Merge pull request #2037 from fcrozat/suse_certificates

add Certificate location for SUSE products

Author: tariq1890

controllers/object_controls.go

@@ -206,11 +206,13 @@ var RepoConfigPathMap = map[string]string{
 // Where OCP mounts proxy certs on RHCOS nodes:
 // https://access.redhat.com/documentation/en-us/openshift_container_platform/4.3/html/authentication/ocp-certificates#proxy-certificates_ocp-certificates
 var CertConfigPathMap = map[string]string{
-	"centos": "/etc/pki/ca-trust/extracted/pem",
-	"debian": "/usr/local/share/ca-certificates",
-	"ubuntu": "/usr/local/share/ca-certificates",
-	"rhcos":  "/etc/pki/ca-trust/extracted/pem",
-	"rhel":   "/etc/pki/ca-trust/extracted/pem",
+	"centos":   "/etc/pki/ca-trust/extracted/pem",
+	"debian":   "/usr/local/share/ca-certificates",
+	"ubuntu":   "/usr/local/share/ca-certificates",
+	"rhcos":    "/etc/pki/ca-trust/extracted/pem",
+	"rhel":     "/etc/pki/ca-trust/extracted/pem",
+	"sles":     "/etc/pki/trust/anchors",
+	"sl-micro": "/etc/pki/trust/anchors",
 }
 
 // MountPathToVolumeSource maps a container mount path to a VolumeSource

controllers/object_controls_test.go

@@ -1461,3 +1461,21 @@ func TestParseOSReleaseFromFile(t *testing.T) {
 		require.True(t, os.IsNotExist(err))
 	})
 }
+
+func TestCertConfigPathMap(t *testing.T) {
+	expectedPaths := map[string]string{
+		"centos":   "/etc/pki/ca-trust/extracted/pem",
+		"debian":   "/usr/local/share/ca-certificates",
+		"ubuntu":   "/usr/local/share/ca-certificates",
+		"rhcos":    "/etc/pki/ca-trust/extracted/pem",
+		"rhel":     "/etc/pki/ca-trust/extracted/pem",
+		"sles":     "/etc/pki/trust/anchors",
+		"sl-micro": "/etc/pki/trust/anchors",
+	}
+
+	for os, expectedPath := range expectedPaths {
+		path, ok := CertConfigPathMap[os]
+		require.True(t, ok, "OS %s not found in CertConfigPathMap", os)
+		require.Equal(t, expectedPath, path, "Incorrect path for OS %s", os)
+	}
+}

internal/state/driver_volumes.go

@@ -44,11 +44,13 @@ var RepoConfigPathMap = map[string]string{
 // Where OCP mounts proxy certs on RHCOS nodes:
 // https://access.redhat.com/documentation/en-us/openshift_container_platform/4.3/html/authentication/ocp-certificates#proxy-certificates_ocp-certificates
 var CertConfigPathMap = map[string]string{
-	"centos": "/etc/pki/ca-trust/extracted/pem",
-	"debian": "/usr/local/share/ca-certificates",
-	"ubuntu": "/usr/local/share/ca-certificates",
-	"rhcos":  "/etc/pki/ca-trust/extracted/pem",
-	"rhel":   "/etc/pki/ca-trust/extracted/pem",
+	"centos":   "/etc/pki/ca-trust/extracted/pem",
+	"debian":   "/usr/local/share/ca-certificates",
+	"ubuntu":   "/usr/local/share/ca-certificates",
+	"rhcos":    "/etc/pki/ca-trust/extracted/pem",
+	"rhel":     "/etc/pki/ca-trust/extracted/pem",
+	"sles":     "/etc/pki/trust/anchors",
+	"sl-micro": "/etc/pki/trust/anchors",
 }
 
 // MountPathToVolumeSource maps a container mount path to a VolumeSource