-
Notifications
You must be signed in to change notification settings - Fork 5
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
refactor(*)!: Refactor for better maintainability
Signed-off-by: Anurag Rajawat <[email protected]>
- Loading branch information
1 parent
a1d331c
commit cfd4482
Showing
36 changed files
with
1,386 additions
and
2,939 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -25,3 +25,5 @@ go.work.sum | |
*.swp | ||
*.swo | ||
*~ | ||
|
||
venv/ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
bin/ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,36 +1,24 @@ | ||
# SPDX-License-Identifier: Apache-2.0 | ||
FROM golang:1.23 AS builder | ||
|
||
### Builder | ||
RUN mkdir -p /protobuf/golang | ||
|
||
FROM golang:1.21-alpine3.17 as builder | ||
|
||
RUN apk --no-cache update | ||
RUN apk add --no-cache git clang llvm make gcc protobuf musl-dev | ||
RUN apk add --update alpine-sdk | ||
|
||
RUN go install github.com/golang/protobuf/protoc-gen-go@latest | ||
RUN go install google.golang.org/grpc/cmd/protoc-gen-go-grpc@latest | ||
|
||
RUN mkdir /sentryflow | ||
RUN mkdir /protobuf | ||
|
||
WORKDIR /protobuf | ||
COPY /protobuf . | ||
COPY protobuf/golang /protobuf/golang | ||
|
||
WORKDIR /sentryflow | ||
COPY /sentryflow . | ||
|
||
RUN export CGO_ENABLED=1; export CC=gcc; | ||
RUN go build -o sentryflow | ||
COPY sentryflow/go.mod . | ||
COPY sentryflow/go.sum . | ||
RUN go mod download | ||
|
||
### Make executable image | ||
COPY sentryflow/cmd cmd/ | ||
COPY sentryflow/pkg pkg/ | ||
COPY sentryflow/main.go main.go | ||
COPY sentryflow/Makefile Makefile | ||
|
||
FROM alpine:3.17 as sentryflow | ||
RUN make build | ||
|
||
# RUN echo "@community http://dl-cdn.alpinelinux.org/alpine/edge/community" | tee -a /etc/apk/repositories | ||
# RUN apk --no-cache update | ||
# RUN apk add bash | ||
FROM gcr.io/distroless/static-debian12 | ||
|
||
COPY --from=builder /sentryflow/sentryflow / | ||
COPY --from=builder /sentryflow/bin/sentryflow / | ||
|
||
CMD ["/sentryflow"] | ||
ENTRYPOINT ["/sentryflow"] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,60 +1,67 @@ | ||
# SPDX-License-Identifier: Apache-2.0 | ||
BINARY_NAME ?= sentryflow | ||
REGISTRY ?= docker.io/5gsec | ||
VERSION ?= $(shell git rev-parse HEAD) | ||
BUILD_TS ?= $(shell date) | ||
DOCKER_IMAGE ?= $(REGISTRY)/$(BINARY_NAME) | ||
DOCKER_TAG ?= latest | ||
CONTAINER_TOOL ?= docker | ||
|
||
PROG_NAME = sentryflow | ||
IMAGE_NAME = 5gsec/$(PROG_NAME) | ||
TAG = v0.1 | ||
.PHONY: help | ||
help: ## Display this help | ||
@awk 'BEGIN {FS = ":.*##"; printf "\nUsage:\n make \033[36m<target>\033[0m\n"} /^[a-zA-Z_0-9-]+:.*?##/ { printf " \033[36m%-15s\033[0m %s\n", $$1, $$2 } /^##@/ { printf "\n\033[1m%s\033[0m\n", substr($$0, 5) } ' $(MAKEFILE_LIST) | ||
|
||
.PHONY: build | ||
build: gofmt golint gosec | ||
go mod tidy | ||
go build -o $(PROG_NAME) | ||
|
||
.PHONY: clean | ||
clean: | ||
rm -f $(PROG_NAME) | ||
|
||
.PHONY: gofmt | ||
gofmt: | ||
cd $(CURDIR); gofmt -w -s -d $(shell find . -type f -name '*.go' -print) | ||
|
||
.PHONY: golint | ||
golint: | ||
ifeq (, $(shell which golint)) | ||
@{ \ | ||
set -e ;\ | ||
GOLINT_TEMP_DIR=$$(mktemp -d) ;\ | ||
cd $$GOLINT_TEMP_DIR ;\ | ||
go mod init tmp ;\ | ||
go get golang.org/x/lint/golint ;\ | ||
go install golang.org/x/lint/golint ;\ | ||
rm -rf $$GOLINT_TEMP_DIR ;\ | ||
} | ||
endif | ||
cd $(CURDIR); golint ./... | ||
.DEFAULT_GOAL := help | ||
|
||
##@ Development | ||
.PHONY: run | ||
run: fmt vet ## Run SentryFlow on your host | ||
@go mod tidy;go run main.go | ||
|
||
.PHONY: fmt | ||
fmt: ## Run go fmt against code | ||
@go fmt ./... | ||
|
||
.PHONY: gosec | ||
gosec: | ||
ifeq (, $(shell which gosec)) | ||
@{ \ | ||
.PHONY: vet | ||
vet: ## Run go vet against code | ||
@go vet ./... | ||
|
||
GOLANGCI_LINT = $(shell pwd)/bin/golangci-lint | ||
GOLANGCI_LINT_VERSION ?= v1.60.3 | ||
golangci-lint: | ||
