GetAll -> Get to retrieve credentials from credential helpers

[dekkagaijin]

- What I did
Improved docker build times.

- How I did it
Only request credentials for the configured registry from the corresponding credential helper, rather than doing a GetAll for each one.

- How to verify it
Build some toy image with several credential helpers configured...

jsand@jsand:~/go/src/github.com/docker/cli$ time docker build ~/gcloud-cred-helper-test
Sending build context to Docker daemon   5.12kB
Step 1/7 : FROM node:8
 ---> b87c2ad8344d
Step 2/7 : WORKDIR /usr/src/app
 ---> Using cache
 ---> b27c87b196eb
Step 3/7 : COPY package*.json ./
COPY failed: no source files were specified

real	1m28.929s
user	0m54.868s
sys	0m10.988s
jsand@jsand:~/go/src/github.com/docker/cli$ time ./build/docker build ~/gcloud-cred-helper-test
Sending build context to Docker daemon   5.12kB
Step 1/7 : FROM node:8
 ---> b87c2ad8344d
Step 2/7 : WORKDIR /usr/src/app
 ---> Using cache
 ---> b27c87b196eb
Step 3/7 : COPY package*.json ./
COPY failed: no source files were specified

real	0m7.137s
user	0m4.408s
sys	0m0.884s

- Description for the changelog
docker build now runs faster when registry-specific credential helper(s) are configured.

[codecov-io]

Codecov Report

Merging #840 into master will increase coverage by 0.08%.
The diff coverage is 64.7%.

@@            Coverage Diff             @@
##           master     #840      +/-   ##
==========================================
+ Coverage   52.93%   53.02%   +0.08%     
==========================================
  Files         245      244       -1     
  Lines       15848    15829      -19     
==========================================
+ Hits         8389     8393       +4     
+ Misses       6905     6884      -21     
+ Partials      554      552       -2

[dnephin]

Thanks! In general it probably makes sense to only query for the specific credentials.

I have a couple questions about this change.

[dnephin]

This should probably use registry.ConvertToHostname(), although I'm not sure this is the correct place to do the convert.

How is this related to the rest of the change?

[dnephin]

Why is this necessary? From what I can tell other callers of GetAuthConfig() seem to be calling it with a url that doesn't have a scheme.

[dekkagaijin]

Keys in configFile.CredentialHelpers field are schemeless, whereas keys in configFile.AuthConfigs (and which back the default file store) contain the scheme. I see that the file store is now stripping the scheme from the auths entries with registry.ConvertToHostname() in file_store, so I'll remove this code here.

[dekkagaijin]

Done...

[dnephin]

I think this probably contain some extra key/values so that the test shows that not everything is being returned.

[dnephin]

It looks like this field isn't being checked in the tests. I assume you want to check it is 0.

[dnephin]

I think this one test might cover all the behaviour, but I guess it doesn't hurt to have the other ones. They should be pretty fast.

[dnephin]

These Calls fields are also unused. They can be removed.

[dnephin]

@thaJeztah do you know who is familiar with the credential helpers and could help review this?

[dekkagaijin]

Done.
@dnephin I probably have some of the most context on the credHelpers in particular, otherwise one of the people from the original PR might be of help: moby/moby#25851

[thaJeztah]

ping @n4ss PTAL

[dnephin]

Is this testing anything that isn't already covered by TestGetAllCredentialsCredHelperOverridesDefaultStore ?

[dekkagaijin]

It tests that values from both are returned, if they don't conflict, rather than just one of the other. TestGetAllCredentialsCredHelperOverridesDefaultStore tests for the conflicting case.

[dnephin]

I think my previous comment wasn't clear. This map[string]types.AuthConfig should contain more than a single item. It should have extra items that you don't expect to get returned. Otherwise the implementation could return everything (the behaviour you're trying to fix) and the test would still pass.

[dekkagaijin]

Ah, roger.

[dekkagaijin]

Done.

[n4ss]

nit: serverAdress is a bit too vague as a var name. Can we keep registry or registryAddr (same in the tests)?

[n4ss]

LGTM besides this

[dekkagaijin]

registryHostname? Done.

[dnephin]

A test table, or extracting some of the common parts into setup functions might help reduce the duplication in the tests, but I think it will do as-is.

[dnephin]

I guess there should be a defer to restore this to the original value when the test exits.

[dekkagaijin]

Done.

[dnephin]

LGTM

[dekkagaijin]

Gentle ping :)

[thaJeztah]

ping @n4ss could you have another look

To reviewers: don't merge yet, as this may need some squashing once review is complete 🤗

[n4ss]

@thaJeztah already reviewed & LGTM'd in a comment that got nested, sorry #840 (comment)

[dekkagaijin]

squished

[dekkagaijin]

Bump <3

[dekkagaijin]

Added a fix for a small style nit, should let Jenkins and Codecov execute properly again as well.

[dekkagaijin]

ping :)

[vdemeester]

LGTM 🐯