RubyGems - mongo - Versions diffs - 2.13.3 → 2.14.0.rc1 - Mend

mongo 2.13.3 → 2.14.0.rc1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (197) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data/lib/mongo/address/ipv4.rb +1 -1
data/lib/mongo/address/ipv6.rb +1 -1
data/lib/mongo/address.rb +1 -1
data/lib/mongo/bulk_write.rb +17 -0
data/lib/mongo/caching_cursor.rb +74 -0
data/lib/mongo/client.rb +47 -8
data/lib/mongo/cluster/topology/single.rb +1 -1
data/lib/mongo/cluster.rb +3 -3
data/lib/mongo/collection/view/aggregation.rb +25 -4
data/lib/mongo/collection/view/builder/find_command.rb +38 -18
data/lib/mongo/collection/view/explainable.rb +27 -8
data/lib/mongo/collection/view/iterable.rb +72 -12
data/lib/mongo/collection/view/readable.rb +12 -2
data/lib/mongo/collection/view/writable.rb +15 -1
data/lib/mongo/collection/view.rb +24 -20
data/lib/mongo/collection.rb +26 -2
data/lib/mongo/crypt/encryption_io.rb +6 -6
data/lib/mongo/cursor.rb +1 -0
data/lib/mongo/database/view.rb +1 -1
data/lib/mongo/database.rb +8 -14
data/lib/mongo/error/invalid_read_concern.rb +28 -0
data/lib/mongo/error/server_certificate_revoked.rb +22 -0
data/lib/mongo/error/unsupported_option.rb +14 -12
data/lib/mongo/error.rb +2 -0
data/lib/mongo/grid/fs_bucket.rb +37 -37
data/lib/mongo/lint.rb +2 -1
data/lib/mongo/logger.rb +3 -3
data/lib/mongo/operation/aggregate/result.rb +9 -8
data/lib/mongo/operation/collections_info/command.rb +0 -5
data/lib/mongo/operation/collections_info/result.rb +3 -16
data/lib/mongo/operation/delete/bulk_result.rb +2 -0
data/lib/mongo/operation/delete/result.rb +3 -0
data/lib/mongo/operation/explain/command.rb +4 -0
data/lib/mongo/operation/explain/legacy.rb +4 -0
data/lib/mongo/operation/explain/op_msg.rb +6 -0
data/lib/mongo/operation/explain/result.rb +3 -0
data/lib/mongo/operation/find/legacy/result.rb +2 -0
data/lib/mongo/operation/find/result.rb +3 -0
data/lib/mongo/operation/get_more/result.rb +3 -0
data/lib/mongo/operation/indexes/result.rb +5 -0
data/lib/mongo/operation/insert/bulk_result.rb +5 -0
data/lib/mongo/operation/insert/result.rb +5 -0
data/lib/mongo/operation/list_collections/result.rb +5 -0
data/lib/mongo/operation/map_reduce/result.rb +10 -0
data/lib/mongo/operation/parallel_scan/command.rb +2 -1
data/lib/mongo/operation/parallel_scan/result.rb +4 -0
data/lib/mongo/operation/result.rb +35 -6
data/lib/mongo/operation/shared/bypass_document_validation.rb +1 -0
data/lib/mongo/operation/shared/causal_consistency_supported.rb +1 -0
data/lib/mongo/operation/shared/collections_info_or_list_collections.rb +2 -0
data/lib/mongo/operation/shared/executable.rb +1 -0
data/lib/mongo/operation/shared/idable.rb +2 -1
data/lib/mongo/operation/shared/limited.rb +1 -0
data/lib/mongo/operation/shared/object_id_generator.rb +1 -0
data/lib/mongo/operation/shared/read_preference_supported.rb +36 -38
data/lib/mongo/operation/shared/result/aggregatable.rb +1 -0
data/lib/mongo/operation/shared/sessions_supported.rb +3 -3
data/lib/mongo/operation/shared/specifiable.rb +1 -0
data/lib/mongo/operation/shared/write.rb +1 -0
data/lib/mongo/operation/shared/write_concern_supported.rb +1 -0
data/lib/mongo/operation/update/legacy/result.rb +7 -0
data/lib/mongo/operation/update/result.rb +8 -0
