bpf-oci 0.1.0

A helper library to push/pull wasm OCI images
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

use std::{collections::HashMap, path::Path};

use anyhow::{anyhow, Context, Result};
use base64::Engine;
use oci_distribution::secrets::RegistryAuth;
use serde::Deserialize;

#[derive(Deserialize)]
struct AuthEntry {
    auth: String,
}

impl AuthEntry {
    pub fn extract_registry_auth(&self) -> Result<RegistryAuth> {
        let decoded = base64::engine::general_purpose::STANDARD
            .decode(&self.auth)
            .with_context(|| anyhow!("Failed to decode base64"))?;
        let decoded_str =
            String::from_utf8(decoded).with_context(|| anyhow!("Invalid utf8 chars"))?;
        let (user, pass) = decoded_str
            .split_once(':')
            .with_context(|| anyhow!("Unable to find `:` in the auth string"))?;
        Ok(RegistryAuth::Basic(user.to_owned(), pass.to_owned()))
    }
}

#[derive(Deserialize)]
struct DockerConfig {
    auths: HashMap<String, AuthEntry>,
}

pub trait RegistryAuthExt {
    fn load_from_docker(path: Option<&Path>, registry: &str) -> Result<Self>
    where
        Self: Sized;

    fn load_from_prompt() -> Result<Self>
    where
        Self: Sized;
}

impl RegistryAuthExt for RegistryAuth {
    fn load_from_docker(path: Option<&Path>, registry: &str) -> Result<Self>
    where
        Self: Sized,
    {
        let docker_cfg_path = match path.map(|v| v.to_path_buf()) {
            Some(v) => v,
            None => home::home_dir()
                .with_context(|| anyhow!("Unable to retrive home directory"))?
                .join(".docker/config.json"),
        };
        let config: DockerConfig = serde_json::from_str(
            &std::fs::read_to_string(&docker_cfg_path)
                .with_context(|| anyhow!("Failed to read docker config"))?,
        )
        .with_context(|| anyhow!("Failed to deserialize docker config"))?;
        let auth_entry = config.auths.get(registry).with_context(|| {
            anyhow!(
                "Unable to find auth entry named `{}` in {:?}",
                registry,
                docker_cfg_path
            )
        })?;
        auth_entry.extract_registry_auth()
    }
    fn load_from_prompt() -> Result<Self>
    where
        Self: Sized,
    {
        print!("Username: ");
        let mut username = String::default();
        std::io::stdin().read_line(&mut username)?;
        let password = rpassword::prompt_password("Password: ")?;
        Ok(Self::Basic(username, password))
    }
}

#[cfg(test)]
mod tests {

    use std::path::PathBuf;

    use oci_distribution::secrets::RegistryAuth;
    use tempfile::{tempdir, TempDir};

    use super::RegistryAuthExt;

    fn write_temp_file() -> (PathBuf, TempDir) {
        let dir = tempdir().unwrap();
        let data = include_bytes!("../assets/docker-config-test.json");
        std::fs::write(dir.path().join("test.json"), data).unwrap();
        (dir.path().join("test.json"), dir)
    }

    #[test]
    fn test_load_docker_config() {
        let (f, _dir) = write_temp_file();
        let auth = RegistryAuth::load_from_docker(Some(&f), "ghcr.io").unwrap();
        match auth {
            RegistryAuth::Basic(a, b) => {
                assert_eq!(a, "aaa");
                assert_eq!(b, "bbb");
            }
            _ => unreachable!(),
        }
    }
}