mirror of
https://codeberg.org/forgejo/forgejo.git
synced 2026-03-26 04:26:24 -04:00
fda54d59b8
Some checks are pending
/ release (push) Waiting to run
testing-integration / test-unit (push) Waiting to run
testing-integration / test-sqlite (push) Waiting to run
testing-integration / test-mariadb (v10.6) (push) Waiting to run
testing-integration / test-mariadb (v11.8) (push) Waiting to run
testing / backend-checks (push) Waiting to run
testing / frontend-checks (push) Waiting to run
testing / test-unit (push) Blocked by required conditions
testing / test-e2e (push) Blocked by required conditions
testing / test-remote-cacher (redis) (push) Blocked by required conditions
testing / test-remote-cacher (valkey) (push) Blocked by required conditions
testing / test-remote-cacher (garnet) (push) Blocked by required conditions
testing / test-remote-cacher (redict) (push) Blocked by required conditions
testing / test-mysql (push) Blocked by required conditions
testing / test-pgsql (push) Blocked by required conditions
testing / test-sqlite (push) Blocked by required conditions
testing / security-check (push) Blocked by required conditions
Implements auto-linking container images from the package registry to a repository (closes #2823). This might ease implementing #2699 in the future. Specifically, auto-linking happens on package creation and NOT when publishing updates to the same package. This should prevent "relinking" a manually unlinked package when publishing an update. Linking is performed either via the the Docker label `` (as described here: https://codeberg.org/forgejo/forgejo/issues/2823#issuecomment-8163866) or by naming the image like the repository (supports nested image names). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - ~~[ ] in their respective `*_test.go` for unit tests.~~ _(Not required, since only already tested functions were used)_ - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - ~~I added test coverage for JavaScript changes...~~ _(No changes to JavaScript code)_ ### Documentation - [X] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change: https://codeberg.org/forgejo/docs/pulls/1666 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [X] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10617 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Leon Schmidt <mail@leon.wtf> Co-committed-by: Leon Schmidt <mail@leon.wtf>
175 lines
5 KiB
Go
175 lines
5 KiB
Go
// Copyright 2022 The Gitea Authors. All rights reserved.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package container
|
|
|
|
import (
|
|
"fmt"
|
|
"io"
|
|
"strings"
|
|
|
|
"forgejo.org/modules/json"
|
|
"forgejo.org/modules/packages/container/helm"
|
|
"forgejo.org/modules/validation"
|
|
|
|
oci "github.com/opencontainers/image-spec/specs-go/v1"
|
|
)
|
|
|
|
const (
|
|
PropertyRepository = "container.repository"
|
|
PropertyRepositoryAutolinkingPending = "container.repository.autolinking-pending"
|
|
PropertyDigest = "container.digest"
|
|
PropertyMediaType = "container.mediatype"
|
|
PropertyManifestTagged = "container.manifest.tagged"
|
|
PropertyManifestReference = "container.manifest.reference"
|
|
|
|
DefaultPlatform = "linux/amd64"
|
|
|
|
labelLicenses = "org.opencontainers.image.licenses"
|
|
labelURL = "org.opencontainers.image.url"
|
|
labelSource = "org.opencontainers.image.source"
|
|
labelDocumentation = "org.opencontainers.image.documentation"
|
|
labelDescription = "org.opencontainers.image.description"
|
|
labelAuthors = "org.opencontainers.image.authors"
|
|
)
|
|
|
|
type ImageType string
|
|
|
|
const (
|
|
TypeOCI ImageType = "oci"
|
|
TypeHelm ImageType = "helm"
|
|
)
|
|
|
|
// Name gets the name of the image type
|
|
func (it ImageType) Name() string {
|
|
switch it {
|
|
case TypeHelm:
|
|
return "Helm Chart"
|
|
default:
|
