mirror of
https://github.com/project-zot/zot.git
synced 2026-06-17 21:17:58 +08:00
Andrei Aaron
95ce68ccb0
* refactor(test/blackbox): extract shared push/pull helpers Move duplicated push/pull/regclient/oras/helm helper functions out of fips140.bats, pushpull.bats and helpers_upgrade.bash into a single helpers_pushpull.bash, then have all three suites load from there. The helpers now share verify_prerequisites, get_zot_port, common assertion helpers (catalog/tag presence, OCI index ref name) and the regclient pagination listing. helpers_upgrade.bash keeps only the test_release_* and test_new_* wrappers that compose those helpers. Net effect: ~1000 lines of duplicated test scaffolding removed across the four files; behavior of the existing test cases is preserved. Refs: #3727 Signed-off-by: Akash Kumar <meakash7902@gmail.com> * refactor(test/blackbox): share pushpull lifecycle and dedupe authn helpers Build on the shared helpers_pushpull.bash to remove more duplicated blackbox scaffolding: - Add pushpull_setup_file/pushpull_teardown/pushpull_teardown_file keyed on PUSHPULL_FIPS_MODE so pushpull.bats and fips140.bats only set the flag and delegate lifecycle, instead of each carrying a near-identical setup_file/teardown. - Add helpers_pushpull_authn.bash (loaded by pushpull_authn.bats and fips140_authn.bats) for shared htpasswd setup, FIPS vs non-FIPS config and teardown, and the regclient/OCI/ML test helpers; both authn suites collapse to one-line @test bodies keyed on PUSHPULL_AUTHN_FIPS_MODE. - Make each authn helper self-sufficient by performing its own regctl login, removing the hidden dependency on the first test having logged in. - Split the implicit manifest delete out of helper_pull_image_index_and_delete into a standalone helper_delete_manifest, surfaced as its own "delete image index" @test in the pushpull, fips140 and upgrade suites, so the delete is explicit and no longer an order-fragile side effect of a pull. Refs: #3727 Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test/blackbox): harden flaky oras pull and sync signature tests Set org.opencontainers.image.title on oras artifact push and verify pull both via oras pull and manifest/blob fetch. Add retry_until_success and use it for periodic notation/cosign signature sync checks on slow CI. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test/blackbox): address Copilot review feedback in push/pull helpers Use curl --fail for manifest deletes so HTTP errors fail the test. Remove the duplicate regctl --format flag in helper_push_manifest_with_regclient. Harden helper_authn_ml_artifacts with run and status checks, using a binary-safe shell redirect for the ONNX artifact round-trip. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test/blackbox): isolate pushpull helper temp files and prerequisites Write oras artifact and docker build files under BATS_TEST_TMPDIR instead of the test working directory, and check git/docker in verify_prerequisites for clearer failures when running bats directly. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test): use verify_prerequisites exit status in bats setup Replace `$(verify_prerequisites)` with a direct call across blackbox and scale-out suites. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test/blackbox): unify blackbox log path to zot/zot-log.json Drop the FIPS vs non-FIPS split between zot-log.json and zot.log in pushpull, authn, and upgrade helpers. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * refactor(test/blackbox): loop over tools in verify_prerequisites Replace repeated command -v checks with a single loop over curl, jq, git, and docker. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * refactor(test/blackbox): fix exit code for retry_until_success Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * refactor(test/blackbox): inline upgrade tests and drop helpers_upgrade Call helper_* directly from upgrade.bats and upgrade_minimal.bats, load helpers_pushpull in those suites, and move teardown there. Remove helpers_upgrade.bash now that the release/new wrappers are gone. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * refactor(test/blackbox): require explicit args on pushpull helpers Drop parameter defaults from shared push/pull helpers and pass image, repository, and pagination values explicitly at each call site. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test/blackbox): clarify docker push/pull negative test naming Rename helper_push_docker_image to helper_build_docker_image_push_and_pull and update test titles to reflect build plus expected push/pull failures without the docker compatibility extension. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test/blackbox): isolate regctl config per BATS suite regctl persists login and TLS settings on disk, so push/pull blackbox tests could leak state into ~/.regctl/config.json across suites. Point REGCTL_CONFIG at BATS_FILE_TMPDIR for pushpull, authn, and upgrade suites, configure TLS once in authn setup, and drop redundant logout and per-login TLS setup. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> * fix(test/blackbox): harden upgrade suite log dump on failure Touch zot-log.json during upgrade setup and only cat it in teardown when the file exists, so a missing log cannot mask the underlying test failure. Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> --------- Signed-off-by: Akash Kumar <meakash7902@gmail.com> Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com> Co-authored-by: Akash Kumar <meakash7902@gmail.com>
