|
|
|
package buildflags
|
|
|
|
|
|
|
|
import (
|
|
|
|
"encoding/csv"
|
|
|
|
"fmt"
|
|
|
|
"strconv"
|
|
|
|
"strings"
|
|
|
|
|
|
|
|
controllerapi "github.com/docker/buildx/controller/pb"
|
|
|
|
"github.com/pkg/errors"
|
|
|
|
)
|
|
|
|
|
|
|
|
func CanonicalizeAttest(attestType string, in string) string {
|
|
|
|
if in == "" {
|
|
|
|
return ""
|
|
|
|
}
|
|
|
|
if b, err := strconv.ParseBool(in); err == nil {
|
|
|
|
return fmt.Sprintf("type=%s,disabled=%t", attestType, !b)
|
|
|
|
}
|
|
|
|
return fmt.Sprintf("type=%s,%s", attestType, in)
|
|
|
|
}
|
|
|
|
|
|
|
|
func ParseAttests(in []string) ([]*controllerapi.Attest, error) {
|
|
|
|
out := []*controllerapi.Attest{}
|
|
|
|
found := map[string]struct{}{}
|
|
|
|
for _, in := range in {
|
|
|
|
in := in
|
|
|
|
attest, err := ParseAttest(in)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
if _, ok := found[attest.Type]; ok {
|
|
|
|
return nil, errors.Errorf("duplicate attestation field %s", attest.Type)
|
|
|
|
}
|
|
|
|
found[attest.Type] = struct{}{}
|
|
|
|
|
|
|
|
out = append(out, attest)
|
|
|
|
}
|
|
|
|
return out, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func ParseAttest(in string) (*controllerapi.Attest, error) {
|
|
|
|
if in == "" {
|
|
|
|
return nil, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
csvReader := csv.NewReader(strings.NewReader(in))
|
|
|
|
fields, err := csvReader.Read()
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
attest := controllerapi.Attest{
|
|
|
|
Attrs: in,
|
|
|
|
}
|
|
|
|
for _, field := range fields {
|
|
|
|
key, value, ok := strings.Cut(field, "=")
|
|
|
|
if !ok {
|
|
|
|
return nil, errors.Errorf("invalid value %s", field)
|
|
|
|
}
|
|
|
|
key = strings.TrimSpace(strings.ToLower(key))
|
|
|
|
|
|
|
|
switch key {
|
|
|
|
case "type":
|
|
|
|
attest.Type = value
|
|
|
|
case "disabled":
|
|
|
|
disabled, err := strconv.ParseBool(value)
|
|
|
|
if err != nil {
|
|
|
|
return nil, errors.Wrapf(err, "invalid value %s", field)
|
|
|
|
}
|
|
|
|
attest.Disabled = disabled
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if attest.Type == "" {
|
|
|
|
return nil, errors.Errorf("attestation type not specified")
|
|
|
|
}
|
|
|
|
|
|
|
|
return &attest, nil
|
|
|
|
}
|