281 lines
8.7 KiB
Go
281 lines
8.7 KiB
Go
/*
|
|
Copyright 2020 The Flux CD contributors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package controllers
|
|
|
|
import (
|
|
"context"
|
|
"crypto/sha1"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"net/url"
|
|
"os"
|
|
"path"
|
|
"path/filepath"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/go-logr/logr"
|
|
"gopkg.in/yaml.v2"
|
|
"helm.sh/helm/v3/pkg/getter"
|
|
"helm.sh/helm/v3/pkg/repo"
|
|
corev1 "k8s.io/api/core/v1"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/apimachinery/pkg/runtime"
|
|
ctrl "sigs.k8s.io/controller-runtime"
|
|
"sigs.k8s.io/controller-runtime/pkg/client"
|
|
"sigs.k8s.io/controller-runtime/pkg/event"
|
|
"sigs.k8s.io/controller-runtime/pkg/predicate"
|
|
|
|
sourcev1 "github.com/fluxcd/source-controller/api/v1alpha1"
|
|
)
|
|
|
|
// HelmRepositoryReconciler reconciles a HelmRepository object
|
|
type HelmRepositoryReconciler struct {
|
|
client.Client
|
|
Log logr.Logger
|
|
Scheme *runtime.Scheme
|
|
StoragePath string
|
|
Getters getter.Providers
|
|
}
|
|
|
|
// +kubebuilder:rbac:groups=source.fluxcd.io,resources=helmrepositories,verbs=get;list;watch;create;update;patch;delete
|
|
// +kubebuilder:rbac:groups=source.fluxcd.io,resources=helmrepositories/status,verbs=get;update;patch
|
|
|
|
func (r *HelmRepositoryReconciler) Reconcile(req ctrl.Request) (ctrl.Result, error) {
|
|
ctx, cancel := context.WithTimeout(context.Background(), 15*time.Second)
|
|
defer cancel()
|
|
|
|
log := r.Log.WithValues("helmrepository", req.NamespacedName)
|
|
|
|
var repository sourcev1.HelmRepository
|
|
if err := r.Get(ctx, req.NamespacedName, &repository); err != nil {
|
|
return ctrl.Result{}, client.IgnoreNotFound(err)
|
|
}
|
|
|
|
result := ctrl.Result{RequeueAfter: repository.Spec.Interval.Duration}
|
|
|
|
// set initial status
|
|
if r.shouldResetStatus(repository) {
|
|
log.Info("Initialising repository")
|
|
repository.Status = sourcev1.HelmRepositoryStatus{}
|
|
repository.Status.Conditions = []sourcev1.RepositoryCondition{
|
|
{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionUnknown,
|
|
},
|
|
}
|
|
if err := r.Status().Update(ctx, &repository); err != nil {
|
|
log.Error(err, "unable to update HelmRepository status")
|
|
return result, err
|
|
}
|
|
}
|
|
|
|
// try to download index
|
|
readyCondition, artifact, err := r.index(repository)
|
|
if err != nil {
|
|
log.Info("Helm repository index failed", "error", err.Error())
|
|
} else {
|
|
// update artifact if path changed
|
|
if repository.Status.Artifact != artifact {
|
|
timeNew := metav1.Now()
|
|
repository.Status.LastUpdateTime = &timeNew
|
|
repository.Status.Artifact = artifact
|
|
}
|
|
log.Info("Helm repository index succeeded", "msg", readyCondition.Message)
|
|
}
|
|
|
|
// update status
|
|
timeNew := metav1.Now()
|
|
readyCondition.LastTransitionTime = &timeNew
|
|
repository.Status.Conditions = []sourcev1.RepositoryCondition{readyCondition}
|
|
|
|
if err := r.Status().Update(ctx, &repository); err != nil {
|
|
log.Error(err, "unable to update HelmRepository status")
|
|
return result, err
|
|
}
|
|
|
|
// requeue repository
|
|
return result, nil
|
|
}
|
|
|
|
func (r *HelmRepositoryReconciler) SetupWithManager(mgr ctrl.Manager) error {
|
|
return ctrl.NewControllerManagedBy(mgr).
|
|
For(&sourcev1.HelmRepository{}).
|
|
WithEventFilter(RepositoryChangePredicate{}).
|
|
WithEventFilter(predicate.Funcs{
|
|
DeleteFunc: func(e event.DeleteEvent) bool {
|
|
// delete artifacts
|
|
repoDir := filepath.Join(r.StoragePath,
|
|
fmt.Sprintf("helmrepositories/%s-%s", e.Meta.GetName(), e.Meta.GetNamespace()))
|
|
if err := os.RemoveAll(repoDir); err != nil {
|
|
r.Log.Error(err, "unable to delete artifacts",
|
|
"helmrepository", fmt.Sprintf("%s/%s", e.Meta.GetNamespace(), e.Meta.GetName()))
|
|
} else {
|
|
r.Log.Info("Helm repository artifacts deleted",
|
|
"helmrepository", fmt.Sprintf("%s/%s", e.Meta.GetNamespace(), e.Meta.GetName()))
|
|
}
|
|
return false
|
|
},
|
|
}).
