2023-02-15 08:39:23 +00:00
|
|
|
|
package dget
|
|
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
|
"archive/tar"
|
|
|
|
|
|
"bytes"
|
|
|
|
|
|
"compress/gzip"
|
|
|
|
|
|
"crypto/sha256"
|
|
|
|
|
|
"encoding/hex"
|
|
|
|
|
|
"encoding/json"
|
|
|
|
|
|
"fmt"
|
|
|
|
|
|
"io"
|
|
|
|
|
|
"io/ioutil"
|
|
|
|
|
|
"net/http"
|
2023-07-06 08:19:08 +00:00
|
|
|
|
"net/url"
|
2023-02-15 08:39:23 +00:00
|
|
|
|
"os"
|
|
|
|
|
|
"path/filepath"
|
|
|
|
|
|
"strings"
|
|
|
|
|
|
"time"
|
|
|
|
|
|
|
|
|
|
|
|
"github.com/docker/distribution/manifest/manifestlist"
|
|
|
|
|
|
"github.com/opencontainers/go-digest"
|
2024-06-24 13:08:43 +00:00
|
|
|
|
"github.com/pkg/errors"
|
2023-02-15 08:39:23 +00:00
|
|
|
|
"github.com/sirupsen/logrus"
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2023-05-04 06:31:48 +00:00
|
|
|
|
// const _registry = "registry-1.docker.io"
|
2023-02-15 08:39:23 +00:00
|
|
|
|
const _authUrl = "https://auth.docker.io/token"
|
|
|
|
|
|
const _regService = "registry.docker.io"
|
|
|
|
|
|
|
|
|
|
|
|
type LayerInfo struct {
|
|
|
|
|
|
Id string `json:"id"`
|
|
|
|
|
|
Parent string `json:"parent"`
|
|
|
|
|
|
Created time.Time `json:"created"`
|
|
|
|
|
|
ContainerConfig struct {
|
|
|
|
|
|
Hostname string
|
|
|
|
|
|
Domainname string
|
|
|
|
|
|
User string
|
|
|
|
|
|
AttachStdin bool
|
|
|
|
|
|
AttachStdout bool
|
|
|
|
|
|
AttachStderr bool
|
|
|
|
|
|
Tty bool
|
|
|
|
|
|
OpenStdin bool
|
|
|
|
|
|
StdinOnce bool
|
|
|
|
|
|
Env []string
|
|
|
|
|
|
CMd []string
|
|
|
|
|
|
Image string
|
|
|
|
|
|
Volumes map[string]interface{}
|
|
|
|
|
|
WorkingDir string
|
|
|
|
|
|
Entrypoint []string
|
|
|
|
|
|
OnBuild []string
|
|
|
|
|
|
Labels map[string]interface{}
|
|
|
|
|
|
} `json:"container_config"`
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
type Layer struct {
|
|
|
|
|
|
Digest string
|
|
|
|
|
|
Urls []string
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
type Info struct {
|
|
|
|
|
|
Layers []Layer `json:"layers"`
|
|
|
|
|
|
Config struct {
|
|
|
|
|
|
Digest digest.Digest `json:"digest,omitempty"`
|
|
|
|
|
|
} `json:"config"`
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
type PackageConfig struct {
|
|
|
|
|
|
Config string
|
|
|
|
|
|
RepoTags []string
|
|
|
|
|
|
Layers []string
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-06 08:19:08 +00:00
|
|
|
|
type Client struct {
|
|
|
|
|
|
c *http.Client
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-06-24 13:23:33 +00:00
|
|
|
|
type TagList struct {
|
|
|
|
|
|
Name string
|
|
|
|
|
|
Tags []string
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-07-13 11:08:40 +00:00
|
|
|
|
type SyncSignal struct{}
|
|
|
|
|
|
|
2023-07-06 08:19:08 +00:00
|
|
|
|
func (m *Client) SetClient(c *http.Client) {
|
|
|
|
|
|
m.c = c
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-07-13 11:08:40 +00:00
|
|
|
|
func (m *Client) Install(syncCount int, _registry, d, tag string, arch string, printInfo bool, onlyGetTag bool, username string, password string) (err error) {
