integration/plugin/common/plugin_test.go - third_party/github.com/moby/moby - Git at Google

 package common // import "github.com/docker/docker/integration/plugin/common"

 import (
 	"context"
 	"encoding/base64"
 	"encoding/json"
 	"io"
 	"io/ioutil"
 	"net"
 	"net/http"
 	"path"
 	"strings"
 	"testing"

 	"github.com/docker/docker/api/types"
 	"github.com/docker/docker/testutil/daemon"
 	"github.com/docker/docker/testutil/fixtures/plugin"
 	"github.com/docker/docker/testutil/registry"
 	"github.com/docker/docker/testutil/request"
 	"gotest.tools/v3/assert"
 	is "gotest.tools/v3/assert/cmp"
 	"gotest.tools/v3/skip"
 )

 func TestPluginInvalidJSON(t *testing.T) {
 	defer setupTest(t)()

 	endpoints := []string{"/plugins/foobar/set"}

 	for _, ep := range endpoints {
 		t.Run(ep, func(t *testing.T) {
 			t.Parallel()

 			res, body, err := request.Post(ep, request.RawString("{invalid json"), request.JSON)
 			assert.NilError(t, err)
 			assert.Equal(t, res.StatusCode, http.StatusBadRequest)

 			buf, err := request.ReadBody(body)
 			assert.NilError(t, err)
 			assert.Check(t, is.Contains(string(buf), "invalid character 'i' looking for beginning of object key string"))

 			res, body, err = request.Post(ep, request.JSON)
 			assert.NilError(t, err)
 			assert.Equal(t, res.StatusCode, http.StatusBadRequest)

 			buf, err = request.ReadBody(body)
 			assert.NilError(t, err)
 			assert.Check(t, is.Contains(string(buf), "got EOF while reading request body"))
 		})
 	}
 }

 func TestPluginInstall(t *testing.T) {
 	skip.If(t, testEnv.IsRemoteDaemon, "cannot run daemon when remote daemon")
 	skip.If(t, testEnv.OSType == "windows")
 	skip.If(t, testEnv.IsRootless, "rootless mode has different view of localhost")

 	ctx := context.Background()
 	client := testEnv.APIClient()

 	t.Run("no auth", func(t *testing.T) {
 		defer setupTest(t)()

 		reg := registry.NewV2(t)
 		defer reg.Close()

 		name := "test-" + strings.ToLower(t.Name())
 		repo := path.Join(registry.DefaultURL, name+":latest")
 		assert.NilError(t, plugin.CreateInRegistry(ctx, repo, nil))

 		rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{Disabled: true, RemoteRef: repo})
 		assert.NilError(t, err)
 		defer rdr.Close()

 		_, err = io.Copy(ioutil.Discard, rdr)
 		assert.NilError(t, err)

 		_, _, err = client.PluginInspectWithRaw(ctx, repo)
 		assert.NilError(t, err)
 	})

 	t.Run("with htpasswd", func(t *testing.T) {
 		defer setupTest(t)()

 		reg := registry.NewV2(t, registry.Htpasswd)
 		defer reg.Close()

 		name := "test-" + strings.ToLower(t.Name())
 		repo := path.Join(registry.DefaultURL, name+":latest")
 		auth := &types.AuthConfig{ServerAddress: registry.DefaultURL, Username: "testuser", Password: "testpassword"}
 		assert.NilError(t, plugin.CreateInRegistry(ctx, repo, auth))

 		authEncoded, err := json.Marshal(auth)
 		assert.NilError(t, err)

 		rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{
 			RegistryAuth: base64.URLEncoding.EncodeToString(authEncoded),
 			Disabled:     true,
 			RemoteRef:    repo,
 		})
 		assert.NilError(t, err)
 		defer rdr.Close()

 		_, err = io.Copy(ioutil.Discard, rdr)
 		assert.NilError(t, err)

 		_, _, err = client.PluginInspectWithRaw(ctx, repo)
 		assert.NilError(t, err)
 	})
 	t.Run("with insecure", func(t *testing.T) {
 		skip.If(t, !testEnv.IsLocalDaemon())

 		addrs, err := net.InterfaceAddrs()
 		assert.NilError(t, err)

 		var bindTo string
 		for _, addr := range addrs {
 			ip, ok := addr.(*net.IPNet)
 			if !ok {
 				continue
 			}
 			if ip.IP.IsLoopback() || ip.IP.To4() == nil {
 				continue
 			}
 			bindTo = ip.IP.String()
 		}

 		if bindTo == "" {
 			t.Skip("No suitable interface to bind registry to")
 		}

 		regURL := bindTo + ":5000"

 		d := daemon.New(t)
 		defer d.Stop(t)

 		d.Start(t, "--insecure-registry="+regURL)
 		defer d.Stop(t)

 		reg := registry.NewV2(t, registry.URL(regURL))
 		defer reg.Close()

 		name := "test-" + strings.ToLower(t.Name())
 		repo := path.Join(regURL, name+":latest")
 		assert.NilError(t, plugin.CreateInRegistry(ctx, repo, nil, plugin.WithInsecureRegistry(regURL)))

 		client := d.NewClientT(t)
 		rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{Disabled: true, RemoteRef: repo})
 		assert.NilError(t, err)
 		defer rdr.Close()

 		_, err = io.Copy(ioutil.Discard, rdr)
 		assert.NilError(t, err)

