New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support SSL/TLS connection (832) #930

Merged

mijicd merged 3 commits into zio:master from gkfabs:master

Feb 8, 2024

Contributor

gkfabs commented Jan 30, 2024 •

edited by mijicd

Loading

Closes #832

Hi,

I added support for SSL/TLS

gkfabs requested a review from a team as a code owner

January 30, 2024 08:29

CLAassistant commented Jan 30, 2024 •

edited

Loading

All committers have signed the CLA.

gkfabs force-pushed the master branch from 1b05932 to 85235ae Compare

January 30, 2024 08:54


          Add support SSL/TLS connection (832)

37ded7b

gkfabs force-pushed the master branch from 85235ae to 37ded7b Compare

January 30, 2024 09:02

mijicd reviewed

View reviewed changes

modules/redis/src/main/scala/zio/redis/RedisUri.scala Outdated

Comment on lines 20 to 23

+                override def toString: String = ssl match {
+                  case true  => s"rediss://$host:$port"
+                  case false => s"redis://$host:$port"
+                }

Member

mijicd Feb 1, 2024

Suggested change

      
              override def toString: String = ssl match {
          
                case true  => s"rediss://$host:$port"
          
                case false => s"redis://$host:$port"
          
              }
          
              override def toString: String = 
          
                if (ssl) s"rediss://$host:$port" else s"redis://$host:$port"

modules/redis/src/main/scala/zio/redis/Output.scala Outdated

@@ @@ -101,7 +101,7 @@ object Output { @@
                         val host   = MultiStringOutput.unsafeDecode(values(0))
                         val port   = LongOutput.unsafeDecode(values(1))
                         val nodeId = MultiStringOutput.unsafeDecode(values(2))
-                        Node(nodeId, RedisUri(host, port.toInt))
+                        Node(nodeId, RedisUri(host, port.toInt, false, None))

Member

mijicd Feb 1, 2024

Same here.

modules/redis-it/src/test/scala/zio/redis/ClusterSpec.scala Outdated

-                                ZIO.attempt(docker.getServiceHost(s"cluster-node-$n", port)).map(host => RedisUri(host, port))
+                                ZIO
+                                  .attempt(docker.getServiceHost(s"cluster-node-$n", port))
+                                  .map(host => RedisUri(host, port, false, None))

Member

mijicd Feb 1, 2024

RedisUri change looks unnecessary (see RedisUri.apply).

modules/redis-it/src/test/scala/zio/redis/BaseSpec.scala Outdated

@@ @@ -31,7 +31,7 @@ trait BaseSpec extends ZIOSpecDefault { @@
                     for {
                       docker      <- ZIO.service[DockerComposeContainer]
                       hostAndPort <- docker.getHostAndPort(BaseSpec.MasterNode)(6379)
-                      uri          = RedisUri(hostAndPort._1, hostAndPort._2)
+                      uri          = RedisUri(hostAndPort._1, hostAndPort._2, false, None)

Member

mijicd Feb 1, 2024

It looks unnecessary (see RedisUri.apply).

modules/redis/src/main/scala/zio/redis/config.scala Outdated

Comment on lines 24 to 25

		ssl: Boolean = false,
		sni: Option[String] = None,

Member

mijicd Feb 1, 2024

Please keep the alphabetical ordering.

modules/redis/src/main/scala/zio/redis/internal/ClusterExecutor.scala Outdated

@@ @@ -161,7 +161,7 @@ private[redis] object ClusterExecutor { @@
                 private def redis(address: RedisUri) =
                   for {
                     closableScope <- Scope.make
-                    configLayer    = ZLayer.succeed(RedisConfig(address.host, address.port))
+                    configLayer    = ZLayer.succeed(RedisConfig(address.host, address.port, address.ssl))

Member

mijicd Feb 1, 2024

What happened with sni?

modules/redis/src/main/scala/zio/redis/internal/RedisConnection.scala Outdated

Comment on lines 97 to 100

+                    channel     <- ssl match {
+                                     case true  => openTlsChannel(address, sni)
+                                     case false => openChannel(address)
+                                   }

Member

mijicd Feb 1, 2024

Suggested change

      
                  channel     <- ssl match {
          
                                   case true  => openTlsChannel(address, sni)
          
                                   case false => openChannel(address)
          
                                 }
          
                  channel     <- if (ssl) openTlsChannel(address, sni) else openChannel(address)

modules/redis/src/main/scala/zio/redis/internal/RedisConnection.scala Outdated

+                                   val sslContext        = SSLContext.getDefault()
+                                   val sslEngine         = sslContext.createSSLEngine()
+                                   val params            = sslEngine.getSSLParameters
+                                   sni match {

Member

mijicd Feb 1, 2024

foreach

modules/redis/src/main/scala/zio/redis/internal/RedisConnection.scala Outdated

+                                   rawChannel.finishConnect()
+                                   rawChannel.register(selector, SelectionKey.OP_WRITE)
+                                   val channelGroup      = new AsynchronousTlsChannelGroup()
+                                   val channel           = new AsynchronousTlsChannel(channelGroup, tlsChannel, rawChannel)

Member

mijicd Feb 1, 2024

No need for this val.

modules/redis/src/main/scala/zio/redis/internal/RedisConnection.scala Outdated

+                ): ZIO[Scope, IOException, AsynchronousTlsChannel] =
+                  ZIO.fromAutoCloseable {
+                    for {
+                      channel <- ZIO.attempt {

Member

mijicd Feb 1, 2024

I'd extract the attempt block into a function, something like createChannel


          Comments from Dejan Mijic

aad9940

mijicd previously approved these changes

View reviewed changes

modules/redis/src/main/scala/zio/redis/internal/RedisConnection.scala Outdated Show resolved Hide resolved

mijicd dismissed their stale review via

d1f2b62

February 8, 2024 08:08


          Replace map with foreach

d1f2b62

mijicd approved these changes

View reviewed changes

mijicd merged commit 2ac2107 into zio:master

12 checks passed

maizy mentioned this pull request

fix infinity loop in RedisUri, add tests for ClusterPartitionOutput #984

Merged

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet