fluent-plugin-ssl-check 0.1.1 → 1.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 17021668aaaa4b2915fb786079c8d822fd58db627488b3443eba0e0e2dfebf6d
-  data.tar.gz: ca284af707c9893d7b980a350915a3f64f11b255ba64806e383a5adb3537d8ae
+  metadata.gz: db98f212ffba0fa6f4caad4e3dcedb88da99d298f1ee2f2e71a42374fdca90df
+  data.tar.gz: 301dcadeb5f03df68afab76dd3a8c170fea09cb6bd5e5eab5a7d79aa204cf794
 SHA512:
-  metadata.gz: ef5caa0b92f69d743bed93e76916759270b719af0de1e2be6710ceaef4c589d43402fbec52eec829612cc92b340ea25d8d9d6945d64dae3882d1423b150d0990
-  data.tar.gz: ffaf22e836a4ac4a744366ec67dd75515e5329d8cfcd774f741fab9c609a1fcf43f0031dbd06d31d76764cac3e99be6d455987e42fd2db04e879448787fc4008
+  metadata.gz: 1efffe3228c31202824cbfb64e85b9c0a72cb54ecf618b23f5270c6f834b41005134df4f2c6880ba53fa84f2aac4763e05084f34dae35c7ee2e964c13e6f2a42
+  data.tar.gz: 2d993e6609baccf618080b6ec80d764db82a81e5321f6485687ac874c16ab483f0c288a96c8f71ca6a0a3fcf4d68d37bdd1ed26afcb1621ae6b6c42912cbe8bf

data/.rubocop.yml

@@ -2,9 +2,12 @@ require:
   - rubocop-rake
 
 AllCops:
-  TargetRubyVersion: 2.4
+  TargetRubyVersion: 2.7
   NewCops: enable
 
+Gemspec/DevelopmentDependencies:
+  Enabled: false
+
 Metrics/BlockLength:
   Exclude:
     - fluent-plugin-ssl-check.gemspec
@@ -13,6 +16,7 @@ Metrics/BlockLength:
 Metrics/ClassLength:
   Exclude:
     - test/**/*.rb
+    - lib/fluent/plugin/in_ssl_check.rb
 
 Metrics/MethodLength:
   Max: 20

data/.ruby-version

@@ -1 +1 @@
-2.4.10
+2.7.7

data/Gemfile.lock

@@ -1,85 +1,95 @@
 PATH
   remote: .
   specs:
-    fluent-plugin-ssl-check (0.1.1)
+    fluent-plugin-ssl-check (1.0.0)
       fluentd (>= 0.14.10, < 2)
 
 GEM
   remote: https://rubygems.org/
   specs:
     ast (2.4.2)
+    base64 (0.1.1)
     bump (0.10.0)
     byebug (11.1.3)
     concurrent-ruby (1.2.2)
-    cool.io (1.7.1)
-    fluentd (1.16.1)
+    cool.io (1.8.0)
+    fluentd (1.16.2)
       bundler
       cool.io (>= 1.4.5, < 2.0.0)
       http_parser.rb (>= 0.5.1, < 0.9.0)
       msgpack (>= 1.3.1, < 2.0.0)
       serverengine (>= 2.3.2, < 3.0.0)
-      sigdump (~> 0.2.2)
+      sigdump (~> 0.2.5)
       strptime (>= 0.2.4, < 1.0.0)
       tzinfo (>= 1.0, < 3.0)
       tzinfo-data (~> 1.0)
       webrick (~> 1.4)
       yajl-ruby (~> 1.0)
     http_parser.rb (0.8.0)
+    json (2.6.3)
     kwalify (0.7.2)
-    msgpack (1.6.1)
-    parallel (1.20.1)
-    parser (3.0.3.2)
+    language_server-protocol (3.17.0.3)
+    msgpack (1.7.2)
+    parallel (1.23.0)
+    parser (3.2.2.3)
       ast (~> 2.4.1)
+      racc
     power_assert (2.0.3)
+    racc (1.7.1)
     rainbow (3.1.1)
     rake (13.0.6)
-    reek (6.0.6)
+    reek (6.1.4)
       kwalify (~> 0.7.0)
-      parser (~> 3.0.0)
+      parser (~> 3.2.0)
       rainbow (>= 2.0, < 4.0)
     regexp_parser (2.8.1)
-    rexml (3.2.5)
-    rubocop (1.12.1)
+    rexml (3.2.6)
+    rubocop (1.56.0)
+      base64 (~> 0.1.1)
+      json (~> 2.3)
+      language_server-protocol (>= 3.17.0)
       parallel (~> 1.10)
-      parser (>= 3.0.0.0)
+      parser (>= 3.2.2.3)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 1.8, < 3.0)
-      rexml
-      rubocop-ast (>= 1.2.0, < 2.0)
+      rexml (>= 3.2.5, < 4.0)
+      rubocop-ast (>= 1.28.1, < 2.0)
       ruby-progressbar (~> 1.7)
-      unicode-display_width (>= 1.4.0, < 3.0)
-    rubocop-ast (1.4.1)
-      parser (>= 2.7.1.5)
-    rubocop-rake (0.5.1)
-      rubocop
+      unicode-display_width (>= 2.4.0, < 3.0)
+    rubocop-ast (1.29.0)
+      parser (>= 3.2.1.0)
+    rubocop-rake (0.6.0)
+      rubocop (~> 1.0)
     ruby-progressbar (1.13.0)
     serverengine (2.3.2)
       sigdump (~> 0.2.2)
     sigdump (0.2.5)
     strptime (0.2.5)
-    test-unit (3.5.9)
+    test-unit (3.6.1)
       power_assert
+    timecop (0.9.6)
     tzinfo (2.0.6)
       concurrent-ruby (~> 1.0)
     tzinfo-data (1.2023.3)
       tzinfo (>= 1.0.0)
     unicode-display_width (2.4.2)
     webrick (1.8.1)
-    yajl-ruby (1.4.1)
+    yajl-ruby (1.4.3)
 
