1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00
Commit graph

5282 commits

Author SHA1 Message Date
Dmitry Chirikov
c845c0dc02
fix: do not pass dynamicConfig to matchesResourceDescriptionMatchHelper (#6231) (#6242) (#6331)
* fix: do not pass dynamicConfig to matchesResourceDescriptionMatchHelper (#6231)

(and only pass it to call for the exclude part of the rule)



* chore: add unit tests to cover the fix, and to ensure the exclude behavior still works (#6231)



---------

Signed-off-by: Ray Burgemeestre <rayb@nvidia.com>
Co-authored-by: Ray Burgemeestre <ray.burgemeestre@gmail.com>
Co-authored-by: Ray Burgemeestre <rayb@nvidia.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-05-06 14:16:33 +00:00
shuting
dea1f5864d
cherry-pick #6787 (#7108)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-05 16:48:41 +00:00
gcp-cherry-pick-bot[bot]
dc8c372f40
chore: update argocd lab (#6698) (#6702)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-27 15:33:04 +00:00
gcp-cherry-pick-bot[bot]
4dbffc57a1
fix: skip duplicate PSa checks for the latest version (#6634) (#6636)
* add version check



* debug



* debug



* skip multiple applies



* skip multiple applies



---------

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-03-21 20:26:48 +00:00
shuting
91f1929f6e
tag v1.9.2 (#6637)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-21 17:02:09 +00:00
gcp-cherry-pick-bot[bot]
9b4f96ddda
fix: add message to bypass schema validation when it fails (#6604) (#6606)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-16 17:20:12 +00:00
gcp-cherry-pick-bot[bot]
fcb350674e
fix: controller duration computation (#6569) (#6574) 2023-03-15 18:14:17 +00:00
shuting
d3b60267f7
release v1.9.2-rc.1 (#6536)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-13 09:05:18 +00:00
Charles-Edouard Brétéché
6234d929a1
fix: process audit policies when admission reports are disabled (#6531) (#6545)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-13 13:10:35 +08:00
Charles-Edouard Brétéché
3d8d29b7e6
More kuttl standard generate tests (#6332) (#6533)
* add test cpol-data-sync-delete-downstream



* add test cpol-data-sync-modify-downstream



* rename to be more descriptive



* add test pol-data-sync-delete-downstream



* cleanup test



* add test cpol-data-nosync-delete-rule



* add test cpol-data-nosync-delete-policy



* fix formatting



* add Kyverno kuttl specific snippets to BEST_PRACTICES



* add reminder note



* add test cpol-data-nosync-modify-rule



* add test cpol-data-nosync-modify-downstream



* add test pol-data-nosync-create-policy-invalid



* add test pol-data-sync-delete-policy



* separate files



* add test pol-data-nosync-delete-downstream



* add test pol-data-nosync-delete-rule



* add test pol-data-nosync-delete-policy



* fix description



* fix description



* add test pol-data-nosync-modify-rule



* add test pol-data-nosync-modify-downstream



* add test existing-basic-create-data



* add test existing-basic-create-preconditions-data



* add basic clone multiple test



* add delays



* add generate permissions



* reorder source and ClusterPolicy, cleanup removal, README update



* add test for cascading-mutation



* Change creation order, remove cleanup



* increase sleep



* remove unused test files



* remove networkpolicies from perms



* add networkpolicies back



* clarify readme



---------

Signed-off-by: Chip Zoller <chipzoller@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-03-11 22:39:39 +00:00
Charles-Edouard Brétéché
df5774f1bb
fix: increase burst (#6540)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-10 17:41:23 +00:00
Charles-Edouard Brétéché
fa885dfa00
fix: improve reports controller default values and workers (cherry-pick #6522) (#6532)
* fix: improve reports controller default values and workers (#6522)

* fix: improve reports controller default values and worker

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* nits

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* default qps

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-10 21:52:48 +08:00
shuting
4e1789abb0
release v1.9.1 (#6520)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-09 17:46:34 +01:00
Pete Wagner
8697a8a805
fix: missing metrics for policies in audit mode (#6509)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Peter Wagner <peter.wagner@shopify.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-09 09:07:46 +00:00
Charles-Edouard Brétéché
6f270a3883
fix: release (#6502)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-06 15:52:40 +00:00
Charles-Edouard Brétéché
4d91d47934
fix: release (#6498)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-03-06 13:47:01 +00:00
shuting
bf2bab2906
release v1.9.1-rc.1 (#6485)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-06 12:52:33 +08:00
shuting
e92405041e
cherry-pick #6459 (#6468)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-03-03 10:51:34 +00:00
gcp-cherry-pick-bot[bot]
7d573b30d2
fix: error log (#6429) (#6437)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-03-01 09:59:38 +00:00
gcp-cherry-pick-bot[bot]
25fee05742
check errors (#6424) (#6426)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-02-28 16:35:57 +00:00
gcp-cherry-pick-bot[bot]
eb0701a061
fix: autoUpdateWebhooks=false causes ClusterPolicy to never be ready (#6374) (#6382)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-23 09:38:20 +00:00
gcp-cherry-pick-bot[bot]
5aed63eb66
fix: delete certificate secret if type is not TLS (#6368) (#6373)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-22 10:04:41 +00:00
gcp-cherry-pick-bot[bot]
dbfe39ad90
oldObject translation solved in autogen (#6305) (#6372)
* OldObject translation solved in autogen



