// // // Copyright 2015-2016 gRPC authors. // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. // // #include "test/cpp/util/create_test_channel.h" #include "absl/flags/flag.h" #include "absl/log/check.h" #include #include #include #include "src/core/lib/gprpp/crash.h" #include "test/cpp/util/test_credentials_provider.h" ABSL_FLAG(std::string, grpc_test_use_grpclb_with_child_policy, "", "If non-empty, set a static service config on channels created by " "grpc::CreateTestChannel, that configures the grpclb LB policy " "with a child policy being the value of this flag (e.g. round_robin " "or pick_first)."); namespace grpc { namespace { const char kProdTlsCredentialsType[] = "prod_ssl"; class SslCredentialProvider : public testing::CredentialTypeProvider { public: std::shared_ptr GetChannelCredentials( grpc::ChannelArguments* /*args*/) override { return grpc::SslCredentials(SslCredentialsOptions()); } std::shared_ptr GetServerCredentials() override { return nullptr; } }; gpr_once g_once_init_add_prod_ssl_provider = GPR_ONCE_INIT; // Register ssl with non-test roots type to the credentials provider. void AddProdSslType() { testing::GetCredentialsProvider()->AddSecureType( kProdTlsCredentialsType, std::unique_ptr( new SslCredentialProvider)); } void MaybeSetCustomChannelArgs(grpc::ChannelArguments* args) { if (!absl::GetFlag(FLAGS_grpc_test_use_grpclb_with_child_policy).empty()) { args->SetString( "grpc.service_config", "{\"loadBalancingConfig\":[{\"grpclb\":{\"childPolicy\":[{" "\"" + absl::GetFlag(FLAGS_grpc_test_use_grpclb_with_child_policy) + "\":{}}]}}]}"); } } } // namespace // When cred_type is 'ssl', if server is empty, override_hostname is used to // create channel. Otherwise, connect to server and override hostname if // override_hostname is provided. // When cred_type is not 'ssl', override_hostname is ignored. // Set use_prod_root to true to use the SSL root for connecting to google. // In this case, path to the roots pem file must be set via environment variable // GRPC_DEFAULT_SSL_ROOTS_FILE_PATH. // Otherwise, root for test SSL cert will be used. // creds will be used to create a channel when cred_type is 'ssl'. // Use examples: // CreateTestChannel( // "1.1.1.1:12345", "ssl", "override.hostname.com", false, creds); // CreateTestChannel("test.google.com:443", "ssl", "", true, creds); // same as above // CreateTestChannel("", "ssl", "test.google.com:443", true, creds); std::shared_ptr CreateTestChannel( const std::string& server, const std::string& cred_type, const std::string& override_hostname, bool use_prod_roots, const std::shared_ptr& creds, const ChannelArguments& args) { return CreateTestChannel(server, cred_type, override_hostname, use_prod_roots, creds, args, /*interceptor_creators=*/{}); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& override_hostname, testing::transport_security security_type, bool use_prod_roots, const std::shared_ptr& creds, const ChannelArguments& args) { return CreateTestChannel(server, override_hostname, security_type, use_prod_roots, creds, args, /*interceptor_creators=*/{}); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& override_hostname, testing::transport_security security_type, bool use_prod_roots, const std::shared_ptr& creds) { return CreateTestChannel(server, override_hostname, security_type, use_prod_roots, creds, ChannelArguments()); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& override_hostname, testing::transport_security security_type, bool use_prod_roots) { return CreateTestChannel(server, override_hostname, security_type, use_prod_roots, std::shared_ptr()); } // Shortcut for end2end and interop tests. std::shared_ptr CreateTestChannel( const std::string& server, testing::transport_security security_type) { return CreateTestChannel(server, "foo.test.google.fr", security_type, false); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& credential_type, const std::shared_ptr& creds) { ChannelArguments channel_args; MaybeSetCustomChannelArgs(&channel_args); std::shared_ptr channel_creds = testing::GetCredentialsProvider()->GetChannelCredentials(credential_type, &channel_args); CHECK_NE(channel_creds, nullptr); if (creds.get()) { channel_creds = grpc::CompositeChannelCredentials(channel_creds, creds); } return grpc::CreateCustomChannel(server, channel_creds, channel_args); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& cred_type, const std::string& override_hostname, bool use_prod_roots, const std::shared_ptr& creds, const ChannelArguments& args, std::vector< std::unique_ptr> interceptor_creators) { ChannelArguments channel_args(args); MaybeSetCustomChannelArgs(&channel_args); std::shared_ptr channel_creds; if (cred_type.empty()) { if (interceptor_creators.empty()) { return grpc::CreateCustomChannel(server, InsecureChannelCredentials(), channel_args); } else { return experimental::CreateCustomChannelWithInterceptors( server, InsecureChannelCredentials(), channel_args, std::move(interceptor_creators)); } } else if (cred_type == testing::kTlsCredentialsType) { // cred_type == "ssl" if (use_prod_roots) { gpr_once_init(&g_once_init_add_prod_ssl_provider, &AddProdSslType); channel_creds = testing::GetCredentialsProvider()->GetChannelCredentials( kProdTlsCredentialsType, &channel_args); if (!server.empty() && !override_hostname.empty()) { channel_args.SetSslTargetNameOverride(override_hostname); } } else { // override_hostname is discarded as the provider handles it. channel_creds = testing::GetCredentialsProvider()->GetChannelCredentials( testing::kTlsCredentialsType, &channel_args); } CHECK_NE(channel_creds, nullptr); const std::string& connect_to = server.empty() ? override_hostname : server; if (creds.get()) { channel_creds = grpc::CompositeChannelCredentials(channel_creds, creds); } if (interceptor_creators.empty()) { return grpc::CreateCustomChannel(connect_to, channel_creds, channel_args); } else { return experimental::CreateCustomChannelWithInterceptors( connect_to, channel_creds, channel_args, std::move(interceptor_creators)); } } else { channel_creds = testing::GetCredentialsProvider()->GetChannelCredentials( cred_type, &channel_args); CHECK_NE(channel_creds, nullptr); if (interceptor_creators.empty()) { return grpc::CreateCustomChannel(server, channel_creds, channel_args); } else { return experimental::CreateCustomChannelWithInterceptors( server, channel_creds, channel_args, std::move(interceptor_creators)); } } } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& override_hostname, testing::transport_security security_type, bool use_prod_roots, const std::shared_ptr& creds, const ChannelArguments& args, std::vector< std::unique_ptr> interceptor_creators) { std::string credential_type = security_type == testing::ALTS ? testing::kAltsCredentialsType : (security_type == testing::TLS ? testing::kTlsCredentialsType : testing::kInsecureCredentialsType); return CreateTestChannel(server, credential_type, override_hostname, use_prod_roots, creds, args, std::move(interceptor_creators)); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& override_hostname, testing::transport_security security_type, bool use_prod_roots, const std::shared_ptr& creds, std::vector< std::unique_ptr> interceptor_creators) { return CreateTestChannel(server, override_hostname, security_type, use_prod_roots, creds, ChannelArguments(), std::move(interceptor_creators)); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& credential_type, const std::shared_ptr& creds, std::vector< std::unique_ptr> interceptor_creators) { return CreateTestChannel(server, credential_type, creds, std::move(interceptor_creators), {} /* channel_args */); } std::shared_ptr CreateTestChannel( const std::string& server, const std::string& credential_type, const std::shared_ptr& creds, std::vector< std::unique_ptr> interceptor_creators, ChannelArguments channel_args) { MaybeSetCustomChannelArgs(&channel_args); std::shared_ptr channel_creds = testing::GetCredentialsProvider()->GetChannelCredentials(credential_type, &channel_args); CHECK_NE(channel_creds, nullptr); if (creds.get()) { channel_creds = grpc::CompositeChannelCredentials(channel_creds, creds); } return experimental::CreateCustomChannelWithInterceptors( server, channel_creds, channel_args, std::move(interceptor_creators)); } } // namespace grpc