 PLATFORMS
   x86_64-linux
 
 DEPENDENCIES
   bump (~> 0.10.0)
-  bundler (~> 2.2)
+  bundler (~> 2.4)
   byebug (~> 11.1, >= 11.1.3)
   fluent-plugin-ssl-check!
-  rake (~> 13.0.6)
-  reek (~> 6.0.6)
-  rubocop (~> 1.12.1)
-  rubocop-rake (~> 0.5.1)
-  test-unit (~> 3.5.7)
+  rake (~> 13.0, >= 13.0.6)
+  reek (~> 6.1, >= 6.1.4)
+  rubocop (~> 1.56)
+  rubocop-rake (~> 0.6.0)
+  test-unit (~> 3.6, >= 3.6.1)
+  timecop (~> 0.9.6)
 
 BUNDLED WITH
-   2.2.15
+   2.4.18

data/README.md

@@ -13,7 +13,7 @@ Example:
 ``` conf
 <source>
   @type ssl_check
-  tag ssh_check
+  tag ssl_check
 
   host my-service.com
   port 443

data/fluent-plugin-ssl-check.gemspec

@@ -5,7 +5,7 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 
 Gem::Specification.new do |spec|
   spec.name    = 'fluent-plugin-ssl-check'
-  spec.version = '0.1.1'
+  spec.version = '1.0.0'
   spec.authors = ['Thomas Tych']
   spec.email   = ['thomas.tych@gmail.com']
 
@@ -13,28 +13,26 @@ Gem::Specification.new do |spec|
   spec.homepage      = 'https://gitlab.com/ttych/fluent-plugin-ssl-check'
   spec.license       = 'Apache-2.0'
 
-  spec.required_ruby_version = '>= 2.4.0'
+  spec.required_ruby_version = '>= 2.7.0'
 
-  test_files, files = `git ls-files -z`.split("\x0").partition do |f|
+  spec.metadata['rubygems_mfa_required'] = 'true'
+
+  _, files = `git ls-files -z`.split("\x0").partition do |f|
     f.match(%r{^(test|spec|features)/})
   end
   spec.files         = files
   spec.executables   = files.grep(%r{^bin/}) { |f| File.basename(f) }
-  spec.test_files    = test_files
   spec.require_paths = ['lib']
 
-  # commented dependency use blocked old versions
-  # for compatibility with ruby 2.4.10
-  # for old version of td-agent
-
   spec.add_development_dependency 'bump', '~> 0.10.0'
-  spec.add_development_dependency 'bundler', '~> 2.2'
+  spec.add_development_dependency 'bundler', '~> 2.4'
   spec.add_development_dependency 'byebug', '~> 11.1', '>= 11.1.3'
-  spec.add_development_dependency 'rake', '~> 13.0.6'
-  spec.add_development_dependency 'reek', '~> 6.0.6' # < 6.1.x to work with ruby 2.4.10
-  spec.add_development_dependency 'rubocop', '~> 1.12.1' # < 1.13.x to work with ruby 2.4.10
-  spec.add_development_dependency 'rubocop-rake', '~> 0.5.1' # < 0.6.x to work with ruby 2.4.10
-  spec.add_development_dependency 'test-unit', '~> 3.5.7'
+  spec.add_development_dependency 'rake', '~> 13.0', '>= 13.0.6'
+  spec.add_development_dependency 'reek', '~> 6.1', '>= 6.1.4'
+  spec.add_development_dependency 'rubocop', '~> 1.56'
+  spec.add_development_dependency 'rubocop-rake', '~> 0.6.0'
+  spec.add_development_dependency 'test-unit', '~> 3.6', '>= 3.6.1'
+  spec.add_development_dependency 'timecop', '~> 0.9.6'
 
   spec.add_runtime_dependency 'fluentd', ['>= 0.14.10', '< 2']
 end

data/lib/fluent/plugin/extensions/time.rb

@@ -1,10 +1,12 @@
 # frozen_string_literal: true
 
-module Fluent
-  # extension
-  class EventTime
-    def to_epochmillis
-      @sec * 1_000 + @nsec / 1_000_000
-    end
+
+class Time
+  def to_epochmillis
+    (to_f * 1000).to_i
+  end
+
+  def to_iso
+    iso8601(3)
   end
 end

data/lib/fluent/plugin/in_ssl_check.rb

@@ -37,6 +37,9 @@ module Fluent
       DEFAULT_PORT = 443
       DEFAULT_TIME = 600
       DEFAULT_TIMEOUT = 5
+      DEFAULT_LOG_EVENTS = true
+      DEFAULT_METRIC_EVENTS = false
+      DEFAULT_EVENT_PREFIX = ''
 
       desc 'Tag to emit events on'
       config_param :tag, :string, default: DEFAULT_TAG
@@ -55,6 +58,15 @@ module Fluent
       desc 'Timeout for check'
       config_param :timeout, :integer, default: DEFAULT_TIMEOUT
 
+      desc 'Emit log events'
+      config_param :log_events, :bool, default: DEFAULT_LOG_EVENTS
+      desc 'Emit metric events'
+      config_param :metric_events, :bool, default: DEFAULT_METRIC_EVENTS
+      desc 'Event prefix'
+      config_param :event_prefix, :string, default: DEFAULT_EVENT_PREFIX
+      desc 'Timestamp format'
+      config_param :timestamp_format, :enum, list: %i[iso epochmillis], default: :iso
+
       helpers :timer
 
       # rubocop:disable Metrics/AbcSize, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
@@ -83,69 +95,103 @@ module Fluent
       end
 
       def check
-        time = now
-
         ssl_info = fetch_ssl_info
-        router.emit(tag, time, event_status(time, ssl_info))
-        router.emit(tag, time, event_expirency(time, ssl_info))
-      rescue StandardError
-        router.emit(tag, time, event_status_failure(time))
+
+        emit_logs(ssl_info) if log_events
+        emit_metrics(ssl_info) if metric_events
       end
 
       def fetch_ssl_info
         @ssl_client.ssl_info
       end
 
-      def event_status(time, ssl_info)
-        {
-          'timestamp' => time.to_epochmillis,
-          'name' => 'ssl_status',
-          'value' => 1,
+      def emit_logs(ssl_info)
+        record = {
+          'timestamp' => ssl_info.time.send("to_#{timestamp_format}"),
+          'status' => ssl_info.status,
           'host' => host,
           'port' => port,
           'ssl_version' => ssl_info.ssl_version,
-          'ssl_dn' => ssl_info.subject_s
+          'ssl_dn' => ssl_info.subject_s,
+          'ssl_not_after' => ssl_info.not_after,
+          'expire_in_days' => ssl_info.expire_in_days
         }
+        router.emit(tag, Fluent::EventTime.from_time(ssl_info.time), record)
       end
 
-      def event_status_failure(time)
-        {
-          'timestamp' => time.to_epochmillis,
-          'name' => 'ssl_status',
-          'value' => 0,
-          'host' => host,
-          'port' => port
-        }
+      def emit_metrics(ssl_info)
+        emit_metric_status(ssl_info)
+        emit_metric_expirency(ssl_info)
       end
 
-      def event_expirency(time, ssl_info)
-        {
-          'timestamp' => time.to_epochmillis,
-          'name' => 'ssl_expirency',
-          'value' => ssl_info.expire_in_day(time),
-          'host' => host,
-          'port' => port,
-          'ssl_version' => ssl_info.ssl_version,
-          'ssl_dn' => ssl_info.subject_s
+      # rubocop:disable Metrics/AbcSize
+      def emit_metric_status(ssl_info)
+        record = {
+          'timestamp' => ssl_info.time.send("to_#{timestamp_format}"),
+          'metric_name' => 'ssl_status',
+          'metric_value' => ssl_info.status,
+          "#{event_prefix}host" => host,
+          "#{event_prefix}port" => port,
+          "#{event_prefix}ssl_dn" => ssl_info.subject_s,
+          "#{event_prefix}ssl_version" => ssl_info.ssl_version,
+          "#{event_prefix}ssl_not_after" => ssl_info.not_after
         }
+        router.emit(tag, Fluent::EventTime.from_time(ssl_info.time), record)
       end
-
-      def now
-        Fluent::Engine.now
+      # rubocop:enable Metrics/AbcSize
+
+      def emit_metric_expirency(ssl_info)
+        return if ssl_info.error
+
+        record = {
+          'timestamp' => ssl_info.time.send("to_#{timestamp_format}"),
+          'metric_name' => 'ssl_expirency',
+          'metric_value' => ssl_info.expire_in_days,
+          "#{event_prefix}host" => host,
+          "#{event_prefix}port" => port,
+          "#{event_prefix}ssl_dn" => ssl_info.subject_s
+        }
+        router.emit(tag, Fluent::EventTime.from_time(ssl_info.time), record)
       end
 
       # ssl info
       #  to encapsulate extracted ssl information
-      SslInfo = Struct.new(:cert, :cert_chain, :ssl_version) do
+      class SslInfo
+        OK = 1
+        KO = 0
+
+        attr_reader :time
+        attr_accessor :cert, :cert_chain, :ssl_version, :error
+
+        def initialize(cert: nil, cert_chain: nil, ssl_version: nil, error: nil, time: Time.now)
+          @cert = cert
+          @cert_chain = cert_chain
+          @ssl_version = ssl_version
+          @error = error
+          @time = time
+        end
+
         def subject_s
-          cert.subject.to_s
+          cert.subject.to_s if cert&.subject
         end
 
-        def expire_in_day(from = Date.today)
-          from = from.to_time.to_date
-          expire_in = cert.not_after.to_date
+        def expire_in_days
+          return unless cert&.not_after
 
-          (expire_in - from).to_i
+          expire_in = cert.not_after
+          ((expire_in - time) / 3600 / 24).to_i
+        end
+
+        def not_after
+          return unless cert
+
+          cert.not_after.iso8601(3)
+        end
+
+        def status
+          return KO if error
+
+          OK
         end
       end
 
@@ -162,33 +208,34 @@ module Fluent
           @timeout = timeout
         end
 
+        # rubocop:disable Metrics/AbcSize
         def ssl_info
-          Timeout.timeout(timeout) do
-            tcp_socket = TCPSocket.open(host, port)
-            ssl_socket = OpenSSL::SSL::SSLSocket.new(tcp_socket, ssl_context)
-            ssl_socket.connect
-
-            # cert_store.verify(ssl_socket.peer_cert, ssl_socket.peer_cert_chain)
-
-            ssl_info = SslInfo.new(
-              OpenSSL::X509::Certificate.new(ssl_socket.peer_cert),
-              ssl_socket.peer_cert_chain,
-              ssl_socket.ssl_socket.ssl_version
-            )
-
-            ssl_socket.sysclose
-            tcp_socket.close
-
-            ssl_info
+          info = SslInfo.new
+          begin
+            Timeout.timeout(timeout) do
+              tcp_socket = TCPSocket.open(host, port)
+              ssl_socket = OpenSSL::SSL::SSLSocket.new(tcp_socket, ssl_context)
+              ssl_socket.connect
+              ssl_socket.sysclose
+              tcp_socket.close
+
+              # cert_store.verify(ssl_socket.peer_cert, ssl_socket.peer_cert_chain)
+              info.cert = ssl_socket.peer_cert
+              info.cert_chain = ssl_socket.peer_cert_chain
+              info.ssl_version = ssl_socket.ssl_version
+            end
+          rescue StandardError => e
+            info.error = e.to_s
           end
+          info
         end
+        # rubocop:enable Metrics/AbcSize
 
         def store
           OpenSSL::X509::Store.new.tap do |store|
-            store.set_default_paths if !ca_path && !ca_file
-
-            cert_store.add_path(ca_path) if ca_path
-            cert_store.add_file(ca_file) if ca_file
+            store.set_default_paths
+            store.add_path(ca_path) if ca_path
+            store.add_file(ca_file) if ca_file
           end
         end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: fluent-plugin-ssl-check
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 1.0.0
 platform: ruby
 authors:
 - Thomas Tych
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-07-10 00:00:00.000000000 Z
+date: 2023-08-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bump
@@ -30,14 +30,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.2'
+        version: '2.4'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.2'
+        version: '2.4'
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement
@@ -63,6 +63,9 @@ dependencies:
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 13.0.6
   type: :development
@@ -70,6 +73,9 @@ dependencies:
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+    - - ">="