594 lines
19 KiB
Bash
594 lines
19 KiB
Bash
# Common helper functions and test utilities for blackbox push/pull-style tests.
|
|
# Used by pushpull.bats, fips140.bats, and upgrade BATS suites.
|
|
#
|
|
# pushpull.bats and fips140.bats set PUSHPULL_FIPS_MODE (0 or 1) and call
|
|
# pushpull_setup_file / pushpull_teardown / pushpull_teardown_file for lifecycle.
|
|
|
|
function verify_prerequisites() {
|
|
local tool
|
|
|
|
for tool in curl jq git docker; do
|
|
if ! command -v "${tool}" >/dev/null; then
|
|
echo "you need to install ${tool} as a prerequisite to running the tests" >&3
|
|
return 1
|
|
fi
|
|
done
|
|
|
|
return 0
|
|
}
|
|
|
|
function get_zot_port() {
|
|
cat "${BATS_FILE_TMPDIR}/zot.port"
|
|
}
|
|
|
|
function pushpull_isolate_regctl_config() {
|
|
# regctl persists login/TLS settings to config on disk; isolate per BATS file.
|
|
export REGCTL_CONFIG="${BATS_FILE_TMPDIR}/regctl.json"
|
|
}
|
|
|
|
function pushpull_setup_file() {
|
|
if ! verify_prerequisites; then
|
|
exit 1
|
|
fi
|
|
|
|
pushpull_isolate_regctl_config
|
|
|
|
skopeo --insecure-policy copy --format=oci \
|
|
docker://ghcr.io/project-zot/golang:1.20 \
|
|
oci:${TEST_DATA_DIR}/golang:1.20
|
|
|
|
local zot_root_dir=${BATS_FILE_TMPDIR}/zot
|
|
local zot_config_file=${BATS_FILE_TMPDIR}/zot_config.json
|
|
local oci_data_dir=${BATS_FILE_TMPDIR}/oci
|
|
local log_file=${zot_root_dir}/zot-log.json
|
|
|
|
mkdir -p "${zot_root_dir}" "${oci_data_dir}"
|
|
touch "${log_file}"
|
|
|
|
if [ "${PUSHPULL_FIPS_MODE:-0}" = 1 ]; then
|
|
export GODEBUG="fips140=only"
|
|
fi
|
|
|
|
zot_port=$(get_free_port_for_service "zot")
|
|
echo "${zot_port}" >"${BATS_FILE_TMPDIR}/zot.port"
|
|
|
|
cat >"${zot_config_file}" <<EOF
|
|
{
|
|
"distSpecVersion": "1.1.1",
|
|
"storage": {
|
|
"rootDirectory": "${zot_root_dir}"
|
|
},
|
|
"http": {
|
|
"address": "0.0.0.0",
|
|
"port": "${zot_port}"
|
|
},
|
|
"log": {
|
|
"level": "debug",
|
|
"output": "${log_file}"
|
|
}
|
|
}
|
|
EOF
|
|
|
|
git -C "${BATS_FILE_TMPDIR}" clone https://github.com/project-zot/helm-charts.git
|
|
zot_serve "${ZOT_PATH}" "${zot_config_file}"
|
|
wait_zot_reachable "${zot_port}"
|
|
|
|
if [ "${PUSHPULL_FIPS_MODE:-0}" = 1 ]; then
|
|
log_output | jq 'contains("fips140 is currently enabled")?' | grep true
|
|
fi
|
|
}
|
|
|
|
function pushpull_teardown() {
|
|
cat "${BATS_FILE_TMPDIR}/zot/zot-log.json"
|
|
}
|
|
|
|
function pushpull_teardown_file() {
|
|
zot_stop_all
|
|
|
|
if [ "${PUSHPULL_FIPS_MODE:-0}" = 1 ]; then
|
|
unset GODEBUG
|
|
fi
|
|
}
|
|
|
|
function helper_assert_output_contains_line() {
|
|
local expected=${1}
|
|
local found=0
|
|
local line
|
|
|
|
for line in "${lines[@]}"; do
|
|
if [ "${line}" = "${expected}" ]; then
|
|
found=1
|
|
break
|
|
fi
|
|
done
|
|
|
|
[ "${found}" -eq 1 ]
|
|
}
|
|
|
|
function helper_assert_line_specs() {
|
|
local spec index expected
|
|
|
|
for spec in "$@"; do
|
|
index=${spec%%:*}
|
|
expected=${spec#*:}
|
|
[ "${lines[${index}]}" = "${expected}" ]
|
|
done
|
|
}
|
|
|
|
function helper_assert_catalog_has_repo() {
|
|
local repository=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run curl "http://127.0.0.1:${zot_port}/v2/_catalog"
