 +245,7 @@ func (c *ApplyCommandConfig) applyPolicytoResource(
 		_, err := policyvalidation.Validate(pol, nil, nil, true, config.KyvernoUserName(config.KyvernoServiceAccountName()))
 		if err != nil {
 			log.Log.Error(err, "policy validation error")
+			rc.IncrementError(1)
 			if strings.HasPrefix(err.Error(), "variable 'element.name'") {
 				skipInvalidPolicies.invalid = append(skipInvalidPolicies.invalid, pol.GetName())
 			} else {
@@ -254,7 +256,6 @@ func (c *ApplyCommandConfig) applyPolicytoResource(
 		validPolicies = append(validPolicies, pol)
 	}
 
-	var rc processor.ResultCounts
 	var responses []engineapi.EngineResponse
 	for _, resource := range resources {
 		processor := processor.PolicyProcessor{
diff --git a/cmd/cli/kubectl-kyverno/processor/result.go b/cmd/cli/kubectl-kyverno/processor/result.go
index 0196f56a00..173ed08b16 100644
--- a/cmd/cli/kubectl-kyverno/processor/result.go
+++ b/cmd/cli/kubectl-kyverno/processor/result.go
@@ -21,6 +21,10 @@ func (rc ResultCounts) Warn() int  { return rc.warn }
 func (rc ResultCounts) Error() int { return rc.err }
 func (rc ResultCounts) Skip() int  { return rc.skip }
 
+func (rc *ResultCounts) IncrementError(inc int) {
+	rc.err += inc
+}
+
 func (rc *ResultCounts) addEngineResponses(auditWarn bool, responses ...engineapi.EngineResponse) {
 	for _, response := range responses {
 		rc.addEngineResponse(auditWarn, response)