       - !ruby/object:Gem::Version
         version: 13.0.6
 - !ruby/object:Gem::Dependency
@@ -78,56 +84,82 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 6.0.6
+        version: '6.1'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 6.1.4
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 6.0.6
+        version: '6.1'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 6.1.4
 - !ruby/object:Gem::Dependency
   name: rubocop
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.12.1
+        version: '1.56'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.12.1
+        version: '1.56'
 - !ruby/object:Gem::Dependency
   name: rubocop-rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.5.1
+        version: 0.6.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.5.1
+        version: 0.6.0
 - !ruby/object:Gem::Dependency
   name: test-unit
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.5.7
+        version: '3.6'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.6.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.6'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.6.1
+- !ruby/object:Gem::Dependency
+  name: timecop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.9.6
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.5.7
+        version: 0.9.6
 - !ruby/object:Gem::Dependency
   name: fluentd
   requirement: !ruby/object:Gem::Requirement
@@ -166,12 +198,11 @@ files:
 - fluent-plugin-ssl-check.gemspec
 - lib/fluent/plugin/extensions/time.rb
 - lib/fluent/plugin/in_ssl_check.rb
-- test/fluent/plugin/test_in_ssl_check.rb
-- test/helper.rb
 homepage: https://gitlab.com/ttych/fluent-plugin-ssl-check
 licenses:
 - Apache-2.0
-metadata: {}
+metadata:
+  rubygems_mfa_required: 'true'
 post_install_message:
 rdoc_options: []
 require_paths:
@@ -180,7 +211,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.4.0
+      version: 2.7.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -191,6 +222,4 @@ rubygems_version: 3.1.6
 signing_key:
 specification_version: 4
 summary: fluentd plugin to check ssl endpoint
-test_files:
-- test/fluent/plugin/test_in_ssl_check.rb
-- test/helper.rb
+test_files: []

data/test/fluent/plugin/test_in_ssl_check.rb

@@ -1,171 +0,0 @@
-# frozen_string_literal: true
-
-require 'helper'
-require 'fluent/plugin/in_ssl_check'
-
-# unit test for SslCheckInputTest / ssl_check input plugin
-class SslCheckInputTest < Test::Unit::TestCase
-  setup do
-    Fluent::Test.setup
-  end
-
-  # configuration
-  sub_test_case 'configuration' do
-    test 'default configuration' do
-      driver = create_driver
-      input = driver.instance
-
-      assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_TAG, input.tag
-      assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_HOST, input.host
-      assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_PORT, input.port
-      assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_TIME, input.interval
-      assert_equal nil, input.ca_path
-      assert_equal nil, input.ca_file
-      assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_TIMEOUT, input.timeout
-    end
-
-    test 'tag can not be empty' do
-      conf = %(
-        #{DEFAULT_CONF}
-        tag
-      )
-      assert_raise(Fluent::ConfigError) do
-        create_driver(conf)
-      end
-    end
-
-    test 'host can not be empty' do
-      conf = %(
-        #{DEFAULT_CONF}
-        host
-      )
-      assert_raise(Fluent::ConfigError) do
-        create_driver(conf)
-      end
-    end
-
-    test 'port can not be < 1' do
-      conf = %(
-        #{DEFAULT_CONF}
-        port 0
-      )
-      assert_raise(Fluent::ConfigError) do
-        create_driver(conf)
-      end
