-
Notifications
You must be signed in to change notification settings - Fork 0
/
scan.go
115 lines (106 loc) · 3.18 KB
/
scan.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
package grt
import (
"encoding/base64"
"errors"
"fmt"
"log"
"strings"
"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
"sigs.k8s.io/kustomize/kyaml/yaml"
)
func (t *Transformer) ScanForValues() (err error) {
t.values = t.config.Values
defer func() {
if err != nil {
t.values = nil
}
}()
for _, sel := range t.config.SelectValues {
if sel.Name == "" && !sel.Splat {
return errors.New("select values: name must not be empty")
}
t.values[sel.Name] = sel.Default
found := false
for _, uu := range t.uus {
uuKind := uu.GetKind()
uuName := uu.GetName()
if strings.ContainsAny(strings.TrimRight(sel.Resource.Name, "*"), "*") {
return errors.New("select values: no prefix or infix wildcards allowed")
}
nameMatches, err := nameMatch(uuName, sel.Resource.Name)
if err != nil {
return fmt.Errorf("select value: %v", err)
}
if sel.Resource.Kind == "" || sel.Resource.Name == "" || sel.Resource.FieldPath == "" {
return fmt.Errorf("select value %q: resource kind, name and filepath must not be empty", sel.Name)
}
if uuKind != sel.Resource.Kind || !nameMatches {
continue
}
if (uuKind == "ConfigMap" || uuKind == "Secret") && (sel.Resource.FieldPath == "data.*" || sel.Resource.FieldPath == "stringData.*") {
field := "data"
if sel.Resource.FieldPath == "stringData.*" {
field = "stringData"
}
value, ok, err := unstructured.NestedStringMap(uu.Object, field)
if err != nil {
return fmt.Errorf("nestedStringMap: %v", err)
}
if !ok {
return fmt.Errorf("nestedStringMap: %v/%v: data not found", uuKind, uuName)
}
if uuKind == "Secret" && sel.Resource.FieldPath == "data.*" {
for k, v := range value {
b, _ := base64.StdEncoding.DecodeString(v)
value[k] = string(b)
}
}
if sel.Splat {
for k, v := range value {
log.Printf("%v = %q\n", k, v)
t.values[k] = v
}
delete(t.values, sel.Name)
} else {
for k, v := range value {
log.Printf("%v.%v = %q\n", sel.Name, k, v)
}
t.values[sel.Name] = value
}
found = true
} else {
uuYaml, _ := yaml.Marshal(uu.Object)
node, _ := yaml.Parse(string(uuYaml))
node, err := node.Pipe(yaml.Lookup(strings.Split(sel.Resource.FieldPath, ".")...))
if err != nil {
return fmt.Errorf("pipe: %v", err)
}
if node.IsNilOrEmpty() {
log.Printf("%v/%v: %q not found\n", uuKind, uuName, sel.Resource.FieldPath)
continue
}
if len(node.Content()) > 0 {
return fmt.Errorf("%v/%v: %q: returns %v nodes", uuKind, uuName, sel.Resource.FieldPath, len(node.Content()))
}
value, err := node.String()
if err != nil {
return fmt.Errorf("node2string: %v", err)
}
value = strings.TrimRight(value, "\"'\n")
value = strings.TrimLeft(value, `"'`)
if uuKind == "Secret" && strings.HasPrefix(sel.Resource.FieldPath, "data.") {
plain, _ := base64.StdEncoding.DecodeString(value)
t.values[sel.Name] = string(plain)
} else {
t.values[sel.Name] = value
}
log.Printf("%v = %q\n", sel.Name, t.values[sel.Name])
found = true
}
}
if !found {
log.Printf("select value %q not found\n", sel.Name)
}
}
return nil
}