RubyGems - mongo - Versions diffs - 2.13.3 → 2.14.0.rc1 - Mend

mongo 2.13.3 → 2.14.0.rc1

Files changed (197) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data/lib/mongo/address/ipv4.rb +1 -1
data/lib/mongo/address/ipv6.rb +1 -1
data/lib/mongo/address.rb +1 -1
data/lib/mongo/bulk_write.rb +17 -0
data/lib/mongo/caching_cursor.rb +74 -0
data/lib/mongo/client.rb +47 -8
data/lib/mongo/cluster/topology/single.rb +1 -1
data/lib/mongo/cluster.rb +3 -3
data/lib/mongo/collection/view/aggregation.rb +25 -4
data/lib/mongo/collection/view/builder/find_command.rb +38 -18
data/lib/mongo/collection/view/explainable.rb +27 -8
data/lib/mongo/collection/view/iterable.rb +72 -12
data/lib/mongo/collection/view/readable.rb +12 -2
data/lib/mongo/collection/view/writable.rb +15 -1
data/lib/mongo/collection/view.rb +24 -20
data/lib/mongo/collection.rb +26 -2
data/lib/mongo/crypt/encryption_io.rb +6 -6
data/lib/mongo/cursor.rb +1 -0
data/lib/mongo/database/view.rb +1 -1
data/lib/mongo/database.rb +8 -14
data/lib/mongo/error/invalid_read_concern.rb +28 -0
data/lib/mongo/error/server_certificate_revoked.rb +22 -0
data/lib/mongo/error/unsupported_option.rb +14 -12
data/lib/mongo/error.rb +2 -0
data/lib/mongo/grid/fs_bucket.rb +37 -37
data/lib/mongo/lint.rb +2 -1
data/lib/mongo/logger.rb +3 -3
data/lib/mongo/operation/aggregate/result.rb +9 -8
data/lib/mongo/operation/collections_info/command.rb +0 -5
data/lib/mongo/operation/collections_info/result.rb +3 -16
data/lib/mongo/operation/delete/bulk_result.rb +2 -0
data/lib/mongo/operation/delete/result.rb +3 -0
data/lib/mongo/operation/explain/command.rb +4 -0
data/lib/mongo/operation/explain/legacy.rb +4 -0
data/lib/mongo/operation/explain/op_msg.rb +6 -0
data/lib/mongo/operation/explain/result.rb +3 -0
data/lib/mongo/operation/find/legacy/result.rb +2 -0
data/lib/mongo/operation/find/result.rb +3 -0
data/lib/mongo/operation/get_more/result.rb +3 -0
data/lib/mongo/operation/indexes/result.rb +5 -0
data/lib/mongo/operation/insert/bulk_result.rb +5 -0
data/lib/mongo/operation/insert/result.rb +5 -0
data/lib/mongo/operation/list_collections/result.rb +5 -0
data/lib/mongo/operation/map_reduce/result.rb +10 -0
data/lib/mongo/operation/parallel_scan/command.rb +2 -1
data/lib/mongo/operation/parallel_scan/result.rb +4 -0
data/lib/mongo/operation/result.rb +35 -6
data/lib/mongo/operation/shared/bypass_document_validation.rb +1 -0
data/lib/mongo/operation/shared/causal_consistency_supported.rb +1 -0
data/lib/mongo/operation/shared/collections_info_or_list_collections.rb +2 -0
data/lib/mongo/operation/shared/executable.rb +1 -0
data/lib/mongo/operation/shared/idable.rb +2 -1
data/lib/mongo/operation/shared/limited.rb +1 -0
data/lib/mongo/operation/shared/object_id_generator.rb +1 -0
data/lib/mongo/operation/shared/read_preference_supported.rb +36 -38
data/lib/mongo/operation/shared/result/aggregatable.rb +1 -0
data/lib/mongo/operation/shared/sessions_supported.rb +3 -3
data/lib/mongo/operation/shared/specifiable.rb +1 -0
data/lib/mongo/operation/shared/write.rb +1 -0
data/lib/mongo/operation/shared/write_concern_supported.rb +1 -0
data/lib/mongo/operation/update/legacy/result.rb +7 -0
data/lib/mongo/operation/update/result.rb +8 -0
data/lib/mongo/operation/users_info/result.rb +3 -0
