mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-10 01:46:55 +00:00
Code Activity
kyverno/pkg/imagedataloader/loader.go
Vishal Choudhary 7d8ed212a4
feat: create image data loader (#12036) 
* feat: add image data loader to context

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: build

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: linter

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: update types

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: replace crane with remote

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: linter

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: linter

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2025-02-03 13:42:40 +00:00

139 lines
3.3 KiB
Go
Raw Blame History

package imagedataloader
import (
"context"
"encoding/json"
"fmt"
"github.com/google/go-containerregistry/pkg/name"
"github.com/google/go-containerregistry/pkg/v1/remote"
k8scorev1 "k8s.io/client-go/kubernetes/typed/core/v1"
)
type imagedatafetcher struct {
// TODO: Add caching and prefetching
lister k8scorev1.SecretInterface
defaultOptions []remote.Option
}
type Fetcher interface {
FetchImageData(ctx context.Context, image string, options ...Option) (*ImageData, error)
}
func New(lister k8scorev1.SecretInterface, opts ...Option) (*imagedatafetcher, error) {
remoteOpts, err := makeDefaultOpts(lister, opts...)
if err != nil {
return nil, err
}
return &imagedatafetcher{
lister: lister,
defaultOptions: remoteOpts,
}, nil
}
type ImageData struct {
Image string `json:"image,omitempty"`
ResolvedImage string `json:"resolvedImage,omitempty"`
Registry string `json:"registry,omitempty"`
Repository string `json:"repository,omitempty"`
Tag string `json:"tag,omitempty"`
Digest string `json:"digest,omitempty"`
ImageIndex interface{} `json:"imageIndex,omitempty"`
Manifest interface{} `json:"manifest,omitempty"`
ConfigData interface{} `json:"config,omitempty"`
}
func (i *imagedatafetcher) FetchImageData(ctx context.Context, image string, options ...Option) (*ImageData, error) {
img := ImageData{
Image: image,
}
remoteOpts, err := i.remoteOptions(ctx, i.lister, options...)
if err != nil {
return nil, err
}
nameOpts := nameOptions(options...)
ref, err := name.ParseReference(image, nameOpts...)
if err != nil {
return nil, err
}
img.Registry = ref.Context().RegistryStr()
img.Repository = ref.Context().RepositoryStr()
if _, ok := ref.(name.Tag); ok {
img.Tag = ref.Identifier()
} else {
img.Digest = ref.Identifier()
}
remoteImg, err := remote.Image(ref, remoteOpts...)
if err != nil {
return nil, err
}
manifest, err := remoteImg.RawManifest()
if err != nil {
return nil, err
}
if err := json.Unmarshal(manifest, &img.Manifest); err != nil {
return nil, err
}
config, err := remoteImg.RawConfigFile()
if err != nil {
return nil, err
}
if err := json.Unmarshal(config, &img.ConfigData); err != nil {
return nil, err
}
desc, err := remote.Get(ref, remoteOpts...)
if err != nil {
return nil, err
}
if len(img.Digest) == 0 {
img.Digest = desc.Digest.String()
}
if len(img.Tag) > 0 {
img.ResolvedImage = fmt.Sprintf("%s:%s@%s", ref.Context().Name(), img.Tag, img.Digest)
} else {
img.ResolvedImage = fmt.Sprintf("%s@%s", ref.Context().Name(), img.Digest)
}
// error returned means no image index
imgIndex, _ := desc.ImageIndex()
if imgIndex != nil {
imgIndexBytes, err := imgIndex.RawManifest()
if err != nil {
return nil, err
}
if err := json.Unmarshal(imgIndexBytes, &img.ImageIndex); err != nil {
return nil, err
}
}
return &img, nil
}
func (i *imagedatafetcher) remoteOptions(ctx context.Context, lister k8scorev1.SecretInterface, options ...Option) ([]remote.Option, error) {
var opts []remote.Option
opts = append(opts, i.defaultOptions...)
authOpts, err := makeAuthOptions(lister, options...)
if err != nil {
return nil, err
}
opts = append(opts, authOpts...)
opts = append(opts, remote.WithContext(ctx))
return opts, nil
}
View git blame Copy permalink