Introduce certificate pool structure and remove multiple encode/decode process

[arsenalzp]

This PR introduce certificate pool structure which is mainly used to hold Certificates.
I want to decouple PEM operations from Certificates pool ones.
Deduplication option for certificate pool was also introduced - deduplication process can be optionally disabled.
It is related to #305

[cert-manager-prow]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign sgtcodfish for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[cert-manager-prow]

Hi @arsenalzp. Thanks for your PR.

I'm waiting for a cert-manager member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[erikgb]

/ok-to-test

[arsenalzp]

Let me fix typos!

[erikgb]

Thanks for working on this @arsenalzp! I did a first review pass. Please take a look!

[erikgb]

I think the following functions should have CertPool as receiver. Why not?

[inteon]

Also, we could rename the functions as follows:

• GetSplitPEMBundle -> AsSplitPEMBundle
• GetSplitPEMBundleBytes -> AsPEMBundleBytes
• GetSplitPEMBundleStrings-> AsPEMBundleStrings
• GetCertsList -> AsCertificateList

[arsenalzp]

Functions were renamed.
Regarding CertPool as argument for DecodeX509CertificateChainBytes().
Let me explain: an idea here is PEM is responsible for providing prepared data for consumers in form that is needed by consumers, consumers by themself shouldn't know how, where data was taken from, CertPool is responsible for store, manage, filter, de-duplicate, etc of Certificates, it provides data for PEM, so end consumers shouldn't know how CertPool works inside (encapsulation).
Imagine, we want to provide DER encoded data instead of PEM one.
Moreover, I'm thinking about making CertPool abstract structure (interface).

[maelvls]

Regarding CertPool as argument for DecodeX509CertificateChainBytes()

I think Erik was referring to the functions below (AsSplitPEMBundle, AsPEMBundleBytes, AsCertificateList, GetCertificatesQuantity) rather than DecodeX509CertificateChainBytes.

An idea here is PEM is responsible for providing prepared data for consumers in form that is needed by consumers, consumers by themself shouldn't know how, where data was taken from, CertPool is responsible for store, manage, filter, de-duplicate, etc of Certificates, it provides data for PEM, so end consumers shouldn't know how CertPool works inside (encapsulation).

I'm not sure what PEM refers to. Is it a type that will be created in the future and that, for now, exists through the existence of the AsPEM functions?

Imagine, we want to provide DER encoded data instead of PEM one.

I imagine that CertPool would just need to have a couple of receiver functions:

func (*CertPool) AsDER() [][]byte
func (*CertPool) AsPEMBundle() []byte
func (*CertPool) AsPEM() [][]byte
func (*CertPool) Count() int

Why is adding receiver functions a bad idea? I don't see the benefits of encapsulating the "export" (DER or PEM) logic.

Moreover, I'm thinking about making CertPool abstract structure (interface).

What would be the benefits of turning this into an interface? Would that be for testing purposes?

[erikgb]

I think we are approaching the finish line here, but there are still some "style" comments I would like to see fixed. :-)

[erikgb]

Why can't we just export the size function and delete this function?

[arsenalzp]

It would be easy to calculate a size for other kind of storages in the future. As was stated earlier it was done because I wanted to encapsulate the insides of Certificates pool.

[erikgb]

Ok, I don't understand your argument, but this can stay - it's "just" a name. 😉 If you still want to alias the Size function I think GetCertificateCount could be a better name.

[maelvls]

I wanted to encapsulate the insides of Certificates pool.

Thanks for the clarification.

Can you elaborate on the need for encapsulating CertPool's behavior, and why the count of certificate in the certificate pool shouldn't be exposed?

I don't think that the behaviors "counting certificates", "exporting certificates to a PEM bundle", and "exporting certificates to a slide of DER bytes" need to be encapsulated away. More generally, I'm not convinced that encapsulation will solve anything in this context. I'd love to know more, though!

[arsenalzp]

Hello colleagues,
Behavior of CertPool should be hidden from its consumers. For example we are going to substitute current CertPool by one from x509 package or even third-party. As little possibilities to works with CertPool directly are given to consumers, as little components coupling we have.
From my opinion CertPool acts like io.Writer or io.Reader.

[erikgb]

Behavior of CertPool should be hidden from its consumers. For example we are going to substitute current CertPool by one from x509 package or even third-party. As little possibilities to works with CertPool directly are given to consumers, as little components coupling we have. From my opinion CertPool acts like io.Writer or io.Reader.

This does not make sense to me. Creating util-wrapper functions does not change your stated concern. It just looks very strange to me to have dummy single-statement functions. Making the CertPool type internal probably makes sense - to allow ourselves more freedom to modify it over time.

[erikgb]

@arsenalzp I have a big refactoring incoming: #378. It would be nice to get this PR merged soon. 😉

[arsenalzp]

@arsenalzp I have a big refactoring incoming: #378. It would be nice to get this PR merged soon. 😉

Hello,
Can it wait until this evening?

[erikgb]

Hello, Can it wait until this evening?

Sure, there is no urgency. I just have some extra time for open source work this week.

[arsenalzp]

Hello, Can it wait until this evening?

Sure, there is no urgency. I just have some extra time for open source work this week.

Done

[erikgb]

I find the function name a bit strange when used in this context. It is not evident, at least not to me, that the certs from sourceData are appended to certPool.

[arsenalzp]

Yes, I agree with you, we can improve naming. Which suggestions ?

[erikgb]

Suggested change

	err = util.ValidateAndSplitPEMBundle(certPool, []byte(sourceData))
	err = certPool.AppendCertsFromPEM([]byte(sourceData))

Similar to https://pkg.go.dev/crypto/x509#CertPool.AppendCertsFromPEM.

In general, let us use functions with CertPool as receiver, and avoid the dummy "utils" wrapper functions. As noted many times already in reviews of this PR. 😸

[erikgb]

Suggested change

	err = util.ValidateAndSplitPEMBundle(certPool, []byte(sourceData))
	err = certPool.AppendCertsFromPEM([]byte(sourceData))

Similar to https://pkg.go.dev/crypto/x509#CertPool.AppendCertsFromPEM.

In general, let us use functions with CertPool as receiver, and avoid the dummy "utils" wrapper functions. As noted many times already in reviews of this PR. 😸

[erikgb]

Behavior of CertPool should be hidden from its consumers. For example we are going to substitute current CertPool by one from x509 package or even third-party. As little possibilities to works with CertPool directly are given to consumers, as little components coupling we have. From my opinion CertPool acts like io.Writer or io.Reader.

This does not make sense to me. Creating util-wrapper functions does not change your stated concern. It just looks very strange to me to have dummy single-statement functions. Making the CertPool type internal probably makes sense - to allow ourselves more freedom to modify it over time.

[arsenalzp]

I didn't want to change code drastically.
OK, I will re-write it with receivers :)

[cert-manager-prow]

PR needs rebase.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.