marianarossi
diff --git a/‎s2a/src/test/java/io/grpc/s2a/S2AChannelCredentialsTest.java‎
Lines changed: 7 additions & 9 deletions b/‎s2a/src/test/java/io/grpc/s2a/S2AChannelCredentialsTest.java‎
Lines changed: 7 additions & 9 deletions
diff --git a/‎s2a/src/test/java/io/grpc/s2a/internal/channel/S2AHandshakerServiceChannelTest.java‎
Lines changed: 9 additions & 7 deletions b/‎s2a/src/test/java/io/grpc/s2a/internal/channel/S2AHandshakerServiceChannelTest.java‎
Lines changed: 9 additions & 7 deletions
diff --git a/‎s2a/src/test/java/io/grpc/s2a/internal/handshaker/FakeS2AServerTest.java‎
Lines changed: 18 additions & 7 deletions b/‎s2a/src/test/java/io/grpc/s2a/internal/handshaker/FakeS2AServerTest.java‎
Lines changed: 18 additions & 7 deletions
diff --git a/‎s2a/src/test/java/io/grpc/s2a/internal/handshaker/FakeWriter.java‎
Lines changed: 81 additions & 60 deletions b/‎s2a/src/test/java/io/grpc/s2a/internal/handshaker/FakeWriter.java‎
Lines changed: 81 additions & 60 deletions
@@ -22,7 +22,7 @@
 import io.grpc.ChannelCredentials;
 import io.grpc.InsecureChannelCredentials;
 import io.grpc.TlsChannelCredentials;
-import java.io.File;
+import java.io.InputStream;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.junit.runners.JUnit4;
@@ -124,15 +124,13 @@ public void build_withUseMtlsToS2AWithLocalUid_success() throws Exception {
   }
 
   private static ChannelCredentials getTlsChannelCredentials() throws Exception {
-    String privateKeyPath = "src/test/resources/client_key.pem";
-    String certChainPath = "src/test/resources/client_cert.pem";
-    String trustBundlePath = "src/test/resources/root_cert.pem";
-    File privateKeyFile = new File(privateKeyPath);
-    File certChainFile = new File(certChainPath);
-    File trustBundleFile = new File(trustBundlePath);
+    ClassLoader classLoader = S2AChannelCredentialsTest.class.getClassLoader();
+    InputStream privateKey = classLoader.getResourceAsStream("client_key.pem");
+    InputStream certChain = classLoader.getResourceAsStream("client_cert.pem");
+    InputStream trustBundle = classLoader.getResourceAsStream("root_cert.pem");
     return TlsChannelCredentials.newBuilder()
-      .keyManager(certChainFile, privateKeyFile)
-      .trustManager(trustBundleFile)
+      .keyManager(certChain, privateKey)
+      .trustManager(trustBundle)
       .build();
   }
 }
@@ -37,7 +37,7 @@
 import io.grpc.testing.protobuf.SimpleRequest;
 import io.grpc.testing.protobuf.SimpleResponse;
 import io.grpc.testing.protobuf.SimpleServiceGrpc;
-import java.io.File;
+import java.io.InputStream;
 import org.junit.Before;
 import org.junit.ClassRule;
 import org.junit.Test;
@@ -218,9 +218,10 @@ public void create_mtlsSucceedsAfterCloseIsCalledOnce() throws Exception {
 
   private static Server createMtlsServer() throws Exception {
     SimpleServiceImpl service = new SimpleServiceImpl();
-    File serverCert = new File("src/test/resources/server_cert.pem");
-    File serverKey = new File("src/test/resources/server_key.pem");
-    File rootCert = new File("src/test/resources/root_cert.pem");
+    ClassLoader classLoader = S2AHandshakerServiceChannelTest.class.getClassLoader();
+    InputStream serverCert = classLoader.getResourceAsStream("server_cert.pem");
+    InputStream serverKey = classLoader.getResourceAsStream("server_key.pem");
+    InputStream rootCert = classLoader.getResourceAsStream("root_cert.pem");
     ServerCredentials creds =
         TlsServerCredentials.newBuilder()
             .keyManager(serverCert, serverKey)
@@ -238,9 +239,10 @@ private static Server createPlaintextServer() {
   }
 
   private static ChannelCredentials getTlsChannelCredentials() throws Exception {
-    File clientCert = new File("src/test/resources/client_cert.pem");
-    File clientKey = new File("src/test/resources/client_key.pem");
-    File rootCert = new File("src/test/resources/root_cert.pem");
+    ClassLoader classLoader = S2AHandshakerServiceChannelTest.class.getClassLoader();
+    InputStream clientCert = classLoader.getResourceAsStream("client_cert.pem");
+    InputStream clientKey = classLoader.getResourceAsStream("client_key.pem");
+    InputStream rootCert = classLoader.getResourceAsStream("root_cert.pem");
     return TlsChannelCredentials.newBuilder()
             .keyManager(clientCert, clientKey)
             .trustManager(rootCert)
 
