QPID-8738: [Broker-J] Update TlsResource to JUnit 6 (#380)

Author: dakirily

broker-core/src/test/java/org/apache/qpid/server/security/FileKeyStoreTest.java

@@ -47,8 +47,8 @@
 
 import org.junit.jupiter.api.BeforeEach;
 import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
 
-import org.junit.jupiter.api.extension.RegisterExtension;
 import org.mockito.ArgumentMatcher;
 
 import org.apache.qpid.server.configuration.IllegalConfigurationException;
@@ -63,16 +63,15 @@
 import org.apache.qpid.server.model.KeyStore;
 import org.apache.qpid.test.utils.tls.KeyCertificatePair;
 import org.apache.qpid.test.utils.tls.TlsResource;
+import org.apache.qpid.test.utils.tls.TlsResourceExtension;
 import org.apache.qpid.test.utils.tls.TlsResourceBuilder;
+import org.apache.qpid.test.utils.tls.PemUtils;
 import org.apache.qpid.server.util.DataUrlUtils;
 import org.apache.qpid.test.utils.UnitTestBase;
-import org.apache.qpid.test.utils.tls.TlsResourceHelper;
 
+@ExtendWith({ TlsResourceExtension.class })
 public class NonJavaKeyStoreTest extends UnitTestBase
 {
-    @RegisterExtension
-    public static final TlsResource TLS_RESOURCE = new TlsResource();
-
     private static final String DN_FOO = "CN=foo";
     private static final String NAME = "myTestTrustStore";
     private static final String NON_JAVA_KEY_STORE = "NonJavaKeyStore";
@@ -91,18 +90,18 @@ public void setUp() throws Exception
     }
 
     @Test
-    void testCreationOfTrustStoreFromValidPrivateKeyAndCertificateInDERFormat() throws Exception
+    void testCreationOfTrustStoreFromValidPrivateKeyAndCertificateInDERFormat(final TlsResource tls) throws Exception
     {
-        final Path privateKeyFile = TLS_RESOURCE.savePrivateKeyAsDer(_keyCertPair.getPrivateKey());
-        final Path certificateFile = TLS_RESOURCE.saveCertificateAsDer(_keyCertPair.getCertificate());
+        final Path privateKeyFile = tls.savePrivateKeyAsDer(_keyCertPair.privateKey());
+        final Path certificateFile = tls.saveCertificateAsDer(_keyCertPair.certificate());
         assertCreationOfTrustStoreFromValidPrivateKeyAndCertificate(privateKeyFile, certificateFile);
     }
 
     @Test
-    void testCreationOfTrustStoreFromValidPrivateKeyAndCertificateInPEMFormat() throws Exception
+    void testCreationOfTrustStoreFromValidPrivateKeyAndCertificateInPEMFormat(final TlsResource tls) throws Exception
     {
-        final Path privateKeyFile = TLS_RESOURCE.savePrivateKeyAsPem(_keyCertPair.getPrivateKey());
-        final Path certificateFile = TLS_RESOURCE.saveCertificateAsPem(_keyCertPair.getCertificate());
+        final Path privateKeyFile = tls.savePrivateKeyAsPem(_keyCertPair.privateKey());
+        final Path certificateFile = tls.saveCertificateAsPem(_keyCertPair.certificate());
         assertCreationOfTrustStoreFromValidPrivateKeyAndCertificate(privateKeyFile, certificateFile);
     }
 
@@ -121,10 +120,10 @@ private void assertCreationOfTrustStoreFromValidPrivateKeyAndCertificate(Path pr
     }
 
     @Test
-    void testCreationOfTrustStoreFromValidPrivateKeyAndInvalidCertificate()throws Exception
+    void testCreationOfTrustStoreFromValidPrivateKeyAndInvalidCertificate(final TlsResource tls) throws Exception
     {
-        final Path privateKeyFile = TLS_RESOURCE.savePrivateKeyAsPem(_keyCertPair.getPrivateKey());
-        final Path certificateFile = TLS_RESOURCE.createFile(".cer");
+        final Path privateKeyFile = tls.savePrivateKeyAsPem(_keyCertPair.privateKey());
+        final Path certificateFile = tls.createFile(".cer");
         final Map<String,Object> attributes = Map.of(NonJavaKeyStore.NAME, NAME,
                 "privateKeyUrl", privateKeyFile.toFile().getAbsolutePath(),
                 "certificateUrl", certificateFile.toFile().getAbsolutePath(),
@@ -135,10 +134,10 @@ void testCreationOfTrustStoreFromValidPrivateKeyAndInvalidCertificate()throws Ex
     }
 
