component-detection/src/Microsoft.ComponentDetection.Detectors/dockerfile/DockerfileComponentDetector.cs at e1a765aead68ed3b89a0bc9355fb2631deb0300d · microsoft/component-detection · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
#nullable enable
namespace Microsoft.ComponentDetection.Detectors.Dockerfile;

using System;
using System.Collections.Generic;
using System.IO;
using System.Threading;
using System.Threading.Tasks;
using Microsoft.ComponentDetection.Common;
using Microsoft.ComponentDetection.Contracts;
using Microsoft.ComponentDetection.Contracts.Internal;
using Microsoft.ComponentDetection.Contracts.TypedComponent;
using Microsoft.Extensions.Logging;
using Valleysoft.DockerfileModel;

public class DockerfileComponentDetector : FileComponentDetector, IDefaultOffComponentDetector
{
    private readonly ICommandLineInvocationService commandLineInvocationService;
    private readonly IEnvironmentVariableService envVarService;

    public DockerfileComponentDetector(
        IComponentStreamEnumerableFactory componentStreamEnumerableFactory,
        IObservableDirectoryWalkerFactory walkerFactory,
        ICommandLineInvocationService commandLineInvocationService,
        IEnvironmentVariableService envVarService,
        ILogger<DockerfileComponentDetector> logger)
    {
        this.ComponentStreamEnumerableFactory = componentStreamEnumerableFactory;
        this.Scanner = walkerFactory;
        this.commandLineInvocationService = commandLineInvocationService;
        this.envVarService = envVarService;
        this.Logger = logger;
    }

    public override string Id { get; } = "DockerReference";

    public override IEnumerable<string> Categories => [nameof(DetectorClass.DockerReference)];

    public override IList<string> SearchPatterns { get; } = ["dockerfile", "dockerfile.*", "*.dockerfile"];

    public override IEnumerable<ComponentType> SupportedComponentTypes { get; } = [ComponentType.DockerReference];

    public override int Version => 1;

    protected override async Task OnFileFoundAsync(ProcessRequest processRequest, IDictionary<string, string> detectorArgs, CancellationToken cancellationToken = default)
    {
        var singleFileComponentRecorder = processRequest.SingleFileComponentRecorder;
        var file = processRequest.ComponentStream;
        var filePath = file.Location;
        try
        {
            this.Logger.LogInformation("Discovered dockerfile: {Location}", file.Location);

            string contents;
            using (var reader = new StreamReader(file.Stream))
            {
                contents = await reader.ReadToEndAsync(cancellationToken);
            }

            var stageNameMap = new Dictionary<string, string>();
            var dockerFileComponent = this.ParseDockerFileAsync(contents, file.Location, singleFileComponentRecorder, stageNameMap);
        }
        catch (Exception e)
        {
            this.Logger.LogError(e, "The file doesn't appear to be a Dockerfile: {Location}", filePath);
        }
    }

    private Task ParseDockerFileAsync(string fileContents, string fileLocation, ISingleFileComponentRecorder singleFileComponentRecorder, Dictionary<string, string> stageNameMap)
    {
        var dockerfileModel = Dockerfile.Parse(fileContents);
        var instructions = dockerfileModel.Items;
        foreach (var instruction in instructions)
        {
            var imageReference = this.ProcessDockerfileConstruct(instruction, dockerfileModel.EscapeChar, stageNameMap);
            if (imageReference != null)
            {
                singleFileComponentRecorder.RegisterUsage(new DetectedComponent(imageReference.ToTypedDockerReferenceComponent()));
            }
        }

        return Task.CompletedTask;
    }

    private DockerReference? ProcessDockerfileConstruct(DockerfileConstruct construct, char escapeChar, Dictionary<string, string> stageNameMap)
    {
        try
        {
            var instructionKeyword = construct.Type;
            DockerReference? baseImage = null;
            if (instructionKeyword == ConstructType.Instruction)
            {
                var constructType = construct.GetType().Name;
                switch (constructType)
                {
                    case "FromInstruction":
                        baseImage = this.ParseFromInstruction(construct, escapeChar, stageNameMap);
                        break;
                    case "CopyInstruction":
                        baseImage = this.ParseCopyInstruction(construct, escapeChar, stageNameMap);
                        break;
                    default:
                        break;
                }
            }

            return baseImage;
        }
        catch (Exception e)
        {
            this.Logger.LogError(e, "Failed to detect a DockerReference component, the component will not be registered.");
            return null;
        }
    }

    private DockerReference? ParseFromInstruction(DockerfileConstruct construct, char escapeChar, Dictionary<string, string> stageNameMap)
    {
        var resolvedFromStatement = construct.ResolveVariables(escapeChar)?.TrimEnd();
        var fromInstruction = (FromInstruction)construct;
        var reference = fromInstruction.ImageName;
        if (string.IsNullOrWhiteSpace(resolvedFromStatement) || string.IsNullOrEmpty(reference))
        {
            return null;
        }

        var stageName = fromInstruction.StageName;
        stageNameMap.TryGetValue(reference, out var stageNameReference);

        if (!string.IsNullOrEmpty(stageName))
        {
            if (!string.IsNullOrEmpty(stageNameReference))
            {
                stageNameMap.Add(stageName, stageNameReference);
            }
            else
            {
                stageNameMap.Add(stageName, reference);
            }
        }

        if (!string.IsNullOrEmpty(stageNameReference))
        {
            return DockerReferenceUtility.TryParseImageReference(stageNameReference);
        }

        return DockerReferenceUtility.TryParseImageReference(reference);
    }

    private DockerReference? ParseCopyInstruction(DockerfileConstruct construct, char escapeChar, Dictionary<string, string> stageNameMap)
    {
        var resolvedCopyStatement = construct.ResolveVariables(escapeChar)?.TrimEnd();
        var copyInstruction = (CopyInstruction)construct;
        var reference = copyInstruction.FromStageName;
        if (string.IsNullOrWhiteSpace(resolvedCopyStatement) || string.IsNullOrWhiteSpace(reference))
        {
            return null;
        }

        stageNameMap.TryGetValue(reference, out var stageNameReference);
        if (!string.IsNullOrEmpty(stageNameReference))
        {
            return DockerReferenceUtility.TryParseImageReference(stageNameReference);
        }

        return DockerReferenceUtility.TryParseImageReference(reference);
    }
}