2022-04-27 01:00:20 -05:00
|
|
|
//go:build search
|
|
|
|
// +build search
|
2021-10-15 10:05:00 -05:00
|
|
|
|
2021-01-25 13:04:03 -05:00
|
|
|
package common_test
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"encoding/json"
|
2022-02-20 20:32:44 -05:00
|
|
|
"fmt"
|
|
|
|
"io/ioutil"
|
2021-01-25 13:04:03 -05:00
|
|
|
"os"
|
2022-02-20 20:32:44 -05:00
|
|
|
"os/exec"
|
2021-01-25 13:04:03 -05:00
|
|
|
"path"
|
|
|
|
"testing"
|
|
|
|
"time"
|
|
|
|
|
2022-05-10 03:28:26 -05:00
|
|
|
"github.com/opencontainers/go-digest"
|
2021-01-25 13:04:03 -05:00
|
|
|
ispec "github.com/opencontainers/image-spec/specs-go/v1"
|
2022-02-20 20:32:44 -05:00
|
|
|
"github.com/sigstore/cosign/cmd/cosign/cli/generate"
|
|
|
|
"github.com/sigstore/cosign/cmd/cosign/cli/options"
|
|
|
|
"github.com/sigstore/cosign/cmd/cosign/cli/sign"
|
2021-01-25 13:04:03 -05:00
|
|
|
. "github.com/smartystreets/goconvey/convey"
|
|
|
|
"gopkg.in/resty.v1"
|
2021-12-03 22:50:58 -05:00
|
|
|
"zotregistry.io/zot/pkg/api"
|
|
|
|
"zotregistry.io/zot/pkg/api/config"
|
2022-02-24 15:31:36 -05:00
|
|
|
"zotregistry.io/zot/pkg/api/constants"
|
2021-12-03 22:50:58 -05:00
|
|
|
extconf "zotregistry.io/zot/pkg/extensions/config"
|
|
|
|
"zotregistry.io/zot/pkg/extensions/monitoring"
|
|
|
|
"zotregistry.io/zot/pkg/extensions/search/common"
|
|
|
|
"zotregistry.io/zot/pkg/log"
|
|
|
|
"zotregistry.io/zot/pkg/storage"
|
2022-01-19 14:54:17 -05:00
|
|
|
. "zotregistry.io/zot/pkg/test"
|
2021-01-25 13:04:03 -05:00
|
|
|
)
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
const (
|
|
|
|
graphqlQueryPrefix = constants.ExtSearchPrefix
|
|
|
|
)
|
|
|
|
|
2021-01-25 13:04:03 -05:00
|
|
|
// nolint:gochecknoglobals
|
|
|
|
var (
|
|
|
|
rootDir string
|
|
|
|
subRootDir string
|
|
|
|
)
|
|
|
|
|
|
|
|
type ImgResponsWithLatestTag struct {
|
|
|
|
ImgListWithLatestTag ImgListWithLatestTag `json:"data"`
|
|
|
|
Errors []ErrorGQL `json:"errors"`
|
|
|
|
}
|
|
|
|
|
2022-02-01 21:02:05 -05:00
|
|
|
type ExpandedRepoInfoResp struct {
|
|
|
|
ExpandedRepoInfo ExpandedRepoInfo `json:"data"`
|
|
|
|
Errors []ErrorGQL `json:"errors"`
|
|
|
|
}
|
|
|
|
|
|
|
|
type ExpandedRepoInfo struct {
|
|
|
|
RepoInfo common.RepoInfo `json:"expandedRepoInfo"`
|
|
|
|
}
|
|
|
|
|
2021-12-13 14:23:31 -05:00
|
|
|
//nolint:tagliatelle // graphQL schema
|
2021-01-25 13:04:03 -05:00
|
|
|
type ImgListWithLatestTag struct {
|
|
|
|
Images []ImageInfo `json:"ImageListWithLatestTag"`
|
|
|
|
}
|
|
|
|
|
|
|
|
type ErrorGQL struct {
|
|
|
|
Message string `json:"message"`
|
|
|
|
Path []string `json:"path"`
|
|
|
|
}
|
|
|
|
|
|
|
|
type ImageInfo struct {
|
|
|
|
Name string
|
|
|
|
Latest string
|
|
|
|
LastUpdated time.Time
|
|
|
|
Description string
|
|
|
|
Licenses string
|
|
|
|
Vendor string
|
|
|
|
Size string
|
|
|
|
Labels string
|
|
|
|
}
|
|
|
|
|
2022-02-20 20:32:44 -05:00
|
|
|
func testSetup(t *testing.T, subpath string) error {
|
2022-03-07 03:55:12 -05:00
|
|
|
t.Helper()
|
|
|
|
dir := t.TempDir()
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2022-03-07 03:55:12 -05:00
|
|
|
subDir := t.TempDir()
