Simplify testing with TLS (#4095)

2018-05-04 16:33:23 -07:00
parent b2bb44363a
commit de355b76d6
92 changed files with 1246 additions and 1360 deletions
--- a/plugins/inputs/zookeeper/README.md
+++ b/plugins/inputs/zookeeper/README.md
@@ -18,11 +18,11 @@ The zookeeper plugin collects variables outputted from the 'mntr' command
  ## Timeout for metric collections from all servers.  Minimum timeout is "1s".
  # timeout = "5s"

-  ## Optional SSL Config
+  ## Optional TLS Config
  # enable_ssl = true
-  # ssl_ca = "/etc/telegraf/ca.pem"
-  # ssl_cert = "/etc/telegraf/cert.pem"
-  # ssl_key = "/etc/telegraf/key.pem"
+  # tls_ca = "/etc/telegraf/ca.pem"
+  # tls_cert = "/etc/telegraf/cert.pem"
+  # tls_key = "/etc/telegraf/key.pem"
  ## If false, skip chain & host verification
  # insecure_skip_verify = true
 ```
--- a/plugins/inputs/zookeeper/zookeeper.go
+++ b/plugins/inputs/zookeeper/zookeeper.go
@@ -13,6 +13,7 @@ import (

 	"github.com/influxdata/telegraf"
 	"github.com/influxdata/telegraf/internal"
+	tlsint "github.com/influxdata/telegraf/internal/tls"
 	"github.com/influxdata/telegraf/plugins/inputs"
 )

@@ -21,11 +22,9 @@ type Zookeeper struct {
 	Servers []string
 	Timeout internal.Duration

-	EnableSSL          bool   `toml:"enable_ssl"`
-	SSLCA              string `toml:"ssl_ca"`
-	SSLCert            string `toml:"ssl_cert"`
-	SSLKey             string `toml:"ssl_key"`
-	InsecureSkipVerify bool   `toml:"insecure_skip_verify"`
+	EnableTLS bool `toml:"enable_tls"`
+	EnableSSL bool `toml:"enable_ssl"` // deprecated in 1.7; use enable_tls
+	tlsint.ClientConfig

 	initialized bool
 	tlsConfig   *tls.Config
@@ -42,11 +41,11 @@ var sampleConfig = `
  ## Timeout for metric collections from all servers.  Minimum timeout is "1s".
  # timeout = "5s"

-  ## Optional SSL Config
-  # enable_ssl = true
-  # ssl_ca = "/etc/telegraf/ca.pem"
-  # ssl_cert = "/etc/telegraf/cert.pem"
-  # ssl_key = "/etc/telegraf/key.pem"
+  ## Optional TLS Config
+  # enable_tls = true
+  # tls_ca = "/etc/telegraf/ca.pem"
+  # tls_cert = "/etc/telegraf/cert.pem"
+  # tls_key = "/etc/telegraf/key.pem"
  ## If false, skip chain & host verification
  # insecure_skip_verify = true
 `
@@ -65,7 +64,7 @@ func (z *Zookeeper) Description() string {

 func (z *Zookeeper) dial(ctx context.Context, addr string) (net.Conn, error) {
 	var dialer net.Dialer
-	if z.EnableSSL {
+	if z.EnableTLS || z.EnableSSL {
 		deadline, ok := ctx.Deadline()
 		if ok {
 			dialer.Deadline = deadline
@@ -81,8 +80,7 @@ func (z *Zookeeper) Gather(acc telegraf.Accumulator) error {
 	ctx := context.Background()

 	if !z.initialized {
-		tlsConfig, err := internal.GetTLSConfig(
-			z.SSLCert, z.SSLKey, z.SSLCA, z.InsecureSkipVerify)
+		tlsConfig, err := z.ClientConfig.TLSConfig()
 		if err != nil {
 			return err
 		}