|
2023-02-15 08:39:23 +00:00
|
|
|
|
var authUrl = _authUrl
|
|
|
|
|
|
var regService = _regService
|
2024-06-24 11:57:11 +00:00
|
|
|
|
resp, err := m.c.Get(fmt.Sprintf("https://%s/v2/", _registry))
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if err == nil {
|
|
|
|
|
|
if !strings.Contains(d, "/") {
|
|
|
|
|
|
d = "library/" + d
|
|
|
|
|
|
}
|
|
|
|
|
|
if resp.StatusCode == 401 {
|
|
|
|
|
|
//Bearer realm="https://auth.docker.io/token",service="registry.docker.io"
|
|
|
|
|
|
var hAuths = strings.Split(resp.Header.Get("Www-Authenticate"), "\"")
|
2023-08-22 09:38:54 +00:00
|
|
|
|
logrus.Debugln("Www-Authenticate", hAuths)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if len(hAuths) > 1 {
|
|
|
|
|
|
authUrl = hAuths[1]
|
|
|
|
|
|
}
|
|
|
|
|
|
if len(hAuths) > 3 {
|
|
|
|
|
|
regService = hAuths[3]
|
|
|
|
|
|
} else {
|
2023-08-22 09:38:54 +00:00
|
|
|
|
regService = _registry
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
resp.Body.Close()
|
|
|
|
|
|
var accessToken string
|
|
|
|
|
|
logrus.Debugln("reg_service", regService)
|
2023-05-04 06:31:48 +00:00
|
|
|
|
logrus.Debugln("authUrl", authUrl)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
2024-06-24 13:23:33 +00:00
|
|
|
|
if username != "" && password != "" {
|
|
|
|
|
|
accessToken, err = m.getTokenWithBasicAuth(authUrl, regService, d, username, password)
|
|
|
|
|
|
} else {
|
|
|
|
|
|
accessToken, err = m.getAuthHead(authUrl, regService, d)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if err == nil {
|
|
|
|
|
|
|
|
|
|
|
|
var req *http.Request
|
|
|
|
|
|
|
2024-06-24 13:23:33 +00:00
|
|
|
|
if onlyGetTag {
|
|
|
|
|
|
var tagListURL = fmt.Sprintf("https://%s/v2/%s/tags/list", _registry, d)
|
|
|
|
|
|
logrus.Debugln("tags request", tagListURL)
|
|
|
|
|
|
|
|
|
|
|
|
req, err = http.NewRequest("GET", tagListURL, nil)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
req.Header.Add("Authorization", "Bearer "+accessToken)
|
|
|
|
|
|
resp, err = m.c.Do(req)
|
|
|
|
|
|
if err == nil && resp.StatusCode == 200 {
|
|
|
|
|
|
var bts []byte
|
|
|
|
|
|
bts, err = io.ReadAll(resp.Body)
|
|
|
|
|
|
logrus.Debugln("tags response", string(bts))
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
var tagList TagList
|
|
|
|
|
|
err = json.Unmarshal(bts, &tagList)
|
|
|
|
|
|
|
|
|
|
|
|
if err == nil && len(tagList.Tags) > 0 {
|
|
|
|
|
|
tag = tagList.Tags[0]
|
|
|
|
|
|
fmt.Println("获取到的tag列表为:")
|
|
|
|
|
|
fmt.Println(strings.Join(tagList.Tags, ","))
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
resp.Body.Close()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-06 08:19:08 +00:00
|
|
|
|
var manifestURL = fmt.Sprintf("https://%s/v2/%s/manifests/%s", _registry, d, tag)
|
|
|
|
|
|
req, err = http.NewRequest("GET", manifestURL, nil)
|
|
|
|
|
|
logrus.Infoln("获取manifests信息", manifestURL)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if err == nil {
|
|
|
|
|
|
logrus.Debugln("Authorization by", accessToken)
|
|
|
|
|