data/lib/mongo/operation.rb +2 -0
data/lib/mongo/protocol/msg.rb +2 -2
data/lib/mongo/protocol/query.rb +11 -11
data/lib/mongo/query_cache.rb +242 -0
data/lib/mongo/retryable.rb +8 -1
data/lib/mongo/server/connection_common.rb +2 -2
data/lib/mongo/server/connection_pool.rb +3 -0
data/lib/mongo/server/monitor/connection.rb +3 -3
data/lib/mongo/server/monitor.rb +1 -1
data/lib/mongo/server/pending_connection.rb +2 -2
data/lib/mongo/server/push_monitor.rb +1 -1
data/lib/mongo/server.rb +5 -1
data/lib/mongo/server_selector/base.rb +5 -1
data/lib/mongo/server_selector/secondary_preferred.rb +7 -2
data/lib/mongo/session.rb +3 -0
data/lib/mongo/socket/ocsp_cache.rb +97 -0
data/lib/mongo/socket/ocsp_verifier.rb +368 -0
data/lib/mongo/socket/ssl.rb +45 -24
data/lib/mongo/socket.rb +6 -4
data/lib/mongo/srv/monitor.rb +7 -13
data/lib/mongo/srv/resolver.rb +14 -10
data/lib/mongo/timeout.rb +2 -0
data/lib/mongo/uri/options_mapper.rb +582 -0
data/lib/mongo/uri/srv_protocol.rb +3 -2
data/lib/mongo/uri.rb +21 -390
data/lib/mongo/utils.rb +12 -1
data/lib/mongo/version.rb +1 -1
data/lib/mongo.rb +9 -0
data/spec/NOTES.aws-auth.md +12 -7
data/spec/README.md +56 -1
data/spec/integration/bson_symbol_spec.rb +2 -4
data/spec/integration/bulk_write_spec.rb +48 -0
data/spec/integration/client_authentication_options_spec.rb +55 -28
data/spec/integration/connection_pool_populator_spec.rb +3 -1
data/spec/integration/cursor_reaping_spec.rb +53 -17
data/spec/integration/ocsp_connectivity_spec.rb +26 -0
data/spec/integration/ocsp_verifier_cache_spec.rb +188 -0
data/spec/integration/ocsp_verifier_spec.rb +334 -0
data/spec/integration/query_cache_spec.rb +1045 -0
data/spec/integration/query_cache_transactions_spec.rb +179 -0
data/spec/integration/retryable_writes/retryable_writes_40_and_newer_spec.rb +1 -0
data/spec/integration/retryable_writes/shared/performs_legacy_retries.rb +2 -0
data/spec/integration/sdam_error_handling_spec.rb +69 -18
data/spec/integration/sdam_events_spec.rb +7 -8
data/spec/integration/server_selection_spec.rb +36 -0
data/spec/integration/srv_monitoring_spec.rb +38 -3
data/spec/integration/srv_spec.rb +56 -0
data/spec/lite_spec_helper.rb +4 -2
data/spec/mongo/address_spec.rb +1 -1
data/spec/mongo/caching_cursor_spec.rb +70 -0
data/spec/mongo/client_construction_spec.rb +54 -1
data/spec/mongo/client_encryption_spec.rb +10 -16
data/spec/mongo/client_spec.rb +40 -0
data/spec/mongo/cluster/topology/single_spec.rb +14 -5
data/spec/mongo/cluster_spec.rb +3 -0
data/spec/mongo/collection/view/explainable_spec.rb +87 -4
data/spec/mongo/collection/view/map_reduce_spec.rb +2 -0
data/spec/mongo/collection_spec.rb +60 -0
data/spec/mongo/crypt/auto_decryption_context_spec.rb +1 -1
data/spec/mongo/crypt/auto_encryption_context_spec.rb +1 -1
data/spec/mongo/crypt/data_key_context_spec.rb +1 -1
data/spec/mongo/crypt/explicit_decryption_context_spec.rb +1 -1
data/spec/mongo/crypt/explicit_encryption_context_spec.rb +1 -1
data/spec/mongo/database_spec.rb +44 -64
data/spec/mongo/error/no_server_available_spec.rb +1 -1
data/spec/mongo/index/view_spec.rb +2 -4
data/spec/mongo/logger_spec.rb +13 -11
data/spec/mongo/operation/read_preference_legacy_spec.rb +19 -9
data/spec/mongo/operation/read_preference_op_msg_spec.rb +3 -3
