DockerCLI/cli/command/trust/key_generate_test.go

package trust

import (
	"encoding/pem"
	"fmt"
	"io/ioutil"
	"os"
	"path/filepath"
	"testing"

	"github.com/docker/cli/cli/config"
	"github.com/docker/cli/internal/test"
	"github.com/theupdateframework/notary"
	"github.com/theupdateframework/notary/passphrase"
	"github.com/theupdateframework/notary/trustmanager"
	tufutils "github.com/theupdateframework/notary/tuf/utils"
	"gotest.tools/v3/assert"
	is "gotest.tools/v3/assert/cmp"
)

func TestTrustKeyGenerateErrors(t *testing.T) {
	testCases := []struct {
		name          string
		args          []string
		expectedError string
	}{
		{
			name:          "not-enough-args",
			expectedError: "requires exactly 1 argument",
		},
		{
			name:          "too-many-args",
			args:          []string{"key-1", "key-2"},
			expectedError: "requires exactly 1 argument",
		},
	}

	tmpDir, err := ioutil.TempDir("", "docker-key-generate-test-")
	assert.NilError(t, err)
	defer os.RemoveAll(tmpDir)
	config.SetDir(tmpDir)

	for _, tc := range testCases {
		cli := test.NewFakeCli(&fakeClient{})
		cmd := newKeyGenerateCommand(cli)
		cmd.SetArgs(tc.args)
		cmd.SetOutput(ioutil.Discard)
		assert.ErrorContains(t, cmd.Execute(), tc.expectedError)
	}
}

func TestGenerateKeySuccess(t *testing.T) {
	pubKeyCWD, err := ioutil.TempDir("", "pub-keys-")
	assert.NilError(t, err)
	defer os.RemoveAll(pubKeyCWD)

	privKeyStorageDir, err := ioutil.TempDir("", "priv-keys-")
	assert.NilError(t, err)
	defer os.RemoveAll(privKeyStorageDir)

	passwd := "password"
	cannedPasswordRetriever := passphrase.ConstantRetriever(passwd)
	// generate a single key
	keyName := "alice"
	privKeyFileStore, err := trustmanager.NewKeyFileStore(privKeyStorageDir, cannedPasswordRetriever)
	assert.NilError(t, err)

	pubKeyPEM, err := generateKeyAndOutputPubPEM(keyName, privKeyFileStore)
	assert.NilError(t, err)

	assert.Check(t, is.Equal(keyName, pubKeyPEM.Headers["role"]))
	// the default GUN is empty
	assert.Check(t, is.Equal("", pubKeyPEM.Headers["gun"]))
	// assert public key header
	assert.Check(t, is.Equal("PUBLIC KEY", pubKeyPEM.Type))

	// check that an appropriate ~/<trust_dir>/private/<key_id>.key file exists
	expectedPrivKeyDir := filepath.Join(privKeyStorageDir, notary.PrivDir)
	_, err = os.Stat(expectedPrivKeyDir)
	assert.NilError(t, err)

	keyFiles, err := ioutil.ReadDir(expectedPrivKeyDir)
	assert.NilError(t, err)
	assert.Check(t, is.Len(keyFiles, 1))
	privKeyFilePath := filepath.Join(expectedPrivKeyDir, keyFiles[0].Name())

	// verify the key content
	privFrom, _ := os.OpenFile(privKeyFilePath, os.O_RDONLY, notary.PrivExecPerms)
	defer privFrom.Close()
	fromBytes, _ := ioutil.ReadAll(privFrom)
	privKeyPEM, _ := pem.Decode(fromBytes)
	assert.Check(t, is.Equal(keyName, privKeyPEM.Headers["role"]))
	// the default GUN is empty
	assert.Check(t, is.Equal("", privKeyPEM.Headers["gun"]))
	// assert encrypted header
	assert.Check(t, is.Equal("ENCRYPTED PRIVATE KEY", privKeyPEM.Type))
	// check that the passphrase matches
	_, err = tufutils.ParsePKCS8ToTufKey(privKeyPEM.Bytes, []byte(passwd))
	assert.NilError(t, err)

	// check that the public key exists at the correct path if we use the helper:
	returnedPath, err := writePubKeyPEMToDir(pubKeyPEM, keyName, pubKeyCWD)
	assert.NilError(t, err)
	expectedPubKeyPath := filepath.Join(pubKeyCWD, keyName+".pub")
	assert.Check(t, is.Equal(returnedPath, expectedPubKeyPath))
	_, err = os.Stat(expectedPubKeyPath)
	assert.NilError(t, err)
	// check that the public key is the only file output in CWD
	cwdKeyFiles, err := ioutil.ReadDir(pubKeyCWD)
	assert.NilError(t, err)
	assert.Check(t, is.Len(cwdKeyFiles, 1))
}

func TestValidateKeyArgs(t *testing.T) {
	pubKeyCWD, err := ioutil.TempDir("", "pub-keys-")
	assert.NilError(t, err)
	defer os.RemoveAll(pubKeyCWD)