|
req.Header.Add("Authorization", "Bearer "+accessToken)
|
2023-08-11 06:47:30 +00:00
|
|
|
|
// req.Header.Add("Accept", "application/vnd.oci.image.manifest.v1+json")
|
2023-02-15 08:39:23 +00:00
|
|
|
|
req.Header.Add("Accept", "application/vnd.docker.distribution.manifest.list.v2+json")
|
2023-08-22 09:38:54 +00:00
|
|
|
|
req.Header.Add("Accept", "application/vnd.oci.image.index.v1+json")
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
|
|
|
|
|
var authHeader = req.Header
|
|
|
|
|
|
|
2023-07-06 08:19:08 +00:00
|
|
|
|
resp, err = m.c.Do(req)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if resp.StatusCode != 200 {
|
2024-06-24 13:08:43 +00:00
|
|
|
|
bts, er := io.ReadAll(resp.Body)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
resp.Body.Close()
|
|
|
|
|
|
logrus.Debugln(string(bts), er)
|
|
|
|
|
|
switch resp.StatusCode {
|
|
|
|
|
|
case 401:
|
|
|
|
|
|
logrus.Errorf("[-] Cannot fetch manifest for %s [HTTP %d] with error access_token", d, resp.StatusCode)
|
|
|
|
|
|
case 404:
|
2023-07-06 08:19:08 +00:00
|
|
|
|
logrus.Errorf("[-] Cannot fetch manifest for %s [HTTP %d] with url %s", d, resp.StatusCode, manifestURL)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
resp.Body.Close()
|
|
|
|
|
|
req.Header.Set("Accept", "application/vnd.docker.distribution.manifest.list.v2+json")
|
2023-07-06 08:19:08 +00:00
|
|
|
|
resp, err = m.c.Do(req)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
bts, er := ioutil.ReadAll(resp.Body)
|
|
|
|
|
|
fmt.Println(string(bts), er)
|
|
|
|
|
|
}
|
|
|
|
|
|
//TODO
|
|
|
|
|
|
|
|
|
|
|
|
os.Exit(1)
|
|
|
|
|
|
} else {
|
|
|
|
|
|
var bts []byte
|
|
|
|
|
|
bts, err = io.ReadAll(resp.Body)
|
|
|
|
|
|
|
|
|
|
|
|
if err == nil {
|
2023-08-11 06:47:30 +00:00
|
|
|
|
logrus.WithField("Content-Type", resp.Header.Get("Content-Type")).Debugln("Get manifest list")
|
2023-05-17 05:01:01 +00:00
|
|
|
|
switch resp.Header.Get("Content-Type") {
|
2023-08-11 06:47:30 +00:00
|
|
|
|
case "application/vnd.docker.distribution.manifest.list.v2+json", "application/vnd.oci.image.index.v1+json":
|
2023-05-17 05:01:01 +00:00
|
|
|
|
var info manifestlist.ManifestList
|
|
|
|
|
|
err = json.Unmarshal(bts, &info)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
2023-05-17 05:01:01 +00:00
|
|
|
|
if err == nil {
|
|
|
|
|
|
resp.Body.Close()
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
2023-05-17 05:01:01 +00:00
|
|
|
|
logrus.Infof("获得%d个架构信息:", len(info.Manifests))
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
2023-05-17 05:01:01 +00:00
|
|
|
|
var selectedManifest *manifestlist.ManifestDescriptor
|
|
|
|
|
|
for i := 0; i < len(info.Manifests); i++ {
|
|
|
|
|
|
var m = info.Manifests[i]
|
|
|
|
|
|
logrus.Infof("[%d]架构:%s,OS:%s", i+1, m.Platform.Architecture, m.Platform.OS)
|
|
|
|
|
|
if m.Platform.OS+"/"+m.Platform.Architecture == arch {
|
|
|
|
|
|
logrus.Infoln("找到匹配的架构,开始下载")
|
|
|
|
|
|
selectedManifest = &m
|
2023-07-06 08:19:08 +00:00
|
|
|
|
