From abe32de6b46825300f612864e6b4c98606a5bb0e Mon Sep 17 00:00:00 2001 From: Daniel Nephin Date: Tue, 3 Jan 2017 15:58:41 -0500 Subject: [PATCH] Trim quotes from TLS flags. Signed-off-by: Daniel Nephin --- cli/flags/common.go | 12 +++++++---- cli/flags/common_test.go | 42 +++++++++++++++++++++++++++++++++++++++ opts/quotedstring.go | 13 +++++++++--- opts/quotedstring_test.go | 10 +++++++--- 4 files changed, 67 insertions(+), 10 deletions(-) create mode 100644 cli/flags/common_test.go diff --git a/cli/flags/common.go b/cli/flags/common.go index 9d3245c99c..af2fe0603a 100644 --- a/cli/flags/common.go +++ b/cli/flags/common.go @@ -59,11 +59,15 @@ func (commonOpts *CommonOptions) InstallFlags(flags *pflag.FlagSet) { // TODO use flag flags.String("identity"}, "i", "", "Path to libtrust key file") - commonOpts.TLSOptions = &tlsconfig.Options{} + commonOpts.TLSOptions = &tlsconfig.Options{ + CAFile: filepath.Join(dockerCertPath, DefaultCaFile), + CertFile: filepath.Join(dockerCertPath, DefaultCertFile), + KeyFile: filepath.Join(dockerCertPath, DefaultKeyFile), + } tlsOptions := commonOpts.TLSOptions - flags.StringVar(&tlsOptions.CAFile, "tlscacert", filepath.Join(dockerCertPath, DefaultCaFile), "Trust certs signed only by this CA") - flags.StringVar(&tlsOptions.CertFile, "tlscert", filepath.Join(dockerCertPath, DefaultCertFile), "Path to TLS certificate file") - flags.StringVar(&tlsOptions.KeyFile, "tlskey", filepath.Join(dockerCertPath, DefaultKeyFile), "Path to TLS key file") + flags.Var(opts.NewQuotedString(&tlsOptions.CAFile), "tlscacert", "Trust certs signed only by this CA") + flags.Var(opts.NewQuotedString(&tlsOptions.CertFile), "tlscert", "Path to TLS certificate file") + flags.Var(opts.NewQuotedString(&tlsOptions.KeyFile), "tlskey", "Path to TLS key file") hostOpt := opts.NewNamedListOptsRef("hosts", &commonOpts.Hosts, opts.ValidateHost) flags.VarP(hostOpt, "host", "H", "Daemon socket(s) to connect to") diff --git a/cli/flags/common_test.go b/cli/flags/common_test.go new file mode 100644 index 0000000000..616d577f0b --- /dev/null +++ b/cli/flags/common_test.go @@ -0,0 +1,42 @@ +package flags + +import ( + "path/filepath" + "testing" + + cliconfig "github.com/docker/docker/cli/config" + "github.com/docker/docker/pkg/testutil/assert" + "github.com/spf13/pflag" +) + +func TestCommonOptionsInstallFlags(t *testing.T) { + flags := pflag.NewFlagSet("testing", pflag.ContinueOnError) + opts := NewCommonOptions() + opts.InstallFlags(flags) + + err := flags.Parse([]string{ + "--tlscacert=\"/foo/cafile\"", + "--tlscert=\"/foo/cert\"", + "--tlskey=\"/foo/key\"", + }) + assert.NilError(t, err) + assert.Equal(t, opts.TLSOptions.CAFile, "/foo/cafile") + assert.Equal(t, opts.TLSOptions.CertFile, "/foo/cert") + assert.Equal(t, opts.TLSOptions.KeyFile, "/foo/key") +} + +func defaultPath(filename string) string { + return filepath.Join(cliconfig.Dir(), filename) +} + +func TestCommonOptionsInstallFlagsWithDefaults(t *testing.T) { + flags := pflag.NewFlagSet("testing", pflag.ContinueOnError) + opts := NewCommonOptions() + opts.InstallFlags(flags) + + err := flags.Parse([]string{}) + assert.NilError(t, err) + assert.Equal(t, opts.TLSOptions.CAFile, defaultPath("ca.pem")) + assert.Equal(t, opts.TLSOptions.CertFile, defaultPath("cert.pem")) + assert.Equal(t, opts.TLSOptions.KeyFile, defaultPath("key.pem")) +} diff --git a/opts/quotedstring.go b/opts/quotedstring.go index 8ddeee8085..fb1e5374bc 100644 --- a/opts/quotedstring.go +++ b/opts/quotedstring.go @@ -2,11 +2,13 @@ package opts // QuotedString is a string that may have extra quotes around the value. The // quotes are stripped from the value. -type QuotedString string +type QuotedString struct { + value *string +} // Set sets a new value func (s *QuotedString) Set(val string) error { - *s = QuotedString(trimQuotes(val)) + *s.value = trimQuotes(val) return nil } @@ -16,7 +18,7 @@ func (s *QuotedString) Type() string { } func (s *QuotedString) String() string { - return string(*s) + return string(*s.value) } func trimQuotes(value string) string { @@ -28,3 +30,8 @@ func trimQuotes(value string) string { } return value } + +// NewQuotedString returns a new quoted string option +func NewQuotedString(value *string) *QuotedString { + return &QuotedString{value: value} +} diff --git a/opts/quotedstring_test.go b/opts/quotedstring_test.go index a508b9d210..0ebf04bbe0 100644 --- a/opts/quotedstring_test.go +++ b/opts/quotedstring_test.go @@ -6,19 +6,23 @@ import ( ) func TestQuotedStringSetWithQuotes(t *testing.T) { - qs := QuotedString("") + value := "" + qs := NewQuotedString(&value) assert.NilError(t, qs.Set("\"something\"")) assert.Equal(t, qs.String(), "something") + assert.Equal(t, value, "something") } func TestQuotedStringSetWithMismatchedQuotes(t *testing.T) { - qs := QuotedString("") + value := "" + qs := NewQuotedString(&value) assert.NilError(t, qs.Set("\"something'")) assert.Equal(t, qs.String(), "\"something'") } func TestQuotedStringSetWithNoQuotes(t *testing.T) { - qs := QuotedString("") + value := "" + qs := NewQuotedString(&value) assert.NilError(t, qs.Set("something")) assert.Equal(t, qs.String(), "something") }