mirror of
https://github.com/helm/helm.git
synced 2026-04-15 21:59:50 -04:00
5ec70ab27f
* Fix issue with apiVersion v1 lock digest When apiVersion v1 chart dependencies are built with Helm 2 and then built with Helm 3, the lock digests differ. To avoid this issue, a depdendency update is forced. Signed-off-by: Martin Hickey <martin.hickey@ie.ibm.com> * Check against Helm v2 hash Handle scenario where dependency hash was generated by Helm v2 but need to do a dependency build with Helm v3. Signed-off-by: Martin Hickey <martin.hickey@ie.ibm.com> * Add unit test Signed-off-by: Martin Hickey <martin.hickey@ie.ibm.com> * Refactor unit test Refactor unit test to use an existing chart as dependency Signed-off-by: Martin Hickey <martin.hickey@ie.ibm.com> * Update after review Comments: - https://github.com/helm/helm/pull/7261#discussion_r373827088 - https://github.com/helm/helm/pull/7261#discussion_r373827250 Signed-off-by: Martin Hickey <martin.hickey@ie.ibm.com>
199 lines
5.2 KiB
Go
199 lines
5.2 KiB
Go
/*
|
|
Copyright The Helm Authors.
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package resolver
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/json"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/Masterminds/semver/v3"
|
|
"github.com/pkg/errors"
|
|
|
|
"helm.sh/helm/v3/pkg/chart"
|
|
"helm.sh/helm/v3/pkg/helmpath"
|
|
"helm.sh/helm/v3/pkg/provenance"
|
|
"helm.sh/helm/v3/pkg/repo"
|
|
)
|
|
|
|
// Resolver resolves dependencies from semantic version ranges to a particular version.
|
|
type Resolver struct {
|
|
chartpath string
|
|
cachepath string
|
|
}
|
|
|
|
// New creates a new resolver for a given chart and a given helm home.
|
|
func New(chartpath, cachepath string) *Resolver {
|
|
return &Resolver{
|
|
chartpath: chartpath,
|
|
cachepath: cachepath,
|
|
}
|
|
}
|
|
|
|
// Resolve resolves dependencies and returns a lock file with the resolution.
|
|
func (r *Resolver) Resolve(reqs []*chart.Dependency, repoNames map[string]string) (*chart.Lock, error) {
|
|
|
|
// Now we clone the dependencies, locking as we go.
|
|
locked := make([]*chart.Dependency, len(reqs))
|
|
missing := []string{}
|
|
for i, d := range reqs {
|
|
if d.Repository == "" {
|
|
// Local chart subfolder
|
|
if _, err := GetLocalPath(filepath.Join("charts", d.Name), r.chartpath); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
locked[i] = &chart.Dependency{
|
|
Name: d.Name,
|
|
Repository: "",
|
|
Version: d.Version,
|
|
}
|
|
continue
|
|
}
|
|
if strings.HasPrefix(d.Repository, "file://") {
|
|
|
|
if _, err := GetLocalPath(d.Repository, r.chartpath); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
locked[i] = &chart.Dependency{
|
|
Name: d.Name,
|
|
Repository: d.Repository,
|
|
Version: d.Version,
|
|
}
|
|
continue
|
|
}
|
|
constraint, err := semver.NewConstraint(d.Version)
|
|
if err != nil {
|
|
return nil, errors.Wrapf(err, "dependency %q has an invalid version/constraint format", d.Name)
|
|
}
|
|
|
|
repoName := repoNames[d.Name]
|
|
// if the repository was not defined, but the dependency defines a repository url, bypass the cache
|
|
if repoName == "" && d.Repository != "" {
|
|
locked[i] = &chart.Dependency{
|
|
Name: d.Name,
|
|
Repository: d.Repository,
|
|
Version: d.Version,
|
|
}
|
|
continue
|
|
}
|
|
|
|
repoIndex, err := repo.LoadIndexFile(filepath.Join(r.cachepath, helmpath.CacheIndexFile(repoName)))
|
|
if err != nil {
|
|
return nil, errors.Wrapf(err, "no cached repository for %s found. (try 'helm repo update')", repoName)
|
|
}
|
|
|
|
vs, ok := repoIndex.Entries[d.Name]
|
|
if !ok {
|
|
return nil, errors.Errorf("%s chart not found in repo %s", d.Name, d.Repository)
|
|
}
|
|
|
|
locked[i] = &chart.Dependency{
|
|
Name: d.Name,
|
|
Repository: d.Repository,
|
|
}
|
|
found := false
|
|
// The version are already sorted and hence the first one to satisfy the constraint is used
|
|
for _, ver := range vs {
|
|
v, err := semver.NewVersion(ver.Version)
|
|
if err != nil || len(ver.URLs) == 0 {
|
|
// Not a legit entry.
|
|
continue
|
|
}
|
|
if constraint.Check(v) {
|
|
found = true
|
|
locked[i].Version = v.Original()
|
|
break
|
|
}
|
|
}
|
|
|
|
if !found {
|
|
missing = append(missing, d.Name)
|
|
}
|
|
}
|
|
if len(missing) > 0 {
|
|
return nil, errors.Errorf("can't get a valid version for repositories %s. Try changing the version constraint in Chart.yaml", strings.Join(missing, ", "))
|
|
}
|
|
|
|
digest, err := HashReq(reqs, locked)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &chart.Lock{
|
|
Generated: time.Now(),
|
|
Digest: digest,
|
|
Dependencies: locked,
|
|
}, nil
|
|
}
|
|
|
|
// HashReq generates a hash of the dependencies.
|
|
//
|
|
// This should be used only to compare against another hash generated by this
|
|
// function.
|
|
func HashReq(req, lock []*chart.Dependency) (string, error) {
|
|
data, err := json.Marshal([2][]*chart.Dependency{req, lock})
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
s, err := provenance.Digest(bytes.NewBuffer(data))
|
|
return "sha256:" + s, err
|
|
}
|
|
|
|
// HashV2Req generates a hash of requirements generated in Helm v2.
|
|
//
|
|
// This should be used only to compare against another hash generated by the
|
|
// Helm v2 hash function. It is to handle issue:
|
|
// https://github.com/helm/helm/issues/7233
|
|
func HashV2Req(req []*chart.Dependency) (string, error) {
|
|
dep := make(map[string][]*chart.Dependency)
|
|
dep["dependencies"] = req
|
|
data, err := json.Marshal(dep)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
s, err := provenance.Digest(bytes.NewBuffer(data))
|
|
return "sha256:" + s, err
|
|
}
|
|
|
|
// GetLocalPath generates absolute local path when use
|
|
// "file://" in repository of dependencies
|
|
func GetLocalPath(repo, chartpath string) (string, error) {
|
|
var depPath string
|
|
var err error
|
|
p := strings.TrimPrefix(repo, "file://")
|
|
|
|
// root path is absolute
|
|
if strings.HasPrefix(p, "/") {
|
|
if depPath, err = filepath.Abs(p); err != nil {
|
|
return "", err
|
|
}
|
|
} else {
|
|
depPath = filepath.Join(chartpath, p)
|
|
}
|
|
|
|
if _, err = os.Stat(depPath); os.IsNotExist(err) {
|
|
return "", errors.Errorf("directory %s not found", depPath)
|
|
} else if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
return depPath, nil
|
|
}
|