|
return "OCI / Docker"
|
|
}
|
|
}
|
|
|
|
// Metadata represents the metadata of a Container package
|
|
type Metadata struct {
|
|
Type ImageType `json:"type"`
|
|
IsTagged bool `json:"is_tagged"`
|
|
Platform string `json:"platform,omitempty"`
|
|
Description string `json:"description,omitempty"`
|
|
Authors []string `json:"authors,omitempty"`
|
|
Licenses string `json:"license,omitempty"`
|
|
ProjectURL string `json:"project_url,omitempty"`
|
|
RepositoryURL string `json:"repository_url,omitempty"`
|
|
DocumentationURL string `json:"documentation_url,omitempty"`
|
|
Labels map[string]string `json:"labels,omitempty"`
|
|
ImageLayers []string `json:"layer_creation,omitempty"`
|
|
Manifests []*Manifest `json:"manifests,omitempty"`
|
|
Annotations map[string]string `json:"annotations,omitempty"`
|
|
}
|
|
|
|
type Manifest struct {
|
|
Platform string `json:"platform"`
|
|
Digest string `json:"digest"`
|
|
Size int64 `json:"size"`
|
|
}
|
|
|
|
// ParseImageConfig parses the metadata of an image config
|
|
func ParseImageConfig(mt string, r io.Reader) (*Metadata, error) {
|
|
if strings.EqualFold(mt, helm.ConfigMediaType) {
|
|
return parseHelmConfig(r)
|
|
}
|
|
|
|
// fallback to OCI Image Config
|
|
return parseOCIImageConfig(r)
|
|
}
|
|
|
|
func parseOCIImageConfig(r io.Reader) (*Metadata, error) {
|
|
var image oci.Image
|
|
if err := json.NewDecoder(r).Decode(&image); err != nil {
|
|
// Handle empty config blobs (common in OCI artifacts)
|
|
if err == io.EOF {
|
|
return &Metadata{
|
|
Type: TypeOCI,
|
|
Platform: DefaultPlatform,
|
|
}, nil
|
|
}
|
|
return nil, err
|
|
}
|
|
|
|
platform := DefaultPlatform
|
|
if image.OS != "" && image.Architecture != "" {
|
|
platform = fmt.Sprintf("%s/%s", image.OS, image.Architecture)
|
|
if image.Variant != "" {
|
|
platform = fmt.Sprintf("%s/%s", platform, image.Variant)
|
|
}
|
|
}
|
|
|
|
imageLayers := make([]string, 0, len(image.History))
|
|
for _, history := range image.History {
|
|
cmd := history.CreatedBy
|
|
if i := strings.Index(cmd, "#(nop) "); i != -1 {
|
|
cmd = strings.TrimSpace(cmd[i+7:])
|
|
}
|
|
if cmd != "" {
|
|
imageLayers = append(imageLayers, cmd)
|
|
}
|
|
}
|
|
|
|
metadata := &Metadata{
|
|
Type: TypeOCI,
|
|
Platform: platform,
|
|
Licenses: image.Config.Labels[labelLicenses],
|
|
ProjectURL: image.Config.Labels[labelURL],
|
|
RepositoryURL: image.Config.Labels[labelSource],
|
|
DocumentationURL: image.Config.Labels[labelDocumentation],
|
|
Description: image.Config.Labels[labelDescription],
|
|
Labels: image.Config.Labels,
|
|
ImageLayers: imageLayers,
|
|
}
|
|
|
|
if authors, ok := image.Config.Labels[labelAuthors]; ok {
|
|
metadata.Authors = []string{authors}
|
|
}
|
|
|
|
if !validation.IsValidURL(metadata.ProjectURL) {
|
|
metadata.ProjectURL = ""
|
|
}
|
|
if !validation.IsValidURL(metadata.RepositoryURL) {
|
|
metadata.RepositoryURL = ""
|
|
}
|
|
if !validation.IsValidURL(metadata.DocumentationURL) {
|
|
metadata.DocumentationURL = ""
|
|
}
|
|
|
|
return metadata, nil
|
|
}
|
|
|
|
func parseHelmConfig(r io.Reader) (*Metadata, error) {
|
|
var config helm.Metadata
|
|
if err := json.NewDecoder(r).Decode(&config); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
metadata := &Metadata{
|
|
Type: TypeHelm,
|
|
Description: config.Description,
|
|
ProjectURL: config.Home,
|
|
}
|
|
|
|
if len(config.Maintainers) > 0 {
|
|
authors := make([]string, 0, len(config.Maintainers))
|
|
for _, maintainer := range config.Maintainers {
|
|
authors = append(authors, maintainer.Name)
|
|
}
|
|
metadata.Authors = authors
|
|
}
|
|
|
|
if len(config.Sources) > 0 && validation.IsValidURL(config.Sources[0]) {
|
|
metadata.RepositoryURL = config.Sources[0]
|
|
}
|
|
if !validation.IsValidURL(metadata.ProjectURL) {
|
|
metadata.ProjectURL = ""
|
|
}
|
|
|
|
return metadata, nil
|
|
}
|