cloudfoundry-incubator
diff --git a/‎jobs/docker/spec‎
Lines changed: 18 additions & 1 deletion b/‎jobs/docker/spec‎
Lines changed: 18 additions & 1 deletion
diff --git a/‎jobs/docker/templates/bin/ctl‎
Lines changed: 3 additions & 0 deletions b/‎jobs/docker/templates/bin/ctl‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎jobs/docker/templates/config/docker_registry_certs.erb‎
Lines changed: 18 additions & 0 deletions b/‎jobs/docker/templates/config/docker_registry_certs.erb‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎jobs/sanity-tests/templates/bin/run‎
Lines changed: 2 additions & 2 deletions b/‎jobs/sanity-tests/templates/bin/run‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎packages/docker-registry-certs/packaging‎
Lines changed: 15 additions & 0 deletions b/‎packages/docker-registry-certs/packaging‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎packages/docker-registry-certs/spec‎
Lines changed: 7 additions & 0 deletions b/‎packages/docker-registry-certs/spec‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎packages/sanity-tests/packaging‎
Lines changed: 6 additions & 2 deletions b/‎packages/sanity-tests/packaging‎
Lines changed: 6 additions & 2 deletions
diff --git a/‎packages/sanity-tests/spec‎
Lines changed: 2 additions & 1 deletion b/‎packages/sanity-tests/spec‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎src/tests/Gopkg.lock‎ ‎src/go-src/Gopkg.lock‎src/tests/Gopkg.lock renamed to src/go-src/Gopkg.lock
Lines changed: 22 additions & 95 deletions b/‎src/tests/Gopkg.lock‎ ‎src/go-src/Gopkg.lock‎src/tests/Gopkg.lock renamed to src/go-src/Gopkg.lock
Lines changed: 22 additions & 95 deletions
diff --git a/‎src/tests/Gopkg.toml‎ ‎src/go-src/Gopkg.toml‎src/tests/Gopkg.toml renamed to src/go-src/Gopkg.toml b/‎src/tests/Gopkg.toml‎ ‎src/go-src/Gopkg.toml‎src/tests/Gopkg.toml renamed to src/go-src/Gopkg.toml
@@ -5,6 +5,7 @@ packages:
   - bosh-helpers
   - docker
   - ctop
+  - docker-registry-certs
 
 templates:
   bin/cgroupfs-mount: bin/cgroupfs-mount
@@ -15,6 +16,7 @@ templates:
   config/docker.cacert.erb: config/docker.cacert
   config/docker.cert.erb: config/docker.cert
   config/docker.key.erb: config/docker.key
+  config/docker_registry_certs.erb: config/docker_registry_certs
 
 provides:
 - name: docker
@@ -123,7 +125,22 @@ properties:
     description: "Enable flannel support"
     default: false
 
-
+  registry_ca_cert:
+    description: |
+      Array of domain names and certificates used to securely communicate with a private docker registry
+    example:
+      registry_ca_cert:
+        - domain_name: |
+            "mydockerregistrydomain.com"
+          ca_cert: |
+            -----BEGIN CERTIFICATE-----
+            -----END CERTIFICATE-----
+        - domain_name: |
+            "mydockerregistrydomain2.com"
+          ca_cert: |
+            -----BEGIN CERTIFICATE-----
+            -----END CERTIFICATE-----
+    default: []
   env.http_proxy:
     description: "HTTP proxy that Docker should use"
   env.https_proxy:
 
@@ -51,6 +51,9 @@ case $1 in
     # Enable shared_mounts
     [ "${DOCKER_SHARED_MOUNTS_ENABLE}" = "true" ] && mount --make-shared /
 
+    # Create certs for private docker registry
+    /var/vcap/packages/docker-registry-certs/bin/generate_certs ${JOB_DIR}/config/docker_registry_certs
+
     # Start Docker daemon
     exec dockerd \
         ${DOCKER_BRIDGE:-} \
 
@@ -0,0 +1,18 @@
+<%
+if_p("registry_ca_cert") do |registry_ca_cert|
+  if !registry_ca_cert.is_a?(Array)
+    registry_ca_cert = [registry_ca_cert]
+  end
+
+  registry_ca_cert.each_with_index do |registry_cert, i|
+    ca_cert = registry_cert['ca_cert'].strip
+    domain_name = registry_cert['domain_name'].strip
+%>
+<%= domain_name %>
+<%= ca_cert %>
+
+*#*#*#*#*#*#*#*#*#*#*#*#*#*#
+<%
+  end
+ end
+%>
@@ -15,5 +15,5 @@ export DOCKER_CERT_PATH="/var/vcap/jobs/sanity-tests/config"
 export GOPATH=/var/vcap/packages/sanity-tests/
 
 echo "Running sanity tests..."
-pushd /var/vcap/packages/sanity-tests/src/tests
-go test -v tests/cli
+pushd /var/vcap/packages/sanity-tests/src/go-src/tests
+go test -v go-src/tests/cli
@@ -0,0 +1,15 @@
+set -eux
+
+source /var/vcap/packages/golang-1.12-linux/bosh/compile.env
+
+mkdir -p ${BOSH_COMPILE_TARGET}/src/go-src
+mv ${BOSH_COMPILE_TARGET}/go-src/docker-registry-certs ${BOSH_COMPILE_TARGET}/src/go-src/docker-registry-certs
+mv ${BOSH_COMPILE_TARGET}/go-src/vendor ${BOSH_COMPILE_TARGET}/src/go-src/vendor
+
+export GOPATH=${BOSH_COMPILE_TARGET}
+
+pushd ${BOSH_COMPILE_TARGET}/src/go-src/docker-registry-certs
+
+# Create the executable file
+mkdir -p ${BOSH_INSTALL_TARGET}/bin
+go build -o ${BOSH_INSTALL_TARGET}/bin/generate_certs ${BOSH_COMPILE_TARGET}/src/go-src/docker-registry-certs/main.go
@@ -0,0 +1,7 @@
+---
+name: docker-registry-certs
+dependencies:
+  - golang-1.12-linux
+files:
+- go-src/docker-registry-certs/**/*
+- go-src/vendor/**/*
@@ -2,6 +2,10 @@ set -eux
 
 source /var/vcap/packages/golang-1.12-linux/bosh/compile.env
 
-mkdir -p ${BOSH_INSTALL_TARGET}/src/tests
-cp -a ${BOSH_COMPILE_TARGET}/tests/* ${BOSH_INSTALL_TARGET}/src/tests
+mkdir -p ${BOSH_INSTALL_TARGET}/src/go-src/tests
+cp -a ${BOSH_COMPILE_TARGET}/go-src/tests/* ${BOSH_INSTALL_TARGET}/src/go-src/tests
+
+mkdir -p ${BOSH_INSTALL_TARGET}/src/go-src/vendor
+cp -a ${BOSH_COMPILE_TARGET}/go-src/vendor/* ${BOSH_INSTALL_TARGET}/src/go-src/vendor
+
 export GOPATH=${BOSH_INSTALL_TARGET}
@@ -3,4 +3,5 @@ name: sanity-tests
 dependencies:
   - golang-1.12-linux
 files:
-- tests/**/*
+- go-src/tests/**/*
+- go-src/vendor/**/*