feat: image module add copy func #2868
Conversation
kubesphere-prow
bot
added
release-note
kind/feature
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: zuoxuesong-worker The full list of commands accepted by this bot can be found here. The pull request process is described here DetailsNeeds approval from an approver in each of these files:
Approvers can indicate their approval by writing |
kubesphere-prow
bot
added
the
approved
Summary of ChangesHello @zuoxuesong-worker, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed! This pull request significantly enhances the image module by introducing a new Highlights
Using Gemini Code AssistThe full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips. Invoking Gemini You can request assistance from Gemini at any point by creating a comment using either
Customization To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a Limitations & Feedback Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here. You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension. Footnotes
|
kubesphere-prow
bot
added
the
size/L
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request introduces a new copy function to the image module, allowing for copying container images between file systems and container registries. The implementation is comprehensive, covering file-to-file, file-to-hub, hub-to-file, and hub-to-hub scenarios. I've identified a few issues, including a critical bug in argument parsing, some potential panics from unhandled errors, and several areas in the documentation (both in markdown and code comments) that could be clarified or corrected. Overall, this is a great feature addition, and with a few fixes, it will be ready to merge.
pkg/modules/image.go
Outdated
| cps.From.Type, _ = variable.StringVar(vars, cp, "from", "type") | ||
| cps.To.Type, _ = variable.StringVar(vars, cp, "to", "type") | ||
|
|
||
| srcPattern, _ := variable.StringVar(vars, cp, "to", "src_pattern") |
There was a problem hiding this comment.
This line reads the variable to.src_pattern, but the documentation and struct field suggest it should be to.pattern. This is likely a copy-paste error from the push logic and will cause the pattern feature to not work as intended.
srcPattern, _ := variable.StringVar(vars, cp, "to", "pattern")
pkg/modules/image.go
Outdated
| _ = unstructured.SetNestedField(hostVars, src.Reference.Registry, "module", "image", "src", "reference", "registry") | ||
| _ = unstructured.SetNestedField(hostVars, src.Reference.Repository, "module", "image", "src", "reference", "repository") | ||
| _ = unstructured.SetNestedField(hostVars, src.Reference.Reference, "module", "image", "src", "reference", "reference") |
There was a problem hiding this comment.
The errors returned by unstructured.SetNestedField are ignored. If setting these template variables fails, it could lead to silent errors during template parsing. It's safer to handle these errors.
if err := unstructured.SetNestedField(hostVars, src.Reference.Registry, "module", "image", "src", "reference", "registry"); err != nil {
return err
}
if err := unstructured.SetNestedField(hostVars, src.Reference.Repository, "module", "image", "src", "reference", "repository"); err != nil {
return err
}
if err := unstructured.SetNestedField(hostVars, src.Reference.Reference, "module", "image", "src", "reference", "reference"); err != nil {
return err
}
pkg/modules/image.go
Outdated
| a.Repo, _ = tmpl.ParseFunc(vars, a.Repo, func(b []byte) string { return string(b) }) | ||
| a.Username, _ = tmpl.ParseFunc(vars, a.Username, func(b []byte) string { return string(b) }) | ||
| a.Password, _ = tmpl.ParseFunc(vars, a.Password, func(b []byte) string { return string(b) }) |
There was a problem hiding this comment.
Errors from tmpl.ParseFunc are being ignored when parsing authentication details. If template parsing fails, it could lead to silent authentication failures with empty credentials. These errors should be handled to prevent unexpected behavior.
pkg/modules/image.go
Outdated
| Credential: authFunc(i.To.Auths), | ||
| } | ||
| default: | ||
| return errors.New(fmt.Sprintf("invalid image type %q", i.From.Type)) |
There was a problem hiding this comment.
This error message uses i.From.Type, but it's inside the switch i.To.Type block. This appears to be a copy-paste error and should be i.To.Type to provide the correct context in case of an error.
return errors.New(fmt.Sprintf("invalid image type %q", i.To.Type))
pkg/modules/image.go
Outdated
| - prometheus:v2.45.0 | ||
| to: | ||
| type: hub | ||
| path: registry.example.com/{{ . }} |
There was a problem hiding this comment.