@@ -30,8 +30,8 @@
 import io.grpc.s2a.internal.handshaker.ValidatePeerCertificateChainReq.VerificationMode;
 import io.grpc.stub.StreamObserver;
 import java.io.IOException;
+import java.io.InputStream;
 import java.nio.charset.StandardCharsets;
-import java.nio.file.Files;
 import java.util.concurrent.CountDownLatch;
 import java.util.concurrent.ExecutorService;
 import java.util.concurrent.Executors;
@@ -118,18 +118,29 @@ public void onCompleted() {
       executor.awaitTermination(1, SECONDS);
     }
 
+    String leafCertString = "";
+    String cert2String = "";
+    String cert1String = "";
+    ClassLoader classLoader = FakeS2AServerTest.class.getClassLoader();
+    try (
+        InputStream leafCert = classLoader.getResourceAsStream("leaf_cert_ec.pem");
+        InputStream cert2 = classLoader.getResourceAsStream("int_cert2_ec.pem");
+        InputStream cert1 = classLoader.getResourceAsStream("int_cert1_ec.pem");
+    ) {
+      leafCertString = FakeWriter.convertInputStreamToString(leafCert);
+      cert2String = FakeWriter.convertInputStreamToString(cert2);
+      cert1String = FakeWriter.convertInputStreamToString(cert1);
+    }
+
     SessionResp expected =
         SessionResp.newBuilder()
             .setGetTlsConfigurationResp(
                 GetTlsConfigurationResp.newBuilder()
                     .setClientTlsConfiguration(
                         GetTlsConfigurationResp.ClientTlsConfiguration.newBuilder()
-                            .addCertificateChain(new String(Files.readAllBytes(
-                              FakeWriter.leafCertFile.toPath()), StandardCharsets.UTF_8))
-                            .addCertificateChain(new String(Files.readAllBytes(
-                              FakeWriter.cert1File.toPath()), StandardCharsets.UTF_8))
-                            .addCertificateChain(new String(Files.readAllBytes(
-                              FakeWriter.cert2File.toPath()), StandardCharsets.UTF_8))
+                            .addCertificateChain(leafCertString)
+                            .addCertificateChain(cert1String)
+                            .addCertificateChain(cert2String)
                             .setMinTlsVersion(TLSVersion.TLS_VERSION_1_3)
                             .setMaxTlsVersion(TLSVersion.TLS_VERSION_1_3)
                             .addCiphersuites(
 
@@ -20,17 +20,17 @@
 import static io.grpc.s2a.internal.handshaker.TLSVersion.TLS_VERSION_1_3;
 
 import com.google.common.collect.ImmutableMap;
+import com.google.common.io.CharStreams;
 import com.google.errorprone.annotations.CanIgnoreReturnValue;
 import com.google.protobuf.ByteString;
 import io.grpc.stub.StreamObserver;
 import io.grpc.util.CertificateUtils;
-import java.io.File;
-import java.io.FileInputStream;
 import java.io.FileNotFoundException;
 import java.io.IOException;
+import java.io.InputStream;
+import java.io.InputStreamReader;
 import java.io.UnsupportedEncodingException;
 import java.nio.charset.StandardCharsets;
-import java.nio.file.Files;
 import java.security.NoSuchAlgorithmException;
 import java.security.PrivateKey;
 import java.security.Signature;
@@ -54,14 +54,7 @@ enum VerificationResult {
     FAILURE
   }
 