data/spec/mongo/query_cache_spec.rb +279 -0
data/spec/mongo/server/app_metadata_shared.rb +7 -33
data/spec/mongo/server/connection_pool_spec.rb +7 -3
data/spec/mongo/server/connection_spec.rb +14 -7
data/spec/mongo/server_selector/secondary_preferred_spec.rb +6 -6
data/spec/mongo/socket/ssl_spec.rb +1 -1
data/spec/mongo/socket_spec.rb +1 -1
data/spec/mongo/uri/srv_protocol_spec.rb +64 -33
data/spec/mongo/uri_option_parsing_spec.rb +11 -11
data/spec/mongo/uri_spec.rb +68 -41
data/spec/mongo/utils_spec.rb +39 -0
data/spec/runners/auth.rb +3 -0
data/spec/runners/connection_string.rb +35 -124
data/spec/runners/transactions/operation.rb +2 -13
data/spec/spec_tests/cmap_spec.rb +7 -3
data/spec/spec_tests/data/change_streams/change-streams-errors.yml +0 -1
data/spec/spec_tests/data/change_streams/change-streams.yml +0 -1
data/spec/spec_tests/data/cmap/pool-checkout-connection.yml +6 -2
data/spec/spec_tests/data/cmap/pool-create-min-size.yml +3 -0
data/spec/spec_tests/data/connection_string/valid-warnings.yml +24 -0
data/spec/spec_tests/data/sdam_monitoring/discovered_standalone.yml +1 -3
data/spec/spec_tests/data/sdam_monitoring/standalone.yml +2 -2
data/spec/spec_tests/data/sdam_monitoring/standalone_repeated.yml +2 -2
data/spec/spec_tests/data/sdam_monitoring/standalone_suppress_equal_description_changes.yml +2 -2
data/spec/spec_tests/data/sdam_monitoring/standalone_to_rs_with_me_mismatch.yml +2 -2
data/spec/spec_tests/data/uri_options/auth-options.yml +25 -0
data/spec/spec_tests/data/uri_options/compression-options.yml +6 -3
data/spec/spec_tests/data/uri_options/read-preference-options.yml +24 -0
data/spec/spec_tests/data/uri_options/ruby-connection-options.yml +1 -0
data/spec/spec_tests/data/uri_options/tls-options.yml +160 -4
data/spec/spec_tests/dns_seedlist_discovery_spec.rb +9 -1
data/spec/spec_tests/uri_options_spec.rb +31 -33
data/spec/support/certificates/atlas-ocsp-ca.crt +28 -0
data/spec/support/certificates/atlas-ocsp.crt +41 -0
data/spec/support/client_registry.rb +4 -8
data/spec/support/client_registry_macros.rb +4 -4
data/spec/support/common_shortcuts.rb +45 -0
data/spec/support/constraints.rb +23 -0
data/spec/support/lite_constraints.rb +24 -0
data/spec/support/matchers.rb +16 -0
data/spec/support/ocsp +1 -0
data/spec/support/session_registry.rb +52 -0
data/spec/support/spec_config.rb +22 -12
data/spec/support/spec_setup.rb +38 -48
data/spec/support/utils.rb +19 -1
data.tar.gz.sig +1 -3
metadata +938 -933
metadata.gz.sig +0 -0
data/spec/integration/secondary_reads_spec.rb +0 -102
data/spec/shared/LICENSE +0 -20
data/spec/shared/bin/get-mongodb-download-url +0 -17
data/spec/shared/lib/mrss/child_process_helper.rb +0 -80
data/spec/shared/lib/mrss/cluster_config.rb +0 -221
data/spec/shared/lib/mrss/constraints.rb +0 -346
data/spec/shared/lib/mrss/docker_runner.rb +0 -265
data/spec/shared/lib/mrss/lite_constraints.rb +0 -191
data/spec/shared/lib/mrss/server_version_registry.rb +0 -115
data/spec/shared/lib/mrss/spec_organizer.rb +0 -152
data/spec/shared/lib/mrss/utils.rb +0 -15
data/spec/shared/share/Dockerfile.erb +0 -231
data/spec/shared/shlib/distro.sh +0 -73
data/spec/shared/shlib/server.sh +0 -290
data/spec/shared/shlib/set_env.sh +0 -128

