0e96d92567
full diff: 75b288015a...c1f2f97bff
relevant changes:
- pkcs12: document that we use the wrong PEM type
- pkcs12: drop PKCS#12 attributes with unknown OIDs
- ocsp: Improve documentation for ParseResponse and ParseResponseForCert
other changes (not in vendor);
- ssh: improve error message for KeyboardInteractiveChallenge
- ssh: remove slow unnecessary diffie-hellman-group-exchange primality check
- ssh/terminal: replace with a golang.org/x/term wrapper
- Deprecates ssh/terminal in favor of golang.org/x/term
- ssh/terminal: add support for zos
- ssh/terminal: bump x/term dependency to fix js/nacl
- nacl/auth: use Size instead of KeySize for Sum output
- sha3: remove go:nocheckptr annotation
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
76 lines
1.6 KiB
Go
76 lines
1.6 KiB
Go
package swarm
|
|
|
|
import (
|
|
"bufio"
|
|
"context"
|
|
"fmt"
|
|
"io"
|
|
"strings"
|
|
|
|
"github.com/docker/cli/cli"
|
|
"github.com/docker/cli/cli/command"
|
|
"github.com/docker/cli/cli/streams"
|
|
"github.com/docker/docker/api/types/swarm"
|
|
"github.com/pkg/errors"
|
|
"github.com/spf13/cobra"
|
|
"golang.org/x/term"
|
|
)
|
|
|
|
func newUnlockCommand(dockerCli command.Cli) *cobra.Command {
|
|
cmd := &cobra.Command{
|
|
Use: "unlock",
|
|
Short: "Unlock swarm",
|
|
Args: cli.NoArgs,
|
|
RunE: func(cmd *cobra.Command, args []string) error {
|
|
return runUnlock(dockerCli)
|
|
},
|
|
}
|
|
|
|
return cmd
|
|
}
|
|
|
|
func runUnlock(dockerCli command.Cli) error {
|
|
client := dockerCli.Client()
|
|
ctx := context.Background()
|
|
|
|
// First see if the node is actually part of a swarm, and if it is actually locked first.
|
|
// If it's in any other state than locked, don't ask for the key.
|
|
info, err := client.Info(ctx)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
switch info.Swarm.LocalNodeState {
|
|
case swarm.LocalNodeStateInactive:
|
|
return errors.New("Error: This node is not part of a swarm")
|
|
case swarm.LocalNodeStateLocked:
|
|
break
|
|
default:
|
|
return errors.New("Error: swarm is not locked")
|
|
}
|
|
|
|
key, err := readKey(dockerCli.In(), "Please enter unlock key: ")
|
|
if err != nil {
|
|
return err
|
|
}
|
|
req := swarm.UnlockRequest{
|
|
UnlockKey: key,
|
|
}
|
|
|
|
return client.SwarmUnlock(ctx, req)
|
|
}
|
|
|
|
func readKey(in *streams.In, prompt string) (string, error) {
|
|
if in.IsTerminal() {
|
|
fmt.Print(prompt)
|
|
dt, err := term.ReadPassword(int(in.FD()))
|
|
fmt.Println()
|
|
return string(dt), err
|
|
}
|
|
key, err := bufio.NewReader(in).ReadString('\n')
|
|
if err == io.EOF {
|
|
err = nil
|
|
}
|
|
return strings.TrimSpace(key), err
|
|
}
|