ホーム エクスプローラ ヘルプ
登録 サインイン
Apq
/
docker-compose
同期ミラー https://github.com/docker/compose.git
1
0
フォーク 0
ファイル 課題 0 Wiki
ツリー: v2.40.3
ブランチ タグ
docker-compose
/
internal
/
oci
/
resolver.go

resolver.go 4.4 KB
パーマリンク 履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143 
  1. /*
    2. 

  2.    Copyright 2023 Docker Compose CLI authors
    3. 

  3. 

  4.    Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5.    you may not use this file except in compliance with the License.
    6. 

  6.    You may obtain a copy of the License at
    7. 

  7. 

  8.        http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10.    Unless required by applicable law or agreed to in writing, software
    11. 

  11.    distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12.    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13.    See the License for the specific language governing permissions and
    14. 

  14.    limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package oci
    18. 

  18. 

  19. import (
    20. 

  20. 	"context"
    21. 

  21. 	"io"
    22. 

  22. 	"net/url"
    23. 

  23. 	"os"
    24. 

  24. 	"strings"
    25. 

  25. 

  26. 	"github.com/containerd/containerd/v2/core/remotes"
    27. 

  27. 	"github.com/containerd/containerd/v2/core/remotes/docker"
    28. 

  28. 	"github.com/containerd/containerd/v2/pkg/labels"
    29. 

  29. 	"github.com/containerd/errdefs"
    30. 

  30. 	"github.com/distribution/reference"
    31. 

  31. 	"github.com/docker/cli/cli/config/configfile"
    32. 

  32. 	"github.com/docker/compose/v2/internal/registry"
    33. 

  33. 	"github.com/moby/buildkit/util/contentutil"
    34. 

  34. 	spec "github.com/opencontainers/image-spec/specs-go/v1"
    35. 

  35. )
    36. 

  36. 

  37. // NewResolver setup an OCI Resolver based on docker/cli config to provide registry credentials
    38. 

  38. func NewResolver(config *configfile.ConfigFile) remotes.Resolver {
    39. 

  39. 	return docker.NewResolver(docker.ResolverOptions{
    40. 

  40. 		Hosts: docker.ConfigureDefaultRegistries(
    41. 

  41. 			docker.WithAuthorizer(docker.NewDockerAuthorizer(
    42. 

  42. 				docker.WithAuthCreds(func(host string) (string, string, error) {
    43. 

  43. 					host = registry.GetAuthConfigKey(host)
    44. 

  44. 					auth, err := config.GetAuthConfig(host)
    45. 

  45. 					if err != nil {
    46. 

  46. 						return "", "", err
    47. 

  47. 					}
    48. 

  48. 					if auth.IdentityToken != "" {
    49. 

  49. 						return "", auth.IdentityToken, nil
    50. 

  50. 					}
    51. 

  51. 					return auth.Username, auth.Password, nil
    52. 

  52. 				}),
    53. 

  53. 			)),
    54. 

  54. 			docker.WithPlainHTTP(func(s string) (bool, error) {
    55. 

  55. 				// Used for testing **only**
    56. 

  56. 				_, b := os.LookupEnv("__TEST__INSECURE__REGISTRY__")
    57. 

  57. 				return b, nil
    58. 

  58. 			}),
    59. 

  59. 		),
    60. 

  60. 	})
    61. 

  61. }
    62. 

  62. 

  63. // Get retrieves a Named OCI resource and returns OCI Descriptor and Manifest
    64. 

  64. func Get(ctx context.Context, resolver remotes.Resolver, ref reference.Named) (spec.Descriptor, []byte, error) {
    65. 

  65. 	_, descriptor, err := resolver.Resolve(ctx, ref.String())
    66. 

  66. 	if err != nil {
    67. 

  67. 		return spec.Descriptor{}, nil, err
    68. 

  68. 	}
    69. 

  69. 

  70. 	fetcher, err := resolver.Fetcher(ctx, ref.String())
    71. 

  71. 	if err != nil {
    72. 

  72. 		return spec.Descriptor{}, nil, err
    73. 

  73. 	}
    74. 