|
2021-01-25 13:04:03 -05:00
|
|
|
|
|
|
|
rootDir = dir
|
|
|
|
|
2022-02-20 20:32:44 -05:00
|
|
|
subRootDir = path.Join(subDir, subpath)
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2022-03-07 03:55:12 -05:00
|
|
|
err := CopyFiles("../../../../test/data", rootDir)
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2022-02-20 20:32:44 -05:00
|
|
|
return CopyFiles("../../../../test/data", subRootDir)
|
|
|
|
}
|
|
|
|
|
|
|
|
func signUsingCosign(port string) error {
|
|
|
|
cwd, err := os.Getwd()
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
|
|
|
|
defer func() { _ = os.Chdir(cwd) }()
|
|
|
|
|
|
|
|
tdir, err := ioutil.TempDir("", "cosign")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
defer os.RemoveAll(tdir)
|
|
|
|
|
|
|
|
_ = os.Chdir(tdir)
|
|
|
|
|
|
|
|
// generate a keypair
|
|
|
|
os.Setenv("COSIGN_PASSWORD", "")
|
|
|
|
|
|
|
|
err = generate.GenerateKeyPairCmd(context.TODO(), "", nil)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
imageURL := fmt.Sprintf("localhost:%s/%s@%s", port, "zot-cve-test",
|
|
|
|
"sha256:63a795ca90aa6e7cca60941e826810a4cd0a2e73ea02bf458241df2a5c973e29")
|
|
|
|
|
|
|
|
// sign the image
|
|
|
|
return sign.SignCmd(&options.RootOptions{Verbose: true, Timeout: 1 * time.Minute},
|
|
|
|
options.KeyOpts{KeyRef: path.Join(tdir, "cosign.key"), PassFunc: generate.GetPass},
|
|
|
|
options.RegistryOptions{AllowInsecure: true},
|
|
|
|
map[string]interface{}{"tag": "1.0"},
|
|
|
|
[]string{imageURL},
|
|
|
|
"", "", true, "", "", "", false, false, "")
|
|
|
|
}
|
|
|
|
|
|
|
|
func signUsingNotary(port string) error {
|
|
|
|
cwd, err := os.Getwd()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
defer func() { _ = os.Chdir(cwd) }()
|
|
|
|
|
|
|
|
tdir, err := ioutil.TempDir("", "notation")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
defer os.RemoveAll(tdir)
|
|
|
|
|
|
|
|
_ = os.Chdir(tdir)
|
|
|
|
|
|
|
|
_, err = exec.LookPath("notation")
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2022-02-20 20:32:44 -05:00
|
|
|
os.Setenv("XDG_CONFIG_HOME", tdir)
|
|
|
|
|
|
|
|
// generate a keypair
|
|
|
|
cmd := exec.Command("notation", "cert", "generate-test", "--trust", "notation-sign-test")
|
|
|
|
|
|
|
|
err = cmd.Run()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
// sign the image
|
2022-07-15 06:10:51 -05:00
|
|
|
image := fmt.Sprintf("localhost:%s/%s:%s", port, "zot-test", "0.0.1")
|
2022-02-20 20:32:44 -05:00
|
|
|
|
|
|
|
cmd = exec.Command("notation", "sign", "--key", "notation-sign-test", "--plain-http", image)
|
|
|
|
|
|
|
|
return cmd.Run()
|
2021-01-25 13:04:03 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
func getTags() ([]common.TagInfo, []common.TagInfo) {
|
|
|
|
tags := make([]common.TagInfo, 0)
|
|
|
|
|
2021-12-13 14:23:31 -05:00
|
|
|
firstTag := common.TagInfo{
|
|
|
|
Name: "1.0.0",
|
2021-01-25 13:04:03 -05:00
|
|
|
Digest: "sha256:eca04f027f414362596f2632746d8a178362170b9ac9af772011fedcc3877ebb",
|
2021-12-13 14:23:31 -05:00
|
|
|
Timestamp: time.Now(),
|
|
|
|
}
|
|
|
|
secondTag := common.TagInfo{
|
|
|
|
Name: "1.0.1",
|
