fix(policymatcher): skip future matching in case block/audit matches #1855

daemon1024 · 2024-08-26T15:49:43Z

Purpose of PR?:

Does this PR introduce a breaking change?
NA

If the changes in this PR are manually verified, list down the scenarios covered::
Tested against policy mentioned in bug report

Checklist:

Bug fix. Fixes #
New feature (non-breaking change which adds functionality)
Breaking change (fix or feature that would cause existing functionality to not work as expected)
This change requires a documentation update
PR Title follows the convention of <type>(<scope>): <subject>
Commit has unit tests
Commit has integration tests

Prateeknandle

why are we not skipping when matched for allow case?

any specific reason?

Signed-off-by: daemon1024 <[email protected]>

daemon1024 requested review from DelusionalOptimist and Prateeknandle August 26, 2024 15:49

Aryan-sharma11 approved these changes Aug 27, 2024

View reviewed changes

Prateeknandle reviewed Aug 28, 2024

View reviewed changes

Aryan-sharma11 force-pushed the fix-dp-policymatch branch from 0b3c87f to 523b185 Compare August 30, 2024 11:25

Prateeknandle approved these changes Sep 2, 2024

View reviewed changes

daemon1024 force-pushed the fix-dp-policymatch branch from 523b185 to 8aaabb2 Compare September 2, 2024 06:18

fix(policymatcher): skip future matching in case block/audit matches

d572138

Signed-off-by: daemon1024 <[email protected]>

Aryan-sharma11 force-pushed the fix-dp-policymatch branch from 8aaabb2 to d572138 Compare September 2, 2024 10:12

Aryan-sharma11 merged commit 8525ec6 into kubearmor:main Sep 3, 2024
16 checks passed

Provide feedback