-  public static final File leafCertFile =
-      new File("src/test/resources/leaf_cert_ec.pem");
-  public static final File cert2File =
-      new File("src/test/resources/int_cert2_ec.pem");
-  public static final File cert1File =
-      new File("src/test/resources/int_cert1_ec.pem");
-  public static final File keyFile = 
-      new File("src/test/resources/leaf_key_ec.pem");
+  private static final ClassLoader classLoader = FakeWriter.class.getClassLoader();
   private static final ImmutableMap<SignatureAlgorithm, String>
       ALGORITHM_TO_SIGNATURE_INSTANCE_IDENTIFIER =
           ImmutableMap.of(
@@ -79,6 +72,10 @@ enum VerificationResult {
   private String failureReason;
   private PrivateKey privateKey;
 
+  public static String convertInputStreamToString(InputStream is) throws IOException {
+    return CharStreams.toString(new InputStreamReader(is, StandardCharsets.UTF_8));
+  }
+
   @CanIgnoreReturnValue
   FakeWriter setReader(StreamObserver<SessionResp> reader) {
     this.reader = reader;
@@ -106,11 +103,10 @@ FakeWriter setFailureReason(String failureReason) {
   @CanIgnoreReturnValue
   FakeWriter initializePrivateKey() throws InvalidKeySpecException, NoSuchAlgorithmException,
                     IOException, FileNotFoundException, UnsupportedEncodingException {
-    FileInputStream keyInputStream = new FileInputStream(keyFile);
-    try {
+    try (
+        InputStream keyInputStream = classLoader.getResourceAsStream("leaf_key_ec.pem");
+    ) {
       privateKey = CertificateUtils.getPrivateKey(keyInputStream);
-    } finally {
-      keyInputStream.close();
     }
     return this;
   }
@@ -130,32 +126,39 @@ void sendIoError() {
   }
 
   void sendGetTlsConfigResp() {
-    try {
-      reader.onNext(
-          SessionResp.newBuilder()
-              .setGetTlsConfigurationResp(
-                  GetTlsConfigurationResp.newBuilder()
-                      .setClientTlsConfiguration(
-                          GetTlsConfigurationResp.ClientTlsConfiguration.newBuilder()
-                              .addCertificateChain(new String(Files.readAllBytes(
-                                FakeWriter.leafCertFile.toPath()), StandardCharsets.UTF_8))
-                              .addCertificateChain(new String(Files.readAllBytes(
-                                FakeWriter.cert1File.toPath()), StandardCharsets.UTF_8))
-                              .addCertificateChain(new String(Files.readAllBytes(
-                                FakeWriter.cert2File.toPath()), StandardCharsets.UTF_8))
-                              .setMinTlsVersion(TLS_VERSION_1_3)
-                              .setMaxTlsVersion(TLS_VERSION_1_3)
-                              .addCiphersuites(
-                                  Ciphersuite.CIPHERSUITE_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256)
-                              .addCiphersuites(
-                                  Ciphersuite.CIPHERSUITE_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384)
-                              .addCiphersuites(
-                                  Ciphersuite
-                                  .CIPHERSUITE_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256)))
-              .build());
+    String leafCertString = "";
+    String cert2String = "";
+    String cert1String = "";
+    try (
+        InputStream leafCert = classLoader.getResourceAsStream("leaf_cert_ec.pem");
+        InputStream cert2 = classLoader.getResourceAsStream("int_cert2_ec.pem");
+        InputStream cert1 = classLoader.getResourceAsStream("int_cert1_ec.pem");
+    ) {
+      leafCertString = FakeWriter.convertInputStreamToString(leafCert);
+      cert2String = FakeWriter.convertInputStreamToString(cert2);
+      cert1String = FakeWriter.convertInputStreamToString(cert1);
     } catch (IOException e) {
       reader.onError(e);
     }
+    reader.onNext(
+        SessionResp.newBuilder()
+            .setGetTlsConfigurationResp(
+                GetTlsConfigurationResp.newBuilder()
+                    .setClientTlsConfiguration(
+                        GetTlsConfigurationResp.ClientTlsConfiguration.newBuilder()
+                            .addCertificateChain(leafCertString)
+                            .addCertificateChain(cert1String)
+                            .addCertificateChain(cert2String)
+                            .setMinTlsVersion(TLS_VERSION_1_3)
+                            .setMaxTlsVersion(TLS_VERSION_1_3)
+                            .addCiphersuites(
+                                Ciphersuite.CIPHERSUITE_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256)
+                            .addCiphersuites(
+                                Ciphersuite.CIPHERSUITE_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384)
+                            .addCiphersuites(
+                                Ciphersuite
+                                .CIPHERSUITE_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256)))
+            .build());
   }
 
