mongo 2.11.0.rc0 → 2.11.0

data/spec/spec_tests/read_write_concern_connection_string_spec.rb

@@ -0,0 +1,8 @@
+require 'spec_helper'
+
+READ_WRITE_CONCERN_CONNECTION_STRING_TESTS =
+  Dir.glob("#{CURRENT_PATH}/spec_tests/data/read_write_concern/connection-string/*.yml").sort
+
+describe 'Connection String' do
+  define_connection_string_spec_tests(READ_WRITE_CONCERN_CONNECTION_STRING_TESTS)
+end

data/spec/spec_tests/read_write_concern_document_spec.rb

@@ -0,0 +1,74 @@
+require 'spec_helper'
+require 'runners/read_write_concern_document'
+
+READ_WRITE_CONCERN_DOCUMENT_TESTS =
+  Dir.glob("#{CURRENT_PATH}/spec_tests/data/read_write_concern/document/*.yml").sort
+
+describe 'Connection String' do
+  READ_WRITE_CONCERN_DOCUMENT_TESTS.each do |test_path|
+    spec = ReadWriteConcernDocument::Spec.new(test_path)
+
+    context(spec.description) do
+
+      spec.tests.each_with_index do |test, index|
+
+        context test.description do
+
+          let(:actual) do
+            Mongo::WriteConcern.get(test.input_document)
+          end
+
+          let(:actual_server_document) do
+            Utils.camelize_hash(actual.options)
+          end
+
+          if test.valid?
+
+            it 'parses successfully' do
+              expect do
+                actual
+              end.not_to raise_error
+            end
+
+            it 'has expected server document' do
+              expect(actual_server_document).to eq(test.server_document)
+            end
+
+            if test.server_default?
+              it 'is server default' do
+                expect(actual.options).to eq({})
+              end
+            end
+
+            if test.server_default? == false
+              it 'is not server default' do
+                expect(actual.options).not_to eq({})
+              end
+            end
+
+            if test.acknowledged?
+              it 'is acknowledged' do
+                expect(actual.acknowledged?).to be true
+              end
+            end
+
+            if test.acknowledged? == false
+              it 'is not acknowledged' do
+                expect(actual.acknowledged?).to be false
+              end
+            end
+
+          else
+
+            it 'is invalid' do
+              expect do
+                actual
+              end.to raise_error(Mongo::Error::InvalidWriteConcern)
+            end
+
+          end
+        end
+      end
+    end
+  end
+end

data/spec/spec_tests/retryable_reads_spec.rb

@@ -6,9 +6,40 @@ describe 'Retryable reads spec tests' do
 
   define_crud_spec_tests(RETRYABLE_READS_TESTS) do |spec, req, test|
     let(:client) do
-      root_authorized_client.with({max_read_retries: 0}.update(test.client_options)).tap do |client|
+      authorized_client.with({max_read_retries: 0}.update(test.client_options)).tap do |client|
         client.subscribe(Mongo::Monitoring::COMMAND, event_subscriber)
       end
     end
   end
 end
+
+describe 'Retryable reads spec tests - legacy' do
+  require_no_multi_shard
+
+  define_crud_spec_tests(RETRYABLE_READS_TESTS) do |spec, req, test|
+    let(:client_options) do
+      {
+        max_read_retries: 1,
+        read_retry_interval: 0,
+        retry_reads: false,
+      }.update(test.client_options)
+    end
+
+    let(:client) do
+      authorized_client.with(client_options).tap do |client|
+        client.subscribe(Mongo::Monitoring::COMMAND, event_subscriber)
+      end
+    end
+
+    around do |example|
+      desc = example.full_description
+      # Skip tests that disable modern retryable reads because they expect
+      # no retries - and since legacy retryable reads are used, the tests
+      # will fail.
+      if desc =~/retryReads is false|fails on first attempt/
+        skip 'Test not applicable to legacy read retries'
+      end
+      example.run
+    end
+  end
+end