     @Test
-    void testCreationOfTrustStoreFromInvalidPrivateKeyAndValidCertificate()throws Exception
+    void testCreationOfTrustStoreFromInvalidPrivateKeyAndValidCertificate(final TlsResource tls) throws Exception
     {
-        final Path privateKeyFile =  TLS_RESOURCE.createFile(".pk");
-        final Path certificateFile = TLS_RESOURCE.saveCertificateAsPem(_keyCertPair.getCertificate());
+        final Path privateKeyFile =  tls.createFile(".pk");
+        final Path certificateFile = tls.saveCertificateAsPem(_keyCertPair.certificate());
         final Map<String,Object> attributes = Map.of(NonJavaKeyStore.NAME, NAME,
                 "privateKeyUrl", privateKeyFile.toFile().getAbsolutePath(),
                 "certificateUrl", certificateFile.toFile().getAbsolutePath(),
@@ -150,27 +149,27 @@ void testCreationOfTrustStoreFromInvalidPrivateKeyAndValidCertificate()throws Ex
     }
 
     @Test
-    void testExpiryCheckingFindsExpired() throws Exception
+    void testExpiryCheckingFindsExpired(final TlsResource tls) throws Exception
     {
-        doCertExpiryChecking(1);
+        doCertExpiryChecking(tls, 1);
         verify(_messageLogger, times(1)).message(argThat(new LogMessageArgumentMatcher()));
     }
 
     @Test
-    void testExpiryCheckingIgnoresValid() throws Exception
+    void testExpiryCheckingIgnoresValid(final TlsResource tls) throws Exception
     {
-        doCertExpiryChecking(-1);
+        doCertExpiryChecking(tls, -1);
         verify(_messageLogger, never()).message(argThat(new LogMessageArgumentMatcher()));
     }
 
     @SuppressWarnings("unchecked")
-    private void doCertExpiryChecking(final int expiryOffset) throws Exception
+    private void doCertExpiryChecking(final TlsResource tls, final int expiryOffset) throws Exception
     {
         when(BROKER.scheduleHouseKeepingTask(anyLong(), any(TimeUnit.class), any(Runnable.class))).thenReturn(mock(ScheduledFuture.class));
 
-        final Path privateKeyFile =  TLS_RESOURCE.savePrivateKeyAsDer(_keyCertPair.getPrivateKey());
-        final Path certificateFile = TLS_RESOURCE.saveCertificateAsDer(_keyCertPair.getCertificate());
-        final long expiryDays = ChronoUnit.DAYS.between(Instant.now(), _keyCertPair.getCertificate().getNotAfter().toInstant());
+        final Path privateKeyFile =  tls.savePrivateKeyAsDer(_keyCertPair.privateKey());
+        final Path certificateFile = tls.saveCertificateAsDer(_keyCertPair.certificate());
+        final long expiryDays = ChronoUnit.DAYS.between(Instant.now(), _keyCertPair.certificate().getNotAfter().toInstant());
         final Map<String,Object> attributes = Map.of(NonJavaKeyStore.NAME, NAME,
                 "privateKeyUrl", privateKeyFile.toFile().getAbsolutePath(),
                 "certificateUrl", certificateFile.toFile().getAbsolutePath(),
@@ -184,8 +183,8 @@ void testCreationOfKeyStoreWithNonMatchingPrivateKeyAndCertificate()throws Excep
     {
         final KeyCertificatePair keyCertPair2 = generateSelfSignedCertificate();
         final Map<String,Object> attributes = Map.of(NonJavaKeyStore.NAME, NAME,
-                NonJavaKeyStore.PRIVATE_KEY_URL, getPrivateKeyAsDataUrl(_keyCertPair.getPrivateKey()),
-                NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(keyCertPair2.getCertificate()),
+                NonJavaKeyStore.PRIVATE_KEY_URL, getPrivateKeyAsDataUrl(_keyCertPair.privateKey()),
+                NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(keyCertPair2.certificate()),
                 NonJavaKeyStore.TYPE, NON_JAVA_KEY_STORE);
 
