mongodb-js
diff --git a/‎testing/.eslintrc.js‎
Lines changed: 3 additions & 3 deletions b/‎testing/.eslintrc.js‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎testing/.prettierrc.json‎
Lines changed: 1 addition & 0 deletions b/‎testing/.prettierrc.json‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎testing/certificates/README.md‎
Lines changed: 30 additions & 21 deletions b/‎testing/certificates/README.md‎
Lines changed: 30 additions & 21 deletions
diff --git a/‎testing/disable-dns-srv.js‎
Lines changed: 7 additions & 7 deletions b/‎testing/disable-dns-srv.js‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎testing/fake-kms.ts‎
Lines changed: 26 additions & 26 deletions b/‎testing/fake-kms.ts‎
Lines changed: 26 additions & 26 deletions
@@ -1,10 +1,10 @@
-const { fixCygwinPath } = require("@mongodb-js/eslint-config-mongosh/utils");
+const { fixCygwinPath } = require('@mongodb-js/eslint-config-mongosh/utils');
 
 module.exports = {
   root: true,
-  extends: ["@mongodb-js/eslint-config-mongosh"],
+  extends: ['@mongodb-js/eslint-config-mongosh'],
   parserOptions: {
     tsconfigRootDir: fixCygwinPath(__dirname),
-    project: ["./tsconfig.json"],
+    project: ['./tsconfig.json'],
   },
 };
@@ -0,0 +1 @@
+"@mongodb-js/prettier-config-devtools"
@@ -5,6 +5,7 @@ This directory contains all certificates and keys used in testing.
 To recreate the certificates follow the steps outlined below.
 
 ## Setup CA
+
 1. Create a new key to use for the CA:
    ```
    openssl genrsa -out ca.key 4096
@@ -13,10 +14,11 @@ To recreate the certificates follow the steps outlined below.
    ```
    openssl req -new -x509 -key ca.key -out ca.crt -days 99999
    ```
-   * Organization Name: `MongoDB`
-   * Organizational Unit Name: `DevTools`
-   * Common Name: `DevTools CA`
+   - Organization Name: `MongoDB`
+   - Organizational Unit Name: `DevTools`
+   - Common Name: `DevTools CA`
 3. To sign and revoke certificates, an openssl config files is required. Create `ca.cnf` with the following content:
+
    ```
    [ca]
    default_ca=CA_default
@@ -43,12 +45,14 @@ To recreate the certificates follow the steps outlined below.
    commonName=supplied
    emailAddress=optional
    ```
+
 4. Ensure the `ca.db` file exists:
    ```
    touch ca.db
    ```
 
 ## Setup Server Certificate
+
 1. Create a new key to use for the server:
    ```
    openssl genrsa -out server.key 4096
@@ -57,9 +61,9 @@ To recreate the certificates follow the steps outlined below.
    ```
    openssl req -new -key server.key -out server.csr -days 99999
    ```
-   * Organization Name: `MongoDB`
-   * Organizational Unit Name: `DevTools`
-   * Common Name: `localhost`
+   - Organization Name: `MongoDB`
+   - Organizational Unit Name: `DevTools`
+   - Common Name: `localhost`
 3. Sign the CSR to generate server certificate:
    ```
    openssl ca -create_serial -config ca.cnf -in server.csr -out server.pem -days 99999
@@ -71,6 +75,7 @@ To recreate the certificates follow the steps outlined below.
    ```
 
 ## Setup Server Certificate with invalid hostname
+
 1. Create a new key to use for the server:
    ```
    openssl genrsa -out server-invalidhost.key 4096
@@ -79,9 +84,9 @@ To recreate the certificates follow the steps outlined below.
    ```
    openssl req -new -key server-invalidhost.key -out server-invalidhost.csr -days 99999
    ```
-   * Organization Name: `MongoDB`
-   * Organizational Unit Name: `DevTools`
-   * Common Name: `invalidhost`
+   - Organization Name: `MongoDB`
+   - Organizational Unit Name: `DevTools`
+   - Common Name: `invalidhost`
 3. Sign the CSR to generate server certificate:
    ```
    openssl ca -create_serial -config ca.cnf -in server-invalidhost.csr -out server-invalidhost.pem -days 99999
@@ -93,6 +98,7 @@ To recreate the certificates follow the steps outlined below.
    ```
 
 ## Setup "Non-CA" for testing invalid CA cert
+
 1. Create a new key to use for the Non CA:
    ```
    openssl genrsa -out non-ca.key 4096
@@ -101,11 +107,12 @@ To recreate the certificates follow the steps outlined below.