data/spec/spec_tests/uri_options_spec.rb

@@ -55,8 +55,10 @@ describe 'Uri Options' do
 
           context 'when the uri is valid', if: test.valid? do
 
-            it 'creates a client with the correct hosts' do
-              expect(test.client).to have_hosts(test)
+            if test.hosts
+              it 'creates a client with the correct hosts' do
+                expect(test.client).to have_hosts(test, test.hosts)
+              end
             end
 
             it 'creates a client with the correct authentication properties' do

data/spec/support/auth.rb

@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-RSpec::Matchers.define :have_blank_credentials do 
+RSpec::Matchers.define :have_blank_credentials do
   match do |client|
     %i(auth_mech auth_mech_properties auth_source password user).all? do |key|
       client.options[key].nil?
@@ -31,11 +31,9 @@ module Mongo
       attr_reader :description
       attr_reader :tests
 
-      def initialize(file)
-        file = File.new(file)
-        @spec = YAML.load(ERB.new(file.read).result)
-        file.close
-        @description = File.basename(file)
+      def initialize(test_path)
+        @spec = YAML.load(File.read(test_path))
+        @description = File.basename(test_path)
       end
 
       def tests
@@ -68,9 +66,7 @@ module Mongo
       end
 
       def expected_credential
-        expected_credential = {
-          'auth_source' => expected_auth_source,
-        }
+        expected_credential = { 'auth_source' => credential['source'] }
 
         if credential['username']
           expected_credential['user'] = credential['username']
@@ -103,11 +99,6 @@ module Mongo
       def expected_auth_mech_properties
         credential['mechanism_properties'].keys.map(&:downcase)
       end
-
-      def expected_auth_source
-        return :external if credential['source'] == '$external'
-        credential['source']
-      end
     end
   end
 end

