RUST-2206 Fix potential timeouts in CSE tests (#1418)

abr-egn · web-flow · commit 2633c6d6be27 · 2025-07-15T17:32:20.000+01:00
diff --git a/src/test/csfle.rs b/src/test/csfle.rs
@@ -240,7 +240,7 @@ async fn custom_endpoint_setup(valid: bool) -> Result<ClientEncryption> {
                         if valid {
                             "localhost:5698"
                         } else {
-                            "doesnotexist.local:5698"
+                            "doesnotexist.invalid:5698"
                         },
                     );
                 }
diff --git a/src/test/csfle/prose.rs b/src/test/csfle/prose.rs
@@ -268,6 +268,8 @@ async fn views_prohibited() -> Result<()> {
 
 // Prose test 7. Custom Endpoint
 mod custom_endpoint {
+    use crate::client_encryption::KmipMasterKey;
+
     use super::*;
 
     async fn custom_endpoint_aws_ok(endpoint: Option<String>) -> Result<()> {
@@ -310,18 +312,14 @@ mod custom_endpoint {
 
     // case 4
     #[tokio::test]
-    async fn aws_invalid_port() -> Result<()> {
+    async fn kmip_invalid_port() -> Result<()> {
         let client_encryption = custom_endpoint_setup(true).await?;
 
         let result = client_encryption
             .create_data_key(
-                AwsMasterKey::builder()
-                    .region("us-east-1")
-                    .key(
-                        "arn:aws:kms:us-east-1:579766882180:key/\
-                         89fcc2c4-08b0-4bd9-9f25-e30687b580d0",
-                    )
-                    .endpoint(Some("kms.us-east-1.amazonaws.com:12345".to_string()))
+                KmipMasterKey::builder()
+                    .key_id("1".to_owned())
+                    .endpoint("localhost:12345".to_owned())
                     .build(),
             )
             .await;
@@ -442,6 +440,59 @@ mod custom_endpoint {
 
         Ok(())
     }
+
+    // case 10
+    #[cfg(feature = "openssl-tls")]
+    #[tokio::test]
+    async fn kmip_valid() -> Result<()> {
+        let master_key = KmipMasterKey::builder().key_id("1".to_owned()).build();
+
+        let client_encryption = custom_endpoint_setup(true).await?;
+        let key_id = client_encryption
+            .create_data_key(master_key.clone())
+            .await?;
+        validate_roundtrip(&client_encryption, key_id).await?;
+
+        let client_encryption_invalid = custom_endpoint_setup(false).await?;
+        let result = client_encryption_invalid.create_data_key(master_key).await;
+        assert!(result.unwrap_err().is_network_error());
+
+        Ok(())
+    }
+
+    // case 11
+    #[cfg(feature = "openssl-tls")]
+    #[tokio::test]
+    async fn kmip_valid_endpoint() -> Result<()> {
+        let master_key = KmipMasterKey::builder()
+            .key_id("1".to_owned())
+            .endpoint("localhost:5698".to_owned())
+            .build();
+
+        let client_encryption = custom_endpoint_setup(true).await?;
+        let key_id = client_encryption
+            .create_data_key(master_key.clone())
+            .await?;
+        validate_roundtrip(&client_encryption, key_id).await?;
+
+        Ok(())
+    }
+
+    // case 12
+    #[tokio::test]
+    async fn kmip_invalid() -> Result<()> {
+        let master_key = KmipMasterKey::builder()
+            .key_id("1".to_owned())
+            .endpoint("doesnotexist.invalid:5698".to_owned())
+            .build();
+
+        let client_encryption = custom_endpoint_setup(true).await?;
+        let result = client_encryption.create_data_key(master_key).await;
+        let err = result.unwrap_err();
+        assert!(err.is_network_error());
+
+        Ok(())
+    }
 }
 
 // Prose test 8. Bypass Spawning mongocryptd

Original file line number	Diff line number	Diff line change
`@@ -240,7 +240,7 @@ async fn custom_endpoint_setup(valid: bool) -> Result<ClientEncryption> {`
`240`	`240`	`if valid {`
`241`	`241`	`"localhost:5698"`
`242`	`242`	`} else {`
`243`		`- "doesnotexist.local:5698"`
	`243`	`+ "doesnotexist.invalid:5698"`
`244`	`244`	`},`
`245`	`245`	`);`
`246`	`246`	`}`