req.URL, _ = url.Parse(fmt.Sprintf("https://%s/v2/%s/manifests/%s", _registry, d, m.Digest.String()))
|
|
|
|
|
|
break
|
2023-05-17 05:01:01 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
if printInfo {
|
|
|
|
|
|
fmt.Println(string(bts))
|
|
|
|
|
|
os.Exit(0)
|
|
|
|
|
|
}
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
2023-05-17 05:01:01 +00:00
|
|
|
|
if selectedManifest == nil {
|
|
|
|
|
|
return errors.New("未找到匹配的架构:" + arch)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
|
|
|
|
|
|
2023-07-06 08:19:08 +00:00
|
|
|
|
logrus.Debug("找到的架构信息为", selectedManifest)
|
2023-05-17 05:01:01 +00:00
|
|
|
|
req.Header.Set("Accept", selectedManifest.MediaType)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
2023-05-17 05:01:01 +00:00
|
|
|
|
case "application/vnd.docker.distribution.manifest.v1+prettyjws":
|
|
|
|
|
|
req.Header.Set("Accept", "application/vnd.docker.distribution.manifest.v2+json")
|
|
|
|
|
|
}
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
2023-07-06 08:19:08 +00:00
|
|
|
|
resp, err = m.c.Do(req)
|
2023-05-17 05:01:01 +00:00
|
|
|
|
|
|
|
|
|
|
if err == nil {
|
2023-02-15 08:39:23 +00:00
|
|
|
|
|
|
|
|
|
|
var info Info
|
|
|
|
|
|
err = json.NewDecoder(resp.Body).Decode(&info)
|
|
|
|
|
|
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
resp.Body.Close()
|
|
|
|
|
|
logrus.Infof("获得Manifest信息,共%d层需要下载", len(info.Layers))
|
|
|
|
|
|
|
2024-07-13 11:08:40 +00:00
|
|
|
|
err = m.download(syncCount, _registry, d, tag, info.Config.Digest, authHeader, info.Layers)
|
2024-06-24 13:08:43 +00:00
|
|
|
|
|
2023-05-17 05:01:01 +00:00
|
|
|
|
if err != nil {
|
|
|
|
|
|
goto response
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
response:
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-06-24 13:23:33 +00:00
|
|
|
|
func (m *Client) getTokenWithBasicAuth(url, service, repository, username, password string) (string, error) {
|
|
|
|
|
|
req, err := http.NewRequest(http.MethodGet, url, http.NoBody)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
logrus.Fatal(err)
|
|
|
|
|
|
return "", err
|
|
|
|
|
|
}
|
|
|
|
|
|
req.SetBasicAuth(username, password)
|
|
|
|
|
|
|
|
|
|
|
|
query := req.URL.Query()
|
|
|
|
|
|
query.Add("service", service)
|
|
|
|
|
|
query.Add("scope", fmt.Sprintf("repository:%s:pull", repository))
|
|
|
|
|
|
req.URL.RawQuery = query.Encode()
|
|
|
|
|
|
resp, err := m.c.Do(req)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
defer resp.Body.Close()
|
|
|
|
|
|
var results map[string]interface{}
|
|
|
|
|
|
err = json.NewDecoder(resp.Body).Decode(&results)
|
|
|
|
|
|
logrus.Debug(results)
|
|
|
|
|
|
if err == nil && results["token"] != nil {
|
|
|
|
|
|
return results["token"].(string), nil
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
return "", err
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-07-13 11:08:40 +00:00
|
|
|
|
func (m *Client) download(syncCount int, _registry, d, tag string, digest digest.Digest, authHeader http.Header, layers []Layer) (err error) {
|
2023-05-17 05:01:01 +00:00
|
|
|
|