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq --arg name "${repository}" 'any(.repositories[]; . == $name)')" = true ]
|
|
}
|
|
|
|
function helper_assert_repo_has_tag() {
|
|
local repository=${1}
|
|
local tag=${2}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run curl "http://127.0.0.1:${zot_port}/v2/${repository}/tags/list"
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq --arg tag "${tag}" 'any(.tags[]; . == $tag)')" = true ]
|
|
}
|
|
|
|
function helper_assert_oci_index_has_ref_name() {
|
|
local index_file=${1}
|
|
local tag=${2}
|
|
|
|
run jq -e --arg tag "${tag}" 'any(.manifests[]; .annotations."org.opencontainers.image.ref.name" == $tag)' "${index_file}"
|
|
[ "${status}" -eq 0 ]
|
|
[ "${lines[-1]}" = true ]
|
|
}
|
|
|
|
# Args: $1 = image_name, $2 = tag, $3 = source reference
|
|
function helper_push_image() {
|
|
local image_name=${1}
|
|
local tag=${2}
|
|
local source_ref=${3}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run skopeo --insecure-policy copy --dest-tls-verify=false \
|
|
"${source_ref}" \
|
|
"docker://127.0.0.1:${zot_port}/${image_name}:${tag}"
|
|
[ "${status}" -eq 0 ]
|
|
|
|
helper_assert_catalog_has_repo "${image_name}"
|
|
helper_assert_repo_has_tag "${image_name}" "${tag}"
|
|
}
|
|
|
|
# Args: $1 = image_name, $2 = tag
|
|
function helper_pull_image() {
|
|
local image_name=${1}
|
|
local tag=${2}
|
|
local oci_data_dir=${BATS_FILE_TMPDIR}/oci
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run skopeo --insecure-policy copy --src-tls-verify=false \
|
|
"docker://127.0.0.1:${zot_port}/${image_name}:${tag}" \
|
|
"oci:${oci_data_dir}/${image_name}:${tag}"
|
|
[ "${status}" -eq 0 ]
|
|
|
|
helper_assert_oci_index_has_ref_name "${oci_data_dir}/${image_name}/index.json" "${tag}"
|
|
}
|
|
|
|
# Args: $1 = source_image, $2 = destination image name, $3 = tag
|
|
function helper_push_image_index() {
|
|
local source_image=${1}
|
|
local dest_name=${2}
|
|
local tag=${3}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run skopeo --insecure-policy copy --format=oci --dest-tls-verify=false --multi-arch=all \
|
|
"${source_image}" \
|
|
"docker://127.0.0.1:${zot_port}/${dest_name}:${tag}"
|
|
[ "${status}" -eq 0 ]
|
|
|
|
helper_assert_catalog_has_repo "${dest_name}"
|
|
helper_assert_repo_has_tag "${dest_name}" "${tag}"
|
|
}
|
|
|
|
# Args: $1 = image_name, $2 = tag
|
|
function helper_pull_image_index() {
|
|
local image_name=${1}
|
|
local tag=${2}
|
|
local oci_data_dir=${BATS_FILE_TMPDIR}/oci
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run skopeo --insecure-policy copy --src-tls-verify=false --multi-arch=all \
|
|
"docker://127.0.0.1:${zot_port}/${image_name}:${tag}" \
|
|
"oci:${oci_data_dir}/${image_name}:${tag}"
|
|
[ "${status}" -eq 0 ]
|
|
helper_assert_oci_index_has_ref_name "${oci_data_dir}/${image_name}/index.json" "${tag}"
|
|
|
|
run skopeo --insecure-policy --override-arch=arm64 --override-os=linux copy --src-tls-verify=false --multi-arch=all \
|
|
"docker://127.0.0.1:${zot_port}/${image_name}:${tag}" \
|
|
"oci:${oci_data_dir}/${image_name}:${tag}"
|
|
[ "${status}" -eq 0 ]
|
|
helper_assert_oci_index_has_ref_name "${oci_data_dir}/${image_name}/index.json" "${tag}"
|
|
}
|
|
|
|
# Args: $1 = image_name, $2 = tag
|
|
function helper_delete_manifest() {
|
