github/kata-containers
1
0
Fork 1
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-07-31 07:19:06 +00:00
Code Issues Projects Releases Wiki Activity

genpolicy: Add retries to policy generation

Browse Source 
As the genpolicy from_files call makes network requests to container
registries, it has a chance to fail.

Harden us against flakes due to network by introducing a 6x retry loop
in genpolicy tests.

Signed-off-by: Cameron Baird <cameronbaird@microsoft.com>
This commit is contained in:
Cameron Baird 2025-05-14 22:40:32 +00:00
parent 090497f520
commit 7bba7374ec
1 changed files with 21 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
src/tools/genpolicy/tests/policy/main.rs
View File

@ -86,11 +86,27 @@ mod tests {
yaml_file: workdir.join("pod.yaml").to_str().map(|s| s.to_string()),
};
let policy = genpolicy::policy::AgentPolicy::from_files(&config)
.await
.unwrap();
assert_eq!(policy.resources.len(), 1);
let policy = policy.resources[0].generate_policy(&policy);
// The container repos/network calls can be unreliable, so retry
// a few times before giving up.
let mut policy = String::new();
for i in 0..6 {
policy = match genpolicy::policy::AgentPolicy::from_files(&config).await {
Ok(policy) => {
assert_eq!(policy.resources.len(), 1);
policy.resources[0].generate_policy(&policy)
}
Err(e) => {
if i == 5 {
panic!("Failed to generate policy after 6 attempts");
} else {
println!("Retrying to generate policy: {}", e);
tokio::time::sleep(tokio::time::Duration::from_secs(10)).await;
continue;
}
}
};
break;
}
let policy = BASE64_STANDARD.decode(&policy).unwrap();
// write policy to a file