	err = validateKeyArgs("a", pubKeyCWD)
	assert.NilError(t, err)

	err = validateKeyArgs("a/b", pubKeyCWD)
	assert.Error(t, err, "key name \"a/b\" must start with lowercase alphanumeric characters and can include \"-\" or \"_\" after the first character")

	err = validateKeyArgs("-", pubKeyCWD)
	assert.Error(t, err, "key name \"-\" must start with lowercase alphanumeric characters and can include \"-\" or \"_\" after the first character")

	assert.NilError(t, ioutil.WriteFile(filepath.Join(pubKeyCWD, "a.pub"), []byte("abc"), notary.PrivExecPerms))
	err = validateKeyArgs("a", pubKeyCWD)
	assert.Error(t, err, fmt.Sprintf("public key file already exists: \"%s\"", filepath.Join(pubKeyCWD, "a.pub")))

	err = validateKeyArgs("a", "/random/dir/")
	assert.Error(t, err, "public key path does not exist: \"/random/dir/\"")
}
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`package trust`

			`import (`
			`"encoding/pem"`
review feedback: updating for windows, error paths Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-25 13:45:10 -04:00			`"fmt"`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`"io/ioutil"`
			`"os"`
			`"path/filepath"`
			`"testing"`

			`"github.com/docker/cli/cli/config"`
			`"github.com/docker/cli/internal/test"`
Move notary to its new location The https://github.com/docker/notary repository has moved to https://github.com/theupdateframework/notary Signed-off-by: Sebastiaan van Stijn <github@gone.nl> 2017-10-30 12:21:41 -04:00			`"github.com/theupdateframework/notary"`
			`"github.com/theupdateframework/notary/passphrase"`
			`"github.com/theupdateframework/notary/trustmanager"`
			`tufutils "github.com/theupdateframework/notary/tuf/utils"`
bump gotest.tools v3.0.1 for compatibility with Go 1.14 full diff: https://github.com/gotestyourself/gotest.tools/compare/v2.3.0...v3.0.1 Signed-off-by: Sebastiaan van Stijn <github@gone.nl> 2020-02-22 12:12:14 -05:00			`"gotest.tools/v3/assert"`
			`is "gotest.tools/v3/assert/cmp"`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`)`

			`func TestTrustKeyGenerateErrors(t *testing.T) {`
			`testCases := []struct {`
			`name string`
			`args []string`
			`expectedError string`
			`}{`
			`{`
			`name: "not-enough-args",`
docs: add docs for new trust subcommands Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 14:46:38 -04:00			`expectedError: "requires exactly 1 argument",`
			`},`
			`{`
			`name: "too-many-args",`
			`args: []string{"key-1", "key-2"},`
			`expectedError: "requires exactly 1 argument",`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`},`
			`}`
docs: add docs for new trust subcommands Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 14:46:38 -04:00
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`tmpDir, err := ioutil.TempDir("", "docker-key-generate-test-")`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`defer os.RemoveAll(tmpDir)`
			`config.SetDir(tmpDir)`

			`for _, tc := range testCases {`
			`cli := test.NewFakeCli(&fakeClient{})`
			`cmd := newKeyGenerateCommand(cli)`
			`cmd.SetArgs(tc.args)`
			`cmd.SetOutput(ioutil.Discard)`
Remove testutil Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:03:47 -05:00			`assert.ErrorContains(t, cmd.Execute(), tc.expectedError)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`}`
			`}`

			`func TestGenerateKeySuccess(t *testing.T) {`
			`pubKeyCWD, err := ioutil.TempDir("", "pub-keys-")`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`defer os.RemoveAll(pubKeyCWD)`

			`privKeyStorageDir, err := ioutil.TempDir("", "priv-keys-")`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`defer os.RemoveAll(privKeyStorageDir)`

			`passwd := "password"`
			`cannedPasswordRetriever := passphrase.ConstantRetriever(passwd)`
			`// generate a single key`
			`keyName := "alice"`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00			`privKeyFileStore, err := trustmanager.NewKeyFileStore(privKeyStorageDir, cannedPasswordRetriever)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00
			`pubKeyPEM, err := generateKeyAndOutputPubPEM(keyName, privKeyFileStore)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Equal(keyName, pubKeyPEM.Headers["role"]))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`// the default GUN is empty`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Equal("", pubKeyPEM.Headers["gun"]))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`// assert public key header`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Equal("PUBLIC KEY", pubKeyPEM.Type))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00
			`// check that an appropriate ~/<trust_dir>/private/<key_id>.key file exists`
			`expectedPrivKeyDir := filepath.Join(privKeyStorageDir, notary.PrivDir)`
			`_, err = os.Stat(expectedPrivKeyDir)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00
			`keyFiles, err := ioutil.ReadDir(expectedPrivKeyDir)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Len(keyFiles, 1))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`privKeyFilePath := filepath.Join(expectedPrivKeyDir, keyFiles[0].Name())`