The template {{ . }} is ambiguous and might be incorrect. It would be clearer and safer to use the full template variables, similar to the push example in the documentation, e.g., registry.example.com/{{ .module.image.src.reference.repository }}:{{ .module.image.src.reference.reference }}. This applies to other examples using this template as well.
| path: registry.example.com/{{ . }} | |
| path: registry.example.com/{{ .module.image.src.reference.repository }}:{{ .module.image.src.reference.reference }} |
| return err | ||
| } | ||
| if _, err = oras.Copy(ctx, src, src.Reference.Reference, dst, dst.Reference.Reference, oras.DefaultCopyOptions); err != nil { | ||
| return errors.Wrapf(err, "failed to push image %q to remote", img) |
There was a problem hiding this comment.
The error message says "failed to push image", but this function performs a copy operation. A more accurate message would be "failed to copy image". This also applies to the error message on line 661.
return errors.Wrapf(err, "failed to copy image %q", img)
pkg/modules/image.go
Outdated
| pullAuths := make([]imageAuths, 0) | ||
| _ = variable.AnyVar(vars, cp, &pullAuths, "from", "auths") | ||
| for _, a := range pullAuths { | ||
| a.Repo, _ = tmpl.ParseFunc(vars, a.Repo, func(b []byte) string { return string(b) }) | ||
| a.Username, _ = tmpl.ParseFunc(vars, a.Username, func(b []byte) string { return string(b) }) | ||
| a.Password, _ = tmpl.ParseFunc(vars, a.Password, func(b []byte) string { return string(b) }) | ||
| cps.From.Auths = append(cps.From.Auths, a) | ||
| } | ||
|
|
||
| pullAuths = make([]imageAuths, 0) | ||
| _ = variable.AnyVar(vars, cp, &pullAuths, "to", "auths") | ||
| for _, a := range pullAuths { | ||
| a.Repo, _ = tmpl.ParseFunc(vars, a.Repo, func(b []byte) string { return string(b) }) | ||
| a.Username, _ = tmpl.ParseFunc(vars, a.Username, func(b []byte) string { return string(b) }) | ||
| a.Password, _ = tmpl.ParseFunc(vars, a.Password, func(b []byte) string { return string(b) }) | ||
| cps.To.Auths = append(cps.To.Auths, a) | ||
| } |
There was a problem hiding this comment.
The logic for parsing auths is duplicated for from and to. This could be extracted into a helper function to improve maintainability and reduce code duplication.
docs/zh/modules/image.md
Outdated
| | copy.to.type | 镜像目标类型 | 字符串 | 否 | - | | ||
| | copy.to.path | 镜像目标地址。如果类型为file,则为文件地址,如果类型为hub,则为仓库中的镜像地址 | 字符串 | 否 | - | | ||
| | copy.to.skip_tls_verify | 仅在hub类型中生效;目标镜像仓库是否跳过tls认证 | bool | 否 | - | | ||
| | copy.to.pattern | 正则表达式,过滤推送至目标的镜像 | 字符串 | 否 | - | |
There was a problem hiding this comment.
The description for copy.to.pattern is incorrect. The implementation shows that this pattern is used to filter the source images listed in from.manifests, not the destination images. The description should be corrected to something like "正则表达式,过滤源镜像" (regex to filter source images).
| | copy.from.auths.repo | 用于认证远程仓库的地址 | 字符串 | 否 | - | | ||
| | copy.from.auths.username | 用于认证远程仓库的用户名 | 字符串 | 否 | - | | ||
| | copy.from.auths.password | 用于认证远程仓库的密码 | 字符串 | 否 | - | | ||
| | copy.to | 模版语法,从本地目录镜像推送到的远程仓库镜像 | map | 否 | - | |
There was a problem hiding this comment.