-    end
-
-    test 'interval can not be < 1' do
-      conf = %(
-        #{DEFAULT_CONF}
-        interval 0
-      )
-      assert_raise(Fluent::ConfigError) do
-        create_driver(conf)
-      end
-    end
-
-    test 'ca_path should be a valid directory' do
-      conf = %(
-        #{DEFAULT_CONF}
-        ca_path /nonexistent/dir
-      )
-      assert_raise(Fluent::ConfigError) do
-        create_driver(conf)
-      end
-    end
-
-    test 'ca_file should be a valid file' do
-      conf = %(
-        #{DEFAULT_CONF}
-        ca_file /nonexistent/file
-      )
-      assert_raise(Fluent::ConfigError) do
-        create_driver(conf)
-      end
-    end
-  end
-
-  # check
-  sub_test_case 'check' do
-    # test 'check non existing service' do
-    #   conf = %(
-    #     #{DEFAULT_CONF}
-    #     host 127.0.0.2
-    #     port 1272
-    #     interval 1
-    #   )
-    #   driver = create_driver(conf)
-    #   mock_driver_timer(driver)
-    #   # driver.run(expect_emits: 1, timeout: 5)
-    #   driver.instance.check
-
-    #   events = driver.events
-
-    #   assert_equal 1, events.size
-    #   assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_TAG, events.first.first
-    #   assert_equal({"host" => "127.0.0.2",
-    #                  "name" => "ssl_status",
-    #                  "port" => 1272,
-    #                  "timestamp" => 1688680800000,
-    #                  "value" => 0}, events.first.last)
-    # end
-
-    test 'check with fake ssl_info' do
-      driver = create_driver
-      mock_driver_timer(driver)
-      mock_driver_ssl_info(driver)
-
-      # driver.run(expect_emits: 2, timeout: 5)
-      driver.instance.check
-
-      events = driver.events
-
-      assert_equal 2, events.size
-      assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_TAG, events[0].first
-      assert_equal({ 'host' => 'localhost',
-                     'name' => 'ssl_status',
-                     'port' => 443,
-                     'timestamp' => 1_688_680_800_000,
-                     'value' => 1,
-                     'ssl_dn' => '/CN=TEST',
-                     'ssl_version' => 'ssl_version' }, events[0].last)
-      assert_equal Fluent::Plugin::SslCheckInput::DEFAULT_TAG, events[1].first
-      assert_equal({ 'host' => 'localhost',
-                     'name' => 'ssl_expirency',
-                     'port' => 443,
-                     'timestamp' => 1_688_680_800_000,
-                     'value' => 729,
-                     'ssl_dn' => '/CN=TEST',
-                     'ssl_version' => 'ssl_version' }, events[1].last)
-    end
-  end
-
-  private
-
-  DEFAULT_CONF = %()
-  MOCKED_TIME = Time.parse('2023-07-07')
-  def create_driver(conf = DEFAULT_CONF)
-    Fluent::Test::Driver::Input.new(Fluent::Plugin::SslCheckInput).configure(conf)
-  end
-
-  def mock_driver_timer(driver)
-    driver.instance.define_singleton_method :now do
-      Fluent::EventTime.from_time(MOCKED_TIME)
-    end
-  end
-
-  def mock_driver_ssl_info(driver)
-    driver.instance.define_singleton_method :fetch_ssl_info do
-      certificate = OpenSSL::X509::Certificate.new.tap do |cert|
-        cert.subject = OpenSSL::X509::Name.parse '/CN=TEST'
-        cert.not_after = MOCKED_TIME + 2 * 365 * 24 * 60 * 60  # 2 years
-      end
-
-      Fluent::Plugin::SslCheckInput::SslInfo.new(
-        certificate,
-        nil,
-        'ssl_version'
-      )
-    end
-  end
-end

data/test/helper.rb

@@ -1,9 +0,0 @@
-# frozen_string_literal: true
-
-require 'test-unit'
-require 'fluent/test'
-require 'fluent/test/driver/input'
-require 'fluent/test/helpers'
-
-Test::Unit::TestCase.include(Fluent::Test::Helpers)
-Test::Unit::TestCase.extend(Fluent::Test::Helpers)