From 01824d01eeca70317e32ea4e8fff1e2a361c0000 Mon Sep 17 00:00:00 2001
From: subinthomas1234 <subinthomas1234@gmail.com>
Date: Mon, 25 Jul 2022 16:49:21 +0530
Subject: [PATCH] What this PR does / why we need it: Fix for (#10597)

Added 2-way TLS Support for oci pull for artifact repository which causes TLS handshake failure error.
Special notes for your reviewer:

Added flag for two-way authentication (--tls-enabled) .
 example:- helm pull oci://nginx.testharbor.com/testrepo/sslcharttest --version 0.1.0  --ca-file /etc/docker/certs.d/nginx.testharbor.com/ca.crt --cert-file /etc/docker/certs.d/nginx.testharbor.com/root_client.crt --key-file /etc/docker/certs.d/nginx.testharbor.com/root_client.key --mtls-enabled

Signed-off-by: Subin Thomas <subinthomas1234@gmail.com>
---
 cmd/helm/pull_mtls_test.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/cmd/helm/pull_mtls_test.go b/cmd/helm/pull_mtls_test.go
index dc88bda20..fcf82b1c6 100644
--- a/cmd/helm/pull_mtls_test.go
+++ b/cmd/helm/pull_mtls_test.go
@@ -62,18 +62,18 @@ func TestMutualtlsPull(t *testing.T) {
 	}{
 		{
 			name:       "Fetch OCI Chart",
-			args:       fmt.Sprintf("oci://%s/u/ocitestuser/oci-dependent-chart --version 0.1.0 --ca-file ../../testdata/rootca.crt --cert-file ../../testdata/rootca.crt --key-file ../../testdata/rootca.key --tls-enabled", ociSrv.RegistryURL),
+			args:       fmt.Sprintf("oci://%s/u/ocitestuser/oci-dependent-chart --version 0.1.0 --ca-file ../../testdata/rootca.crt --cert-file ../../testdata/rootca.crt --key-file ../../testdata/rootca.key --mtls-enabled", ociSrv.RegistryURL),
 			expectFile: "./oci-dependent-chart-0.1.0.tgz",
 		},
 		{
 			name:       "Fail fetching non-existent OCI chart with mutual tls enabled",
-			args:       fmt.Sprintf("oci://%s/u/ocitestuser/nosuchthing --version 0.1.0 --tls-enabled", ociSrv.RegistryURL),
+			args:       fmt.Sprintf("oci://%s/u/ocitestuser/nosuchthing --version 0.1.0 --mtls-enabled", ociSrv.RegistryURL),
 			failExpect: "Failed to fetch",
 			wantError:  true,
 		},
 		{
 			name:         "Fail fetching OCI chart without version specified with mutual tls enabled",
-			args:         fmt.Sprintf("oci://%s/u/ocitestuser/nosuchthing --tls-enabled", ociSrv.RegistryURL),
+			args:         fmt.Sprintf("oci://%s/u/ocitestuser/nosuchthing --mtls-enabled", ociSrv.RegistryURL),
 			wantErrorMsg: "Error: --version flag is explicitly required for OCI registries",
 			wantError:    true,
 		},