The description for copy.to seems to be a copy-paste from push.dest and is not entirely accurate for the copy context. A more generic description like "目标镜像信息" (destination image information) would be more appropriate.
|
|
||
| if ia.copy != nil { | ||
| if err := ia.copy.copy(ctx, ha); err != nil { | ||
| return StdoutFailed, "failed to push image", err |
There was a problem hiding this comment.
The error message says "failed to push image", but this is part of the copy functionality. For consistency, it should be "failed to copy image".
return StdoutFailed, "failed to copy image", err
zuoxuesong-worker
force-pushed
the
feat/image-module-copy
branch
2 times, most recently
from
fa1510c to
8c30232
Compare
|
This PR has multiple commits, and the default merge method is: squash. DetailsInstructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: update some default config values (kubesphere#2866) feat: update some default config values Signed-off-by: [email protected] <[email protected]> bugfix: fix artifact image tag set func (kubesphere#2870) Signed-off-by: [email protected] <[email protected]> feat: k8s add haproxy image default value (kubesphere#2869) Signed-off-by: [email protected] <[email protected]> feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 (kubesphere#2855) * feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> --------- Signed-off-by: [email protected] <[email protected]> Co-authored-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]>
zuoxuesong-worker
force-pushed
the
feat/image-module-copy
branch
from
4b1be07 to
052eadb
Compare
# Conflicts: # pkg/modules/image.go
zuoxuesong-worker
force-pushed
the
feat/image-module-copy
branch
3 times, most recently
from
faf482d to
114b21f
Compare
Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]>
zuoxuesong-worker
force-pushed
the
feat/image-module-copy
branch
from
114b21f to
a54e66b
Compare
|
|
/lgtm |
|
LGTM label has been added. DetailsGit tree hash: 8d7a4bd73b1a480f7a815918a8044491f067c1cf |
Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func (kubesphere#2868) * feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: update some default config values (kubesphere#2866) feat: update some default config values Signed-off-by: [email protected] <[email protected]> bugfix: fix artifact image tag set func (kubesphere#2870) Signed-off-by: [email protected] <[email protected]> feat: k8s add haproxy image default value (kubesphere#2869) Signed-off-by: [email protected] <[email protected]> feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 (kubesphere#2855) * feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> --------- Signed-off-by: [email protected] <[email protected]> Co-authored-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> * feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> --------- Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]>
Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func (kubesphere#2868) * feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: update some default config values (kubesphere#2866) feat: update some default config values Signed-off-by: [email protected] <[email protected]> bugfix: fix artifact image tag set func (kubesphere#2870) Signed-off-by: [email protected] <[email protected]> feat: k8s add haproxy image default value (kubesphere#2869) Signed-off-by: [email protected] <[email protected]> feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 (kubesphere#2855) * feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> --------- Signed-off-by: [email protected] <[email protected]> Co-authored-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> * feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> --------- Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]> feat: add export copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func (kubesphere#2868) * feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: update some default config values (kubesphere#2866) feat: update some default config values Signed-off-by: [email protected] <[email protected]> bugfix: fix artifact image tag set func (kubesphere#2870) Signed-off-by: [email protected] <[email protected]> feat: k8s add haproxy image default value (kubesphere#2869) Signed-off-by: [email protected] <[email protected]> feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 (kubesphere#2855) * feat: kk 4.0 制品导出 支持skip_tls_verify 私仓镜像 kubesphere#2854 * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> * feat: update image skip tls verify func Signed-off-by: [email protected] <[email protected]> --------- Signed-off-by: [email protected] <[email protected]> Co-authored-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> * feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> feat: image module add copy func Signed-off-by: [email protected] <[email protected]> --------- Signed-off-by: [email protected] <[email protected]>
3 participants
What type of PR is this?
/kind feature
What this PR does / why we need it:
image module add copy func
Which issue(s) this PR fixes:
Fixes #
Special notes for reviewers:
Does this PR introduced a user-facing change?
Additional documentation, usage docs, etc.: