factotum/nats.zig
1
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
nats.zig/tests/util.zig
torque 67cb801f54
tests.connection: add basic encrypted connection tests 
Since I went to the effort of getting this to build with LibreSSL, it
makes sense to check that it works. And it seems to. There's nothing
special about the certificates added, except that they don't expire
for 100 years, which is hopefully long enough that nothing will matter
any more. They get baked into the test executable, since this was the
best way I could figure out to be able to consistently load them
during runtime, since they're stored relative to the source, not
necessarily relative to the working directory in use when the test
executable is run.

This required some augmentation to the test server launcher which will
make it easier to add additional flags to it in the future, if that
becomes necessary.
2023-09-02 17:12:00 -07:00

124 lines
4.6 KiB
Zig
Raw Blame History

// This file is licensed under the CC0 1.0 license.
// See: https://creativecommons.org/publicdomain/zero/1.0/legalcode
const std = @import("std");
const KeyCert = struct { key: [:0]const u8, cert: [:0]const u8 };
const server_rsa: KeyCert = .{
.key = @embedFile("./data/server-rsa.key"),
.cert = @embedFile("./data/server-rsa.cert"),
};
const server_ecc: KeyCert = .{
.key = @embedFile("./data/server-ecc.key"),
.cert = @embedFile("./data/server-ecc.cert"),
};
const TestLaunchError = error{
NoLaunchStringFound,
};
pub const TestServer = struct {
process: std.ChildProcess,
key_dir: ?std.testing.TmpDir,
pub const LaunchOptions = struct {
executable: []const u8 = "nats-server",
port: u16 = 4222,
auth: union(enum) {
none: void,
token: []const u8,
password: struct { user: []const u8, pass: []const u8 },
} = .none,
tls: enum {
none,
rsa,
ecc,
} = .none,
allocator: std.mem.Allocator = std.testing.allocator,
};
pub fn launch(options: LaunchOptions) !TestServer {
var portbuf = [_]u8{0} ** 5;
const strport = try std.fmt.bufPrint(&portbuf, "{d}", .{options.port});
var key_dir: ?std.testing.TmpDir = null;
var key_path: ?[]const u8 = null;
var cert_path: ?[]const u8 = null;
// ChildProcess copies these, so we can free them before the process has
// closed.
defer {
if (key_path) |kp| options.allocator.free(kp);
if (cert_path) |cp| options.allocator.free(cp);
}
const args: [][]const u8 = blk: {
const executable: []const []const u8 = &.{options.executable};
const listen: []const []const u8 = &.{ "-a", "127.0.0.1" };
const port: []const []const u8 = &.{ "-p", strport };
const auth: []const []const u8 = switch (options.auth) {
.none => &[_][]const u8{},
.token => |tok| &[_][]const u8{ "--auth", tok },
.password => |auth| &[_][]const u8{ "--user", auth.user, "--pass", auth.pass },
};
const tls: []const []const u8 = switch (options.tls) {
.none => &[_][]const u8{},
.rsa, .ecc => |keytype| keyb: {
const pair = switch (keytype) {
.rsa => server_rsa,
.ecc => server_ecc,
else => unreachable,
};
const out_dir = std.testing.tmpDir(.{});
try out_dir.dir.writeFile("server.key", pair.key);
try out_dir.dir.writeFile("server.cert", pair.cert);
// since testing.tmpDir will actually bury itself in zig-cache/tmp,
// there's not an easy way to extract files from within the temp
// directory except through using realPath, as far as I can tell
// (or reproducing the path naming logic, but that seems fragile).
const out_key = try out_dir.dir.realpathAlloc(options.allocator, "server.key");
const out_cert = try out_dir.dir.realpathAlloc(options.allocator, "server.cert");
key_dir = out_dir;
key_path = out_key;
cert_path = out_cert;
break :keyb &[_][]const u8{ "--tls", "--tlscert", out_cert, "--tlskey", out_key };
},
};
break :blk try std.mem.concat(
options.allocator,
[]const u8,
&.{ executable, listen, port, auth, tls },
);
};
defer options.allocator.free(args);
var child = std.ChildProcess.init(args, options.allocator);
child.stdin_behavior = .Ignore;
child.stdout_behavior = .Pipe;
child.stderr_behavior = .Pipe;
try child.spawn();
var poller = std.io.poll(options.allocator, enum { stderr }, .{ .stderr = child.stderr.? });
defer poller.deinit();
while (try poller.poll()) {
if (std.mem.indexOf(u8, poller.fifo(.stderr).buf, "[INF] Server is ready")) |_| {
return .{ .process = child, .key_dir = key_dir };
}
}
_ = try child.kill();
std.debug.print("output: {s}\n", .{poller.fifo(.stderr).buf});
return error.NoLaunchStringFound;
}
pub fn stop(self: *TestServer) void {
if (self.key_dir) |*key_dir| key_dir.cleanup();
_ = self.process.kill() catch return;
}
};
Reference in New Issue View Git Blame Copy Permalink