enarx icon indicating copy to clipboard operation
enarx copied to clipboard
verified publisher icon enarx

[Feature]: `enarx test` subcommad

Open rvolosatovs opened this issue 3 years ago • 1 comments

Is there an existing issue for this?

  • [X] I have searched the existing issues

Description

This is related to #2283

The proposal is to have two subcommands

  • enarx run replacing current enarx deploy, which only ever allows secure behavior - no host I/O, no raw TCP etc. This is the subcommand used in our (Rust) integration tests
  • enarx test is very similar, except it allows overriding config variables, host I/O, raw TCP, etc.

Acceptance Criteria

No response

Suggestions for a technical implementation

enarx-exec-wasmtime should guard all insecure functionality by a dbg feature (already existing). enarx test should also be guarded by dbg feature and it should import enarx-exec-wasmtime bindep with dbg feature.

This would be the MVP.

As a second step we could add a [test] section to Enarx.toml, which would be parsed by enarx test and used as overrides.

Once feature is ready, we can think about enabling enarx test even without dbg feature. Otherwise, we could extract enarx test into a enarx-test binary plugin once we have #2125, especially if size becomes a concern

rvolosatovs avatar Jan 26 '23 15:01 rvolosatovs

Hey @rvolosatovs, I'd like to take up this issue

DecFox avatar Mar 22 '23 02:03 DecFox