744 added tests

2024-12-14 11:57:48 +00:00 · 2020-05-07 02:35:24 +05:30 · 2020-05-07 02:35:24 +05:30 · 5ec300a12d
commit 5ec300a12d
parent 7682935701
5 changed files with 169 additions and 48 deletions
--- a/pkg/engine/validation_test.go
+++ b/pkg/engine/validation_test.go
--- a/pkg/utils/util.go
+++ b/pkg/utils/util.go
@ -1,8 +1,13 @@
 package utils

 import (
+	"fmt"
 	"reflect"

+	engineutils "github.com/nirmata/kyverno/pkg/engine/utils"
+	"k8s.io/api/admission/v1beta1"
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+
 	"github.com/go-logr/logr"
 	"github.com/minio/minio/pkg/wildcard"
 	client "github.com/nirmata/kyverno/pkg/dclient"
@ -86,3 +91,46 @@ func CleanupOldCrd(client *dclient.Client, log logr.Logger) {
 		}
 	}
 }
+
+// extracts the new and old resource as unstructured
+func ExtractResources(newRaw []byte, request *v1beta1.AdmissionRequest) (unstructured.Unstructured, unstructured.Unstructured, error) {
+	var emptyResource unstructured.Unstructured
+	var newResource unstructured.Unstructured
+	var oldResource unstructured.Unstructured
+	var err error
+
+	// New Resource
+	if newRaw == nil {
+		newRaw = request.Object.Raw
+	}
+
+	if newRaw != nil {
+		newResource, err = ConvertResource(newRaw, request.Kind.Group, request.Kind.Version, request.Kind.Kind, request.Namespace)
+		if err != nil {
+			return emptyResource, emptyResource, fmt.Errorf("failed to convert new raw to unstructured: %v", err)
+		}
+	}
+
+	// Old Resource
+	oldRaw := request.OldObject.Raw
+	if oldRaw != nil {
+		oldResource, err = ConvertResource(oldRaw, request.Kind.Group, request.Kind.Version, request.Kind.Kind, request.Namespace)
+		if err != nil {
+			return emptyResource, emptyResource, fmt.Errorf("failed to convert old raw to unstructured: %v", err)
+		}
+	}
+
+	return newResource, oldResource, err
+}
+
+// convertResource converts raw bytes to an unstructured object
+func ConvertResource(raw []byte, group, version, kind, namespace string) (unstructured.Unstructured, error) {
+	obj, err := engineutils.ConvertToUnstructured(raw)
+	if err != nil {
+		return unstructured.Unstructured{}, fmt.Errorf("failed to convert raw to unstructured: %v", err)
+	}
+
+	obj.SetGroupVersionKind(schema.GroupVersionKind{Group: group, Version: version, Kind: kind})
+	obj.SetNamespace(namespace)
+	return *obj, nil
+}
--- a/pkg/webhooks/common.go
+++ b/pkg/webhooks/common.go
@ -9,9 +9,6 @@ import (
 	"github.com/nirmata/kyverno/pkg/engine/response"
 	engineutils "github.com/nirmata/kyverno/pkg/engine/utils"
 	yamlv2 "gopkg.in/yaml.v2"
-	"k8s.io/api/admission/v1beta1"
-	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
-	"k8s.io/apimachinery/pkg/runtime/schema"
 )

 // isResponseSuccesful return true if all responses are successful
@ -125,46 +122,3 @@ func containRBACinfo(policies []kyverno.ClusterPolicy) bool {
 	}
 	return false
 }
-
-// extracts the new and old resource as unstructured
-func extractResources(newRaw []byte, request *v1beta1.AdmissionRequest) (unstructured.Unstructured, unstructured.Unstructured, error) {
-	var emptyResource unstructured.Unstructured
-	var newResource unstructured.Unstructured
-	var oldResource unstructured.Unstructured
-	var err error
-
-	// New Resource
-	if newRaw == nil {
-		newRaw = request.Object.Raw
-	}
-
-	if newRaw != nil {
-		newResource, err = convertResource(newRaw, request.Kind.Group, request.Kind.Version, request.Kind.Kind, request.Namespace)
-		if err != nil {
-			return emptyResource, emptyResource, fmt.Errorf("failed to convert new raw to unstructured: %v", err)
-		}
-	}
-
-	// Old Resource
-	oldRaw := request.OldObject.Raw
-	if oldRaw != nil {
-		oldResource, err = convertResource(oldRaw, request.Kind.Group, request.Kind.Version, request.Kind.Kind, request.Namespace)
-		if err != nil {
-			return emptyResource, emptyResource, fmt.Errorf("failed to convert old raw to unstructured: %v", err)
-		}
-	}
-
-	return newResource, oldResource, err
-}
-
-// convertResource converts raw bytes to an unstructured object
-func convertResource(raw []byte, group, version, kind, namespace string) (unstructured.Unstructured, error) {
-	obj, err := engineutils.ConvertToUnstructured(raw)
-	if err != nil {
-		return unstructured.Unstructured{}, fmt.Errorf("failed to convert raw to unstructured: %v", err)
-	}
-
-	obj.SetGroupVersionKind(schema.GroupVersionKind{Group: group, Version: version, Kind: kind})
-	obj.SetNamespace(namespace)
-	return *obj, nil
-}
--- a/pkg/webhooks/server.go
+++ b/pkg/webhooks/server.go
@ -10,6 +10,8 @@ import (
 	"net/http"
 	"time"

+	"github.com/nirmata/kyverno/pkg/utils"
+
 	"github.com/julienschmidt/httprouter"

 	v1 "github.com/nirmata/kyverno/pkg/api/kyverno/v1"
@ -217,7 +219,7 @@ func (ws *WebhookServer) resourceMutation(request *v1beta1.AdmissionRequest) *v1
 	}

 	// convert RAW to unstructured
-	resource, err := convertResource(request.Object.Raw, request.Kind.Group, request.Kind.Version, request.Kind.Kind, request.Namespace)
+	resource, err := utils.ConvertResource(request.Object.Raw, request.Kind.Group, request.Kind.Version, request.Kind.Kind, request.Namespace)
 	if err != nil {
 		logger.Error(err, "failed to convert RAW resource to unstructured format")

--- a/pkg/webhooks/validation.go
+++ b/pkg/webhooks/validation.go
@ -5,6 +5,8 @@ import (
 	"sort"
 	"time"

+	"github.com/nirmata/kyverno/pkg/utils"
+
 	kyverno "github.com/nirmata/kyverno/pkg/api/kyverno/v1"
 	v1 "github.com/nirmata/kyverno/pkg/api/kyverno/v1"
 	"github.com/nirmata/kyverno/pkg/engine"
@ -22,7 +24,7 @@ func (ws *WebhookServer) HandleValidation(request *v1beta1.AdmissionRequest, pol
 	logger.V(4).Info("incoming request")

 	// Get new and old resource
-	newR, oldR, err := extractResources(patchedResource, request)
+	newR, oldR, err := utils.ExtractResources(patchedResource, request)
 	if err != nil {
 		// as resource cannot be parsed, we skip processing
 		logger.Error(err, "failed to extract resource")