         KeyStoreTestHelper.checkExceptionThrownDuringKeyStoreCreation(FACTORY, BROKER, KeyStore.class, attributes,
@@ -196,12 +195,12 @@ NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(keyCertPair2.getCertifi
     void testUpdateKeyStoreToNonMatchingCertificate()throws Exception
     {
         final Map<String,Object> attributes = Map.of(NonJavaKeyStore.NAME, getTestName(),
-                NonJavaKeyStore.PRIVATE_KEY_URL, getPrivateKeyAsDataUrl(_keyCertPair.getPrivateKey()),
-                NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(_keyCertPair.getCertificate()),
+                NonJavaKeyStore.PRIVATE_KEY_URL, getPrivateKeyAsDataUrl(_keyCertPair.privateKey()),
+                NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(_keyCertPair.certificate()),
                 NonJavaKeyStore.TYPE, NON_JAVA_KEY_STORE);
         final KeyStore<?> trustStore = createTestKeyStore(attributes);
         final KeyCertificatePair keyCertPair2 = generateSelfSignedCertificate();
-        final String certUrl = getCertificateAsDataUrl(keyCertPair2.getCertificate());
+        final String certUrl = getCertificateAsDataUrl(keyCertPair2.certificate());
         final Map<String,Object> newAttributes = Map.of("certificateUrl", certUrl);
 
         assertThrows(IllegalConfigurationException.class, () -> trustStore.setAttributes(newAttributes),
@@ -212,8 +211,8 @@ NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(_keyCertPair.getCertifi
     void privateKeyEntryCertificate() throws Exception
     {
         final Map<String,Object> attributes = Map.of(NonJavaKeyStore.NAME, getTestName(),
-                NonJavaKeyStore.PRIVATE_KEY_URL, getPrivateKeyAsDataUrl(_keyCertPair.getPrivateKey()),
-                NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(_keyCertPair.getCertificate()),
+                NonJavaKeyStore.PRIVATE_KEY_URL, getPrivateKeyAsDataUrl(_keyCertPair.privateKey()),
+                NonJavaKeyStore.CERTIFICATE_URL, getCertificateAsDataUrl(_keyCertPair.certificate()),
                 NonJavaKeyStore.TYPE, NON_JAVA_KEY_STORE);
         final KeyStore<?> keyStore = createTestKeyStore(attributes);
         final List<CertificateDetails> certificateDetails = keyStore.getCertificateDetails();
@@ -229,12 +228,12 @@ private KeyStore<?> createTestKeyStore(final Map<String, Object> attributes)
 
     private String getCertificateAsDataUrl(final X509Certificate certificate) throws CertificateEncodingException
     {
-        return DataUrlUtils.getDataUrlForBytes(TlsResourceHelper.toPEM(certificate).getBytes(UTF_8));
+        return DataUrlUtils.getDataUrlForBytes(PemUtils.toPEM(certificate).getBytes(UTF_8));
     }
 
     private String getPrivateKeyAsDataUrl(final PrivateKey privateKey)
     {
-        return DataUrlUtils.getDataUrlForBytes(TlsResourceHelper.toPEM(privateKey).getBytes(UTF_8));
+        return DataUrlUtils.getDataUrlForBytes(PemUtils.toPEM(privateKey).getBytes(UTF_8));
     }
 
     private KeyCertificatePair generateSelfSignedCertificate() throws Exception

broker-core/src/test/java/org/apache/qpid/server/security/FileTrustStoreTest.java

@@ -37,8 +37,7 @@
 import javax.net.ssl.X509TrustManager;
 
 import org.junit.jupiter.api.Test;
-
-import org.junit.jupiter.api.extension.RegisterExtension;
+import org.junit.jupiter.api.extension.ExtendWith;
 
 import org.apache.qpid.server.configuration.IllegalConfigurationException;
 import org.apache.qpid.server.model.Broker;
@@ -49,13 +48,12 @@
 import org.apache.qpid.test.utils.tls.KeyCertificatePair;
 import org.apache.qpid.test.utils.tls.TlsResource;
 import org.apache.qpid.test.utils.tls.TlsResourceBuilder;
+import org.apache.qpid.test.utils.tls.TlsResourceExtension;
 import org.apache.qpid.test.utils.UnitTestBase;
 