   boolean isFakeWriterClosed() {
@@ -191,25 +194,32 @@ public void onNext(SessionReq sessionReq) {
         reader.onCompleted();
         break;
       case BAD_TLS_VERSION_RESPONSE:
-        try {
-          reader.onNext(
-              SessionResp.newBuilder()
-                  .setGetTlsConfigurationResp(
-                      GetTlsConfigurationResp.newBuilder()
-                          .setClientTlsConfiguration(
-                              GetTlsConfigurationResp.ClientTlsConfiguration.newBuilder()
-                                  .addCertificateChain(new String(Files.readAllBytes(
-                                    FakeWriter.leafCertFile.toPath()), StandardCharsets.UTF_8))
-                                  .addCertificateChain(new String(Files.readAllBytes(
-                                    FakeWriter.cert1File.toPath()), StandardCharsets.UTF_8))
-                                  .addCertificateChain(new String(Files.readAllBytes(
-                                    FakeWriter.cert2File.toPath()), StandardCharsets.UTF_8))
-                                  .setMinTlsVersion(TLS_VERSION_1_3)
-                                  .setMaxTlsVersion(TLS_VERSION_1_2)))
-                  .build());
+        String leafCertString = "";
+        String cert2String = "";
+        String cert1String = "";
+        try (
+            InputStream leafCert = classLoader.getResourceAsStream("leaf_cert_ec.pem");
+            InputStream cert2 = classLoader.getResourceAsStream("int_cert2_ec.pem");
+            InputStream cert1 = classLoader.getResourceAsStream("int_cert1_ec.pem");
+        ) {
+          leafCertString = FakeWriter.convertInputStreamToString(leafCert);
+          cert2String = FakeWriter.convertInputStreamToString(cert2);
+          cert1String = FakeWriter.convertInputStreamToString(cert1);
         } catch (IOException e) {
           reader.onError(e);
         }
+        reader.onNext(
+            SessionResp.newBuilder()
+                .setGetTlsConfigurationResp(
+                    GetTlsConfigurationResp.newBuilder()
+                        .setClientTlsConfiguration(
+                            GetTlsConfigurationResp.ClientTlsConfiguration.newBuilder()
+                                .addCertificateChain(leafCertString)
+                                .addCertificateChain(cert1String)
+                                .addCertificateChain(cert2String)
+                                .setMinTlsVersion(TLS_VERSION_1_3)
+                                .setMaxTlsVersion(TLS_VERSION_1_2)))
+                .build());
         break;
       default:
         try {
@@ -249,17 +259,28 @@ private SessionResp handleGetTlsConfigurationReq(GetTlsConfigurationReq req)
                   .setDetails("No TLS configuration for the server side."))
           .build();
     }
+    String leafCertString = "";
+    String cert2String = "";
+    String cert1String = "";
+    try (
+        InputStream leafCert = classLoader.getResourceAsStream("leaf_cert_ec.pem");
+        InputStream cert2 = classLoader.getResourceAsStream("int_cert2_ec.pem");
+        InputStream cert1 = classLoader.getResourceAsStream("int_cert1_ec.pem");
+    ) {
+      leafCertString = FakeWriter.convertInputStreamToString(leafCert);
+      cert2String = FakeWriter.convertInputStreamToString(cert2);
+      cert1String = FakeWriter.convertInputStreamToString(cert1);
+    } catch (IOException e) {
+      reader.onError(e);
+    }
     return SessionResp.newBuilder()
         .setGetTlsConfigurationResp(
             GetTlsConfigurationResp.newBuilder()
                 .setClientTlsConfiguration(
                     GetTlsConfigurationResp.ClientTlsConfiguration.newBuilder()
-                        .addCertificateChain(new String(Files.readAllBytes(
-                          FakeWriter.leafCertFile.toPath()), StandardCharsets.UTF_8))
-                        .addCertificateChain(new String(Files.readAllBytes(
-                          FakeWriter.cert1File.toPath()), StandardCharsets.UTF_8))
-                        .addCertificateChain(new String(Files.readAllBytes(
-                          FakeWriter.cert2File.toPath()), StandardCharsets.UTF_8))
+                        .addCertificateChain(leafCertString)
+                        .addCertificateChain(cert1String)
+                        .addCertificateChain(cert2String)
                         .setMinTlsVersion(TLS_VERSION_1_3)
                         .setMaxTlsVersion(TLS_VERSION_1_3)
                         .addCiphersuites(