data/lib/mongo/socket/ssl.rb CHANGED Viewed

@@ -15,15 +15,15 @@
 module Mongo
   class Socket
-    # Wrapper for SSL sockets.
+    # Wrapper for TLS sockets.
     #
     # @since 2.0.0
     class SSL < Socket
       include OpenSSL
-      # Initializes a new SSL socket.
+      # Initializes a new TLS socket.
       #
-      # @example Create the SSL socket.
+      # @example Create the TLS socket.
       #   SSL.new('::1', 27017, 30)
       #
       # @param [ String ] host The hostname or IP address.
@@ -113,7 +113,7 @@ module Mongo
         end
       end
-      # @return [ SSLContext ] context The ssl context.
+      # @return [ SSLContext ] context The TLS context.
       attr_reader :context
       # @return [ String ] host The host to connect to.
@@ -149,6 +149,7 @@ module Mongo
               @socket.connect
             end
             verify_certificate!(@socket)
+            verify_ocsp_endpoint!(@socket)
           rescue
             @socket.close
             @socket = nil
@@ -177,29 +178,36 @@ module Mongo
       private
       def verify_certificate?
-        @verify_certificate ||=
-          # If ssl_verify_certificate is not present, disable only if ssl_verify is
-          # explicitly set to false.
-          if options[:ssl_verify_certificate].nil?
-            options[:ssl_verify] != false
-          # If ssl_verify_certificate is present, enable or disable based on its value.
-          else
-            !!options[:ssl_verify_certificate]
-          end
+        # If ssl_verify_certificate is not present, disable only if
+        # ssl_verify is explicitly set to false.
+        if options[:ssl_verify_certificate].nil?
+          options[:ssl_verify] != false
+        # If ssl_verify_certificate is present, enable or disable based on its value.
+        else
+          !!options[:ssl_verify_certificate]
+        end
       end
       def verify_hostname?
-        @verify_hostname ||=
-          # If ssl_verify_hostname is not present, disable only if ssl_verify is
-          # explicitly set to false.
-          if options[:ssl_verify_hostname].nil?
-            options[:ssl_verify] != false
-          # If ssl_verify_hostname is present, enable or disable based on its value.
-          else
-            !!options[:ssl_verify_hostname]
-          end
+        # If ssl_verify_hostname is not present, disable only if ssl_verify is
+        # explicitly set to false.
+        if options[:ssl_verify_hostname].nil?
+          options[:ssl_verify] != false
+        # If ssl_verify_hostname is present, enable or disable based on its value.
+        else
+          !!options[:ssl_verify_hostname]
+        end
       end
+      def verify_ocsp_endpoint?
+        if !options[:ssl_verify_ocsp_endpoint].nil?
+          options[:ssl_verify_ocsp_endpoint] != false
+        elsif !options[:ssl_verify_certificate].nil?
+          options[:ssl_verify_certificate] != false
+        else
+          options[:ssl_verify] != false
+        end
+      end
       def create_context(options)
         OpenSSL::SSL::SSLContext.new.tap do |context|
@@ -344,13 +352,26 @@ module Mongo
       def verify_certificate!(socket)
         if verify_hostname?
           unless OpenSSL::SSL.verify_certificate_identity(socket.peer_cert, host_name)
-            raise Error::SocketError, 'SSL handshake failed due to a hostname mismatch.'
+            raise Error::SocketError, 'TLS handshake failed due to a hostname mismatch.'
           end
         end
       end
+      def verify_ocsp_endpoint!(socket)
+        unless verify_ocsp_endpoint?
+          return
+        end
+        cert = socket.peer_cert
+        ca_cert = socket.peer_cert_chain.last
+        verifier = OcspVerifier.new(@host_name, cert, ca_cert, context.cert_store,
+          **Utils.shallow_symbolize_keys(options))
+        verifier.verify_with_cache
+      end
       def read_buffer_size
-        # Buffer size for SSL reads.
+        # Buffer size for TLS reads.
         # Capped at 16k due to https://linux.die.net/man/3/ssl_read
         16384
       end

