mongodb · ShaneHarvey · Jul 12, 2021 · Jul 10, 2021 · Jul 12, 2021 · Jul 12, 2021
diff --git a/.evergreen/config.yml b/.evergreen/config.yml
@@ -426,6 +426,7 @@ functions:
           fi
 
           PYTHON_BINARY=${PYTHON_BINARY} \
+            PYTHON3_BINARY=${python3_binary} \
             GREEN_FRAMEWORK=${GREEN_FRAMEWORK} \
             C_EXTENSIONS=${C_EXTENSIONS} \
             COVERAGE=${COVERAGE} \
@@ -1697,6 +1698,7 @@ axes:
         run_on: rhel70-small
         batchtime: 10080  # 7 days
         variables:
+          python3_binary: "/opt/python/3.6/bin/python3"
           libmongocrypt_url: https://s3.amazonaws.com/mciuploads/libmongocrypt/rhel-70-64-bit/master/latest/libmongocrypt.tar.gz
       - id: suse12-x86-64-test
         display_name: "SUSE 12 (x86_64)"

diff --git a/.evergreen/run-tests.sh b/.evergreen/run-tests.sh
@@ -6,6 +6,7 @@ set -o errexit  # Exit the script with error if any of the commands fail
 #  AUTH               Set to enable authentication. Defaults to "noauth"
 #  SSL                Set to enable SSL. Defaults to "nossl"
 #  PYTHON_BINARY      The Python version to use. Defaults to whatever is available
+#  PYTHON3_BINARY     Path to a working Python 3.5+ binary.
 #  GREEN_FRAMEWORK    The green framework to test with, if any.
 #  C_EXTENSIONS       Pass --no_ext to setup.py, or not.
 #  COVERAGE           If non-empty, run the test suite with coverage.
@@ -22,6 +23,7 @@ fi
 AUTH=${AUTH:-noauth}
 SSL=${SSL:-nossl}
 PYTHON_BINARY=${PYTHON_BINARY:-}
+PYTHON3_BINARY=${PYTHON3_BINARY:-python3}
 GREEN_FRAMEWORK=${GREEN_FRAMEWORK:-}
 C_EXTENSIONS=${C_EXTENSIONS:-}
 COVERAGE=${COVERAGE:-}
@@ -170,11 +172,23 @@ if [ -n "$TEST_ENCRYPTION" ]; then
         # Remove after BUILD-13574.
         python -m pip install certifi
     fi
+    # The mock KMS server requires Python >=3.5 with boto3.
+    IS_PRE_35=$(python -c "import sys; sys.stdout.write('1' if sys.version_info < (3, 5) else '0')")
+    if [ $IS_PRE_35 = "1" ]; then
+        deactivate
+        createvirtualenv $PYTHON3_BINARY venv-kms
+        python -m pip install boto3
+    fi
     pushd ${DRIVERS_TOOLS}/.evergreen/csfle
     python -u lib/kms_http_server.py --ca_file ../x509gen/ca.pem --cert_file ../x509gen/expired.pem --port 8000 &
     python -u lib/kms_http_server.py --ca_file ../x509gen/ca.pem --cert_file ../x509gen/wrong-host.pem --port 8001 &
     trap 'kill $(jobs -p)' EXIT HUP
     popd
+    # Restore the test virtualenv.
+    if [ $IS_PRE_35 = "1" ]; then
+        deactivate
+        activatevritualenv venv-encryption
+    fi
 fi
 
 PYTHON_IMPL=$($PYTHON -c "import platform, sys; sys.stdout.write(platform.python_implementation())")

diff --git a/.evergreen/utils.sh b/.evergreen/utils.sh
@@ -1,5 +1,17 @@
 #!/bin/bash -ex
 
+# Usage:
+# activatevritualenv /path/to/venv
+# * param1: Path to the virtualenv to activate
+activatevritualenv () {
+    VENVPATH=$1
+    if [ "Windows_NT" = "$OS" ]; then
+        . $VENVPATH/Scripts/activate
+    else
+        . $VENVPATH/bin/activate
+    fi
+}
+
 # Usage:
 # createvirtualenv /path/to/python /output/path/for/venv
 # * param1: Python binary to use for the virtualenv
@@ -18,11 +30,7 @@ createvirtualenv () {
         exit 1
     fi
     $VIRTUALENV $VENVPATH
-    if [ "Windows_NT" = "$OS" ]; then
-        . $VENVPATH/Scripts/activate
-    else
-        . $VENVPATH/bin/activate
-    fi
+    activatevritualenv $VENVPATH
     # Upgrade to the latest versions of pip setuptools wheel so that
     # pip can always download the latest cryptography+cffi wheels.
     PYTHON_VERSION=$(python -c 'import sys;print("%s.%s" % sys.version_info[:2])')