mirror of
https://github.com/kubernetes-sigs/kustomize.git
synced 2026-05-21 22:41:42 +00:00
130 lines
3.2 KiB
Go
130 lines
3.2 KiB
Go
// Copyright 2019 The Kubernetes Authors.
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package kunstruct
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
|
|
corev1 "k8s.io/api/core/v1"
|
|
"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
|
|
"sigs.k8s.io/kustomize/api/hasher"
|
|
"sigs.k8s.io/kustomize/api/ifc"
|
|
)
|
|
|
|
// kustHash computes a hash of an unstructured object.
|
|
type kustHash struct{}
|
|
|
|
// NewKustHash returns a kustHash object
|
|
func NewKustHash() *kustHash {
|
|
return &kustHash{}
|
|
}
|
|
|
|
// Hash returns a hash of either a ConfigMap or a Secret
|
|
func (h *kustHash) Hash(m ifc.Kunstructured) (string, error) {
|
|
u := unstructured.Unstructured{
|
|
Object: m.Map(),
|
|
}
|
|
kind := u.GetKind()
|
|
switch kind {
|
|
case "ConfigMap":
|
|
cm, err := unstructuredToConfigmap(u)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return configMapHash(cm)
|
|
case "Secret":
|
|
sec, err := unstructuredToSecret(u)
|
|
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return secretHash(sec)
|
|
default:
|
|
return "", fmt.Errorf(
|
|
"type %s is not supported for hashing in %v",
|
|
kind, m.Map())
|
|
}
|
|
}
|
|
|
|
// configMapHash returns a hash of the ConfigMap.
|
|
// The Data, Kind, and Name are taken into account.
|
|
func configMapHash(cm *corev1.ConfigMap) (string, error) {
|
|
encoded, err := encodeConfigMap(cm)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
h, err := hasher.Encode(hasher.Hash(encoded))
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return h, nil
|
|
}
|
|
|
|
// SecretHash returns a hash of the Secret.
|
|
// The Data, Kind, Name, and Type are taken into account.
|
|
func secretHash(sec *corev1.Secret) (string, error) {
|
|
encoded, err := encodeSecret(sec)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
h, err := hasher.Encode(hasher.Hash(encoded))
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return h, nil
|
|
}
|
|
|
|
// encodeConfigMap encodes a ConfigMap.
|
|
// Data, Kind, and Name are taken into account.
|
|
// BinaryData is included if it's not empty to avoid useless key in output.
|
|
func encodeConfigMap(cm *corev1.ConfigMap) (string, error) {
|
|
// json.Marshal sorts the keys in a stable order in the encoding
|
|
m := map[string]interface{}{"kind": "ConfigMap", "name": cm.Name, "data": cm.Data}
|
|
if len(cm.BinaryData) > 0 {
|
|
m["binaryData"] = cm.BinaryData
|
|
}
|
|
data, err := json.Marshal(m)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return string(data), nil
|
|
}
|
|
|
|
// encodeSecret encodes a Secret.
|
|
// Data, Kind, Name, and Type are taken into account.
|
|
// StringData is included if it's not empty to avoid useless key in output.
|
|
func encodeSecret(sec *corev1.Secret) (string, error) {
|
|
// json.Marshal sorts the keys in a stable order in the encoding
|
|
m := map[string]interface{}{"kind": "Secret", "type": sec.Type, "name": sec.Name, "data": sec.Data}
|
|
if len(sec.StringData) > 0 {
|
|
m["stringData"] = sec.StringData
|
|
}
|
|
data, err := json.Marshal(m)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return string(data), nil
|
|
}
|
|
|
|
func unstructuredToConfigmap(u unstructured.Unstructured) (*corev1.ConfigMap, error) {
|
|
marshaled, err := json.Marshal(u.Object)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
var out corev1.ConfigMap
|
|
err = json.Unmarshal(marshaled, &out)
|
|
return &out, err
|
|
}
|
|
|
|
func unstructuredToSecret(u unstructured.Unstructured) (*corev1.Secret, error) {
|
|
marshaled, err := json.Marshal(u.Object)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
var out corev1.Secret
|
|
err = json.Unmarshal(marshaled, &out)
|
|
return &out, err
|
|
}
|