data/lib/mongo/operation/users_info/result.rb +3 -0
data/lib/mongo/operation.rb +2 -0
data/lib/mongo/protocol/msg.rb +2 -2
data/lib/mongo/protocol/query.rb +11 -11
data/lib/mongo/query_cache.rb +242 -0
data/lib/mongo/retryable.rb +8 -1
data/lib/mongo/server/connection_common.rb +2 -2
data/lib/mongo/server/connection_pool.rb +3 -0
data/lib/mongo/server/monitor/connection.rb +3 -3
data/lib/mongo/server/monitor.rb +1 -1
data/lib/mongo/server/pending_connection.rb +2 -2
data/lib/mongo/server/push_monitor.rb +1 -1
data/lib/mongo/server.rb +5 -1
data/lib/mongo/server_selector/base.rb +5 -1
data/lib/mongo/server_selector/secondary_preferred.rb +7 -2
data/lib/mongo/session.rb +3 -0
data/lib/mongo/socket/ocsp_cache.rb +97 -0
data/lib/mongo/socket/ocsp_verifier.rb +368 -0
data/lib/mongo/socket/ssl.rb +45 -24
data/lib/mongo/socket.rb +6 -4
data/lib/mongo/srv/monitor.rb +7 -13
data/lib/mongo/srv/resolver.rb +14 -10
data/lib/mongo/timeout.rb +2 -0
data/lib/mongo/uri/options_mapper.rb +582 -0
data/lib/mongo/uri/srv_protocol.rb +3 -2
data/lib/mongo/uri.rb +21 -390
data/lib/mongo/utils.rb +12 -1
data/lib/mongo/version.rb +1 -1
data/lib/mongo.rb +9 -0
data/spec/NOTES.aws-auth.md +12 -7
data/spec/README.md +56 -1
data/spec/integration/bson_symbol_spec.rb +2 -4
data/spec/integration/bulk_write_spec.rb +48 -0
data/spec/integration/client_authentication_options_spec.rb +55 -28
data/spec/integration/connection_pool_populator_spec.rb +3 -1
data/spec/integration/cursor_reaping_spec.rb +53 -17
data/spec/integration/ocsp_connectivity_spec.rb +26 -0
data/spec/integration/ocsp_verifier_cache_spec.rb +188 -0
data/spec/integration/ocsp_verifier_spec.rb +334 -0
data/spec/integration/query_cache_spec.rb +1045 -0
data/spec/integration/query_cache_transactions_spec.rb +179 -0
data/spec/integration/retryable_writes/retryable_writes_40_and_newer_spec.rb +1 -0
data/spec/integration/retryable_writes/shared/performs_legacy_retries.rb +2 -0
data/spec/integration/sdam_error_handling_spec.rb +69 -18
data/spec/integration/sdam_events_spec.rb +7 -8
data/spec/integration/server_selection_spec.rb +36 -0
data/spec/integration/srv_monitoring_spec.rb +38 -3
data/spec/integration/srv_spec.rb +56 -0
data/spec/lite_spec_helper.rb +4 -2
data/spec/mongo/address_spec.rb +1 -1
data/spec/mongo/caching_cursor_spec.rb +70 -0
data/spec/mongo/client_construction_spec.rb +54 -1
data/spec/mongo/client_encryption_spec.rb +10 -16
data/spec/mongo/client_spec.rb +40 -0
data/spec/mongo/cluster/topology/single_spec.rb +14 -5
data/spec/mongo/cluster_spec.rb +3 -0
data/spec/mongo/collection/view/explainable_spec.rb +87 -4
data/spec/mongo/collection/view/map_reduce_spec.rb +2 -0
data/spec/mongo/collection_spec.rb +60 -0
data/spec/mongo/crypt/auto_decryption_context_spec.rb +1 -1
data/spec/mongo/crypt/auto_encryption_context_spec.rb +1 -1
data/spec/mongo/crypt/data_key_context_spec.rb +1 -1
data/spec/mongo/crypt/explicit_decryption_context_spec.rb +1 -1
data/spec/mongo/crypt/explicit_encryption_context_spec.rb +1 -1
data/spec/mongo/database_spec.rb +44 -64
data/spec/mongo/error/no_server_available_spec.rb +1 -1
data/spec/mongo/index/view_spec.rb +2 -4
data/spec/mongo/logger_spec.rb +13 -11
data/spec/mongo/operation/read_preference_legacy_spec.rb +19 -9