|
local image_name=${1}
|
|
local tag=${2}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run curl --fail -X DELETE "http://127.0.0.1:${zot_port}/v2/${image_name}/manifests/${tag}"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = artifact_name, $2 = tag
|
|
function helper_push_oras_artifact() {
|
|
local artifact_name=${1}
|
|
local tag=${2}
|
|
local zot_port work_dir
|
|
zot_port=$(get_zot_port)
|
|
work_dir=${BATS_TEST_TMPDIR}
|
|
|
|
echo '{"name":"foo","value":"bar"}' > "${work_dir}/config.json"
|
|
echo "hello world" > "${work_dir}/artifact.txt"
|
|
cat > "${work_dir}/oras-artifact-annotations.json" <<'EOF'
|
|
{
|
|
"artifact.txt": {
|
|
"org.opencontainers.image.title": "artifact.txt"
|
|
}
|
|
}
|
|
EOF
|
|
run bash -c "cd '${work_dir}' && oras push --plain-http '127.0.0.1:${zot_port}/${artifact_name}:${tag}' \
|
|
--annotation-file oras-artifact-annotations.json \
|
|
--config config.json:application/vnd.acme.rocket.config.v1+json \
|
|
artifact.txt:text/plain -d -v"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = artifact_name, $2 = tag
|
|
function helper_pull_oras_artifact() {
|
|
local artifact_name=${1}
|
|
local tag=${2}
|
|
local zot_port ref digest artifact_file
|
|
zot_port=$(get_zot_port)
|
|
ref="127.0.0.1:${zot_port}/${artifact_name}:${tag}"
|
|
artifact_file=${BATS_TEST_TMPDIR}/artifact.txt
|
|
|
|
run oras pull --plain-http -o "${BATS_TEST_TMPDIR}" "${ref}" -d -v
|
|
[ "${status}" -eq 0 ]
|
|
grep -q "hello world" "${artifact_file}"
|
|
|
|
run oras manifest fetch --plain-http "${ref}"
|
|
[ "${status}" -eq 0 ]
|
|
digest=$(echo "${output}" | jq -r '.layers[] | select(.mediaType == "text/plain") | .digest' | head -1)
|
|
[ -n "${digest}" ]
|
|
|
|
run curl -fsSL "http://127.0.0.1:${zot_port}/v2/${artifact_name}/blobs/${digest}"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}" | grep -q "hello world"
|
|
}
|
|
|
|
# Args: $1 = image_name, $2 = tag
|
|
function helper_attach_oras_artifacts() {
|
|
local image_name=${1}
|
|
local tag=${2}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
echo '{"artifact": "", "signature": "pat hancock"}' > "${BATS_FILE_TMPDIR}/signature.json"
|
|
run oras attach --disable-path-validation --plain-http "127.0.0.1:${zot_port}/${image_name}:${tag}" \
|
|
--artifact-type 'signature/example' "${BATS_FILE_TMPDIR}/signature.json:application/json"
|
|
[ "${status}" -eq 0 ]
|
|
|
|
echo "{\"version\": \"0.0.0.0\", \"artifact\": \"'127.0.0.1:${zot_port}/${image_name}:${tag}'\", \"contents\": \"good\"}" > "${BATS_FILE_TMPDIR}/sbom.json"
|
|
run oras attach --disable-path-validation --plain-http "127.0.0.1:${zot_port}/${image_name}:${tag}" \
|
|
--artifact-type 'sbom/example' "${BATS_FILE_TMPDIR}/sbom.json:application/json"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = image_name, $2 = tag, $3 = expected artifact count
|
|
function helper_discover_oras_artifacts() {
|
|
local image_name=${1}
|
|
local tag=${2}
|
|
local expected_count=${3}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run oras discover --plain-http --format json "127.0.0.1:${zot_port}/${image_name}:${tag}"
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${output}" | jq -r '.manifests | length')" -eq "${expected_count}" ]
|
|
}
|
|
|
