mirror of
https://github.com/kyverno/kyverno.git
synced 2024-12-14 11:57:48 +00:00
cef7be1fdc
* feat: Add Manifest Index to ImageRegistry context Signed-off-by: Netanel Kadosh <kadoshnetanel@gmail.com> * test: adding manifest list tests Signed-off-by: Netanel Kadosh <kadoshnetanel@gmail.com> --------- Signed-off-by: Netanel Kadosh <kadoshnetanel@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>
68 lines
2.1 KiB
Go
68 lines
2.1 KiB
Go
package adapters
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
|
|
"github.com/google/go-containerregistry/pkg/name"
|
|
engineapi "github.com/kyverno/kyverno/pkg/engine/api"
|
|
"github.com/kyverno/kyverno/pkg/registryclient"
|
|
)
|
|
|
|
type rclientAdapter struct {
|
|
registryclient.Client
|
|
}
|
|
|
|
func RegistryClient(client registryclient.Client) engineapi.RegistryClient {
|
|
if client == nil {
|
|
return nil
|
|
}
|
|
return &rclientAdapter{client}
|
|
}
|
|
|
|
func (a *rclientAdapter) ForRef(ctx context.Context, ref string) (*engineapi.ImageData, error) {
|
|
desc, err := a.Client.FetchImageDescriptor(ctx, ref)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to fetch image descriptor: %s, error: %v", ref, err)
|
|
}
|
|
nameOpts := a.Client.NameOptions()
|
|
parsedRef, err := name.ParseReference(ref, nameOpts...)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to parse image reference: %s, error: %v", ref, err)
|
|
}
|
|
image, err := desc.Image()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to resolve image reference: %s, error: %v", ref, err)
|
|
}
|
|
// we ignore image index errors as it might be unavailable
|
|
manifestList, _ := desc.ImageIndex()
|
|
// We need to use the raw config and manifest to avoid dropping unknown keys
|
|
// which are not defined in GGCR structs.
|
|
rawManifest, err := image.RawManifest()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to fetch manifest for image reference: %s, error: %v", ref, err)
|
|
}
|
|
rawConfig, err := image.RawConfigFile()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to fetch config for image reference: %s, error: %v", ref, err)
|
|
}
|
|
var rawManifestList []byte
|
|
if manifestList != nil {
|
|
rawManifestList, err = manifestList.RawManifest()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to fetch image index for image reference: %s, error: %v", ref, err)
|
|
}
|
|
}
|
|
|
|
data := engineapi.ImageData{
|
|
Image: ref,
|
|
ResolvedImage: fmt.Sprintf("%s@%s", parsedRef.Context().Name(), desc.Digest.String()),
|
|
Registry: parsedRef.Context().RegistryStr(),
|
|
Repository: parsedRef.Context().RepositoryStr(),
|
|
Identifier: parsedRef.Identifier(),
|
|
ManifestList: rawManifestList,
|
|
Manifest: rawManifest,
|
|
Config: rawConfig,
|
|
}
|
|
return &data, nil
|
|
}
|