    ```
    openssl req -new -x509 -key non-ca.key -out non-ca.crt -days 99999
    ```
-   * Organization Name: `MongoDB`
-   * Organizational Unit Name: `DevTools`
-   * Common Name: `NOT DevTools CA`
+   - Organization Name: `MongoDB`
+   - Organizational Unit Name: `DevTools`
+   - Common Name: `NOT DevTools CA`
 
 ## Revoke Server Certificate and generate CRL
+
 1. Revoke the server's certificate:
    ```
    openssl ca -config ca.cnf -revoke server.pem
@@ -116,6 +123,7 @@ To recreate the certificates follow the steps outlined below.
    ```
 
 ## Create Client Certificate from CA
+
 1. Create a new key to use for the client:
    ```
    openssl genrsa -out client.key 4096
@@ -124,10 +132,10 @@ To recreate the certificates follow the steps outlined below.
    ```
    openssl req -new -key client.key -out client.csr -days 99999
    ```
-   * Organization Name: `MongoDB`
-   * Organizational Unit Name: `DevTools Testers`
-   * Common Name: `Wonderwoman`
-   * E-Mail: `tester@example.com`
+   - Organization Name: `MongoDB`
+   - Organizational Unit Name: `DevTools Testers`
+   - Common Name: `Wonderwoman`
+   - E-Mail: `tester@example.com`
 3. Sign the CSR to generate server certificate:
    ```
    openssl ca -create_serial -config ca.cnf -in client.csr -out client.pem -days 99999
@@ -146,9 +154,10 @@ To recreate the certificates follow the steps outlined below.
    ```
    openssl pkcs12 -inkey client.bundle.pem -in client.bundle.pem -export -out client.bundle.pfx
    ```
-   * Password: `passw0rd`
+   - Password: `passw0rd`
 
 ## Create Client Certificate not from CA
+
 1. Create a new key to use for the Non CA:
    ```
    openssl genrsa -out invalid-client.key 4096
@@ -157,10 +166,10 @@ To recreate the certificates follow the steps outlined below.
    ```
    openssl req -new -x509 -key invalid-client.key -out invalid-client.crt -days 99999
    ```
-   * Organization Name: `MongoDB`
-   * Organizational Unit Name: `DevTools Testers`
-   * Common Name: `Wonderwoman`
-   * E-Mail: `tester@example.com`
+   - Organization Name: `MongoDB`
+   - Organizational Unit Name: `DevTools Testers`
+   - Common Name: `Wonderwoman`
+   - E-Mail: `tester@example.com`
 3. Create a bundle with client key and certificate to use for connecting:
    ```
    cat invalid-client.crt invalid-client.key > invalid-client.bundle.pem
 
@@ -1,18 +1,18 @@
-"use strict";
-const dns = require("dns");
+'use strict';
+const dns = require('dns');
 // eslint-disable-next-line no-console
 console.log(
-  "!!! Disabling SRV and TXT DNS queries through the Node.js API !!!"
+  '!!! Disabling SRV and TXT DNS queries through the Node.js API !!!'
 );
 
 const origResolve = dns.resolve;
 const origPromiseResolve = dns.promises.resolve;
-const err = Object.assign(new Error("SRV and TXT not available"), {
-  code: "ENODATA",
+const err = Object.assign(new Error('SRV and TXT not available'), {
+  code: 'ENODATA',
 });
 
 dns.resolve = (hostname, type, cb) => {
-  if (type === "SRV" || type === "TXT") return process.nextTick(cb, err);
+  if (type === 'SRV' || type === 'TXT') return process.nextTick(cb, err);
   return origResolve(hostname, type, cb);
 };
 dns.resolveSrv = (hostname, cb) => {
@@ -22,7 +22,7 @@ dns.resolveTxt = (hostname, cb) => {
   return process.nextTick(cb, err);
 };
 dns.promises.resolve = async (hostname, type) => {
-  if (type === "SRV" || type === "TXT") throw err;
+  if (type === 'SRV' || type === 'TXT') throw err;
   await origPromiseResolve;
 };
 dns.promises.resolveSrv = () => Promise.reject(err);
 
@@ -1,8 +1,8 @@
-import DuplexPair from "duplexpair";
-import http from "http";
+import DuplexPair from 'duplexpair';
+import http from 'http';
 
 // Exact values specified by RFC6749 ;)
-const oauthToken = { access_token: "2YotnFZFEjr1zCsicMWpAA", expires_in: 3600 };
+const oauthToken = { access_token: '2YotnFZFEjr1zCsicMWpAA', expires_in: 3600 };
 
 type RequestData = { url: string; body: string };
 type HandlerFunction = (data: RequestData) => any;