|
function helper_add_and_list_tags_using_oras() {
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run skopeo --insecure-policy copy --dest-tls-verify=false \
|
|
"oci:${TEST_DATA_DIR}/golang:1.20" \
|
|
"docker://127.0.0.1:${zot_port}/oras-tags:1.20"
|
|
[ "${status}" -eq 0 ]
|
|
|
|
run oras tag --plain-http "127.0.0.1:${zot_port}/oras-tags:1.20" 1 new latest
|
|
[ "${status}" -eq 0 ]
|
|
|
|
run oras repo tags --plain-http "127.0.0.1:${zot_port}/oras-tags"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}"
|
|
[ "$(echo "${output}" | wc -l)" -eq 4 ]
|
|
[ "${lines[-1]}" = "new" ]
|
|
[ "${lines[-2]}" = "latest" ]
|
|
[ "${lines[-3]}" = "1.20" ]
|
|
[ "${lines[-4]}" = "1" ]
|
|
|
|
run oras repo tags --plain-http --last new "127.0.0.1:${zot_port}/oras-tags"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}"
|
|
[ -z "${output}" ]
|
|
|
|
run oras repo tags --plain-http --last latest "127.0.0.1:${zot_port}/oras-tags"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}"
|
|
[ "$(echo "${output}" | wc -l)" -eq 1 ]
|
|
[ "${lines[-1]}" = "new" ]
|
|
|
|
run oras repo tags --plain-http --last "1.20" "127.0.0.1:${zot_port}/oras-tags"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}"
|
|
[ "$(echo "${output}" | wc -l)" -eq 2 ]
|
|
[ "${lines[-2]}" = "latest" ]
|
|
[ "${lines[-1]}" = "new" ]
|
|
|
|
run oras repo tags --plain-http --last "1" "127.0.0.1:${zot_port}/oras-tags"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}"
|
|
[ "$(echo "${output}" | wc -l)" -eq 3 ]
|
|
[ "${lines[-3]}" = "1.20" ]
|
|
[ "${lines[-2]}" = "latest" ]
|
|
[ "${lines[-1]}" = "new" ]
|
|
}
|
|
|
|
function helper_push_helm_chart() {
|
|
local zot_port chart_version
|
|
zot_port=$(get_zot_port)
|
|
|
|
run helm package "${BATS_FILE_TMPDIR}/helm-charts/charts/zot" -d "${BATS_FILE_TMPDIR}"
|
|
[ "${status}" -eq 0 ]
|
|
|
|
chart_version=$(awk '/version/{printf $2}' "${BATS_FILE_TMPDIR}/helm-charts/charts/zot/Chart.yaml")
|
|
run helm push "${BATS_FILE_TMPDIR}/zot-${chart_version}.tgz" "oci://localhost:${zot_port}/zot-chart"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
function helper_pull_helm_chart() {
|
|
local zot_port chart_version
|
|
zot_port=$(get_zot_port)
|
|
chart_version=$(awk '/version/{printf $2}' "${BATS_FILE_TMPDIR}/helm-charts/charts/zot/Chart.yaml")
|
|
|
|
run helm pull "oci://localhost:${zot_port}/zot-chart/zot" --version "${chart_version}" -d "${BATS_FILE_TMPDIR}"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = source reference, $2 = destination repository
|
|
function helper_push_image_with_regclient() {
|
|
local source_ref=${1}
|
|
local dest_repo=${2}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl registry set "localhost:${zot_port}" --tls disabled
|
|
[ "${status}" -eq 0 ]
|
|
run regctl image copy "${source_ref}" "localhost:${zot_port}/${dest_repo}"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = source repository, $2 = destination reference
|
|
function helper_pull_image_with_regclient() {
|
|
local source_repo=${1}
|
|
local dest_ref=${2}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl image copy "localhost:${zot_port}/${source_repo}" "${dest_ref}"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = page limit, $2 = --last cursor repo, $3 = expected next repo,