			`// verify the key content`
			`privFrom, _ := os.OpenFile(privKeyFilePath, os.O_RDONLY, notary.PrivExecPerms)`
			`defer privFrom.Close()`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00			`fromBytes, _ := ioutil.ReadAll(privFrom)`
			`privKeyPEM, _ := pem.Decode(fromBytes)`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Equal(keyName, privKeyPEM.Headers["role"]))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`// the default GUN is empty`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Equal("", privKeyPEM.Headers["gun"]))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`// assert encrypted header`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Equal("ENCRYPTED PRIVATE KEY", privKeyPEM.Type))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`// check that the passphrase matches`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00			`_, err = tufutils.ParsePKCS8ToTufKey(privKeyPEM.Bytes, []byte(passwd))`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00
			`// check that the public key exists at the correct path if we use the helper:`
			`returnedPath, err := writePubKeyPEMToDir(pubKeyPEM, keyName, pubKeyCWD)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00			`expectedPubKeyPath := filepath.Join(pubKeyCWD, keyName+".pub")`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Equal(returnedPath, expectedPubKeyPath))`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00			`_, err = os.Stat(expectedPubKeyPath)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
refactoring and adding tests for EC key types Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-10 13:16:01 -04:00			`// check that the public key is the only file output in CWD`
			`cwdKeyFiles, err := ioutil.ReadDir(pubKeyCWD)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
Automated migration Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-05 18:53:52 -05:00			`assert.Check(t, is.Len(cwdKeyFiles, 1))`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`}`

			`func TestValidateKeyArgs(t *testing.T) {`
			`pubKeyCWD, err := ioutil.TempDir("", "pub-keys-")`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`defer os.RemoveAll(pubKeyCWD)`

docs: add docs for new trust subcommands Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 14:46:38 -04:00			`err = validateKeyArgs("a", pubKeyCWD)`
Convert to assert.NilError Using: git grep -l '^\s\+assert\.Check(t, err)$' \| \ xargs sed -i -e 's/^\(\s\+assert\)\.Check(t, err)$/\1.NilError(t, err)/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 14:44:13 -05:00			`assert.NilError(t, err)`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00
docs: add docs for new trust subcommands Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 14:46:38 -04:00			`err = validateKeyArgs("a/b", pubKeyCWD)`
Post migration fixes Fix tests that failed when using cmp.Compare() internal/test/testutil/assert InDelta Fix DeepEqual with kube metav1.Time Convert some ErrorContains to assert Signed-off-by: Daniel Nephin <dnephin@docker.com> 2017-12-21 16:27:57 -05:00			`assert.Error(t, err, "key name \"a/b\" must start with lowercase alphanumeric characters and can include \"-\" or \"_\" after the first character")`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00
docs: add docs for new trust subcommands Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 14:46:38 -04:00			`err = validateKeyArgs("-", pubKeyCWD)`
Post migration fixes Fix tests that failed when using cmp.Compare() internal/test/testutil/assert InDelta Fix DeepEqual with kube metav1.Time Convert some ErrorContains to assert Signed-off-by: Daniel Nephin <dnephin@docker.com> 2017-12-21 16:27:57 -05:00			`assert.Error(t, err, "key name \"-\" must start with lowercase alphanumeric characters and can include \"-\" or \"_\" after the first character")`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00
Convert assert.Check with git grep -l -P '^\s+assert\.Check\(t, ' \| \ xargs perl -pi -e 's/^(\s+assert)\.Check(\(t, (?!is).(\.Execute\(\|\.Set\(\|\.Write\(\|\.Close\(\|\.Untar\(\|\.WriteFile\(\|Validate\().\)$)/\1.NilError\2/' Signed-off-by: Daniel Nephin <dnephin@docker.com> 2018-03-06 15:13:00 -05:00			`assert.NilError(t, ioutil.WriteFile(filepath.Join(pubKeyCWD, "a.pub"), []byte("abc"), notary.PrivExecPerms))`
docs: add docs for new trust subcommands Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 14:46:38 -04:00			`err = validateKeyArgs("a", pubKeyCWD)`
Fixes some unit tests to be able to run them on windows Some of them are skipped for now (because the feature is not supported or needs more work), some of them are fixed. Signed-off-by: Vincent Demeester <vincent@sbr.pm> 2018-02-27 10:54:36 -05:00			`assert.Error(t, err, fmt.Sprintf("public key file already exists: \"%s\"", filepath.Join(pubKeyCWD, "a.pub")))`
review feedback: updating for windows, error paths Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-10-25 13:45:10 -04:00
			`err = validateKeyArgs("a", "/random/dir/")`
Post migration fixes Fix tests that failed when using cmp.Compare() internal/test/testutil/assert InDelta Fix DeepEqual with kube metav1.Time Convert some ErrorContains to assert Signed-off-by: Daniel Nephin <dnephin@docker.com> 2017-12-21 16:27:57 -05:00			`assert.Error(t, err, "public key path does not exist: \"/random/dir/\"")`
trust: key-load and key-generate code Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com> 2017-09-26 20:16:18 -04:00			`}`