data/spec/mongo/operation/read_preference_op_msg_spec.rb +3 -3
data/spec/mongo/query_cache_spec.rb +279 -0
data/spec/mongo/server/app_metadata_shared.rb +7 -33
data/spec/mongo/server/connection_pool_spec.rb +7 -3
data/spec/mongo/server/connection_spec.rb +14 -7
data/spec/mongo/server_selector/secondary_preferred_spec.rb +6 -6
data/spec/mongo/socket/ssl_spec.rb +1 -1
data/spec/mongo/socket_spec.rb +1 -1
data/spec/mongo/uri/srv_protocol_spec.rb +64 -33
data/spec/mongo/uri_option_parsing_spec.rb +11 -11
data/spec/mongo/uri_spec.rb +68 -41
data/spec/mongo/utils_spec.rb +39 -0
data/spec/runners/auth.rb +3 -0
data/spec/runners/connection_string.rb +35 -124
data/spec/runners/transactions/operation.rb +2 -13
data/spec/spec_tests/cmap_spec.rb +7 -3
data/spec/spec_tests/data/change_streams/change-streams-errors.yml +0 -1
data/spec/spec_tests/data/change_streams/change-streams.yml +0 -1
data/spec/spec_tests/data/cmap/pool-checkout-connection.yml +6 -2
data/spec/spec_tests/data/cmap/pool-create-min-size.yml +3 -0
data/spec/spec_tests/data/connection_string/valid-warnings.yml +24 -0
data/spec/spec_tests/data/sdam_monitoring/discovered_standalone.yml +1 -3
data/spec/spec_tests/data/sdam_monitoring/standalone.yml +2 -2
data/spec/spec_tests/data/sdam_monitoring/standalone_repeated.yml +2 -2
data/spec/spec_tests/data/sdam_monitoring/standalone_suppress_equal_description_changes.yml +2 -2
data/spec/spec_tests/data/sdam_monitoring/standalone_to_rs_with_me_mismatch.yml +2 -2
data/spec/spec_tests/data/uri_options/auth-options.yml +25 -0
data/spec/spec_tests/data/uri_options/compression-options.yml +6 -3
data/spec/spec_tests/data/uri_options/read-preference-options.yml +24 -0
data/spec/spec_tests/data/uri_options/ruby-connection-options.yml +1 -0
data/spec/spec_tests/data/uri_options/tls-options.yml +160 -4
data/spec/spec_tests/dns_seedlist_discovery_spec.rb +9 -1
data/spec/spec_tests/uri_options_spec.rb +31 -33
data/spec/support/certificates/atlas-ocsp-ca.crt +28 -0
data/spec/support/certificates/atlas-ocsp.crt +41 -0
data/spec/support/client_registry.rb +4 -8
data/spec/support/client_registry_macros.rb +4 -4
data/spec/support/common_shortcuts.rb +45 -0
data/spec/support/constraints.rb +23 -0
data/spec/support/lite_constraints.rb +24 -0
data/spec/support/matchers.rb +16 -0
data/spec/support/ocsp +1 -0
data/spec/support/session_registry.rb +52 -0
data/spec/support/spec_config.rb +22 -12
data/spec/support/spec_setup.rb +38 -48
data/spec/support/utils.rb +19 -1
data.tar.gz.sig +1 -3
metadata +938 -933
metadata.gz.sig +0 -0
data/spec/integration/secondary_reads_spec.rb +0 -102
data/spec/shared/LICENSE +0 -20
data/spec/shared/bin/get-mongodb-download-url +0 -17
data/spec/shared/lib/mrss/child_process_helper.rb +0 -80
data/spec/shared/lib/mrss/cluster_config.rb +0 -221
data/spec/shared/lib/mrss/constraints.rb +0 -346
data/spec/shared/lib/mrss/docker_runner.rb +0 -265
data/spec/shared/lib/mrss/lite_constraints.rb +0 -191
data/spec/shared/lib/mrss/server_version_registry.rb +0 -115
data/spec/shared/lib/mrss/spec_organizer.rb +0 -152
data/spec/shared/lib/mrss/utils.rb +0 -15
data/spec/shared/share/Dockerfile.erb +0 -231
data/spec/shared/shlib/distro.sh +0 -73
data/spec/shared/shlib/server.sh +0 -290
data/spec/shared/shlib/set_env.sh +0 -128