2021-01-25 13:04:03 -05:00
|
|
|
Digest: "sha256:eca04f027f414362596f2632746d8a179362170b9ac9af772011fedcc3877ebb",
|
2021-12-13 14:23:31 -05:00
|
|
|
Timestamp: time.Now(),
|
|
|
|
}
|
|
|
|
thirdTag := common.TagInfo{
|
|
|
|
Name: "1.0.2",
|
2021-01-25 13:04:03 -05:00
|
|
|
Digest: "sha256:eca04f027f414362596f2632746d8a170362170b9ac9af772011fedcc3877ebb",
|
2021-12-13 14:23:31 -05:00
|
|
|
Timestamp: time.Now(),
|
|
|
|
}
|
|
|
|
fourthTag := common.TagInfo{
|
|
|
|
Name: "1.0.3",
|
2021-01-25 13:04:03 -05:00
|
|
|
Digest: "sha256:eca04f027f414362596f2632746d8a171362170b9ac9af772011fedcc3877ebb",
|
2021-12-13 14:23:31 -05:00
|
|
|
Timestamp: time.Now(),
|
|
|
|
}
|
2021-01-25 13:04:03 -05:00
|
|
|
|
|
|
|
tags = append(tags, firstTag, secondTag, thirdTag, fourthTag)
|
|
|
|
|
|
|
|
infectedTags := make([]common.TagInfo, 0)
|
|
|
|
infectedTags = append(infectedTags, secondTag)
|
|
|
|
|
|
|
|
return tags, infectedTags
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestImageFormat(t *testing.T) {
|
|
|
|
Convey("Test valid image", t, func() {
|
|
|
|
log := log.NewLogger("debug", "")
|
|
|
|
dbDir := "../../../../test/data"
|
2021-09-30 08:27:13 -05:00
|
|
|
|
2021-10-15 10:05:00 -05:00
|
|
|
metrics := monitoring.NewMetricsServer(false, log)
|
2022-02-09 19:51:35 -05:00
|
|
|
defaultStore := storage.NewImageStore(dbDir, false, storage.DefaultGCDelay, false, false, log, metrics)
|
2021-09-30 08:27:13 -05:00
|
|
|
storeController := storage.StoreController{DefaultStore: defaultStore}
|
|
|
|
olu := common.NewOciLayoutUtils(storeController, log)
|
|
|
|
|
|
|
|
isValidImage, err := olu.IsValidImageFormat("zot-test")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, true)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-test:0.0.1")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, true)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-test:0.0.")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-noindex-test")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot--tet")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-noindex-test")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-squashfs-noblobs")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-squashfs-invalid-index")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-squashfs-invalid-blob")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-squashfs-test:0.3.22-squashfs")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
isValidImage, err = olu.IsValidImageFormat("zot-nonreadable-test")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(isValidImage, ShouldEqual, false)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestLatestTagSearchHTTP(t *testing.T) {
|
|
|
|
Convey("Test latest image search by timestamp", t, func() {
|
2022-02-20 20:32:44 -05:00
|
|
|
subpath := "/a"
|
|
|
|
err := testSetup(t, subpath)
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
2021-11-10 09:31:03 -05:00
|
|
|
port := GetFreePort()
|
|
|
|
baseURL := GetBaseURL(port)
|
2021-06-08 15:11:18 -05:00
|
|
|
conf := config.New()
|
2021-11-10 09:31:03 -05:00
|
|
|
conf.HTTP.Port = port
|
2021-06-08 15:11:18 -05:00
|
|
|
conf.Storage.RootDirectory = rootDir
|
|
|
|
conf.Storage.SubPaths = make(map[string]config.StorageConfig)
|
2022-02-20 20:32:44 -05:00
|
|
|
conf.Storage.SubPaths[subpath] = config.StorageConfig{RootDirectory: subRootDir}
|
2021-12-28 08:29:30 -05:00
|
|
|
defaultVal := true
|
2021-06-08 15:11:18 -05:00
|
|
|
conf.Extensions = &extconf.ExtensionConfig{
|
2021-12-28 08:29:30 -05:00
|
|
|
Search: &extconf.SearchConfig{Enable: &defaultVal},
|
2021-01-25 13:04:03 -05:00
|
|
|
}
|
|
|
|
|
2021-06-08 15:11:18 -05:00
|
|
|
conf.Extensions.Search.CVE = nil
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2021-12-13 14:23:31 -05:00
|
|
|
ctlr := api.NewController(conf)
|
2021-01-25 13:04:03 -05:00
|
|
|
|
|
|
|
go func() {
|
|
|
|
// this blocks
|
2022-03-24 07:49:51 -05:00
|
|
|
if err := ctlr.Run(context.Background()); err != nil {
|
2021-01-25 13:04:03 -05:00
|
|
|
return
|
|
|
|
}
|
|
|
|
}()
|
|
|
|
|
|
|
|
// wait till ready
|
|
|
|
for {
|
2021-11-10 09:31:03 -05:00
|
|
|
_, err := resty.R().Get(baseURL)
|
2021-01-25 13:04:03 -05:00
|
|
|
if err == nil {
|
|
|
|
break
|
|
|
|
}
|
|
|
|
time.Sleep(100 * time.Millisecond)
|
|
|
|
}
|
|
|
|
|
|
|
|
// shut down server
|
|
|
|
defer func() {
|
|
|
|
ctx := context.Background()
|
2021-12-13 14:23:31 -05:00
|
|
|
_ = ctlr.Server.Shutdown(ctx)
|
2021-01-25 13:04:03 -05:00
|
|
|
}()
|
|
|
|
|
2021-11-10 09:31:03 -05:00
|
|
|
resp, err := resty.R().Get(baseURL + "/v2/")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix)
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
2022-07-15 06:10:51 -05:00
|
|
|
So(resp.StatusCode(), ShouldEqual, 422)
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query={ImageListWithLatestTag(){Name%20Latest}}")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
var responseStruct ImgResponsWithLatestTag
|
|
|
|
err = json.Unmarshal(resp.Body(), &responseStruct)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(len(responseStruct.ImgListWithLatestTag.Images), ShouldEqual, 4)
|
|
|
|
|
|
|
|
images := responseStruct.ImgListWithLatestTag.Images
|
|
|
|
So(images[0].Latest, ShouldEqual, "0.0.1")
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query={ImageListWithLatestTag(){Name%20Latest}}")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
|
2021-12-13 14:23:31 -05:00
|
|
|
err = os.Chmod(rootDir, 0o000)
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query={ImageListWithLatestTag(){Name%20Latest}}")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
err = json.Unmarshal(resp.Body(), &responseStruct)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(len(responseStruct.ImgListWithLatestTag.Images), ShouldEqual, 0)
|
|
|
|
|
2021-12-13 14:23:31 -05:00
|
|
|
err = os.Chmod(rootDir, 0o755)
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-05-10 03:28:26 -05:00
|
|
|
var manifestDigest digest.Digest
|
|
|
|
var configDigest digest.Digest
|
|
|
|
manifestDigest, configDigest, _ = GetOciLayoutDigests("../../../../test/data/zot-test")
|
|
|
|
|
2021-01-25 13:04:03 -05:00
|
|
|
// Delete config blob and try.
|
2022-05-10 03:28:26 -05:00
|
|
|
err = os.Remove(path.Join(subRootDir, "zot-test/blobs/sha256", configDigest.Encoded()))
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query={ImageListWithLatestTag(){Name%20Latest}}")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
err = os.Remove(path.Join(subRootDir, "zot-test/blobs/sha256",
|
2022-05-10 03:28:26 -05:00
|
|
|
manifestDigest.Encoded()))
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query={ImageListWithLatestTag(){Name%20Latest}}")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
2022-05-10 03:28:26 -05:00
|
|
|
err = os.Remove(path.Join(rootDir, "zot-test/blobs/sha256", configDigest.Encoded()))
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query={ImageListWithLatestTag(){Name%20Latest}}")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
// Delete manifest blob also and try
|
2022-05-10 03:28:26 -05:00
|
|
|
err = os.Remove(path.Join(rootDir, "zot-test/blobs/sha256", manifestDigest.Encoded()))
|
2021-01-25 13:04:03 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query={ImageListWithLatestTag(){Name%20Latest}}")
|
2021-01-25 13:04:03 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
2022-02-01 21:02:05 -05:00
|
|
|
func TestExpandedRepoInfo(t *testing.T) {
|
|
|
|
Convey("Test expanded repo info", t, func() {
|
2022-02-20 20:32:44 -05:00
|
|
|
subpath := "/a"
|
|
|
|
err := testSetup(t, subpath)
|
2022-02-01 21:02:05 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
port := GetFreePort()
|
|
|
|
baseURL := GetBaseURL(port)
|
|
|
|
conf := config.New()
|
|
|
|
conf.HTTP.Port = port
|
|
|
|
conf.Storage.RootDirectory = rootDir
|
|
|
|
conf.Storage.SubPaths = make(map[string]config.StorageConfig)
|
2022-02-20 20:32:44 -05:00
|
|
|
conf.Storage.SubPaths[subpath] = config.StorageConfig{RootDirectory: subRootDir}
|
2022-02-01 21:02:05 -05:00
|
|
|
defaultVal := true
|
|
|
|
conf.Extensions = &extconf.ExtensionConfig{
|
|
|
|
Search: &extconf.SearchConfig{Enable: &defaultVal},
|
|
|
|
}
|
|
|
|
|
|
|
|
conf.Extensions.Search.CVE = nil
|
|
|
|
|
|
|
|
ctlr := api.NewController(conf)
|
|
|
|
|
|
|
|
go func() {
|
|
|
|
// this blocks
|
2022-03-24 07:49:51 -05:00
|
|
|
if err := ctlr.Run(context.Background()); err != nil {
|
2022-02-01 21:02:05 -05:00
|
|
|
return
|
|
|
|
}
|
|
|
|
}()
|
|
|
|
|
|
|
|
// wait till ready
|
|
|
|
for {
|
|
|
|
_, err := resty.R().Get(baseURL)
|
|
|
|
if err == nil {
|
|
|
|
break
|
|
|
|
}
|
|
|
|
time.Sleep(100 * time.Millisecond)
|
|
|
|
}
|
|
|
|
|
|
|
|
// shut down server
|
|
|
|
defer func() {
|
|
|
|
ctx := context.Background()
|
|
|
|
_ = ctlr.Server.Shutdown(ctx)
|
|
|
|
}()
|
|
|
|
|
|
|
|
resp, err := resty.R().Get(baseURL + "/v2/")
|
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix)
|
2022-02-01 21:02:05 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
2022-07-15 06:10:51 -05:00
|
|
|
So(resp.StatusCode(), ShouldEqual, 422)
|
2022-02-01 21:02:05 -05:00
|
|
|
|
2022-02-20 20:32:44 -05:00
|
|
|
query := "{ExpandedRepoInfo(repo:\"zot-cve-test\"){Manifests%20{Digest%20IsSigned%20Tag%20Layers%20{Size%20Digest}}}}"
|
2022-02-01 21:02:05 -05:00
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query=" + query)
|
2022-02-01 21:02:05 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
responseStruct := &ExpandedRepoInfoResp{}
|
|
|
|
|
|
|
|
err = json.Unmarshal(resp.Body(), responseStruct)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests), ShouldNotEqual, 0)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests[0].Layers), ShouldNotEqual, 0)
|
2022-07-15 06:10:51 -05:00
|
|
|
found := false
|
2022-02-20 20:32:44 -05:00
|
|
|
for _, m := range responseStruct.ExpandedRepoInfo.RepoInfo.Manifests {
|
|
|
|
if m.Digest == "63a795ca90aa6e7cca60941e826810a4cd0a2e73ea02bf458241df2a5c973e29" {
|
2022-07-15 06:10:51 -05:00
|
|
|
found = true
|
2022-02-20 20:32:44 -05:00
|
|
|
So(m.IsSigned, ShouldEqual, false)
|
|
|
|
}
|
|
|
|
}
|
2022-07-15 06:10:51 -05:00
|
|
|
So(found, ShouldEqual, true)
|
2022-02-20 20:32:44 -05:00
|
|
|
|
|
|
|
err = signUsingCosign(port)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
|
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query=" + query)
|
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
err = json.Unmarshal(resp.Body(), responseStruct)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests), ShouldNotEqual, 0)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests[0].Layers), ShouldNotEqual, 0)
|
2022-07-15 06:10:51 -05:00
|
|
|
found = false
|
2022-02-20 20:32:44 -05:00
|
|
|
for _, m := range responseStruct.ExpandedRepoInfo.RepoInfo.Manifests {
|
|
|
|
if m.Digest == "63a795ca90aa6e7cca60941e826810a4cd0a2e73ea02bf458241df2a5c973e29" {
|
2022-07-15 06:10:51 -05:00
|
|
|
found = true
|
2022-02-20 20:32:44 -05:00
|
|
|
So(m.IsSigned, ShouldEqual, true)
|
|
|
|
}
|
|
|
|
}
|
2022-07-15 06:10:51 -05:00
|
|
|
So(found, ShouldEqual, true)
|
2022-02-01 21:02:05 -05:00
|
|
|
|
|
|
|
query = "{ExpandedRepoInfo(repo:\"\"){Manifests%20{Digest%20Tag%20IsSigned%20Layers%20{Size%20Digest}}}}"
|
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query=" + query)
|
2022-02-01 21:02:05 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
2022-07-15 06:10:51 -05:00
|
|
|
query = "{ExpandedRepoInfo(repo:\"zot-test\"){Manifests%20{Digest%20Tag%20IsSigned%20Layers%20{Size%20Digest}}}}"
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query=" + query)
|
2022-02-01 21:02:05 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
err = json.Unmarshal(resp.Body(), responseStruct)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests), ShouldNotEqual, 0)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests[0].Layers), ShouldNotEqual, 0)
|
2022-07-15 06:10:51 -05:00
|
|
|
found = false
|
2022-02-20 20:32:44 -05:00
|
|
|
for _, m := range responseStruct.ExpandedRepoInfo.RepoInfo.Manifests {
|
|
|
|
if m.Digest == "2bacca16b9df395fc855c14ccf50b12b58d35d468b8e7f25758aff90f89bf396" {
|
2022-07-15 06:10:51 -05:00
|
|
|
found = true
|
2022-02-20 20:32:44 -05:00
|
|
|
So(m.IsSigned, ShouldEqual, false)
|
|
|
|
}
|
|
|
|
}
|
2022-07-15 06:10:51 -05:00
|
|
|
So(found, ShouldEqual, true)
|
2022-02-20 20:32:44 -05:00
|
|
|
|
|
|
|
err = signUsingNotary(port)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
|
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "/query?query=" + query)
|
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
err = json.Unmarshal(resp.Body(), responseStruct)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests), ShouldNotEqual, 0)
|
|
|
|
So(len(responseStruct.ExpandedRepoInfo.RepoInfo.Manifests[0].Layers), ShouldNotEqual, 0)
|
2022-07-15 06:10:51 -05:00
|
|
|
found = false
|
2022-02-20 20:32:44 -05:00
|
|
|
for _, m := range responseStruct.ExpandedRepoInfo.RepoInfo.Manifests {
|
|
|
|
if m.Digest == "2bacca16b9df395fc855c14ccf50b12b58d35d468b8e7f25758aff90f89bf396" {
|
2022-07-15 06:10:51 -05:00
|
|
|
found = true
|
2022-02-20 20:32:44 -05:00
|
|
|
So(m.IsSigned, ShouldEqual, true)
|
|
|
|
}
|
|
|
|
}
|
2022-07-15 06:10:51 -05:00
|
|
|
So(found, ShouldEqual, true)
|
2022-02-01 21:02:05 -05:00
|
|
|
|
2022-05-10 03:28:26 -05:00
|
|
|
var manifestDigest digest.Digest
|
|
|
|
manifestDigest, _, _ = GetOciLayoutDigests("../../../../test/data/zot-test")
|
|
|
|
|
|
|
|
err = os.Remove(path.Join(rootDir, "zot-test/blobs/sha256", manifestDigest.Encoded()))
|
2022-02-20 20:32:44 -05:00
|
|
|
So(err, ShouldBeNil)
|
2022-02-01 21:02:05 -05:00
|
|
|
|
2022-02-24 15:31:36 -05:00
|
|
|
resp, err = resty.R().Get(baseURL + graphqlQueryPrefix + "?query=" + query)
|
2022-02-01 21:02:05 -05:00
|
|
|
So(resp, ShouldNotBeNil)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(resp.StatusCode(), ShouldEqual, 200)
|
|
|
|
|
|
|
|
err = json.Unmarshal(resp.Body(), responseStruct)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
2021-01-25 13:04:03 -05:00
|
|
|
func TestUtilsMethod(t *testing.T) {
|
|
|
|
Convey("Test utils", t, func() {
|
|
|
|
// Test GetRepo method
|
|
|
|
repo := common.GetRepo("test")
|
|
|
|
So(repo, ShouldEqual, "test")
|
|
|
|
|
|
|
|
repo = common.GetRepo(":")
|
|
|
|
So(repo, ShouldEqual, "")
|
|
|
|
|
|
|
|
repo = common.GetRepo("")
|
|
|
|
So(repo, ShouldEqual, "")
|
|
|
|
|
|
|
|
repo = common.GetRepo("test:123")
|
|
|
|
So(repo, ShouldEqual, "test")
|
|
|
|
|
|
|
|
repo = common.GetRepo("a/test:123")
|
|
|
|
So(repo, ShouldEqual, "a/test")
|
|
|
|
|
|
|
|
repo = common.GetRepo("a/test:123:456")
|
|
|
|
So(repo, ShouldEqual, "a/test")
|
|
|
|
|
|
|
|
// Test various labels
|
|
|
|
labels := make(map[string]string)
|
|
|
|
|
|
|
|
desc := common.GetDescription(labels)
|
|
|
|
So(desc, ShouldEqual, "")
|
|
|
|
|
|
|
|
license := common.GetLicense(labels)
|
|
|
|
So(license, ShouldEqual, "")
|
|
|
|
|
|
|
|
vendor := common.GetVendor(labels)
|
|
|
|
So(vendor, ShouldEqual, "")
|
|
|
|
|
|
|
|
categories := common.GetCategories(labels)
|
|
|
|
So(categories, ShouldEqual, "")
|
|
|
|
|
|
|
|
labels[ispec.AnnotationVendor] = "zot"
|
|
|
|
labels[ispec.AnnotationDescription] = "zot-desc"
|
|
|
|
labels[ispec.AnnotationLicenses] = "zot-license"
|
|
|
|
labels[common.AnnotationLabels] = "zot-labels"
|
|
|
|
|
|
|
|
desc = common.GetDescription(labels)
|
|
|
|
So(desc, ShouldEqual, "zot-desc")
|
|
|
|
|
|
|
|
license = common.GetLicense(labels)
|
|
|
|
So(license, ShouldEqual, "zot-license")
|
|
|
|
|
|
|
|
vendor = common.GetVendor(labels)
|
|
|
|
So(vendor, ShouldEqual, "zot")
|
|
|
|
|
|
|
|
categories = common.GetCategories(labels)
|
|
|
|
So(categories, ShouldEqual, "zot-labels")
|
|
|
|
|
|
|
|
labels = make(map[string]string)
|
|
|
|
|
|
|
|
// Use diff key
|
|
|
|
labels[common.LabelAnnotationVendor] = "zot-vendor"
|
|
|
|
labels[common.LabelAnnotationDescription] = "zot-label-desc"
|
|
|
|
labels[common.LabelAnnotationLicenses] = "zot-label-license"
|
|
|
|
|
|
|
|
desc = common.GetDescription(labels)
|
|
|
|
So(desc, ShouldEqual, "zot-label-desc")
|
|
|
|
|
|
|
|
license = common.GetLicense(labels)
|
|
|
|
So(license, ShouldEqual, "zot-label-license")
|
|
|
|
|
|
|
|
vendor = common.GetVendor(labels)
|
|
|
|
So(vendor, ShouldEqual, "zot-vendor")
|
|
|
|
|
|
|
|
routePrefix := common.GetRoutePrefix("test:latest")
|
|
|
|
So(routePrefix, ShouldEqual, "/")
|
|
|
|
|
|
|
|
routePrefix = common.GetRoutePrefix("a/test:latest")
|
|
|
|
So(routePrefix, ShouldEqual, "/a")
|
|
|
|
|
|
|
|
routePrefix = common.GetRoutePrefix("a/b/test:latest")
|
|
|
|
So(routePrefix, ShouldEqual, "/a")
|
|
|
|
|
|
|
|
allTags, infectedTags := getTags()
|
|
|
|
|
|
|
|
latestTag := common.GetLatestTag(allTags)
|
|
|
|
So(latestTag.Name, ShouldEqual, "1.0.3")
|
|
|
|
|
|
|
|
fixedTags := common.GetFixedTags(allTags, infectedTags)
|
|
|
|
So(len(fixedTags), ShouldEqual, 2)
|
|
|
|
|
|
|
|
log := log.NewLogger("debug", "")
|
|
|
|
|
2022-03-07 03:55:12 -05:00
|
|
|
rootDir := t.TempDir()
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2022-03-07 03:55:12 -05:00
|
|
|
subRootDir := t.TempDir()
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2021-10-15 10:05:00 -05:00
|
|
|
metrics := monitoring.NewMetricsServer(false, log)
|
2022-02-09 19:51:35 -05:00
|
|
|
defaultStore := storage.NewImageStore(rootDir, false, storage.DefaultGCDelay, false, false, log, metrics)
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2022-02-09 19:51:35 -05:00
|
|
|
subStore := storage.NewImageStore(subRootDir, false, storage.DefaultGCDelay, false, false, log, metrics)
|
2021-01-25 13:04:03 -05:00
|
|
|
|
2021-09-30 08:27:13 -05:00
|
|
|
subStoreMap := make(map[string]storage.ImageStore)
|
2021-01-25 13:04:03 -05:00
|
|
|
|
|
|
|
subStoreMap["/b"] = subStore
|
|
|
|
|
|
|
|
storeController := storage.StoreController{DefaultStore: defaultStore, SubStore: subStoreMap}
|
|
|
|
|
|
|
|
dir := common.GetRootDir("a/zot-cve-test", storeController)
|
|
|
|
|
|
|
|
So(dir, ShouldEqual, rootDir)
|
|
|
|
|
|
|
|
dir = common.GetRootDir("b/zot-cve-test", storeController)
|
|
|
|
|
|
|
|
So(dir, ShouldEqual, subRootDir)
|
|
|
|
})
|
|
|
|
}
|