data/spec/support/certificates/client-x509.crt

@@ -0,0 +1,78 @@
+Certificate:
+    Data:
+        Version: 3 (0x2)
+        Serial Number: 602210 (0x93062)
+        Signature Algorithm: sha256WithRSAEncryption
+        Issuer: CN = Ruby Driver CA, OU = Drivers, O = MongoDB, L = New York City, ST = New York, C = US
+        Validity
+            Not Before: Sep  4 21:17:42 2019 GMT
+            Not After : Sep  4 21:17:42 2039 GMT
+        Subject: CN = localhost, OU = x509, O = MongoDB, L = New York City, ST = New York, C = US
+        Subject Public Key Info:
+            Public Key Algorithm: rsaEncryption
+                RSA Public-Key: (2048 bit)
+                Modulus:
+                    00:c4:e6:20:8f:58:42:53:51:24:64:b4:d0:25:cf:
+                    79:e0:71:f8:9e:97:35:a8:df:fa:d9:63:eb:63:b2:
+                    b4:77:60:af:8e:09:6d:72:50:bc:ea:7c:57:3f:17:
+                    51:b0:05:85:e8:3b:67:4b:97:84:61:bb:68:09:b4:
+                    96:da:c8:3b:7d:53:b8:10:fe:0d:71:2f:b8:5d:83:
+                    86:3f:06:57:e2:6c:d5:2f:c8:6c:74:fb:d8:6f:77:
+                    df:ba:6d:52:61:3c:33:76:a5:5f:62:68:af:a4:e8:
+                    dc:36:2a:b9:54:47:91:ec:4f:09:b9:2e:ef:37:4d:
+                    d7:04:db:48:fc:8d:c2:44:f1:9f:79:21:f0:06:fe:
+                    b4:e5:50:3c:cf:d1:3f:59:b5:8d:dc:d0:39:31:53:
+                    95:42:d7:92:c3:c9:d5:93:48:e8:dc:16:ce:61:ec:
+                    6f:ce:91:5c:91:2e:59:18:1f:fc:a8:ff:52:51:cf:
+                    10:c0:be:a0:ad:cb:63:98:30:66:0e:42:e3:ca:6b:
+                    2d:f8:92:c7:24:a7:03:65:96:0a:9c:ce:09:e7:ae:
+                    c2:a7:ea:6c:54:bb:e8:24:62:31:48:fb:d0:df:e1:
+                    a2:3c:5f:d2:89:29:de:4f:6b:73:88:2a:68:57:08:
+                    7a:1e:aa:bd:70:79:e7:dc:f5:e1:9f:39:83:7b:70:
+                    55:bb
+                Exponent: 65537 (0x10001)
+        X509v3 extensions:
+            X509v3 Key Usage: 
+                Digital Signature
+            X509v3 Extended Key Usage: 
+                TLS Web Client Authentication
+            X509v3 Subject Alternative Name: 
+                DNS:localhost, IP Address:127.0.0.1
+    Signature Algorithm: sha256WithRSAEncryption
+         92:04:8c:a5:56:c0:01:37:65:ff:d2:0e:5b:be:dd:78:9c:e2:
+         45:3d:fc:34:e5:23:f3:75:fb:70:3b:06:9f:e9:63:e9:f0:8a:
+         14:54:3d:d9:6a:22:af:04:00:25:95:80:e8:83:0b:c7:6f:f0:
+         f1:58:2b:07:86:6b:e3:eb:b0:ea:09:b2:5e:15:05:14:89:2b:
+         02:99:09:97:6d:49:19:ac:c2:50:91:2b:03:e6:75:ce:27:9d:
+         8f:c0:b5:cd:b2:1f:7d:66:75:c7:d1:a7:16:b3:cf:8b:1e:9b:
+         e4:46:da:e2:02:2c:55:74:56:8c:e6:d9:27:53:9f:b2:f5:09:
+         ba:fe:df:e2:e1:b7:7d:43:8a:9d:bb:f0:3d:b9:d4:ce:26:8f:
+         d9:cc:e6:2e:1c:81:fc:6e:a0:5f:01:23:68:9d:fe:1b:ee:03:
+         69:f1:10:af:5a:0e:dc:96:e2:56:ae:ca:35:b3:08:61:34:37:
+         e1:e6:53:ef:68:84:87:f4:56:c5:49:45:08:90:46:3e:1c:b5:
+         40:08:f7:09:51:d7:24:53:49:b5:b1:2f:85:39:b9:0b:0e:f9:
+         05:ea:a3:d0:47:6d:69:6b:9c:25:8e:ad:61:01:86:96:28:3b:
+         fd:6f:78:79:66:b1:cc:de:fc:18:45:cf:84:f1:d0:e2:46:4f:
+         f8:9d:95:a4
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/support/certificates/client-x509.key