|
|
# $4 = repository expected in full catalog listing,
|
|
# $@ = index:repo assertions against the limited result page.
|
|
function helper_list_repositories_with_regclient_pagination() {
|
|
local limit=${1}
|
|
local cursor_repo=${2}
|
|
local expected_next_repo=${3}
|
|
local expected_catalog_repo=${4}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl repo ls "localhost:${zot_port}"
|
|
[ "${status}" -eq 0 ]
|
|
helper_assert_output_contains_line "${expected_catalog_repo}"
|
|
|
|
run regctl repo ls --limit "${limit}" "localhost:${zot_port}"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}"
|
|
[ "$(echo "${output}" | wc -l)" -eq "${limit}" ]
|
|
helper_assert_line_specs "${@:5}"
|
|
|
|
run regctl repo ls --last "${cursor_repo}" --limit 1 "localhost:${zot_port}"
|
|
[ "${status}" -eq 0 ]
|
|
echo "${output}"
|
|
[ "$(echo "${output}" | wc -l)" -eq 1 ]
|
|
[ "${lines[-1]}" = "${expected_next_repo}" ]
|
|
}
|
|
|
|
# Args: $1 = repository
|
|
function helper_list_image_tags_with_regclient() {
|
|
local repo=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl tag ls "localhost:${zot_port}/${repo}"
|
|
[ "${status}" -eq 0 ]
|
|
helper_assert_output_contains_line latest
|
|
}
|
|
|
|
# Args: $1 = repository, $2 = manifest tag
|
|
function helper_push_manifest_with_regclient() {
|
|
local repo=${1}
|
|
local tag=${2}
|
|
local zot_port manifest
|
|
zot_port=$(get_zot_port)
|
|
manifest=$(regctl manifest get "localhost:${zot_port}/${repo}" --format=raw-body)
|
|
|
|
run regctl manifest put "localhost:${zot_port}/${repo}:${tag}" \
|
|
--format oci \
|
|
--content-type application/vnd.oci.image.manifest.v1+json <<JSON
|
|
${manifest}
|
|
JSON
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = repository
|
|
function helper_pull_manifest_with_regclient() {
|
|
local repo=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl manifest get "localhost:${zot_port}/${repo}"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = repository
|
|
function helper_pull_manifest_with_docker_client() {
|
|
local repo=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run docker pull "localhost:${zot_port}/${repo}"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = repository
|
|
function helper_pull_manifest_with_crictl() {
|
|
local repo=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run crictl pull "localhost:${zot_port}/${repo}"
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = artifact reference
|
|
function helper_push_oci_artifact_with_regclient() {
|
|
local ref=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl artifact put "localhost:${zot_port}/${ref}" <<TXT
|
|
this is an artifact
|
|
TXT
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = artifact reference, $2 = expected artifact content
|
|
function helper_pull_oci_artifact_with_regclient() {
|
|
local ref=${1}
|
|
local expected_content=${2}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl manifest get "localhost:${zot_port}/${ref}"
|
|
[ "${status}" -eq 0 ]
|
|
run regctl artifact get "localhost:${zot_port}/${ref}"
|
|
[ "${status}" -eq 0 ]
|
|
[ "${lines[-1]}" = "${expected_content}" ]
|
|
}
|
|
|
|
# Args: $1 = expected initial referrers count
|
|