|
|
Complete(r)
|
|
}
|
|
|
|
func (r *HelmRepositoryReconciler) index(repository sourcev1.HelmRepository) (sourcev1.RepositoryCondition, string, error) {
|
|
u, err := url.Parse(repository.Spec.URL)
|
|
if err != nil {
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.InvalidHelmRepositoryURLReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
|
|
c, err := r.Getters.ByScheme(u.Scheme)
|
|
if err != nil {
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.InvalidHelmRepositoryURLReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
|
|
u.RawPath = path.Join(u.RawPath, "index.yaml")
|
|
u.Path = path.Join(u.Path, "index.yaml")
|
|
|
|
indexURL := u.String()
|
|
// TODO(hidde): add authentication config
|
|
res, err := c.Get(indexURL, getter.WithURL(repository.Spec.URL))
|
|
if err != nil {
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.IndexFetchFailedReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
|
|
index, err := ioutil.ReadAll(res)
|
|
if err != nil {
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.IndexFetchFailedReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
|
|
i := &repo.IndexFile{}
|
|
if err := yaml.Unmarshal(index, i); err != nil {
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.IndexFetchFailedReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
|
|
b, err := yaml.Marshal(i)
|
|
if err != nil {
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.IndexFetchFailedReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
|
|
repoPath := fmt.Sprintf("helmrepositories/%s-%s", repository.Name, repository.Namespace)
|
|
storage := filepath.Join(r.StoragePath, repoPath)
|
|
sum := checksum(b)
|
|
indexFileName := fmt.Sprintf("index-%s.yaml", sum)
|
|
indexFilePath := filepath.Join(storage, indexFileName)
|
|
artifactsURL := fmt.Sprintf("http://%s/helmrepositories/%s/%s", host(), repoPath, indexFileName)
|
|
|
|
if file, err := os.Stat(indexFilePath); !os.IsNotExist(err) && !file.IsDir() {
|
|
if fb, err := ioutil.ReadFile(indexFilePath); err == nil && sum == checksum(fb) {
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionTrue,
|
|
Reason: "GitCloneSucceed",
|
|
Message: fmt.Sprintf("Fetched artifact is available at %s", indexFilePath),
|
|
}, artifactsURL, nil
|
|
}
|
|
}
|
|
|
|
err = os.MkdirAll(storage, 0755)
|
|
if err != nil {
|
|
err = fmt.Errorf("unable to create repository index directory: %w", err)
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.IndexFetchFailedReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
err = ioutil.WriteFile(indexFilePath, index, 0644)
|
|
if err != nil {
|
|
err = fmt.Errorf("unable to write repository index file: %w", err)
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionFalse,
|
|
Reason: sourcev1.IndexFetchFailedReason,
|
|
Message: err.Error(),
|
|
}, "", err
|
|
}
|
|
return sourcev1.RepositoryCondition{
|
|
Type: sourcev1.RepositoryConditionReady,
|
|
Status: corev1.ConditionTrue,
|
|
Reason: sourcev1.IndexFetchSucceededReason,
|
|
Message: fmt.Sprintf("Fetched artifact is available at %s", indexFilePath),
|
|
}, artifactsURL, nil
|
|
}
|
|
|
|
func (r *HelmRepositoryReconciler) shouldResetStatus(repository sourcev1.HelmRepository) bool {
|
|
resetStatus := false
|
|
if repository.Status.Artifact != "" {
|
|
pathParts := strings.Split(repository.Status.Artifact, "/")
|
|
path := fmt.Sprintf("helmrepositories/%s-%s/%s", repository.Name, repository.Namespace, pathParts[len(pathParts)-1])
|
|
if _, err := os.Stat(filepath.Join(r.StoragePath, path)); err != nil {
|
|
resetStatus = true
|
|
}
|
|
}
|
|
|
|
// set initial status
|
|
if len(repository.Status.Conditions) == 0 || resetStatus {
|
|
resetStatus = true
|
|
}
|
|
|
|
return resetStatus
|
|
}
|
|
|
|
// Checksum returns the SHA1 checksum for the given bytes as a string.
|
|
func checksum(b []byte) string {
|
|
return fmt.Sprintf("%x", sha1.Sum(b))
|
|
}
|
|
|
|
func host() string {
|
|
hostname := "localhost"
|
|
if os.Getenv("RUNTIME_NAMESPACE") != "" {
|
|
svcParts := strings.Split(os.Getenv("HOSTNAME"), "-")
|
|
hostname = fmt.Sprintf("%s.%s",
|
|
strings.Join(svcParts[:len(svcParts)-2], "-"), os.Getenv("RUNTIME_NAMESPACE"))
|
|
}
|
|
return hostname
|
|
}
|