initial commit

2025-03-31 03:45:17 +00:00 · 2019-10-25 16:55:48 -05:00 · 2019-10-25 16:55:48 -05:00 · 56adc98b8c
commit 56adc98b8c
parent 2cc17985cd
3 changed files with 95 additions and 2 deletions
--- a/main.go
+++ b/main.go
@ -153,7 +153,7 @@ func main() {
 	go nsc.Run(1, stopCh)

 	//TODO add WG for the go routines?
-	server.RunAsync()
+	server.RunAsync(stopCh)

 	<-stopCh
 	disableProfiling(prof)
--- a/pkg/webhooks/checker.go
+++ b/pkg/webhooks/checker.go
@ -0,0 +1,91 @@
+package webhooks
+
+import (
+	"sync"
+	"time"
+
+	"github.com/golang/glog"
+	kyverno "github.com/nirmata/kyverno/pkg/api/kyverno/v1alpha1"
+	kyvernoclient "github.com/nirmata/kyverno/pkg/client/clientset/versioned"
+)
+
+const MaxRetryCount int = 3
+
+// Last Request Time
+type LastReqTime struct {
+	t          time.Time
+	mu         sync.RWMutex
+	RetryCount int
+}
+
+func (t *LastReqTime) Time() time.Time {
+	t.mu.RLock()
+	defer t.mu.RUnlock()
+	return t.t
+}
+
+func (t *LastReqTime) SetTime(tm time.Time) {
+	t.mu.Lock()
+	defer t.mu.Unlock()
+	t.t = tm
+	t.RetryCount = MaxRetryCount
+}
+
+func (t *LastReqTime) DecrementRetryCounter() {
+	t.mu.Lock()
+	defer t.mu.Unlock()
+	t.RetryCount--
+}
+
+func NewLastReqTime() *LastReqTime {
+	return &LastReqTime{
+		t: time.Now(),
+	}
+}
+
+func (t *LastReqTime) checker(kyvernoClient *kyvernoclient.Clientset, defaultResync time.Duration, deadline time.Duration, stopCh <-chan struct{}) {
+	sendDummyRequest := func(kyvernoClient *kyvernoclient.Clientset) {
+		dummyPolicy := kyverno.ClusterPolicy{
+			Spec: kyverno.Spec{
+				Rules: []kyverno.Rule{
+					kyverno.Rule{
+						Name: "dummyPolicy",
+						MatchResources: kyverno.MatchResources{
+							ResourceDescription: kyverno.ResourceDescription{
+								Kinds: []string{"Deployment"},
+							},
+						},
+						Validation: kyverno.Validation{
+							Message: "dummy validation policy rule",
+							Pattern: "dummypattern",
+						},
+					},
+				},
+			},
+		}
+		// this
+		kyvernoClient.KyvernoV1alpha1().ClusterPolicies().Create(&dummyPolicy)
+	}
+	glog.V(2).Infof("starting default resync for webhook checker with resync time %d", defaultResync)
+	ticker := time.NewTicker(defaultResync)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			// get current time
+			timeDiff := time.Since(t.Time())
+			if timeDiff > deadline {
+				if t.RetryCount == 0 {
+					// set the status unavailable
+				}
+				t.DecrementRetryCounter()
+				// send request again
+			}
+
+		case <-stopCh:
+			// handler termination signal
+			break
+		}
+	}
+	glog.V(2).Info("stopping default resync for webhook checker")
+}
--- a/pkg/webhooks/server.go
+++ b/pkg/webhooks/server.go
@ -182,7 +182,7 @@ func (ws *WebhookServer) handleAdmissionRequest(request *v1beta1.AdmissionReques
 }

 // RunAsync TLS server in separate thread and returns control immediately
-func (ws *WebhookServer) RunAsync() {
+func (ws *WebhookServer) RunAsync(stopCh <-chan struct{}) {
 	go func(ws *WebhookServer) {
 		glog.V(3).Infof("serving on %s\n", ws.server.Addr)
 		if err := ws.server.ListenAndServeTLS("", ""); err != http.ErrServerClosed {
@ -190,6 +190,8 @@ func (ws *WebhookServer) RunAsync() {
 		}
 	}(ws)
 	glog.Info("Started Webhook Server")
+
+	go checker(10*time.Second, stopCh)
 }

 // Stop TLS server and returns control after the server is shut down