function helper_push_oci_artifact_references_with_regclient() {
|
|
local expected_initial_count=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl artifact put "localhost:${zot_port}/manifest-ref:demo" <<TXT
|
|
test artifact
|
|
TXT
|
|
[ "${status}" -eq 0 ]
|
|
run regctl artifact list "localhost:${zot_port}/manifest-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq "${expected_initial_count}" ]
|
|
|
|
run regctl artifact put --annotation demo=true --annotation format=oci \
|
|
--artifact-type "application/vnd.example.icecream.v1" \
|
|
--subject "localhost:${zot_port}/manifest-ref:demo" <<TXT
|
|
test reference
|
|
TXT
|
|
[ "${status}" -eq 0 ]
|
|
|
|
run regctl artifact put "localhost:${zot_port}/artifact-ref:demo" <<TXT
|
|
test artifact
|
|
TXT
|
|
[ "${status}" -eq 0 ]
|
|
run regctl artifact list "localhost:${zot_port}/artifact-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq "${expected_initial_count}" ]
|
|
|
|
run regctl artifact put --annotation demo=true --annotation format=oci \
|
|
--artifact-type "application/vnd.example.icecream.v1" \
|
|
--subject "localhost:${zot_port}/artifact-ref:demo" <<TXT
|
|
test reference
|
|
TXT
|
|
[ "${status}" -eq 0 ]
|
|
}
|
|
|
|
# Args: $1 = expected referrers count
|
|
function helper_pull_oci_artifact_references_with_regclient() {
|
|
local expected_count=${1}
|
|
local zot_port
|
|
zot_port=$(get_zot_port)
|
|
|
|
run regctl artifact list "localhost:${zot_port}/manifest-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq "${expected_count}" ]
|
|
run regctl artifact list --filter-artifact-type "application/vnd.example.icecream.v1" "localhost:${zot_port}/manifest-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq "${expected_count}" ]
|
|
run regctl artifact list --filter-artifact-type "application/invalid" "localhost:${zot_port}/manifest-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq 0 ]
|
|
|
|
run regctl artifact list "localhost:${zot_port}/artifact-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq "${expected_count}" ]
|
|
run regctl artifact list --filter-artifact-type "application/vnd.example.icecream.v1" "localhost:${zot_port}/artifact-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq "${expected_count}" ]
|
|
run regctl artifact list --filter-artifact-type "application/invalid" "localhost:${zot_port}/artifact-ref:demo" --format raw-body
|
|
[ "${status}" -eq 0 ]
|
|
[ "$(echo "${lines[-1]}" | jq '.manifests | length')" -eq 0 ]
|
|
}
|
|
|
|
# Build a local docker image, then verify docker push and pull fail without the
|
|
# docker compatibility extension (happy path is in docker_compat.bats).
|
|
function helper_build_docker_image_push_and_pull() {
|
|
local zot_port dockerfile
|
|
zot_port=$(get_zot_port)
|
|
dockerfile=${BATS_TEST_TMPDIR}/Dockerfile
|
|
|
|
cat > "${dockerfile}" <<DOCKERFILE
|
|
FROM ghcr.io/project-zot/test-images/busybox-docker:1.37
|
|
RUN echo "hello world" > /testfile
|
|
DOCKERFILE
|
|
run sh -c "unset GODEBUG; docker build -f '${dockerfile}' -t localhost:${zot_port}/test '${BATS_TEST_TMPDIR}'"
|
|
[ "${status}" -eq 0 ]
|
|
run docker push "localhost:${zot_port}/test"
|
|
[ "${status}" -eq 1 ]
|
|
run docker pull "localhost:${zot_port}/test"
|
|
[ "${status}" -eq 1 ]
|
|
}
|