Skip to content

Commit

Permalink
feat(datasource/docker): support registry proxy for digest updates (#…
Browse files Browse the repository at this point in the history 
…20777)

Co-authored-by: Sebastian Poxhofer <[email protected]>
  • Loading branch information
@ciphax @secustor
ciphax and secustor authored Mar 27, 2023
1 parent 725ce16 commit 781ca4b
Show file tree
Hide file tree
Showing 2 changed files with 115 additions and 6 deletions.
73 changes: 73 additions & 0 deletions lib/modules/datasource/docker/index.spec.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1086,6 +1086,79 @@ describe('modules/datasource/docker/index', () => {
);
expect(res).toBeNull();
});

it('falls back to library/ prefix on non-namespaced images with existing digest', async () => {
const currentDigest =
'sha256:0000000000000000000000000000000000000000000000000000000000000000',
newDigest =
'sha256:1111111111111111111111111111111111111111111111111111111111111111';

httpMock
.scope('https://registry.company.com/v2')
.get('/')
.times(4)
.reply(200)
.head(`/some-dep/manifests/${currentDigest}`)
.reply(500)
.head(`/some-dep/manifests/3.17`)
.reply(404)
.head(`/library/some-dep/manifests/${currentDigest}`)
.reply(200, '', {
'content-type':
'application/vnd.docker.distribution.manifest.list.v2+json',
'docker-content-digest': currentDigest,
})
.head('/library/some-dep/manifests/3.17')
.reply(200, '', {
'content-type':
'application/vnd.docker.distribution.manifest.list.v2+json',
'docker-content-digest': newDigest,
});

hostRules.find.mockReturnValue({});
const res = await getDigest(
{
datasource: 'docker',
packageName: 'some-dep',
currentDigest,
registryUrls: ['https://registry.company.com'],
},
'3.17'
);

expect(res).toBe(newDigest);
});

it('falls back to library/ prefix on non-namespaced images without existing digest', async () => {
const newDigest =
'sha256:1111111111111111111111111111111111111111111111111111111111111111';

httpMock
.scope('https://registry.company.com/v2')
.get('/')
.times(2)
.reply(200)
.head(`/some-dep/manifests/3.17`)
.reply(404)
.head('/library/some-dep/manifests/3.17')
.reply(200, '', {
'content-type':
'application/vnd.docker.distribution.manifest.list.v2+json',
'docker-content-digest': newDigest,
});

hostRules.find.mockReturnValue({});
const res = await getDigest(
{
datasource: 'docker',
packageName: 'some-dep',
registryUrls: ['https://registry.company.com'],
},
'3.17'
);

expect(res).toBe(newDigest);
});
});

describe('getReleases', () => {
Expand Down
48 changes: 42 additions & 6 deletions lib/modules/datasource/docker/index.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -628,12 +628,30 @@ export class DockerDatasource extends Datasource {
currentDigest: string
): Promise<string | null | undefined> {
try {
const manifestResponse = await this.getManifestResponse(
registryHost,
dockerRepository,
currentDigest,
'head'
);
let manifestResponse: HttpResponse<string> | null;

try {
manifestResponse = await this.getManifestResponse(
registryHost,
dockerRepository,
currentDigest,
'head'
);
} catch (_err) {
const err = _err instanceof ExternalHostError ? _err.err : _err;

if (
typeof err.statusCode === 'number' &&
err.statusCode >= 500 &&
err.statusCode < 600
) {
// querying the digest manifest for a non existent image leads to a 500 statusCode
return null;
}

/* istanbul ignore next */
throw _err;
}

if (
manifestResponse?.headers['content-type'] !==
Expand Down Expand Up @@ -1096,6 +1114,24 @@ export class DockerDatasource extends Datasource {
}
}

if (
!manifestResponse &&
!dockerRepository.includes('/') &&
!packageName.includes('/')
) {
logger.debug(
`Retrying Digest for ${registryHost}/${dockerRepository} using library/ prefix`
);
return this.getDigest(
{
registryUrl,
packageName: 'library/' + packageName,
currentDigest,
},
newValue
);
}

if (manifestResponse) {
// TODO: fix types (#7154)
logger.debug(`Got docker digest ${digest!}`);
Expand Down

0 comments on commit 781ca4b

Please sign in to comment.