var tmpDir = fmt.Sprintf("tmp_%s_%s", d, tag)
|
|
|
|
|
|
err = os.MkdirAll(tmpDir, 0777)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
if _, e := os.Stat(filepath.Join(tmpDir, "repositories")); e == nil {
|
2024-06-24 13:08:43 +00:00
|
|
|
|
logrus.Info(tmpDir, " is downloaded,use dir as cache")
|
2023-05-17 05:01:01 +00:00
|
|
|
|
} else {
|
|
|
|
|
|
var req *http.Request
|
|
|
|
|
|
req, err = http.NewRequest("GET", fmt.Sprintf("https://%s/v2/%s/blobs/%s", _registry, d, digest), nil)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
req.Header = authHeader
|
|
|
|
|
|
var resp *http.Response
|
2023-07-06 08:19:08 +00:00
|
|
|
|
resp, err = m.c.Do(req)
|
2023-05-17 05:01:01 +00:00
|
|
|
|
if err == nil {
|
|
|
|
|
|
var dest *os.File
|
|
|
|
|
|
dest, err = os.OpenFile(filepath.Join(tmpDir, digest.Encoded()+".json"), os.O_CREATE|os.O_TRUNC|os.O_WRONLY, 0666)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
var bts []byte
|
|
|
|
|
|
bts, err = ioutil.ReadAll(resp.Body)
|
|
|
|
|
|
var lastLayerInfo LayerInfo
|
|
|
|
|
|
err = json.Unmarshal(bts, &lastLayerInfo)
|
|
|
|
|
|
resp.Body.Close()
|
|
|
|
|
|
|
|
|
|
|
|
var config []PackageConfig
|
|
|
|
|
|
config = append(config, PackageConfig{
|
|
|
|
|
|
Config: digest.Encoded() + ".json",
|
|
|
|
|
|
RepoTags: []string{d + ":" + tag},
|
|
|
|
|
|
})
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
_, err = io.Copy(dest, bytes.NewReader(bts))
|
|
|
|
|
|
dest.Close()
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
parentid := ""
|
|
|
|
|
|
var fakeLayerId string
|
2024-06-24 13:08:43 +00:00
|
|
|
|
var downloadStatus = make(map[int]bool)
|
2024-07-13 11:08:40 +00:00
|
|
|
|
var notifyChan = make(chan int, 1)
|
2024-07-09 02:25:36 +00:00
|
|
|
|
//限制并发下载数为3
|
2024-07-13 11:08:40 +00:00
|
|
|
|
var ch = make(chan SyncSignal, syncCount)
|
2023-05-17 05:01:01 +00:00
|
|
|
|
for n, layer := range layers {
|
|
|
|
|
|
namer := sha256.New()
|
|
|
|
|
|
namer.Write([]byte(parentid + "\n" + layer.Digest + "\n"))
|
|
|
|
|
|
fakeLayerId = hex.EncodeToString(namer.Sum(nil))
|
|
|
|
|
|
logrus.Infoln("handle layer", n, fakeLayerId, layer.Urls)
|
2024-06-24 13:08:43 +00:00
|
|
|
|
|
|
|
|
|
|
var layerInfo LayerInfo
|
|
|
|
|
|
if n == len(layers)-1 {
|
|
|
|
|
|
layerInfo = lastLayerInfo
|
2023-05-17 05:01:01 +00:00
|
|
|
|
}
|
2024-06-24 13:08:43 +00:00
|
|
|
|
layerInfo.Id = fakeLayerId
|
|
|
|
|
|
if parentid != "" {
|
|
|
|
|
|
layerInfo.Parent = parentid
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
config[0].Layers = append(config[0].Layers, fakeLayerId+"/layer.tar")
|
|
|
|
|
|
var copyedHeader = make(http.Header)
|
|
|
|
|
|
for k, v := range authHeader {
|
|
|
|
|
|
copyedHeader[k] = v
|
|
|
|
|
|
}
|
|
|
|
|
|
go func(fakeLayerId string, layer Layer, n int, notifyChan chan int, layerInfo *LayerInfo, tmpDir string, _registry string, d string, authHeader http.Header) {
|
2024-07-13 11:08:40 +00:00
|
|
|
|
ch <- SyncSignal{}
|
2024-06-24 13:08:43 +00:00
|
|
|
|
