mirror of
https://github.com/FairwindsOps/polaris.git
synced 2026-05-07 17:57:09 +00:00
bd8b2962dc
* Update license headers * Fmt Co-authored-by: Barnabas Makonda <6409210+makoscafee@users.noreply.github.com>
92 lines
2.7 KiB
Go
92 lines
2.7 KiB
Go
// Copyright 2022 FairwindsOps, Inc.
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package validator
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"io"
|
|
"io/ioutil"
|
|
"os"
|
|
"time"
|
|
|
|
conf "github.com/fairwindsops/polaris/pkg/config"
|
|
"github.com/fairwindsops/polaris/pkg/kube"
|
|
|
|
"github.com/sirupsen/logrus"
|
|
apiMachineryYAML "k8s.io/apimachinery/pkg/util/yaml"
|
|
)
|
|
|
|
// RunAudit runs a full Polaris audit and returns an AuditData object
|
|
func RunAudit(config conf.Configuration, kubeResources *kube.ResourceProvider) (AuditData, error) {
|
|
displayName := config.DisplayName
|
|
if displayName == "" {
|
|
displayName = kubeResources.SourceName
|
|
}
|
|
|
|
results, err := ApplyAllSchemaChecksToResourceProvider(&config, kubeResources)
|
|
if err != nil {
|
|
return AuditData{}, err
|
|
}
|
|
|
|
auditData := AuditData{
|
|
PolarisOutputVersion: PolarisOutputVersion,
|
|
AuditTime: kubeResources.CreationTime.Format(time.RFC3339),
|
|
SourceType: kubeResources.SourceType,
|
|
SourceName: kubeResources.SourceName,
|
|
DisplayName: displayName,
|
|
ClusterInfo: ClusterInfo{
|
|
Version: kubeResources.ServerVersion,
|
|
Nodes: len(kubeResources.Nodes),
|
|
Namespaces: len(kubeResources.Namespaces),
|
|
Controllers: kubeResources.Resources.GetNumberOfControllers(),
|
|
},
|
|
Results: results,
|
|
}
|
|
auditData.Score = auditData.GetSummary().GetScore()
|
|
return auditData, nil
|
|
}
|
|
|
|
// ReadAuditFromFile reads the data from a past audit stored in a JSON or YAML file.
|
|
func ReadAuditFromFile(fileName string) AuditData {
|
|
auditData := AuditData{}
|
|
oldFileBytes, err := ioutil.ReadFile(fileName)
|
|
if err != nil {
|
|
logrus.Errorf("Unable to read contents of loaded file: %v", err)
|
|
os.Exit(1)
|
|
}
|
|
auditData, err = ParseAudit(oldFileBytes)
|
|
if err != nil {
|
|
logrus.Errorf("Error parsing file contents into auditData: %v", err)
|
|
os.Exit(1)
|
|
}
|
|
return auditData
|
|
}
|
|
|
|
// ParseAudit decodes either a YAML or JSON file and returns AuditData.
|
|
func ParseAudit(oldFileBytes []byte) (AuditData, error) {
|
|
reader := bytes.NewReader(oldFileBytes)
|
|
conf := AuditData{}
|
|
d := apiMachineryYAML.NewYAMLOrJSONDecoder(reader, 4096)
|
|
for {
|
|
if err := d.Decode(&conf); err != nil {
|
|
if err == io.EOF {
|
|
return conf, nil
|
|
}
|
|
return conf, fmt.Errorf("Decoding config failed: %v", err)
|
|
}
|
|
}
|
|
}
|