FilesExpand file tree

 master

/

patch-csv.py

Copy path

Blame

More file actions

Blame

More file actions

Latest commit

 

History

History

History

executable file

·

111 lines (88 loc) · 4.21 KB

 master

/

patch-csv.py

Top

File metadata and controls

• Code
• Blame

executable file

·

111 lines (88 loc) · 4.21 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

#!/usr/bin/env python3

import argparse

import os

import sys

from datetime import datetime, timezone

from rewrite import rewrite, string_replacer

import yaml

def rbac_proxy_updater(version_map):

def update_rbac_proxy_ref(img):

"""

Updates the reference to the kube-rbac-proxy image to match the OpenShift one.

"""

if not isinstance(img, str) or not img.startswith('gcr.io/kubebuilder/kube-rbac-proxy:'):

return None

tag = img[len('gcr.io/kubebuilder/kube-rbac-proxy:'):]

return version_map[tag]

return update_rbac_proxy_ref

def related_image_passthrough(val):

"""

Searches for environment variable definitions of the form RELATED_IMAGE_* and replaces them

from the current environment. It is an error if one of the environment variables does not

exist in the environment.

"""

if not isinstance(val, dict):

return None

name = val.get("name")

if not isinstance(name, str):

return None

if name.startswith("RELATED_IMAGE_"):

val["value"] = os.environ[name]

def must_replace_suffix(str, suffix, replacement):

"""

Replaces the given suffix in the string. If the string does not have the suffix, a runtime

error will be raised.

"""

splits = str.rsplit(suffix, maxsplit=1)

if len(splits) != 2 or splits[1]:

raise RuntimeError(str + " does not contain " + suffix)

return splits[0] + replacement

def patch_csv(csv_doc, version, operator_image, first_version, no_related_images, rbac_proxy_replacements):

csv_doc['metadata']['annotations']['createdAt'] = datetime.now(timezone.utc).isoformat()

placeholder_image = csv_doc['metadata']['annotations']['containerImage']

rewrite(csv_doc, string_replacer(placeholder_image, operator_image))

raw_name = must_replace_suffix(csv_doc['metadata']['name'], '.v0.0.1', '')

csv_doc['metadata']['name'] = f'{raw_name}.v{version}'

csv_doc['spec']['version'] = version

if not no_related_images:

rewrite(csv_doc, related_image_passthrough)

if rbac_proxy_replacements:

rewrite(csv_doc, rbac_proxy_updater(rbac_proxy_replacements))

x, y, z = (int(c) for c in version.split('-', maxsplit=1)[0].split('.'))

first_x, first_y, first_z = (int(c) for c in first_version.split('-', maxsplit=1)[0].split('.'))

# An olm.skipRange doesn't hurt if it references non-existing versions.

csv_doc["metadata"]["annotations"]["olm.skipRange"] = f'>= {x}.{y-1}.0 < {version}'

if (x, y, z) > (first_x, first_y, first_z):

if z == 0:

csv_doc["spec"]["replaces"] = f'{raw_name}.v{x}.{y-1}.0'

else:

csv_doc["spec"]["replaces"] = f'{raw_name}.v{x}.{y}.{z-1}'

def parse_args():

parser = argparse.ArgumentParser(description='Patch StackRox Operator ClusterServiceVersion file')

parser.add_argument("--use-version", required=True, metavar='version',

help='Which SemVer version of the operator to set in the patched CSV, e.g. 3.62.0')

parser.add_argument("--first-version", required=True, metavar='version',

help='The first version of the operator that was published')

parser.add_argument("--operator-image", required=True, metavar='image',

help='Which operator image to use in the patched CSV')

parser.add_argument("--no-related-images", action='store_true',

help='Disable passthrough of related images')

parser.add_argument("--replace-rbac-proxy", required=False, metavar='original-tag:replacement-image',

nargs='+', help='Replacement directives for the RBAC proxy image',

default=[])

return parser.parse_args()

def main():

args = parse_args()

doc = yaml.safe_load(sys.stdin)

patch_csv(doc,

operator_image=args.operator_image,

version=args.use_version,

first_version=args.first_version,

no_related_images=args.no_related_images,

rbac_proxy_replacements={

tag: img

for tag, img in (spec.split(':', maxsplit=1) for spec in args.replace_rbac_proxy)

})

print(yaml.safe_dump(doc))

if __name__ == '__main__':

main()