@[ -f $(GOLANGCI_LINT) ] || { \ | ||
set -e ;\ | ||
GOSEC_TEMP_DIR=$$(mktemp -d) ;\ | ||
cd $$GOSEC_TEMP_DIR ;\ | ||
go mod init tmp ;\ | ||
go get github.com/securego/gosec/v2/cmd/gosec ;\ | ||
go install github.com/securego/gosec/v2/cmd/gosec ;\ | ||
rm -rf $$GOSEC_TEMP_DIR ;\ | ||
curl -sSfL https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh -s -- -b $(shell dirname $(GOLANGCI_LINT)) $(GOLANGCI_LINT_VERSION) ;\ | ||
} | ||
endif | ||
cd $(CURDIR); gosec -exclude=G402 ./... | ||
|
||
.PHONY: build-image | ||
build-image: | ||
docker build -t $(IMAGE_NAME):$(TAG) -f ./Dockerfile ../ | ||
.PHONY: lint | ||
lint: golangci-lint ## Run golangci-lint linter | ||
@$(GOLANGCI_LINT) run | ||
|
||
##@ Build | ||
|
||
.PHONY: build | ||
build: fmt vet ## Build SentryFlow binary | ||
@CGO_ENABLED=0 go build -ldflags="-s \ | ||
-X 'main.Version=${VERSION}' \ | ||
-X 'main.CommitHash=${VERSION}' \ | ||
-X 'main.BuildTimestamp=${BUILD_TS}'" \ | ||
-o bin/"${BINARY_NAME}" main.go | ||
|
||
.PHONY: image | ||
image: ## Build SentryFlow's container image | ||
$(CONTAINER_TOOL) build -t ${DOCKER_IMAGE}:${DOCKER_TAG} -f Dockerfile ../ | ||
|
||
.PHONY: clean-image | ||
clean-image: | ||
docker rmi $(IMAGE_NAME):$(TAG) | ||
.PHONY: push | ||
push: ## Push SentryFlow's container image | ||
$(CONTAINER_TOOL) push ${DOCKER_IMAGE}:${DOCKER_TAG} | ||
|
||
.PHONY: run-image | ||
run-image: | ||
docker run -it --rm $(IMAGE_NAME):$(TAG) | ||
PLATFORMS ?= linux/arm64,linux/amd64 | ||
.PHONY: imagex | ||
imagex: ## Build and push SentryFlow's container image for cross-platform support | ||
# copy existing Dockerfile and insert --platform=${BUILDPLATFORM} into Dockerfile.cross, and preserve the original Dockerfile | ||
sed -e '1 s/\(^FROM\)/FROM --platform=\$$\{BUILDPLATFORM\}/; t' -e ' 1,// s//FROM --platform=\$$\{BUILDPLATFORM\}/' Dockerfile > Dockerfile.cross | ||
- $(CONTAINER_TOOL) buildx create --name project-v3-builder | ||
$(CONTAINER_TOOL) buildx use project-v3-builder | ||
- $(CONTAINER_TOOL) buildx build --push --platform=$(PLATFORMS) --tag ${DOCKER_IMAGE}:${DOCKER_TAG} -f Dockerfile.cross ../ || { $(CONTAINER_TOOL) buildx rm project-v3-builder; rm Dockerfile.cross; exit 1; } | ||
- $(CONTAINER_TOOL) buildx rm project-v3-builder | ||
rm Dockerfile.cross |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,53 @@ | ||
package cmd | ||
|
||
import ( | ||
"context" | ||
|
||
"github.com/spf13/cobra" | ||
"go.uber.org/zap" | ||
"go.uber.org/zap/zapcore" | ||
ctrl "sigs.k8s.io/controller-runtime" | ||
|
||
"github.com/5GSEC/SentryFlow/pkg/core" | ||
"github.com/5GSEC/SentryFlow/pkg/util" | ||
) | ||
|
||
var ( | ||
configFilePath string | ||
kubeConfig string | ||
development bool | ||
logger *zap.SugaredLogger | ||
) | ||
|
||
func init() { | ||
RootCmd.PersistentFlags().StringVar(&configFilePath, "config", "", "config file path") | ||
RootCmd.PersistentFlags().StringVar(&kubeConfig, "kubeconfig", "", "kubeconfig file path") | ||
RootCmd.PersistentFlags().BoolVar(&development, "development", false, "run in development mode") | ||
} | ||
|
||
var RootCmd = &cobra.Command{ | ||
Use: "sentryflow", | ||
Run: func(cmd *cobra.Command, args []string) { | ||
run() | ||
}, | ||
} | ||
|
||
func run() { | ||
initLogger(development) | ||
logBuildInfo() | ||
ctx := context.WithValue(ctrl.SetupSignalHandler(), util.LoggerCtxKey, logger) | ||
core.Run(ctx, configFilePath, kubeConfig) | ||
} | ||
|
||
func initLogger(development bool) { | ||
cfg := zap.NewProductionConfig() | ||
cfg.EncoderConfig.EncodeLevel = zapcore.CapitalLevelEncoder | ||
if development { | ||
cfg = zap.NewDevelopmentConfig() | ||
cfg.EncoderConfig.EncodeLevel = zapcore.CapitalColorLevelEncoder | ||
} | ||
cfg.EncoderConfig.TimeKey = "timestamp" | ||
cfg.EncoderConfig.EncodeTime = zapcore.ISO8601TimeEncoder | ||
coreLogger, _ := cfg.Build() | ||
logger = coreLogger.Sugar() | ||
} |
Oops, something went wrong.