 		_, _, err = client.PluginInspectWithRaw(ctx, repo)
 		assert.NilError(t, err)
 	})
 	// TODO: test insecure registry with https
 }
	package common // import "github.com/docker/docker/integration/plugin/common"

	import (
	"context"
	"encoding/base64"
	"encoding/json"
	"io"
	"io/ioutil"
	"net"
	"net/http"
	"path"
	"strings"
	"testing"

	"github.com/docker/docker/api/types"
	"github.com/docker/docker/testutil/daemon"
	"github.com/docker/docker/testutil/fixtures/plugin"
	"github.com/docker/docker/testutil/registry"
	"github.com/docker/docker/testutil/request"
	"gotest.tools/v3/assert"
	is "gotest.tools/v3/assert/cmp"
	"gotest.tools/v3/skip"
	)

	func TestPluginInvalidJSON(t *testing.T) {
	defer setupTest(t)()

	endpoints := []string{"/plugins/foobar/set"}

	for _, ep := range endpoints {
	t.Run(ep, func(t *testing.T) {
	t.Parallel()

	res, body, err := request.Post(ep, request.RawString("{invalid json"), request.JSON)
	assert.NilError(t, err)
	assert.Equal(t, res.StatusCode, http.StatusBadRequest)

	buf, err := request.ReadBody(body)
	assert.NilError(t, err)
	assert.Check(t, is.Contains(string(buf), "invalid character 'i' looking for beginning of object key string"))

	res, body, err = request.Post(ep, request.JSON)
	assert.NilError(t, err)
	assert.Equal(t, res.StatusCode, http.StatusBadRequest)

	buf, err = request.ReadBody(body)
	assert.NilError(t, err)
	assert.Check(t, is.Contains(string(buf), "got EOF while reading request body"))
	})
	}
	}

	func TestPluginInstall(t *testing.T) {
	skip.If(t, testEnv.IsRemoteDaemon, "cannot run daemon when remote daemon")
	skip.If(t, testEnv.OSType == "windows")
	skip.If(t, testEnv.IsRootless, "rootless mode has different view of localhost")

	ctx := context.Background()
	client := testEnv.APIClient()

	t.Run("no auth", func(t *testing.T) {
	defer setupTest(t)()

	reg := registry.NewV2(t)
	defer reg.Close()

	name := "test-" + strings.ToLower(t.Name())
	repo := path.Join(registry.DefaultURL, name+":latest")
	assert.NilError(t, plugin.CreateInRegistry(ctx, repo, nil))

	rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{Disabled: true, RemoteRef: repo})
	assert.NilError(t, err)
	defer rdr.Close()

	_, err = io.Copy(ioutil.Discard, rdr)
	assert.NilError(t, err)

	_, _, err = client.PluginInspectWithRaw(ctx, repo)
	assert.NilError(t, err)
	})

	t.Run("with htpasswd", func(t *testing.T) {
	defer setupTest(t)()

	reg := registry.NewV2(t, registry.Htpasswd)
	defer reg.Close()

	name := "test-" + strings.ToLower(t.Name())
	repo := path.Join(registry.DefaultURL, name+":latest")
	auth := &types.AuthConfig{ServerAddress: registry.DefaultURL, Username: "testuser", Password: "testpassword"}
	assert.NilError(t, plugin.CreateInRegistry(ctx, repo, auth))

	authEncoded, err := json.Marshal(auth)
	assert.NilError(t, err)

	rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{
	RegistryAuth: base64.URLEncoding.EncodeToString(authEncoded),
	Disabled: true,
	RemoteRef: repo,
	})
	assert.NilError(t, err)
	defer rdr.Close()

	_, err = io.Copy(ioutil.Discard, rdr)
	assert.NilError(t, err)

	_, _, err = client.PluginInspectWithRaw(ctx, repo)
	assert.NilError(t, err)
	})
	t.Run("with insecure", func(t *testing.T) {
	skip.If(t, !testEnv.IsLocalDaemon())

	addrs, err := net.InterfaceAddrs()
	assert.NilError(t, err)

	var bindTo string
	for _, addr := range addrs {
	ip, ok := addr.(*net.IPNet)
	if !ok {
	continue
	}
	if ip.IP.IsLoopback() \|\| ip.IP.To4() == nil {
	continue
	}
	bindTo = ip.IP.String()
	}

	if bindTo == "" {
	t.Skip("No suitable interface to bind registry to")
	}

	regURL := bindTo + ":5000"

	d := daemon.New(t)
	defer d.Stop(t)

	d.Start(t, "--insecure-registry="+regURL)
	defer d.Stop(t)

	reg := registry.NewV2(t, registry.URL(regURL))
	defer reg.Close()

	name := "test-" + strings.ToLower(t.Name())
	repo := path.Join(regURL, name+":latest")
	assert.NilError(t, plugin.CreateInRegistry(ctx, repo, nil, plugin.WithInsecureRegistry(regURL)))

	client := d.NewClientT(t)
	rdr, err := client.PluginInstall(ctx, repo, types.PluginInstallOptions{Disabled: true, RemoteRef: repo})
	assert.NilError(t, err)
	defer rdr.Close()

	_, err = io.Copy(ioutil.Discard, rdr)
	assert.NilError(t, err)

	_, _, err = client.PluginInspectWithRaw(ctx, repo)
	assert.NilError(t, err)
	})
	// TODO: test insecure registry with https
	}