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----
+MIIEpQIBAAKCAQEAxOYgj1hCU1EkZLTQJc954HH4npc1qN/62WPrY7K0d2Cvjglt
+clC86nxXPxdRsAWF6DtnS5eEYbtoCbSW2sg7fVO4EP4NcS+4XYOGPwZX4mzVL8hs
+dPvYb3ffum1SYTwzdqVfYmivpOjcNiq5VEeR7E8JuS7vN03XBNtI/I3CRPGfeSHw
+Bv605VA8z9E/WbWN3NA5MVOVQteSw8nVk0jo3BbOYexvzpFckS5ZGB/8qP9SUc8Q
+wL6grctjmDBmDkLjymst+JLHJKcDZZYKnM4J567Cp+psVLvoJGIxSPvQ3+GiPF/S
+iSneT2tziCpoVwh6Hqq9cHnn3PXhnzmDe3BVuwIDAQABAoIBAD9rdC9XmT1m1FcP
+mj+jfTka3J6QS7tSMWUV9vqM0+3jmYghZzw73y2T0TJEG46bqM7tW08QxZYJG/CM
+V06u0eKDNbVbbw729OZB99qS+3m13lDeuHhRqhv1O327up4RGu5rQ7bZy0FNs6hK
+yJjp2ImJx7L6+BgTHV+2FeMq8djsffJDvsLn65W2Fw0pBw+1pFYJMMLodNrSXkGi
+FaE+XLO/FMmFfI6fc4uqMgXd+RLmGC3DY4lnbZMf14nlNn+SNMr08v+wipJNqE3K
+OERRkgm/uXIbo+a275suUZ8kVRlVMtIXVYrwMj1JQY7YJ2uiOy91QoWvzPu6wUGH
+g/ehttECgYEA4yuEU4rdJs/roEy+rY6bEjgcvN6uzoEjv4z4MLLHk61p88RDykYZ
+C0crmwiXItWPZ6rm458+TwIqawrLQAmJU6iSSmVy/ed/5C3vKDyEq84N3eglac/U
+yj6kk5vztCtUrr8Z2dnrBAz1LuAYUqPs8fVmYGYiPfM0+jLaZK2L+uMCgYEA3eMj
+xANChhiTCdaw3hEL57c2pbZ/xBwGi8VWZqJvxdJNbZgc+RDw4ytz1d3DZCRWfxIF
+w4n69wjiakZ9DA5YdzIvplv8YfZ1bAo0JSGyybERXKTVUj3AqBCf4bGRZJCgD+/g
+aGZpJrfD+7ho8FyOvt9LvLos8UPaJD1Llse1+UkCgYEAyyNi1QHb+JT88v8tky1u
+ZcBfklTepDK+sM9yMLnt1ZTApgbfR8WfJ4Kg76Wi4Ldv4RfmF62SnjwlikrArabZ
+ckHPb0+AoKOerYCV17kmOiusIr8wlYoPkjqqGITgTEBjHVAt4a0Ihzq/FQe3OE71
+1vfGcHVkMVmGCiXnPRgjkFkCgYEAu0TJGtXlf2eeMd+Qxtt8QMTQymuMyecdXzne
+AiF2VG96CdUoHs29gP1bdlUEY7CHkBeV5cK+nWBSN3/mahZxc6hXrwBTshpgYB78
+g5o9WxymmppDsHWN9EqTpdhH7ahibxD1RSep95OBRSIO704u68lqEo7O/5FUuuFA
+urEzVIECgYEAyX44ZLYW7c68fS2zTvnGBBINgntookhRK0sMUwuYvDL5RobnKusP
+2Fz4gZtTmpRfgxcglih+EJPUhqqn6UteXG/TNatrf27DOuQgJHliQa/GDcANkEkT
+UtGu2aCxd0Na9lPvEzor37PPzLKdkaiAmAnyLmTpn5whGFgpXa32Ups=
+-----END RSA PRIVATE KEY-----