er := m.downloadLayer(fakeLayerId, &layer, layerInfo, tmpDir, _registry, d, authHeader)
|
|
|
|
|
|
if er != nil {
|
|
|
|
|
|
logrus.Errorf("下载第%d/%d层失败:%s", n+1, len(layers), err)
|
|
|
|
|
|
err = er
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
2024-06-24 13:08:43 +00:00
|
|
|
|
notifyChan <- n
|
2024-07-09 02:25:36 +00:00
|
|
|
|
<-ch
|
2024-06-24 13:08:43 +00:00
|
|
|
|
}(fakeLayerId, layer, n, notifyChan, &layerInfo, tmpDir, _registry, d, copyedHeader)
|
|
|
|
|
|
parentid = fakeLayerId
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
for len(downloadStatus) < len(layers) {
|
|
|
|
|
|
n := <-notifyChan
|
|
|
|
|
|
downloadStatus[n] = true
|
|
|
|
|
|
if len(downloadStatus) == len(layers) {
|
|
|
|
|
|
close(notifyChan)
|
|
|
|
|
|
logrus.Infof("[%d/%d]下载完成", len(downloadStatus), len(layers))
|
|
|
|
|
|
break
|
|
|
|
|
|
} else {
|
|
|
|
|
|
logrus.Infof("[%d/%d]第%d层下载完成", len(downloadStatus), len(layers), n+1)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
2023-05-17 05:01:01 +00:00
|
|
|
|
}
|
2024-06-24 13:08:43 +00:00
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-05-17 05:01:01 +00:00
|
|
|
|
var manifest *os.File
|
2024-06-24 13:08:43 +00:00
|
|
|
|
logrus.Debugln("write manifest to", filepath.Join(tmpDir, "manifest.json"))
|
2023-05-17 05:01:01 +00:00
|
|
|
|
manifest, err = os.OpenFile(filepath.Join(tmpDir, "manifest.json"), os.O_CREATE|os.O_TRUNC|os.O_WRONLY, 0666)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
err = json.NewEncoder(manifest).Encode(&config)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if err == nil {
|
2023-05-17 05:01:01 +00:00
|
|
|
|
manifest.Close()
|
|
|
|
|
|
var repositories = make(map[string]interface{})
|
|
|
|
|
|
repositories[d] = map[string]string{
|
|
|
|
|
|
tag: fakeLayerId,
|
|
|
|
|
|
}
|
|
|
|
|
|
var rFile *os.File
|
|
|
|
|
|
rFile, err = os.OpenFile(filepath.Join(tmpDir, "repositories"), os.O_CREATE|os.O_TRUNC|os.O_WRONLY, 0666)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if err == nil {
|
2023-05-17 05:01:01 +00:00
|
|
|
|
err = json.NewEncoder(rFile).Encode(&repositories)
|
2024-06-24 13:08:43 +00:00
|
|
|
|
logrus.Debugln("write repositories to", filepath.Join(tmpDir, "repositories"))
|
2023-05-17 05:01:01 +00:00
|
|
|
|
goto maketar
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2024-06-24 13:08:43 +00:00
|
|
|
|
logrus.Debugln("write manifest fail", err)
|
|
|
|
|
|
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2023-05-17 05:01:01 +00:00
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
maketar:
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
err = writeDirToTarGz(tmpDir, tmpDir+"-img.tar.gz")
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
fmt.Println("write tar success", tmpDir+"-img.tar.gz")
|
2024-06-24 13:08:43 +00:00
|
|
|
|
} else {
|
|
|
|
|
|
logrus.Debugln("write tar fail", err)
|
2023-05-17 05:01:01 +00:00
|
|
|
|
}
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2024-06-24 11:57:11 +00:00
|
|
|
|
func (m *Client) getAuthHead(a, r, d string) (string, error) {
