try to fix ssl crt permission denied on client side

Tianyi Chen · Tianyi Chen · commit aac75ede2c82 · 2018-03-23T13:37:36.000-04:00
diff --git a/test/network/ssl_test.cpp b/test/network/ssl_test.cpp
@@ -10,16 +10,16 @@
 //
 //===----------------------------------------------------------------------===//
 
+#include <pqxx/pqxx> /* libpqxx is used to instantiate C++ client */
 #include "common/harness.h"
-#include "gtest/gtest.h"
 #include "common/logger.h"
+#include "gtest/gtest.h"
+#include "network/connection_handle_factory.h"
 #include "network/peloton_server.h"
-#include "network/protocol_handler_factory.h"
-#include "util/string_util.h"
-#include <pqxx/pqxx> /* libpqxx is used to instantiate C++ client */
 #include "network/postgres_protocol_handler.h"
+#include "network/protocol_handler_factory.h"
 #include "peloton_config.h"
-#include "network/connection_handle_factory.h"
+#include "util/string_util.h"
 
 #define NUM_THREADS 1
 
@@ -32,22 +32,34 @@ namespace test {
 
 class SSLTests : public PelotonTest {};
 
+std::string server_crt = std::string(StringUtil::Format(
+    "%s%s", SOURCE_FOLDER, "/test/network/ssl/server_test.crt"));
+std::string server_key = std::string(StringUtil::Format(
+    "%s%s", SOURCE_FOLDER, "/test/network/ssl/server_test.key"));
+std::string root_crt = std::string(StringUtil::Format(
+    "%s%s", SOURCE_FOLDER, "/test/network/ssl/root_test.crt"));
+
 /**
  * Basic SSL connection test:  Tested with valid certificats and key files
  */
 void *BasicTest(int port) {
   try {
     // forcing the factory to generate psql protocol handler
     pqxx::connection C(StringUtil::Format(
-        "host=127.0.0.1 port=%d user=default_database application_name=psql sslmode=require", port));
+        "host=127.0.0.1 port=%d user=default_database application_name=psql "
+        "sslmode=require sslcert=%s sslkey=%s sslrootcert=%s ",
+        port, server_crt, server_key, root_crt));
+
     pqxx::work txn1(C);
 
     peloton::network::ConnectionHandle *conn =
-        peloton::network::ConnectionHandleFactory::GetInstance().ConnectionHandleAt(
-            peloton::network::PelotonServer::recent_connfd).get();
+        peloton::network::ConnectionHandleFactory::GetInstance()
+            .ConnectionHandleAt(peloton::network::PelotonServer::recent_connfd)
+            .get();
 
     network::PostgresProtocolHandler *handler =
-        dynamic_cast<network::PostgresProtocolHandler *>(conn->GetProtocolHandler().get());
+        dynamic_cast<network::PostgresProtocolHandler *>(
+            conn->GetProtocolHandler().get());
     EXPECT_NE(handler, nullptr);
 
     // basic test
@@ -63,7 +75,7 @@ void *BasicTest(int port) {
 
     pqxx::result R = txn2.exec("SELECT name FROM employee where id=1;");
     txn2.commit();
-    
+
     EXPECT_EQ(R.size(), 1);
 
     // SSL large write test
@@ -104,16 +116,13 @@ TEST_F(SSLTests, BasicTest) {
   peloton::network::PelotonServer peloton_server;
   int port = 15721;
   try {
-      std::string server_crt = "/test/network/ssl/server_test.crt";
-      std::string server_key = "/test/network/ssl/server_test.key";
-      std::string root_crt = "/test/network/ssl/root_test.crt";
-      peloton::network::PelotonServer::certificate_file_ = SOURCE_FOLDER + server_crt;
-      peloton::network::PelotonServer::private_key_file_ = SOURCE_FOLDER + server_key;
-      peloton::network::PelotonServer::root_cert_file_ = SOURCE_FOLDER + root_crt;
-      peloton::network::PelotonServer::SSLInit();
-
-      peloton_server.SetPort(port);
-      peloton_server.SetupServer();
+    peloton::network::PelotonServer::certificate_file_ = server_crt;
+    peloton::network::PelotonServer::private_key_file_ = server_key;
+    peloton::network::PelotonServer::root_cert_file_ = root_crt;
+    peloton::network::PelotonServer::SSLInit();
+
+    peloton_server.SetPort(port);
+    peloton_server.SetupServer();
   } catch (peloton::ConnectionException &exception) {
     LOG_INFO("[LaunchServer] exception in thread");
   }
