avoid potential secret leaking while reading .dockercfg

droslean · droslean · commit b907f9e11892 · 2020-09-14T15:39:05.000+02:00
There are a lot of scenarios where an invalid .dockercfg file
will still contain secrets. This commit removes logging of the
contents to avoid any potential leaking and manages the actual error
by printing to the user the actual location of the invalid file.

Signed-off-by: Nikolaos Moraitis &lt;nmoraiti@redhat.com&gt;
diff --git a/pkg/credentialprovider/config.go b/pkg/credentialprovider/config.go
@@ -117,10 +117,14 @@ func ReadDockercfgFile(searchPaths []string) (cfg DockerConfig, err error) {
 			continue
 		}
 		cfg, err := readDockerConfigFileFromBytes(contents)
-		if err == nil {
-			klog.V(4).Infof("found .dockercfg at %s", absDockerConfigFileLocation)
-			return cfg, nil
+		if err != nil {
+			klog.V(4).Infof("couldn't get the config from %q contents: %v", absDockerConfigFileLocation, err)
+			continue
 		}
+
+		klog.V(4).Infof("found .dockercfg at %s", absDockerConfigFileLocation)
+		return cfg, nil
+
 	}
 	return nil, fmt.Errorf("couldn't find valid .dockercfg after checking in %v", searchPaths)
 }
@@ -230,17 +234,15 @@ func ReadDockerConfigFileFromURL(url string, client *http.Client, header *http.H
 
 func readDockerConfigFileFromBytes(contents []byte) (cfg DockerConfig, err error) {
 	if err = json.Unmarshal(contents, &cfg); err != nil {
-		klog.Errorf("while trying to parse blob %q: %v", contents, err)
-		return nil, err
+		return nil, errors.New("error occurred while trying to unmarshal json")
 	}
 	return
 }
 
 func readDockerConfigJSONFileFromBytes(contents []byte) (cfg DockerConfig, err error) {
 	var cfgJSON DockerConfigJSON
 	if err = json.Unmarshal(contents, &cfgJSON); err != nil {
-		klog.Errorf("while trying to parse blob %q: %v", contents, err)
-		return nil, err
+		return nil, errors.New("error occurred while trying to unmarshal json")
 	}
 	cfg = cfgJSON.Auths
 	return
diff --git a/pkg/credentialprovider/config_test.go b/pkg/credentialprovider/config_test.go
@@ -309,3 +309,96 @@ func TestDockerConfigEntryJSONCompatibleEncode(t *testing.T) {
 		}
 	}
 }
+
+func TestReadDockerConfigFileFromBytes(t *testing.T) {
+	testCases := []struct {
+		id               string
+		input            []byte
+		expectedCfg      DockerConfig
+		errorExpected    bool
+		expectedErrorMsg string
+	}{
+		{
+			id:    "valid input, no error expected",
+			input: []byte(`{"http://foo.example.com":{"username": "foo", "password": "bar", "email": "foo@example.com"}}`),
+			expectedCfg: DockerConfig(map[string]DockerConfigEntry{
+				"http://foo.example.com": {
+					Username: "foo",
+					Password: "bar",
+					Email:    "foo@example.com",
+				},
+			}),
+		},
+		{
+			id:               "invalid input, error expected",
+			input:            []byte(`{"http://foo.example.com":{"username": "foo", "password": "bar", "email": "foo@example.com"`),
+			errorExpected:    true,
+			expectedErrorMsg: "error occurred while trying to unmarshal json",
+		},
+	}
+
+	for _, tc := range testCases {
+		cfg, err := readDockerConfigFileFromBytes(tc.input)
+		if err != nil && !tc.errorExpected {
+			t.Fatalf("Error was not expected: %v", err)
+		}
+		if err != nil && tc.errorExpected {
+			if !reflect.DeepEqual(err.Error(), tc.expectedErrorMsg) {
+				t.Fatalf("Expected error message: `%s` got `%s`", tc.expectedErrorMsg, err.Error())
+			}
+		} else {
+			if !reflect.DeepEqual(cfg, tc.expectedCfg) {
+				t.Fatalf("expected: %v got %v", tc.expectedCfg, cfg)
+			}
+		}
+	}
+}
+
+func TestReadDockerConfigJSONFileFromBytes(t *testing.T) {
+	testCases := []struct {
+		id               string
+		input            []byte
+		expectedCfg      DockerConfig
+		errorExpected    bool
+		expectedErrorMsg string
+	}{
+		{
+			id:    "valid input, no error expected",
+			input: []byte(`{"auths": {"http://foo.example.com":{"username": "foo", "password": "bar", "email": "foo@example.com"}, "http://bar.example.com":{"username": "bar", "password": "baz", "email": "bar@example.com"}}}`),
+			expectedCfg: DockerConfig(map[string]DockerConfigEntry{
+				"http://foo.example.com": {
+					Username: "foo",
+					Password: "bar",
+					Email:    "foo@example.com",
+				},
+				"http://bar.example.com": {
+					Username: "bar",
+					Password: "baz",
+					Email:    "bar@example.com",
+				},
+			}),
+		},
+		{
+			id:               "invalid input, error expected",
+			input:            []byte(`{"auths": {"http://foo.example.com":{"username": "foo", "password": "bar", "email": "foo@example.com"}, "http://bar.example.com":{"username": "bar", "password": "baz", "email": "bar@example.com"`),
+			errorExpected:    true,
+			expectedErrorMsg: "error occurred while trying to unmarshal json",
+		},
+	}
+
+	for _, tc := range testCases {
+		cfg, err := readDockerConfigJSONFileFromBytes(tc.input)
+		if err != nil && !tc.errorExpected {
+			t.Fatalf("Error was not expected: %v", err)
+		}
+		if err != nil && tc.errorExpected {
+			if !reflect.DeepEqual(err.Error(), tc.expectedErrorMsg) {
+				t.Fatalf("Expected error message: `%s` got `%s`", tc.expectedErrorMsg, err.Error())
+			}
+		} else {
+			if !reflect.DeepEqual(cfg, tc.expectedCfg) {
+				t.Fatalf("expected: %v got %v", tc.expectedCfg, cfg)
+			}
+		}
+	}
+}

Original file line number	Diff line number	Diff line change
`@@ -117,10 +117,14 @@ func ReadDockercfgFile(searchPaths []string) (cfg DockerConfig, err error) {`
`117`	`117`	`continue`
`118`	`118`	`}`
`119`	`119`	`cfg, err := readDockerConfigFileFromBytes(contents)`
`120`		`- if err == nil {`
`121`		`- klog.V(4).Infof("found .dockercfg at %s", absDockerConfigFileLocation)`
`122`		`- return cfg, nil`
	`120`	`+ if err != nil {`
	`121`	`+ klog.V(4).Infof("couldn't get the config from %q contents: %v", absDockerConfigFileLocation, err)`
	`122`	`+ continue`
`123`	`123`	`}`
	`124`	`+`
	`125`	`+ klog.V(4).Infof("found .dockercfg at %s", absDockerConfigFileLocation)`
	`126`	`+ return cfg, nil`
	`127`	`+`
`124`	`128`	`}`
`125`	`129`	`return nil, fmt.Errorf("couldn't find valid .dockercfg after checking in %v", searchPaths)`
`126`	`130`	`}`
`@@ -230,17 +234,15 @@ func ReadDockerConfigFileFromURL(url string, client http.Client, header http.H`
`230`	`234`
`231`	`235`	`func readDockerConfigFileFromBytes(contents []byte) (cfg DockerConfig, err error) {`
`232`	`236`	`if err = json.Unmarshal(contents, &cfg); err != nil {`
`233`		`- klog.Errorf("while trying to parse blob %q: %v", contents, err)`
`234`		`- return nil, err`
	`237`	`+ return nil, errors.New("error occurred while trying to unmarshal json")`
`235`	`238`	`}`
`236`	`239`	`return`
`237`	`240`	`}`
`238`	`241`
`239`	`242`	`func readDockerConfigJSONFileFromBytes(contents []byte) (cfg DockerConfig, err error) {`
`240`	`243`	`var cfgJSON DockerConfigJSON`
`241`	`244`	`if err = json.Unmarshal(contents, &cfgJSON); err != nil {`
`242`		`- klog.Errorf("while trying to parse blob %q: %v", contents, err)`
`243`		`- return nil, err`
	`245`	`+ return nil, errors.New("error occurred while trying to unmarshal json")`
`244`	`246`	`}`
`245`	`247`	`cfg = cfgJSON.Auths`
`246`	`248`	`return`