data/spec/support/certificates/client-x509.pem

@@ -0,0 +1,105 @@
+Certificate:
+    Data:
+        Version: 3 (0x2)
+        Serial Number: 602210 (0x93062)
+        Signature Algorithm: sha256WithRSAEncryption
+        Issuer: CN = Ruby Driver CA, OU = Drivers, O = MongoDB, L = New York City, ST = New York, C = US
+        Validity
+            Not Before: Sep  4 21:17:42 2019 GMT
+            Not After : Sep  4 21:17:42 2039 GMT
+        Subject: CN = localhost, OU = x509, O = MongoDB, L = New York City, ST = New York, C = US
+        Subject Public Key Info:
+            Public Key Algorithm: rsaEncryption
+                RSA Public-Key: (2048 bit)
+                Modulus:
+                    00:c4:e6:20:8f:58:42:53:51:24:64:b4:d0:25:cf:
+                    79:e0:71:f8:9e:97:35:a8:df:fa:d9:63:eb:63:b2:
+                    b4:77:60:af:8e:09:6d:72:50:bc:ea:7c:57:3f:17:
+                    51:b0:05:85:e8:3b:67:4b:97:84:61:bb:68:09:b4:
+                    96:da:c8:3b:7d:53:b8:10:fe:0d:71:2f:b8:5d:83:
+                    86:3f:06:57:e2:6c:d5:2f:c8:6c:74:fb:d8:6f:77:
+                    df:ba:6d:52:61:3c:33:76:a5:5f:62:68:af:a4:e8:
+                    dc:36:2a:b9:54:47:91:ec:4f:09:b9:2e:ef:37:4d:
+                    d7:04:db:48:fc:8d:c2:44:f1:9f:79:21:f0:06:fe:
+                    b4:e5:50:3c:cf:d1:3f:59:b5:8d:dc:d0:39:31:53:
+                    95:42:d7:92:c3:c9:d5:93:48:e8:dc:16:ce:61:ec:
+                    6f:ce:91:5c:91:2e:59:18:1f:fc:a8:ff:52:51:cf:
+                    10:c0:be:a0:ad:cb:63:98:30:66:0e:42:e3:ca:6b:
+                    2d:f8:92:c7:24:a7:03:65:96:0a:9c:ce:09:e7:ae:
+                    c2:a7:ea:6c:54:bb:e8:24:62:31:48:fb:d0:df:e1:
+                    a2:3c:5f:d2:89:29:de:4f:6b:73:88:2a:68:57:08:
+                    7a:1e:aa:bd:70:79:e7:dc:f5:e1:9f:39:83:7b:70:
+                    55:bb
+                Exponent: 65537 (0x10001)
+        X509v3 extensions:
+            X509v3 Key Usage: 
+                Digital Signature
+            X509v3 Extended Key Usage: 
+                TLS Web Client Authentication
+            X509v3 Subject Alternative Name: 
+                DNS:localhost, IP Address:127.0.0.1
+    Signature Algorithm: sha256WithRSAEncryption
+         92:04:8c:a5:56:c0:01:37:65:ff:d2:0e:5b:be:dd:78:9c:e2:
+         45:3d:fc:34:e5:23:f3:75:fb:70:3b:06:9f:e9:63:e9:f0:8a:
+         14:54:3d:d9:6a:22:af:04:00:25:95:80:e8:83:0b:c7:6f:f0:
+         f1:58:2b:07:86:6b:e3:eb:b0:ea:09:b2:5e:15:05:14:89:2b:
+         02:99:09:97:6d:49:19:ac:c2:50:91:2b:03:e6:75:ce:27:9d:
+         8f:c0:b5:cd:b2:1f:7d:66:75:c7:d1:a7:16:b3:cf:8b:1e:9b:
+         e4:46:da:e2:02:2c:55:74:56:8c:e6:d9:27:53:9f:b2:f5:09:
+         ba:fe:df:e2:e1:b7:7d:43:8a:9d:bb:f0:3d:b9:d4:ce:26:8f:
+         d9:cc:e6:2e:1c:81:fc:6e:a0:5f:01:23:68:9d:fe:1b:ee:03:
+         69:f1:10:af:5a:0e:dc:96:e2:56:ae:ca:35:b3:08:61:34:37:
+         e1:e6:53:ef:68:84:87:f4:56:c5:49:45:08:90:46:3e:1c:b5:
+         40:08:f7:09:51:d7:24:53:49:b5:b1:2f:85:39:b9:0b:0e:f9:
+         05:ea:a3:d0:47:6d:69:6b:9c:25:8e:ad:61:01:86:96:28:3b:
+         fd:6f:78:79:66:b1:cc:de:fc:18:45:cf:84:f1:d0:e2:46:4f:
+         f8:9d:95:a4
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/spec/support/change_streams.rb

