chore: Add client-cert and client-key to dynamic-backend-config (#622)

Author: elliottt

runtime/js-compute-runtime/host_interface/component/fastly_world.c

@@ -2918,7 +2918,7 @@ bool fastly_compute_at_edge_http_req_framing_headers_mode_set(fastly_compute_at_
 
 bool fastly_compute_at_edge_http_req_register_dynamic_backend(fastly_world_string_t *prefix, fastly_world_string_t *target, fastly_compute_at_edge_http_req_dynamic_backend_config_t *config, fastly_compute_at_edge_http_req_error_t *err) {
   __attribute__((__aligned__(4)))
-  uint8_t ret_area[108];
+  uint8_t ret_area[124];
   int32_t ptr = (int32_t) &ret_area;
   *((int32_t*)(ptr + 4)) = (int32_t) (*prefix).len;
   *((int32_t*)(ptr + 0)) = (int32_t) (*prefix).ptr;
@@ -3013,17 +3013,26 @@ bool fastly_compute_at_edge_http_req_register_dynamic_backend(fastly_world_strin
   } else {
     *((int8_t*)(ptr + 96)) = 0;
   }
-  int32_t ptr23 = (int32_t) &ret_area;
-  __wasm_import_fastly_compute_at_edge_http_req_register_dynamic_backend(ptr, ptr23);
+  if (((*config).client_cert).is_some) {
+    const fastly_compute_at_edge_http_types_client_cert_config_t *payload24 = &((*config).client_cert).val;
+    *((int8_t*)(ptr + 108)) = 1;
+    *((int32_t*)(ptr + 116)) = (int32_t) ((*payload24).client_cert).len;
+    *((int32_t*)(ptr + 112)) = (int32_t) ((*payload24).client_cert).ptr;
+    *((int32_t*)(ptr + 120)) = (int32_t) ((*payload24).client_key);
+  } else {
+    *((int8_t*)(ptr + 108)) = 0;
+  }
+  int32_t ptr25 = (int32_t) &ret_area;
+  __wasm_import_fastly_compute_at_edge_http_req_register_dynamic_backend(ptr, ptr25);
   fastly_world_result_void_fastly_compute_at_edge_http_req_error_t result;
-  switch ((int32_t) (*((uint8_t*) (ptr23 + 0)))) {
+  switch ((int32_t) (*((uint8_t*) (ptr25 + 0)))) {
     case 0: {
       result.is_err = false;
       break;
     }
     case 1: {
       result.is_err = true;
-      result.val.err = (int32_t) (*((uint8_t*) (ptr23 + 1)));
+      result.val.err = (int32_t) (*((uint8_t*) (ptr25 + 1)));
       break;
     }
   }

runtime/js-compute-runtime/host_interface/component/fastly_world.h

@@ -64,6 +64,10 @@ typedef uint8_t fastly_compute_at_edge_types_error_t;
 // resources permitted. For example, creating too many response handles.
 #define FASTLY_COMPUTE_AT_EDGE_TYPES_ERROR_LIMIT_EXCEEDED 13
 
+typedef uint32_t fastly_compute_at_edge_types_secret_handle_t;
+
+typedef fastly_compute_at_edge_types_secret_handle_t fastly_compute_at_edge_http_types_secret_handle_t;
+
 typedef uint32_t fastly_compute_at_edge_http_types_body_handle_t;
 
 typedef uint32_t fastly_compute_at_edge_http_types_request_handle_t;
@@ -107,6 +111,11 @@ typedef uint8_t fastly_compute_at_edge_http_types_tls_version_t;
 #define FASTLY_COMPUTE_AT_EDGE_HTTP_TYPES_TLS_VERSION_TLS12 2
 #define FASTLY_COMPUTE_AT_EDGE_HTTP_TYPES_TLS_VERSION_TLS13 3
 
+typedef struct {
+  fastly_world_string_t client_cert;
+  fastly_compute_at_edge_http_types_secret_handle_t client_key;
+} fastly_compute_at_edge_http_types_client_cert_config_t;
+
 typedef struct {
   bool is_some;
   fastly_world_string_t val;
@@ -127,6 +136,11 @@ typedef struct {
   fastly_compute_at_edge_http_types_tls_version_t val;
 } fastly_world_option_fastly_compute_at_edge_http_types_tls_version_t;
 
+typedef struct {
+  bool is_some;
+  fastly_compute_at_edge_http_types_client_cert_config_t val;
+} fastly_world_option_fastly_compute_at_edge_http_types_client_cert_config_t;
+
 // Create a backend for later use
 typedef struct {
   fastly_world_option_string_t host_override;
@@ -141,6 +155,7 @@ typedef struct {
   fastly_world_option_string_t ca_cert;
   fastly_world_option_string_t ciphers;
   fastly_world_option_string_t sni_hostname;
+  fastly_world_option_fastly_compute_at_edge_http_types_client_cert_config_t client_cert;
 } fastly_compute_at_edge_http_types_dynamic_backend_config_t;
 
 typedef uint16_t fastly_compute_at_edge_http_types_http_status_t;
@@ -331,9 +346,9 @@ typedef struct {
 
 typedef fastly_compute_at_edge_types_error_t fastly_compute_at_edge_secret_store_error_t;
 
-typedef uint32_t fastly_compute_at_edge_secret_store_store_handle_t;
+typedef fastly_compute_at_edge_types_secret_handle_t fastly_compute_at_edge_secret_store_secret_handle_t;
 
-typedef uint32_t fastly_compute_at_edge_secret_store_secret_handle_t;
+typedef uint32_t fastly_compute_at_edge_secret_store_store_handle_t;
 
 typedef struct {
   bool is_some;

runtime/js-compute-runtime/host_interface/component/fastly_world_component_type.o

@@ -50,10 +50,14 @@ interface types {
     /// resources permitted. For example, creating too many response handles.
     limit-exceeded
   }
+
+  type secret-handle = u32
 }
 
 interface http-types {
 
+  use types.{secret-handle}
+
   type body-handle = u32
 
   type request-handle = u32
@@ -87,6 +91,11 @@ interface http-types {
     tls13
   }
 
+  record client-cert-config {
+    client-cert: string,
+    client-key: secret-handle,
+  }
+
   /// Create a backend for later use
   record dynamic-backend-config {
     host-override: option<string>,
@@ -101,6 +110,7 @@ interface http-types {
     ca-cert: option<string>,
     ciphers: option<string>,
     sni-hostname: option<string>,
+    client-cert: option<client-cert-config>,
   }
 
   type http-status = u16
@@ -488,12 +498,10 @@ interface object-store {
  */
 interface secret-store {
 
-  use types.{error}
+  use types.{error, secret-handle}
 
   type store-handle = u32
 
-  type secret-handle = u32
-
   open: func(name: string) -> result<store-handle, error>
 
   get: func(store: store-handle, key: string) -> result<option<secret-handle>, error>