data/lib/mongo/socket/ssl.rb CHANGED Viewed

@@ -15,15 +15,15 @@
 module Mongo
   class Socket
-    # Wrapper for SSL sockets.
+    # Wrapper for TLS sockets.
     #
     # @since 2.0.0
     class SSL < Socket
       include OpenSSL
-      # Initializes a new SSL socket.
+      # Initializes a new TLS socket.
       #
-      # @example Create the SSL socket.
+      # @example Create the TLS socket.
       #   SSL.new('::1', 27017, 30)
       #
       # @param [ String ] host The hostname or IP address.
@@ -113,7 +113,7 @@ module Mongo
         end
       end
-      # @return [ SSLContext ] context The ssl context.
+      # @return [ SSLContext ] context The TLS context.
       attr_reader :context
       # @return [ String ] host The host to connect to.
@@ -149,6 +149,7 @@ module Mongo
               @socket.connect
             end
             verify_certificate!(@socket)
+            verify_ocsp_endpoint!(@socket)
           rescue
             @socket.close
             @socket = nil
@@ -177,29 +178,36 @@ module Mongo
       private
       def verify_certificate?
-        @verify_certificate ||=
-          # If ssl_verify_certificate is not present, disable only if ssl_verify is
-          # explicitly set to false.
-          if options[:ssl_verify_certificate].nil?
-            options[:ssl_verify] != false
-          # If ssl_verify_certificate is present, enable or disable based on its value.
-          else
-            !!options[:ssl_verify_certificate]
-          end
+        # If ssl_verify_certificate is not present, disable only if
+        # ssl_verify is explicitly set to false.
+        if options[:ssl_verify_certificate].nil?
+          options[:ssl_verify] != false
+        # If ssl_verify_certificate is present, enable or disable based on its value.
+        else
+          !!options[:ssl_verify_certificate]
+        end
       end
       def verify_hostname?
-        @verify_hostname ||=
-          # If ssl_verify_hostname is not present, disable only if ssl_verify is
-          # explicitly set to false.
-          if options[:ssl_verify_hostname].nil?
-            options[:ssl_verify] != false
-          # If ssl_verify_hostname is present, enable or disable based on its value.
-          else
-            !!options[:ssl_verify_hostname]
-          end
+        # If ssl_verify_hostname is not present, disable only if ssl_verify is
+        # explicitly set to false.
+        if options[:ssl_verify_hostname].nil?
+          options[:ssl_verify] != false
+        # If ssl_verify_hostname is present, enable or disable based on its value.
+        else
+          !!options[:ssl_verify_hostname]
+        end
       end
+      def verify_ocsp_endpoint?
+        if !options[:ssl_verify_ocsp_endpoint].nil?
+          options[:ssl_verify_ocsp_endpoint] != false
+        elsif !options[:ssl_verify_certificate].nil?
+          options[:ssl_verify_certificate] != false
+        else
+          options[:ssl_verify] != false
+        end
+      end
       def create_context(options)
         OpenSSL::SSL::SSLContext.new.tap do |context|
@@ -344,13 +352,26 @@ module Mongo
       def verify_certificate!(socket)
         if verify_hostname?
           unless OpenSSL::SSL.verify_certificate_identity(socket.peer_cert, host_name)
-            raise Error::SocketError, 'SSL handshake failed due to a hostname mismatch.'
+            raise Error::SocketError, 'TLS handshake failed due to a hostname mismatch.'
           end
         end
       end
+      def verify_ocsp_endpoint!(socket)
+        unless verify_ocsp_endpoint?
+          return
+        end
+        cert = socket.peer_cert
+        ca_cert = socket.peer_cert_chain.last
+        verifier = OcspVerifier.new(@host_name, cert, ca_cert, context.cert_store,
+          **Utils.shallow_symbolize_keys(options))
+        verifier.verify_with_cache
+      end
       def read_buffer_size
-        # Buffer size for SSL reads.
+        # Buffer size for TLS reads.
         # Capped at 16k due to https://linux.die.net/man/3/ssl_read
         16384
       end