* CronJob fixed in autogen



* tests added



---------

Signed-off-by: Abhishek Kumar <abhishek22512@gmail.com>
Co-authored-by: Abhishek Kumar <76171953+octonawish-akcodes@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-22 09:01:47 +00:00
Charles-Edouard Brétéché
f79b282140
chore(deps): bump github.com/sigstore/k8s-manifest-sigstore (cherry-pick #6320) (#6359) 2023-02-21 13:55:45 +08:00
gcp-cherry-pick-bot[bot]
e85b262d80
fix: dump admission response (#6349) (#6352)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-20 10:49:38 +00:00
Charles-Edouard Brétéché
0ec3e0fb38
chore(deps): bump golang.org/x/net (#6344)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-20 17:34:59 +08:00
Charles-Edouard Brétéché
dfecc2546d
fix: add roles and clusterroles when dumping admission requests (#6319) (#6323)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-16 12:56:09 +08:00
Charles-Edouard Brétéché
850b8835df
fix: use client instead of discovery for sanity checks (cherry-pick #6296) (#6299)
* fix: use client instead of discovery for sanity checks (#6296)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-02-10 12:37:59 -08:00
shuting
d5e1633412
cherry-pick #6237 (#6273)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-09 19:39:49 +05:30
Charles-Edouard Brétéché
a5eed7834e
chore: add error logs in wait for cache sync helper (#6275)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-09 17:37:49 +08:00
gcp-cherry-pick-bot[bot]
3541473092
fix: jp divide quantities (#6229) (#6232)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-02-06 13:19:05 +00:00
shuting
1d104b2609
Cherry-pick #6126 (#6228)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-06 08:58:48 +01:00
shuting
884819a00c
fix: admission review variables for DELETE operations (#6197) (#6214)
* build trigger from the stored admission request payload



* add a kuttl test



---------

Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-03 13:58:20 +01:00
shuting
987d72dae5
cherry-pick #6188 (#6209)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-03 09:42:05 +00:00
Charles-Edouard Brétéché
aa6de8db53
fix: image tagging strategy (#6200)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-02-03 13:32:57 +08:00
shuting
a1534cc2f5
tag v1.9.0 (#6186)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-02-01 10:01:14 +01:00
Charles-Edouard Brétéché
2695ed6403
fix: policy exception event source (#6122)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-26 16:35:26 +01:00
Charles-Edouard Brétéché
8b10894695
Release v1.9.0-rc.4 (#6108)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-25 15:36:45 +00:00
Charles-Edouard Brétéché
c1e0a46fa2
fix: tracing attributes length and tracer name (#6112)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-25 15:01:28 +00:00
gcp-cherry-pick-bot[bot]
e25433df11
fix: cleanup-controller version (#6100) (#6105)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-01-24 21:45:32 +00:00
Charles-Edouard Brétéché
956ba6d92a
fix: flag added to init container mistake (#6103)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-24 19:57:57 +00:00
gcp-cherry-pick-bot[bot]
a4cd93d65c
fix: allow deletion of namespace containing managed resources (#6098) (#6102)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-01-24 20:14:48 +01:00
Charles-Edouard Brétéché
672e6277c9
fix: flag added to init container mistake (#6103)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-01-24 10:05:23 -08:00
Charles-Edouard Brétéché
c0ac6091dd
Release v1.9.0-rc.3 (#6095) 2023-01-24 21:53:41 +08:00
gcp-cherry-pick-bot[bot]
f7a4fafc3d
validate polex activation and namespace (#6046) (#6080)
* validate polex activation and namespace

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* push updates

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* push updates

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* push updates

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* pass polex options to handler

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* replace pointer

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* remove exceptionoption argument

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* remove nested if

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* revert change

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* fix line

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* pass polex options differently

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* push update

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* move struct

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* Update pkg/validation/exception/validate.go

Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: yinka <damilola.olayinka@nirmata.com>

* Update pkg/webhooks/exception/validate.go

Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: yinka <damilola.olayinka@nirmata.com>

* Update pkg/webhooks/exception/validate.go

Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: yinka <damilola.olayinka@nirmata.com>

* Update pkg/webhooks/exception/validate.go

Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: yinka <damilola.olayinka@nirmata.com>

* fix

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* add unit test

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* remove lines

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

* fix error

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
Signed-off-by: yinka <damilola.olayinka@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

Signed-off-by: damilola olayinka <holayinkajr@gmail.com>
Signed-off-by: yinka <damilola.olayinka@nirmata.com>
Co-authored-by: yinka <holayinkajr@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-01-23 10:32:47 +00:00
gcp-cherry-pick-bot[bot]
85eeb40f03
fix: pin busybox image tag in helm tests (#6051) (#6063)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-01-20 10:27:12 +00:00
gcp-cherry-pick-bot[bot]
36663e7a65
fix: replace + with _ in Chart.Version label field (#6047) (#6056)
Signed-off-by: Linda Arende <lda.ext@velux.com>

Signed-off-by: Linda Arende <lda.ext@velux.com>
Co-authored-by: Linda Arende <lda.ext@velux.com>

Signed-off-by: Linda Arende <lda.ext@velux.com>
Co-authored-by: Linda Ārende <64084638+LindaArende@users.noreply.github.com>
Co-authored-by: Linda Arende <lda.ext@velux.com>
2023-01-19 20:25:09 +00:00
shuting
c0f32d9807
cherry-pick #6030 (#6034)
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-01-19 09:03:55 +01:00
shuting
73a4c94f90
tag v1.9.0-rc.2 (#6023)
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-01-18 13:41:47 +00:00
shuting
2506faf91a
fix ns labels matching (#6022)
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-01-18 12:46:51 +00:00