Replace glog with klog

2018-12-05 13:27:55 -03:00 · 2018-12-05 13:27:55 -03:00 · 2fa55eabf6
commit 2fa55eabf6
parent f4a4daed84
33 changed files with 353 additions and 327 deletions
--- a/internal/net/dns/dns.go
+++ b/internal/net/dns/dns.go
@ -21,7 +21,7 @@ import (
 	"net"
 	"strings"

-	"github.com/golang/glog"
+	"k8s.io/klog"
 )

 var defResolvConf = "/etc/resolv.conf"
@ -53,6 +53,6 @@ func GetSystemNameServers() ([]net.IP, error) {
 		}
 	}

-	glog.V(3).Infof("nameservers IP address/es to use: %v", nameservers)
+	klog.V(3).Infof("nameservers IP address/es to use: %v", nameservers)
 	return nameservers, nil
 }
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@ -32,7 +32,7 @@ import (
 	"strconv"
 	"time"

-	"github.com/golang/glog"
+	"k8s.io/klog"
 	"github.com/zakjan/cert-chain-resolver/certUtil"

 	"k8s.io/apimachinery/pkg/util/sets"
@ -56,7 +56,7 @@ func AddOrUpdateCertAndKey(name string, cert, key, ca []byte,
 	if err != nil {
 		return nil, fmt.Errorf("could not create temp pem file %v: %v", pemFileName, err)
 	}
-	glog.V(3).Infof("Creating temp file %v for Keypair: %v", tempPemFile.Name(), pemName)
+	klog.V(3).Infof("Creating temp file %v for Keypair: %v", tempPemFile.Name(), pemName)

 	_, err = tempPemFile.Write(cert)
 	if err != nil {
@ -110,11 +110,11 @@ func AddOrUpdateCertAndKey(name string, cert, key, ca []byte,
 	}

 	if len(pemCert.Extensions) > 0 {
-		glog.V(3).Info("parsing ssl certificate extensions")
+		klog.V(3).Info("parsing ssl certificate extensions")
 		for _, ext := range getExtension(pemCert, oidExtensionSubjectAltName) {
 			dns, _, _, err := parseSANExtension(ext.Value)
 			if err != nil {
-				glog.Warningf("unexpected error parsing certificate extensions: %v", err)
+				klog.Warningf("unexpected error parsing certificate extensions: %v", err)
 				continue
 			}

@ -224,11 +224,11 @@ func CreateSSLCert(name string, cert, key, ca []byte) (*ingress.SSLCert, error)
 	}

 	if len(pemCert.Extensions) > 0 {
-		glog.V(3).Info("parsing ssl certificate extensions")
+		klog.V(3).Info("parsing ssl certificate extensions")
 		for _, ext := range getExtension(pemCert, oidExtensionSubjectAltName) {
 			dns, _, _, err := parseSANExtension(ext.Value)
 			if err != nil {
-				glog.Warningf("unexpected error parsing certificate extensions: %v", err)
+				klog.Warningf("unexpected error parsing certificate extensions: %v", err)
 				continue
 			}

@ -366,7 +366,7 @@ func AddCertAuth(name string, ca []byte, fs file.Filesystem) (*ingress.SSLCert,
 		return nil, fmt.Errorf("could not write CA file %v: %v", caFileName, err)
 	}

-	glog.V(3).Infof("Created CA Certificate for Authentication: %v", caFileName)
+	klog.V(3).Infof("Created CA Certificate for Authentication: %v", caFileName)
 	return &ingress.SSLCert{
 		Certificate: pemCert,
 		CAFileName:  caFileName,
@ -382,7 +382,7 @@ func AddOrUpdateDHParam(name string, dh []byte, fs file.Filesystem) (string, err

 	tempPemFile, err := fs.TempFile(file.DefaultSSLDirectory, pemName)

-	glog.V(3).Infof("Creating temp file %v for DH param: %v", tempPemFile.Name(), pemName)
+	klog.V(3).Infof("Creating temp file %v for DH param: %v", tempPemFile.Name(), pemName)
 	if err != nil {
 		return "", fmt.Errorf("could not create temp pem file %v: %v", pemFileName, err)
 	}
@ -432,7 +432,7 @@ func GetFakeSSLCert() ([]byte, []byte) {
 	priv, err = rsa.GenerateKey(rand.Reader, 2048)

 	if err != nil {
-		glog.Fatalf("failed to generate fake private key: %s", err)
+		klog.Fatalf("failed to generate fake private key: %s", err)
 	}

 	notBefore := time.Now()
@ -443,7 +443,7 @@ func GetFakeSSLCert() ([]byte, []byte) {
 	serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)

 	if err != nil {
-		glog.Fatalf("failed to generate fake serial number: %s", err)
+		klog.Fatalf("failed to generate fake serial number: %s", err)
 	}

 	template := x509.Certificate{
@ -462,7 +462,7 @@ func GetFakeSSLCert() ([]byte, []byte) {
 	}
 	derBytes, err := x509.CreateCertificate(rand.Reader, &template, &template, &priv.(*rsa.PrivateKey).PublicKey, priv)
 	if err != nil {
-		glog.Fatalf("Failed to create fake certificate: %s", err)
+		klog.Fatalf("Failed to create fake certificate: %s", err)
 	}

 	cert := pem.EncodeToMemory(&pem.Block{Type: "CERTIFICATE", Bytes: derBytes})
--- a/internal/net/ssl/ssl_test.go
+++ b/internal/net/ssl/ssl_test.go
@ -18,20 +18,20 @@ package ssl

 import (
 	"bytes"
+	"crypto/rsa"
 	"crypto/x509"
 	"fmt"
 	"testing"
 	"time"

 	certutil "k8s.io/client-go/util/cert"
-	"k8s.io/client-go/util/cert/triple"

 	"k8s.io/ingress-nginx/internal/file"
 )

 // generateRSACerts generates a self signed certificate using a self generated ca
-func generateRSACerts(host string) (*triple.KeyPair, *triple.KeyPair, error) {
-	ca, err := triple.NewCA("self-sign-ca")
+func generateRSACerts(host string) (*keyPair, *keyPair, error) {
+	ca, err := newCA("self-sign-ca")
 	if err != nil {
 		return nil, nil, err
 	}
@ -50,7 +50,7 @@ func generateRSACerts(host string) (*triple.KeyPair, *triple.KeyPair, error) {
 		return nil, nil, fmt.Errorf("unable to sign the server certificate: %v", err)
 	}

-	return &triple.KeyPair{
+	return &keyPair{
 		Key:  key,
 		Cert: cert,
 	}, ca, nil
@ -182,3 +182,26 @@ func TestCreateSSLCert(t *testing.T) {
 		t.Fatalf("expected cname echoheaders but %v returned", ngxCert.CN[0])
 	}
 }
+
+type keyPair struct {
+	Key  *rsa.PrivateKey
+	Cert *x509.Certificate
+}
+
+func newCA(name string) (*keyPair, error) {
+	key, err := certutil.NewPrivateKey()
+	if err != nil {
+		return nil, fmt.Errorf("unable to create a private key for a new CA: %v", err)
+	}
+	config := certutil.Config{
+		CommonName: name,
+	}
+	cert, err := certutil.NewSelfSignedCACert(config, key)
+	if err != nil {
+		return nil, fmt.Errorf("unable to create a self-signed certificate for a new CA: %v", err)
+	}
+	return &keyPair{
+		Key:  key,
+		Cert: cert,
+	}, nil
+}