@@ -17,7 +17,7 @@ export function makeFakeHTTPConnection(
 ): Duplex & { requests: http.IncomingMessage[] } {
   const { socket1, socket2 } = new DuplexPair();
   const server = makeFakeHTTPServer(handlerList);
-  server.emit("connection", socket2);
+  server.emit('connection', socket2);
   return Object.assign(socket1, { requests: server.requests });
 }
 
@@ -28,31 +28,31 @@ export function makeFakeHTTPServer(handlerList: HandlerList): FakeHTTPServer {
   const server = http.createServer((req, res) => {
     (server as FakeHTTPServer).requests.push(req);
     let foundHandler: HandlerFunction | undefined;
-    const host = req.headers["host"];
+    const host = req.headers['host'];
     for (const potentialHandler of handlerList) {
-      if (potentialHandler.host.test(host ?? "")) {
+      if (potentialHandler.host.test(host ?? '')) {
         foundHandler = potentialHandler.handler;
         break;
       }
     }
     if (!foundHandler) {
       res.writeHead(404, {
-        "Content-Type": "text/plain",
+        'Content-Type': 'text/plain',
       });
       res.end(`Host ${host} not found`);
       return;
     }
     const handler = foundHandler; // Makes TS happy
 
-    let body = "";
-    req.setEncoding("utf8").on("data", (chunk) => {
+    let body = '';
+    req.setEncoding('utf8').on('data', (chunk) => {
       body += chunk;
     });
-    req.on("end", () => {
+    req.on('end', () => {
       res.writeHead(200, {
-        "Content-Type": "application/json",
+        'Content-Type': 'application/json',
       });
-      res.end(JSON.stringify(handler({ url: req.url ?? "", body })));
+      res.end(JSON.stringify(handler({ url: req.url ?? '', body })));
     });
   });
   return Object.assign(server, { requests: [] });
@@ -72,34 +72,34 @@ function awsHandler({ body }: RequestData): any {
     // the decryption response, which also provides the KeyId and Plaintext
     // based on the CiphertextBlob alone.
     const CiphertextBlob = Buffer.from(
-      request.KeyId + "\0" + request.Plaintext
-    ).toString("base64");
+      request.KeyId + '\0' + request.Plaintext
+    ).toString('base64');
     return {
       CiphertextBlob,
-      EncryptionAlgorithm: "SYMMETRIC_DEFAULT",
+      EncryptionAlgorithm: 'SYMMETRIC_DEFAULT',
       KeyId: request.KeyId,
     };
   } else {
-    let [KeyId, Plaintext] = Buffer.from(request.CiphertextBlob, "base64")
+    let [KeyId, Plaintext] = Buffer.from(request.CiphertextBlob, 'base64')
       .toString()
-      .split("\0");
+      .split('\0');
     // Do not return invalid base64 https://jira.mongodb.org/browse/MONGOCRYPT-525
-    if (Buffer.from(KeyId, "base64").toString("base64") !== KeyId) {
-      KeyId = "invalid0";
+    if (Buffer.from(KeyId, 'base64').toString('base64') !== KeyId) {
+      KeyId = 'invalid0';
     }
-    if (Buffer.from(Plaintext, "base64").toString("base64") !== Plaintext) {
-      Plaintext = "invalid1";
+    if (Buffer.from(Plaintext, 'base64').toString('base64') !== Plaintext) {
+      Plaintext = 'invalid1';
     }
     return {
       Plaintext,
-      EncryptionAlgorithm: "SYMMETRIC_DEFAULT",
+      EncryptionAlgorithm: 'SYMMETRIC_DEFAULT',
       KeyId,
     };
   }
 }
 
 function azureHandler({ body, url }: RequestData): any {
-  if (url.endsWith("/token")) {
+  if (url.endsWith('/token')) {
     return oauthToken;
   } else if (url.match(/\/(un)?wrapkey/)) {
     // Just act as if this was encrypted.
@@ -108,12 +108,12 @@ function azureHandler({ body, url }: RequestData): any {
 }
 
 function gcpHandler({ body, url }: RequestData): any {
-  if (url.endsWith("/token")) {
+  if (url.endsWith('/token')) {
     return oauthToken;
-  } else if (url.endsWith(":encrypt")) {
+  } else if (url.endsWith(':encrypt')) {
     // Here we also just perform noop encryption.
     return { ciphertext: JSON.parse(body).plaintext };
-  } else if (url.endsWith(":decrypt")) {
+  } else if (url.endsWith(':decrypt')) {
     return { plaintext: JSON.parse(body).ciphertext };
   }
 }