|
2023-08-22 09:38:54 +00:00
|
|
|
|
var regUrl = fmt.Sprintf("%s?service=%s&scope=repository:%s:pull", a, r, d)
|
2024-06-24 11:57:11 +00:00
|
|
|
|
logrus.Debug("get auth head from ", regUrl)
|
|
|
|
|
|
resp, err := m.c.Get(regUrl)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if err == nil {
|
2023-05-04 06:31:48 +00:00
|
|
|
|
defer resp.Body.Close()
|
2023-02-15 08:39:23 +00:00
|
|
|
|
var results map[string]interface{}
|
|
|
|
|
|
err = json.NewDecoder(resp.Body).Decode(&results)
|
|
|
|
|
|
logrus.Debug(results)
|
2024-06-25 12:52:07 +00:00
|
|
|
|
if err == nil {
|
|
|
|
|
|
var accessToken string
|
|
|
|
|
|
if results["access_token"] != nil {
|
|
|
|
|
|
accessToken = results["access_token"].(string)
|
2024-06-24 13:08:43 +00:00
|
|
|
|
} else if results["token"] != nil {
|
2024-06-25 12:52:07 +00:00
|
|
|
|
accessToken = results["token"].(string)
|
|
|
|
|
|
}
|
|
|
|
|
|
if accessToken != "" {
|
|
|
|
|
|
return accessToken, nil
|
2024-06-24 13:08:43 +00:00
|
|
|
|
}
|
2024-06-25 12:52:07 +00:00
|
|
|
|
return "", errors.New("access_token is empty")
|
2023-02-15 08:39:23 +00:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
return "", err
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func writeDirToTarGz(sourcedir, destinationfile string) error {
|
|
|
|
|
|
// create tar file
|
|
|
|
|
|
gzFile, err := os.Create(destinationfile)
|
|
|
|
|
|
gf := gzip.NewWriter(gzFile)
|
|
|
|
|
|
tw := tar.NewWriter(gf)
|
2024-06-24 13:08:43 +00:00
|
|
|
|
logrus.Debug("write tgz file to ", destinationfile)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
if err == nil {
|
|
|
|
|
|
|
|
|
|
|
|
defer func() {
|
|
|
|
|
|
tw.Close()
|
|
|
|
|
|
gf.Close()
|
|
|
|
|
|
gzFile.Close()
|
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
|
|
// get list of files
|
|
|
|
|
|
return filepath.Walk(sourcedir, func(path string, info os.FileInfo, err error) error {
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
relPath, err := filepath.Rel(sourcedir, path)
|
|
|
|
|
|
if err == nil && relPath != "." {
|
2024-06-24 13:08:43 +00:00
|
|
|
|
logrus.Debugln("write", relPath)
|
2023-02-15 08:39:23 +00:00
|
|
|
|
header, err := tar.FileInfoHeader(info, path)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// must provide real name
|
|
|
|
|
|
// (see https://golang.org/src/archive/tar/common.go?#L626)
|
|
|
|
|
|
header.Name = filepath.ToSlash(relPath)
|
|
|
|
|
|
|
|
|
|
|
|
// write header
|
|
|
|
|
|
if err := tw.WriteHeader(header); err != nil {
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
// if not a dir, write file content
|
|
|
|
|
|
if !info.IsDir() {
|
|
|
|
|
|
data, err := os.Open(path)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
if _, err := io.Copy(tw, data); err != nil {
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
return nil
|
|
|
|
|
|
}
|
|
|
|
|
|
return err
|
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func SetLogLevel(lvl logrus.Level) {
|
|
|
|
|
|
logrus.SetLevel(lvl)
