Skip to content

Commit e775c9f

Browse files
pp
committed
FLE with KMS in Docker support
1 parent 4a31808 commit e775c9f

File tree

3 files changed

+12
-16
lines changed

3 files changed

+12
-16
lines changed

.evergreen/config/common.yml.erb

Lines changed: 0 additions & 15 deletions
Original file line numberDiff line numberDiff line change
@@ -502,20 +502,6 @@ functions:
502502
${PREPARE_SHELL}
503503
SERVERLESS=1 SSL=ssl RVM_RUBY="${RVM_RUBY}" SINGLE_MONGOS="${SINGLE_MONGOS}" MULTI_ATLASPROXY_SERVERLESS_URI="${MULTI_ATLASPROXY_SERVERLESS_URI}" SINGLE_ATLASPROXY_SERVERLESS_URI="${SINGLE_ATLASPROXY_SERVERLESS_URI}" .evergreen/run-tests-serverless.sh
504504

505-
"start kmip server":
506-
- command: shell.exec
507-
params:
508-
background: true
509-
shell: bash
510-
working_dir: "src"
511-
script: |
512-
. .evergreen/csfle/activate_venv.sh
513-
python -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/server.pem --port 7999 &
514-
python -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/expired.pem --port 8000 &
515-
python -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/wrong-host.pem --port 8001 &
516-
python -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/server.pem --port 8002 --require_client_cert &
517-
python -u .evergreen/csfle/kms_kmip_server.py &
518-
519505
pre:
520506
- func: "fetch source"
521507
- func: "fetch egos"
@@ -561,7 +547,6 @@ tasks:
561547
- name: "test-fle"
562548
commands:
563549
- func: "export FLE credentials"
564-
- func: "start kmip server"
565550
- func: "run tests"
566551
- name: "test-aws-auth"
567552
commands:

.evergreen/run-tests.sh

Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -134,6 +134,17 @@ elif test "$AUTH" = kerberos; then
134134
fi
135135

136136
if test -n "$FLE"; then
137+
# Start the KMS servers first so that they are launching while we are
138+
# fetching libmongocrypt.
139+
if test "$DOCKER_PRELOAD" != 1; then
140+
. .evergreen/csfle/activate_venv.sh
141+
fi
142+
python3 -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/server.pem --port 7999 &
143+
python3 -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/expired.pem --port 8000 &
144+
python3 -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/wrong-host.pem --port 8001 &
145+
python3 -u .evergreen/csfle/kms_http_server.py --ca_file .evergreen/x509gen/ca.pem --cert_file .evergreen/x509gen/server.pem --port 8002 --require_client_cert &
146+
python3 -u .evergreen/csfle/kms_kmip_server.py &
147+
137148
curl --retry 3 -fLo libmongocrypt-all.tar.gz "https://s3.amazonaws.com/mciuploads/libmongocrypt/all/master/latest/libmongocrypt-all.tar.gz"
138149
tar xf libmongocrypt-all.tar.gz
139150

spec/shared

0 commit comments

Comments
 (0)