  74. 	fetch, err := fetcher.Fetch(ctx, descriptor)
    75. 

  75. 	if err != nil {
    76. 

  76. 		return spec.Descriptor{}, nil, err
    77. 

  77. 	}
    78. 

  78. 	content, err := io.ReadAll(fetch)
    79. 

  79. 	if err != nil {
    80. 

  80. 		return spec.Descriptor{}, nil, err
    81. 

  81. 	}
    82. 

  82. 	return descriptor, content, nil
    83. 

  83. }
    84. 

  84. 

  85. func Copy(ctx context.Context, resolver remotes.Resolver, image reference.Named, named reference.Named) (spec.Descriptor, error) {
    86. 

  86. 	src, desc, err := resolver.Resolve(ctx, image.String())
    87. 

  87. 	if err != nil {
    88. 

  88. 		return spec.Descriptor{}, err
    89. 

  89. 	}
    90. 

  90. 	if desc.Annotations == nil {
    91. 

  91. 		desc.Annotations = make(map[string]string)
    92. 

  92. 	}
    93. 

  93. 	// set LabelDistributionSource so push will actually use a registry mount
    94. 

  94. 	refspec := reference.TrimNamed(image).String()
    95. 

  95. 	u, err := url.Parse("dummy://" + refspec)
    96. 

  96. 	if err != nil {
    97. 

  97. 		return spec.Descriptor{}, err
    98. 

  98. 	}
    99. 

  99. 	source, repo := u.Hostname(), strings.TrimPrefix(u.Path, "/")
    100. 

  100. 	desc.Annotations[labels.LabelDistributionSource+"."+source] = repo
    101. 

  101. 

  102. 	p, err := resolver.Pusher(ctx, named.Name())
    103. 

  103. 	if err != nil {
    104. 

  104. 		return spec.Descriptor{}, err
    105. 

  105. 	}
    106. 

  106. 	f, err := resolver.Fetcher(ctx, src)
    107. 

  107. 	if err != nil {
    108. 

  108. 		return spec.Descriptor{}, err
    109. 

  109. 	}
    110. 

  110. 

  111. 	err = contentutil.CopyChain(ctx,
    112. 

  112. 		contentutil.FromPusher(p),
    113. 

  113. 		contentutil.FromFetcher(f), desc)
    114. 

  114. 	return desc, err
    115. 

  115. }
    116. 

  116. 

  117. func Push(ctx context.Context, resolver remotes.Resolver, ref reference.Named, descriptor spec.Descriptor) error {
    118. 

  118. 	pusher, err := resolver.Pusher(ctx, ref.String())
    119. 

  119. 	if err != nil {
    120. 

  120. 		return err
    121. 

  121. 	}
    122. 

  122. 	ctx = remotes.WithMediaTypeKeyPrefix(ctx, ComposeYAMLMediaType, "artifact-")
    123. 

  123. 	ctx = remotes.WithMediaTypeKeyPrefix(ctx, ComposeEnvFileMediaType, "artifact-")
    124. 

  124. 	ctx = remotes.WithMediaTypeKeyPrefix(ctx, ComposeEmptyConfigMediaType, "config-")
    125. 

  125. 	ctx = remotes.WithMediaTypeKeyPrefix(ctx, spec.MediaTypeEmptyJSON, "config-")
    126. 

  126. 

  127. 	push, err := pusher.Push(ctx, descriptor)
    128. 

  128. 	if errdefs.IsAlreadyExists(err) {
    129. 

  129. 		return nil
    130. 

  130. 	}
    131. 

  131. 	if err != nil {
    132. 

  132. 		return err
    133. 

  133. 	}
    134. 

  134. 

  135. 	_, err = push.Write(descriptor.Data)
    136. 

  136. 	if err != nil {
    137. 

  137. 		// Close the writer on error since Commit won't be called
    138. 

  138. 		_ = push.Close()
    139. 

  139. 		return err
    140. 

  140. 	}
    141. 

  141. 	// Commit will close the writer
    142. 

  142. 	return push.Commit(ctx, int64(len(descriptor.Data)), descriptor.Digest)
    143. 

  143. }
    144.