+@ExtendWith({ TlsResourceExtension.class })
 public class NonJavaTrustStoreTest extends UnitTestBase
 {
-    @RegisterExtension
-    public static final TlsResource TLS_RESOURCE = new TlsResource();
-
     private static final Broker<?> BROKER = BrokerTestHelper.createBrokerMock();
     private static final ConfiguredObjectFactory FACTORY = BrokerModel.getInstance().getObjectFactory();
     private static final String NAME = "myTestTrustStore";
@@ -66,10 +64,10 @@ public class NonJavaTrustStoreTest extends UnitTestBase
     private static final String NOT_A_CRL = "/not/a/crl";
 
     @Test
-    public void testCreationOfTrustStoreWithoutCRL() throws Exception
+    public void testCreationOfTrustStoreWithoutCRL(final TlsResource tls) throws Exception
     {
         final KeyCertificatePair keyCertPair = TlsResourceBuilder.createSelfSigned(DN_FOO);
-        final Path certificateFile = TLS_RESOURCE.saveCertificateAsPem(keyCertPair.getCertificate());
+        final Path certificateFile = tls.saveCertificateAsPem(keyCertPair.certificate());
         final Map<String, Object> attributes = Map.of(NonJavaTrustStore.NAME, NAME,
                 NonJavaTrustStore.CERTIFICATES_URL, certificateFile.toFile().getAbsolutePath(),
                 NonJavaTrustStore.TYPE, NON_JAVA_TRUST_STORE,
@@ -83,9 +81,9 @@ public void testCreationOfTrustStoreWithoutCRL() throws Exception
     }
 
     @Test
-    public void testCreationOfTrustStoreFromValidCertificate() throws Exception
+    public void testCreationOfTrustStoreFromValidCertificate(final TlsResource tls) throws Exception
     {
-        final CertificateAndCrl<File> data = generateCertificateAndCrl();
+        final CertificateAndCrl<File> data = generateCertificateAndCrl(tls);
         final Map<String, Object> attributes = Map.of(NonJavaTrustStore.NAME, NAME,
                 NonJavaTrustStore.CERTIFICATES_URL, data.getCertificate().getAbsolutePath(),
                 NonJavaTrustStore.TYPE, NON_JAVA_TRUST_STORE,
@@ -100,9 +98,9 @@ public void testCreationOfTrustStoreFromValidCertificate() throws Exception
     }
 
     @Test
-    public void testChangeOfCrlInTrustStoreFromValidCertificate() throws Exception
+    public void testChangeOfCrlInTrustStoreFromValidCertificate(final TlsResource tls) throws Exception
     {
-        final CertificateAndCrl<File> data = generateCertificateAndCrl();
+        final CertificateAndCrl<File> data = generateCertificateAndCrl(tls);
         final Map<String, Object> attributes = Map.of(NonJavaTrustStore.NAME, NAME,
                 NonJavaTrustStore.CERTIFICATES_URL, data.getCertificate().getAbsolutePath(),
                 NonJavaTrustStore.TYPE, NON_JAVA_TRUST_STORE,
@@ -119,18 +117,18 @@ public void testChangeOfCrlInTrustStoreFromValidCertificate() throws Exception
         assertEquals(data.getCrl().getAbsolutePath(), trustStore.getCertificateRevocationListUrl(),
                 "Unexpected CRL path value after failed change");
 
-        final Path emptyCrl = TLS_RESOURCE.createCrl(data.getCa());
+        final Path emptyCrl = tls.createCrl(data.getCa());
         trustStore.setAttributes(Map.of(FileTrustStore.CERTIFICATE_REVOCATION_LIST_URL, emptyCrl.toFile().getAbsolutePath()));
 
         assertEquals(emptyCrl.toFile().getAbsolutePath(), trustStore.getCertificateRevocationListUrl(),
                 "Unexpected CRL path value after change that is expected to be successful");
     }
 