|
|
|
|
|
|
logrus.Debugln("设置日志级别为", lvl)
|
|
|
|
|
|
}
|
2024-06-24 13:08:43 +00:00
|
|
|
|
|
|
|
|
|
|
func (m *Client) downloadLayer(fakeLayerId string, layer *Layer, layerInfo *LayerInfo, tmpDir string, _registry string, d string, authHeader http.Header) error {
|
|
|
|
|
|
layerDirName := filepath.Join(tmpDir, fakeLayerId)
|
|
|
|
|
|
err := os.Mkdir(layerDirName, 0777)
|
|
|
|
|
|
if _, er := os.Stat(filepath.Join(layerDirName, "layer.tar")); er == nil {
|
|
|
|
|
|
logrus.Infoln("layer", fakeLayerId, "is existed, continue")
|
|
|
|
|
|
return nil
|
|
|
|
|
|
}
|
|
|
|
|
|
if err == nil || os.IsExist(err) {
|
|
|
|
|
|
err = ioutil.WriteFile(filepath.Join(layerDirName, "VERSION"), []byte("1.0"), 0666)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
var req *http.Request
|
|
|
|
|
|
req, err = http.NewRequest("GET", fmt.Sprintf("https://%s/v2/%s/blobs/%s", _registry, d, layer.Digest), nil)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
req.Header = authHeader
|
|
|
|
|
|
req.Header.Set("Accept", "application/vnd.docker.distribution.manifest.v2+json")
|
|
|
|
|
|
var resp *http.Response
|
|
|
|
|
|
resp, err = m.c.Do(req)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
if resp.StatusCode != 200 {
|
|
|
|
|
|
defer resp.Body.Close()
|
|
|
|
|
|
if len(layer.Urls) > 0 {
|
|
|
|
|
|
req, err = http.NewRequest("GET", layer.Urls[0], nil)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
req.Header = authHeader
|
|
|
|
|
|
req.Header.Set("Accept", "application/vnd.docker.distribution.manifest.v2+json")
|
|
|
|
|
|
resp, err = m.c.Do(req)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
if resp.StatusCode != 200 {
|
|
|
|
|
|
err = fmt.Errorf("download from customized url fail")
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
} else {
|
|
|
|
|
|
bts, _ := ioutil.ReadAll(resp.Body)
|
|
|
|
|
|
logrus.Fatalln("下载失败", string(bts))
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
return errors.Wrap(err, "请求失败")
|
|
|
|
|
|
}
|
|
|
|
|
|
var dst *os.File
|
|
|
|
|
|
dst, err = os.OpenFile(filepath.Join(layerDirName, "layer.tar.part"), os.O_CREATE|os.O_TRUNC|os.O_WRONLY, 0666)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
var greader *gzip.Reader
|
|
|
|
|
|
greader, err = gzip.NewReader(resp.Body)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
_, err = io.Copy(dst, greader)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
dst.Close()
|
|
|
|
|
|
var jsonFile *os.File
|
|
|
|
|
|
jsonFile, err = os.OpenFile(filepath.Join(layerDirName, "json"), os.O_CREATE|os.O_TRUNC|os.O_WRONLY, 0666)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
err = json.NewEncoder(jsonFile).Encode(layerInfo)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
jsonFile.Close()
|
|
|
|
|
|
err = os.Rename(filepath.Join(layerDirName, "layer.tar.part"), filepath.Join(layerDirName, "layer.tar"))
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
err = errors.Wrap(err, "下载失败")
|
|
|
|
|
|
}
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