data/lib/mongo/socket.rb CHANGED Viewed

@@ -15,6 +15,8 @@
 require 'mongo/socket/ssl'
 require 'mongo/socket/tcp'
 require 'mongo/socket/unix'
+require 'mongo/socket/ocsp_verifier'
+require 'mongo/socket/ocsp_cache'
 module Mongo
@@ -25,10 +27,10 @@ module Mongo
   class Socket
     include ::Socket::Constants
-    # Error message for SSL related exceptions.
+    # Error message for TLS related exceptions.
     #
     # @since 2.0.0
-    SSL_ERROR = 'MongoDB may not be configured with SSL support'.freeze
+    SSL_ERROR = 'MongoDB may not be configured with TLS support'.freeze
     # Error message for timeouts on socket calls.
     #
@@ -129,7 +131,7 @@ module Mongo
       sock_arr = [ @socket ]
       if Kernel::select(sock_arr, nil, sock_arr, 0)
         # The eof? call is supposed to return immediately since select
-        # indicated the socket is readable. However, if @socket is an SSL
+        # indicated the socket is readable. However, if @socket is a TLS
         # socket, eof? can block anyway - see RUBY-2140.
         begin
           Timeout.timeout(0.1) do
@@ -342,7 +344,7 @@ module Mongo
     end
     def read_buffer_size
-      # Buffer size for non-SSL reads
+      # Buffer size for non-TLS reads
       # 64kb
       65536
     end

data/lib/mongo/srv/monitor.rb CHANGED Viewed

@@ -34,24 +34,18 @@ module Mongo
       # Creates the SRV monitor.
       #
       # @param [ Cluster ] cluster The cluster.
-      # @param [ Hash ] options The cluster options.
       #
-      # @option options [ Float ] :timeout The timeout to use for DNS lookups.
-      # @option options [ URI::SRVProtocol ] :srv_uri The SRV URI to monitor.
-      # @option options [ Hash ] :resolv_options For internal driver use only.
+      # @option opts [ Float ] :timeout The timeout to use for DNS lookups.
+      # @option opts [ URI::SRVProtocol ] :srv_uri The SRV URI to monitor.
+      # @option opts [ Hash ] :resolv_options For internal driver use only.
       #   Options to pass through to Resolv::DNS constructor for SRV lookups.
-      def initialize(cluster, options = nil)
-        options = if options
-          options.dup
-        else
-          {}
-        end
+      def initialize(cluster, **opts)
         @cluster = cluster
-        @resolver = Srv::Resolver.new(options)
-        unless @srv_uri = options.delete(:srv_uri)
+        unless @srv_uri = opts.delete(:srv_uri)
           raise ArgumentError, 'SRV URI is required'
         end
-        @options = options.freeze
+        @options = opts.freeze
+        @resolver = Srv::Resolver.new(**opts)
         @last_result = @srv_uri.srv_result
         @stop_semaphore = Semaphore.new
       end

data/lib/mongo/srv/resolver.rb CHANGED Viewed

@@ -28,20 +28,24 @@ module Mongo
       # Creates a new Resolver.
       #
-      # @param [ Hash ] options The options for the resolver.
-      #
-      # @option options [ Boolean ] :raise_on_invalid Whether or not to raise
+      # @option opts [ Float ] :timeout The timeout, in seconds, to use for
+      #   each DNS record resolution.
+      # @option opts [ Boolean ] :raise_on_invalid Whether or not to raise
       #   an exception if either a record with a mismatched domain is found
       #   or if no records are found. Defaults to true.
-      # @option options [ Hash ] :resolv_options For internal driver use only.
+      # @option opts [ Hash ] :resolv_options For internal driver use only.
       #   Options to pass through to Resolv::DNS constructor for SRV lookups.
-      def initialize(options = nil)
-        @options = if options
-          options.dup
-        else
-          {}
-        end.freeze
+      def initialize(**opts)
+        @options = opts.freeze
         @resolver = Resolv::DNS.new(@options[:resolv_options])
+        @resolver.timeouts = timeout
+      end
+      # @return [ Hash ] Resolver options.
+      attr_reader :options
+      def timeout
+        options[:timeout] || Monitor::DEFAULT_TIMEOUT
       end
       # Obtains all of the SRV records for a given hostname.

data/lib/mongo/timeout.rb CHANGED Viewed

@@ -13,6 +13,8 @@
 # limitations under the License.
 module Mongo
+  # @api private
   module Timeout
     # A wrapper around Ruby core's Timeout::timeout method that provides