     @Test
-    public void testUseOfExpiredTrustAnchorDenied() throws Exception
+    public void testUseOfExpiredTrustAnchorDenied(final TlsResource tls) throws Exception
     {
         final KeyCertificatePair keyCertPair = createExpiredCertificate();
-        final Path certificatePath = TLS_RESOURCE.saveCertificateAsPem(keyCertPair.getCertificate());
+        final Path certificatePath = tls.saveCertificateAsPem(keyCertPair.certificate());
         final Map<String, Object> attributes = Map.of(NonJavaTrustStore.NAME, NAME,
                 NonJavaTrustStore.TRUST_ANCHOR_VALIDITY_ENFORCED, true,
                 NonJavaTrustStore.CERTIFICATES_URL, certificatePath.toFile().getAbsolutePath(),
@@ -146,17 +144,17 @@ public void testUseOfExpiredTrustAnchorDenied() throws Exception
         final X509TrustManager trustManager = (X509TrustManager) trustManagers[0];
 
         final CertificateException thrown = assertThrows(CertificateException.class,
-                () -> trustManager.checkClientTrusted(new X509Certificate[]{keyCertPair.getCertificate()}, "NULL"),
+                () -> trustManager.checkClientTrusted(new X509Certificate[]{keyCertPair.certificate()}, "NULL"),
                 "Exception not thrown");
 
         // IBMJSSE2 does not throw CertificateExpiredException, it throws a CertificateException
         assertTrue(thrown instanceof CertificateExpiredException || "Certificate expired".equals(thrown.getMessage()));
     }
 
     @Test
-    public void testCreationOfTrustStoreWithoutCertificate() throws Exception
+    public void testCreationOfTrustStoreWithoutCertificate(final TlsResource tls) throws Exception
     {
-        final CertificateAndCrl<File> data = generateCertificateAndCrl();
+        final CertificateAndCrl<File> data = generateCertificateAndCrl(tls);
         final Map<String, Object> attributes = Map.of(
                 NonJavaTrustStore.NAME, NAME,
                 NonJavaTrustStore.CERTIFICATES_URL, data.getCrl().getAbsolutePath(),
@@ -167,10 +165,10 @@ public void testCreationOfTrustStoreWithoutCertificate() throws Exception
     }
 
     @Test
-    public void testCreationOfTrustStoreFromValidCertificate_MissingCrlFile() throws Exception
+    public void testCreationOfTrustStoreFromValidCertificate_MissingCrlFile(final TlsResource tls) throws Exception
     {
         final KeyCertificatePair keyCertPair = TlsResourceBuilder.createSelfSigned(DN_FOO);
-        final Path certificateFile = TLS_RESOURCE.saveCertificateAsPem(keyCertPair.getCertificate());
+        final Path certificateFile = tls.saveCertificateAsPem(keyCertPair.certificate());
         final Map<String, Object> attributes = Map.of(NonJavaTrustStore.NAME, NAME,
                 NonJavaTrustStore.CERTIFICATES_URL, certificateFile.toFile().getAbsolutePath(),
                 NonJavaTrustStore.TYPE, NON_JAVA_TRUST_STORE,
@@ -194,14 +192,14 @@ private NonJavaTrustStore<?> createTestTrustStore(final Map<String, Object> attr
         return (NonJavaTrustStore<?>) FACTORY.create(TrustStore.class, attributes, BROKER);
     }
 
-    private CertificateAndCrl<File> generateCertificateAndCrl() throws Exception
+    private CertificateAndCrl<File> generateCertificateAndCrl(final TlsResource tls) throws Exception
     {
         final KeyCertificatePair caPair = TlsResourceBuilder.createKeyPairAndRootCA(DN_CA);
         final KeyCertificatePair keyCertPair1 = TlsResourceBuilder.createKeyPairAndCertificate(DN_FOO, caPair);
         final KeyCertificatePair keyCertPair2 = TlsResourceBuilder.createKeyPairAndCertificate(DN_BAR, caPair);
         final Path clrFile =
-                TLS_RESOURCE.createCrl(caPair, keyCertPair1.getCertificate(), keyCertPair2.getCertificate());
-        final Path caCertificateFile = TLS_RESOURCE.saveCertificateAsPem(caPair.getCertificate());
+                tls.createCrl(caPair, keyCertPair1.certificate(), keyCertPair2.certificate());
+        final Path caCertificateFile = tls.saveCertificateAsPem(caPair.certificate());
         return new CertificateAndCrl<>(caCertificateFile.toFile(), clrFile.toFile(), caPair);
     }