getsops/sops
1
0
Fork 0
mirror of https://github.com/getsops/sops.git synced 2026-02-05 03:45:44 +01:00
Code Issues Activity

shamir_threshold is an integer.

Browse Source 
Signed-off-by: Felix Fontein <felix@fontein.de>
This commit is contained in:
Felix Fontein
2023-12-28 17:37:31 +01:00
parent 2a70c2476f
commit 56d765a46b
4 changed files with 53 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
stores/dotenv/store.go
View File

@@ -49,7 +49,10 @@ func (store *Store) LoadEncryptedFile(in []byte) (sops.Tree, error) {
}
stores.DecodeNewLines(mdMap)
stores.DecodeNonStrings(mdMap)
err = stores.DecodeNonStrings(mdMap)
if err != nil {
return sops.Tree{}, err
}
metadata, err := stores.UnflattenMetadata(mdMap)
if err != nil {
return sops.Tree{}, err

22
stores/flatten.go
View File

@@ -236,13 +236,28 @@ func EncodeNewLines(m map[string]interface{}) {
}
// DecodeNonStrings will look for known metadata keys that are not strings and decode to the appropriate type
func DecodeNonStrings(m map[string]interface{}) {
func DecodeNonStrings(m map[string]interface{}) error {
if v, ok := m["mac_only_encrypted"]; ok {
m["mac_only_encrypted"] = false
if v == "true" {
m["mac_only_encrypted"] = true
}
}
if v, ok := m["shamir_threshold"]; ok {
switch val := v.(type) {
case string:
vInt, err := strconv.Atoi(val)
if err != nil {
return fmt.Errorf("shamir_threshold is not an integer: %s", err.Error())
}
m["shamir_threshold"] = vInt
case int:
m["shamir_threshold"] = val
default:
return fmt.Errorf("shamir_threshold is neither a string nor an integer, but %T", val)
}
}
return nil
}
// EncodeNonStrings will look for known metadata keys that are not strings and will encode it to strings
@@ -255,4 +270,9 @@ func EncodeNonStrings(m map[string]interface{}) {
}
}
}
if v, found := m["shamir_threshold"]; found {
if vInt, ok := v.(int); ok {
m["shamir_threshold"] = fmt.Sprintf("%d", vInt)
}
}
}

25
stores/flatten_test.go
View File

@@ -222,14 +222,35 @@ func TestDecodeNonStrings(t *testing.T) {
{map[string]interface{}{"mac_only_encrypted": "false"}, map[string]interface{}{"mac_only_encrypted": false}},
{map[string]interface{}{"mac_only_encrypted": "true"}, map[string]interface{}{"mac_only_encrypted": true}},
{map[string]interface{}{"mac_only_encrypted": "something-else"}, map[string]interface{}{"mac_only_encrypted": false}},
{map[string]interface{}{"shamir_threshold": "2"}, map[string]interface{}{"shamir_threshold": 2}},
{map[string]interface{}{"shamir_threshold": "002"}, map[string]interface{}{"shamir_threshold": 2}},
{map[string]interface{}{"shamir_threshold": "123"}, map[string]interface{}{"shamir_threshold": 123}},
{map[string]interface{}{"shamir_threshold": 123}, map[string]interface{}{"shamir_threshold": 123}},
}
for _, tt := range tests {
DecodeNonStrings(tt.input)
err := DecodeNonStrings(tt.input)
assert.Nil(t, err)
assert.Equal(t, tt.want, tt.input)
}
}
func TestDecodeNonStringsErrors(t *testing.T) {
tests := []struct {
input map[string]interface{}
want string
}{
{map[string]interface{}{"shamir_threshold": "foo"}, "shamir_threshold is not an integer: strconv.Atoi: parsing \"foo\": invalid syntax"},
{map[string]interface{}{"shamir_threshold": true}, "shamir_threshold is neither a string nor an integer, but bool"},
}
for _, tt := range tests {
err := DecodeNonStrings(tt.input)
assert.NotNil(t, err)
assert.Equal(t, tt.want, err.Error())
}
}
func TestEncodeNonStrings(t *testing.T) {
tests := []struct {
input map[string]interface{}
@@ -237,6 +258,8 @@ func TestEncodeNonStrings(t *testing.T) {
}{
{map[string]interface{}{"mac_only_encrypted": false}, map[string]interface{}{"mac_only_encrypted": "false"}},
{map[string]interface{}{"mac_only_encrypted": true}, map[string]interface{}{"mac_only_encrypted": "true"}},
{map[string]interface{}{"shamir_threshold": 2}, map[string]interface{}{"shamir_threshold": "2"}},
{map[string]interface{}{"shamir_threshold": 123}, map[string]interface{}{"shamir_threshold": "123"}},
}
for _, tt := range tests {

5
stores/ini/store.go
View File

@@ -188,7 +188,10 @@ func (store *Store) iniSectionToMetadata(sopsSection *ini.Section) (stores.Metad
metadataHash[k] = v
}
stores.DecodeNewLines(metadataHash)
stores.DecodeNonStrings(metadataHash)
err := stores.DecodeNonStrings(metadataHash)
if err != nil {
return stores.Metadata{}, err
}
return stores.UnflattenMetadata(metadataHash)
}