Image package to append layers and push final image
This commit is contained in:
Priya Wadhwa
parent
72a5f1c916
commit
3ce3dca56d
|
|
@ -24,4 +24,7 @@ const (
|
||||||
RootDir = "/"
|
RootDir = "/"
|
||||||
|
|
||||||
WhitelistPath = "/proc/self/mountinfo"
|
WhitelistPath = "/proc/self/mountinfo"
|
||||||
|
|
||||||
|
// PolicyJSONPath is the path to the policy JSON
|
||||||
|
PolicyJSONPath = "/workspace/policy.json"
|
||||||
)
|
)
|
||||||
|
|
|
||||||
|
|
@ -0,0 +1,79 @@
|
||||||
|
/*
|
||||||
|
Copyright 2018 Google LLC
|
||||||
|
Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
you may not use this file except in compliance with the License.
|
||||||
|
You may obtain a copy of the License at
|
||||||
|
http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
Unless required by applicable law or agreed to in writing, software
|
||||||
|
distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
See the License for the specific language governing permissions and
|
||||||
|
limitations under the License.
|
||||||
|
*/
|
||||||
|
|
||||||
|
package image
|
||||||
|
|
||||||
|
import (
|
||||||
|
img "github.com/GoogleCloudPlatform/container-diff/pkg/image"
|
||||||
|
"github.com/GoogleCloudPlatform/k8s-container-builder/pkg/constants"
|
||||||
|
"github.com/containers/image/copy"
|
||||||
|
"github.com/containers/image/docker"
|
||||||
|
"github.com/containers/image/signature"
|
||||||
|
"github.com/containers/image/transports/alltransports"
|
||||||
|
"github.com/sirupsen/logrus"
|
||||||
|
)
|
||||||
|
|
||||||
|
// sourceImage is the image that will be modified by the executor
|
||||||
|
var sourceImage img.MutableSource
|
||||||
|
|
||||||
|
// InitializeSourceImage initializes the source image with the base image
|
||||||
|
func InitializeSourceImage(srcImg string) error {
|
||||||
|
ref, err := docker.ParseReference("//" + srcImg)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
ms, err := img.NewMutableSource(ref)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
sourceImage = *ms
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
|
// AppendLayer appends a layer onto the base image
|
||||||
|
func AppendLayer(contents []byte) error {
|
||||||
|
return sourceImage.AppendLayer(contents)
|
||||||
|
}
|
||||||
|
|
||||||
|
// PushImage pushes the final image
|
||||||
|
func PushImage(destImg string) error {
|
||||||
|
srcRef := &img.ProxyReference{
|
||||||
|
ImageReference: nil,
|
||||||
|
Src: &sourceImage,
|
||||||
|
}
|
||||||
|
destRef, err := alltransports.ParseImageName("docker://" + destImg)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
policyContext, err := getPolicyContext()
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
logrus.Infof("Pushing image to %s", destImg)
|
||||||
|
err = copy.Image(policyContext, destRef, srcRef, nil)
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
|
func getPolicyContext() (*signature.PolicyContext, error) {
|
||||||
|
policy, err := signature.NewPolicyFromFile(constants.PolicyJsonPath)
|
||||||
|
if err != nil {
|
||||||
|
logrus.Debugf("Error retrieving policy: %s", err)
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
policyContext, err := signature.NewPolicyContext(policy)
|
||||||
|
if err != nil {
|
||||||
|
logrus.Debugf("Error retrieving policy context: %s", err)
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
return policyContext, nil
|
||||||
|
}
|
||||||
Loading…
Reference in New Issue