@@ -37,17 +37,12 @@ module Mongo
 
       # Instantiate the new spec.
       #
-      # @example Create the spec.
-      #   Spec.new(file)
-      #
-      # @param [ String ] file The name of the file.
+      # @param [ String ] test_path The path to the file.
       #
       # @since 2.6.0
-      def initialize(file)
-        file = File.new(file)
-        @spec = YAML.load(ERB.new(file.read).result)
-        file.close
-        @description = File.basename(file)
+      def initialize(test_path)
+        @spec = YAML.load(File.read(test_path))
+        @description = File.basename(test_path)
         @spec_tests = @spec['tests']
         @coll1 = @spec['collection_name']
         @coll2 = @spec['collection2_name']
@@ -129,7 +124,7 @@ module Mongo
 
         def run
           change_stream = begin
-            @target.watch(@pipeline, @options)
+            @target.watch(@pipeline, Utils.snakeize_hash(@options))
           rescue Mongo::Error::OperationFailure => e
             return {
               result: { 'error' => { 'code' => e.code } },
@@ -195,9 +190,11 @@ module Mongo
 
         private
 
+        IGNORE_COMMANDS = %w(saslStart saslContinue killCursors getMore)
+
         def events
           EventSubscriber.started_events.reduce([]) do |evs, e|
-            next evs if %w(saslStart saslContinue killCursors).include?(e.command_name)
+            next evs if IGNORE_COMMANDS.include?(e.command_name)
 
             evs << {
               'command_started_event' => {

data/spec/support/client_registry.rb

@@ -95,17 +95,21 @@ class ClientRegistry
     when 'unauthorized'
       Mongo::Client.new(
         SpecConfig.instance.addresses,
-        SpecConfig.instance.test_options.merge(database: SpecConfig.instance.test_db, monitoring: false),
+        SpecConfig.instance.test_options.merge(database: SpecConfig.instance.test_db),
       )
     # Provides an authorized mongo client on the default test database for the
     # default test user.
     when 'authorized'
+      client_options = {
+        database: SpecConfig.instance.test_db,
+      }.update(SpecConfig.instance.credentials_or_x509(
+        user: SpecConfig.instance.test_user.name,
+        password: SpecConfig.instance.test_user.password,
+      ))
+
       Mongo::Client.new(
         SpecConfig.instance.addresses,
-        SpecConfig.instance.test_options.merge(
-          database: SpecConfig.instance.test_db,
-          user: SpecConfig.instance.test_user.name,
-          password: SpecConfig.instance.test_user.password),
+        SpecConfig.instance.test_options.merge(client_options)
       )
     # Provides an authorized mongo client that retries writes.
     when 'authorized_with_retry_writes'
@@ -165,15 +169,23 @@ class ClientRegistry
     # Get an authorized client on the test database logged in as the admin
     # root user.
     when 'root_authorized'
-      Mongo::Client.new(
-        SpecConfig.instance.addresses,
-        SpecConfig.instance.test_options.merge(
+      if SpecConfig.instance.x509_auth?
+        client_options = SpecConfig.instance.auth_options.merge(
+          database: SpecConfig.instance.test_db,
+        )
+      else
+        client_options = {
+          database: SpecConfig.instance.test_db,
+        }.update(SpecConfig.instance.credentials_or_x509(
           user: SpecConfig.instance.root_user.name,
           password: SpecConfig.instance.root_user.password,
-          database: SpecConfig.instance.test_db,
           auth_source: SpecConfig.instance.auth_source || Mongo::Database::ADMIN,
-          monitoring: false
-        ),
+        ))
+      end
+
+      Mongo::Client.new(
+        SpecConfig.instance.addresses,
+        SpecConfig.instance.test_options.merge(client_options),
       )
     # A client that has an event subscriber for commands.
     when 'subscribed'
@@ -181,8 +193,10 @@ class ClientRegistry
         SpecConfig.instance.addresses,
         SpecConfig.instance.test_options.merge(
           database: SpecConfig.instance.test_db,
+        ).merge(SpecConfig.instance.credentials_or_x509(
           user: SpecConfig.instance.test_user.name,
-          password: SpecConfig.instance.test_user.password),
+          password: SpecConfig.instance.test_user.password,
+        ))
       ).tap do |client|
         client.subscribe(Mongo::Monitoring::COMMAND, EventSubscriber)
       end