data/lib/mongo/socket.rb CHANGED Viewed

@@ -15,6 +15,8 @@
 require 'mongo/socket/ssl'
 require 'mongo/socket/tcp'
 require 'mongo/socket/unix'
+require 'mongo/socket/ocsp_verifier'
+require 'mongo/socket/ocsp_cache'
 module Mongo
@@ -25,10 +27,10 @@ module Mongo
   class Socket
     include ::Socket::Constants
-    # Error message for SSL related exceptions.
+    # Error message for TLS related exceptions.
     #
     # @since 2.0.0
-    SSL_ERROR = 'MongoDB may not be configured with SSL support'.freeze
+    SSL_ERROR = 'MongoDB may not be configured with TLS support'.freeze
     # Error message for timeouts on socket calls.
     #
@@ -129,7 +131,7 @@ module Mongo
       sock_arr = [ @socket ]
       if Kernel::select(sock_arr, nil, sock_arr, 0)
         # The eof? call is supposed to return immediately since select
-        # indicated the socket is readable. However, if @socket is an SSL
+        # indicated the socket is readable. However, if @socket is a TLS
         # socket, eof? can block anyway - see RUBY-2140.
         begin
           Timeout.timeout(0.1) do
@@ -342,7 +344,7 @@ module Mongo
     end
     def read_buffer_size
-      # Buffer size for non-SSL reads
+      # Buffer size for non-TLS reads
       # 64kb
       65536
     end

data/lib/mongo/srv/monitor.rb CHANGED Viewed

@@ -34,24 +34,18 @@ module Mongo
       # Creates the SRV monitor.
       #
       # @param [ Cluster ] cluster The cluster.
-      # @param [ Hash ] options The cluster options.
       #
-      # @option options [ Float ] :timeout The timeout to use for DNS lookups.
-      # @option options [ URI::SRVProtocol ] :srv_uri The SRV URI to monitor.
-      # @option options [ Hash ] :resolv_options For internal driver use only.
+      # @option opts [ Float ] :timeout The timeout to use for DNS lookups.
+      # @option opts [ URI::SRVProtocol ] :srv_uri The SRV URI to monitor.
+      # @option opts [ Hash ] :resolv_options For internal driver use only.
       #   Options to pass through to Resolv::DNS constructor for SRV lookups.
-      def initialize(cluster, options = nil)
-        options = if options
-          options.dup
-        else
-          {}
-        end
+      def initialize(cluster, **opts)
         @cluster = cluster
-        @resolver = Srv::Resolver.new(options)
-        unless @srv_uri = options.delete(:srv_uri)
+        unless @srv_uri = opts.delete(:srv_uri)
           raise ArgumentError, 'SRV URI is required'
         end
-        @options = options.freeze
+        @options = opts.freeze
+        @resolver = Srv::Resolver.new(**opts)
         @last_result = @srv_uri.srv_result
         @stop_semaphore = Semaphore.new
       end

data/lib/mongo/srv/resolver.rb CHANGED Viewed

@@ -28,20 +28,24 @@ module Mongo
       # Creates a new Resolver.
       #
-      # @param [ Hash ] options The options for the resolver.
-      #
-      # @option options [ Boolean ] :raise_on_invalid Whether or not to raise
+      # @option opts [ Float ] :timeout The timeout, in seconds, to use for
+      #   each DNS record resolution.
+      # @option opts [ Boolean ] :raise_on_invalid Whether or not to raise
       #   an exception if either a record with a mismatched domain is found
       #   or if no records are found. Defaults to true.
-      # @option options [ Hash ] :resolv_options For internal driver use only.
+      # @option opts [ Hash ] :resolv_options For internal driver use only.
       #   Options to pass through to Resolv::DNS constructor for SRV lookups.
-      def initialize(options = nil)
-        @options = if options
-          options.dup
-        else
-          {}
-        end.freeze
+      def initialize(**opts)
+        @options = opts.freeze
         @resolver = Resolv::DNS.new(@options[:resolv_options])
+        @resolver.timeouts = timeout
+      end
+      # @return [ Hash ] Resolver options.
+      attr_reader :options
+      def timeout
+        options[:timeout] || Monitor::DEFAULT_TIMEOUT
       end
       # Obtains all of the SRV records for a given hostname.

data/lib/mongo/timeout.rb CHANGED Viewed

@@ -13,6 +13,8 @@
 # limitations under the License.
 module Mongo
+  # @api private
   module Timeout
     # A wrapper around Ruby core's Timeout::timeout method that provides