PHON-99: Add & Implement SSLConnectionException

Author: bjori

config.m4

@@ -173,6 +173,7 @@ if test "$PHONGO" != "no"; then
       src/MongoDB/Exception.c \
       src/MongoDB/RuntimeException.c \
       src/MongoDB/ConnectionException.c \
+      src/MongoDB/SSLConnectionException.c \
       src/MongoDB/WriteException.c \
   ";
 

php_phongo.c

@@ -857,35 +857,39 @@ mongoc_stream_t* phongo_stream_initiator(const mongoc_uri_t *uri, const mongoc_h
 
 	if (!stream) {
 		bson_set_error (error, MONGOC_ERROR_STREAM, MONGOC_ERROR_STREAM_CONNECT, "Failed connecting to '%s:%d': %s", host->host, host->port, errmsg);
+		efree(dsn);
 		return NULL;
 	}
 
+	/* Avoid invalid leak warning in debug mode when freeing the stream */
+#if ZEND_DEBUG
+	stream->__exposed = 1;
+#endif
+
 	if (mongoc_uri_get_ssl(uri)) {
 		zend_error_handling       error_handling;
-		zend_replace_error_handling(EH_THROW, phongo_exception_from_mongoc_domain(MONGOC_ERROR_STREAM, MONGOC_ERROR_STREAM_SOCKET), &error_handling TSRMLS_CC);
+		zend_replace_error_handling(EH_THROW, php_phongo_sslconnectionexception_ce, &error_handling TSRMLS_CC);
 
 		mongoc_log(MONGOC_LOG_LEVEL_DEBUG, MONGOC_LOG_DOMAIN, "Enabling SSL");
 		if (php_stream_xport_crypto_setup(stream, STREAM_CRYPTO_METHOD_SSLv23_CLIENT, NULL TSRMLS_CC) < 0) {
 			zend_restore_error_handling(&error_handling TSRMLS_CC);
-			bson_set_error (error, MONGOC_ERROR_STREAM, MONGOC_ERROR_STREAM_INVALID_TYPE, "Failed to setup crypto, is the OpenSSL extension loaded?");
 			php_stream_free(stream, PHP_STREAM_FREE_CLOSE_PERSISTENT | PHP_STREAM_FREE_RSRC_DTOR);
+			bson_set_error (error, MONGOC_ERROR_STREAM, MONGOC_ERROR_STREAM_INVALID_TYPE, "Failed to setup crypto, is the OpenSSL extension loaded?");
+			efree(dsn);
 			return NULL;
 		}
-		zend_restore_error_handling(&error_handling TSRMLS_CC);
 
 		if (php_stream_xport_crypto_enable(stream, 1 TSRMLS_CC) < 0) {
+			zend_restore_error_handling(&error_handling TSRMLS_CC);
 			php_stream_free(stream, PHP_STREAM_FREE_CLOSE_PERSISTENT | PHP_STREAM_FREE_RSRC_DTOR);
 			bson_set_error (error, MONGOC_ERROR_STREAM, MONGOC_ERROR_STREAM_INVALID_TYPE, "Failed to setup crypto, is the server running with SSL?");
+			efree(dsn);
 			return NULL;
 		}
+		zend_restore_error_handling(&error_handling TSRMLS_CC);
 	}
 	efree(dsn);
 
-	/* Avoid invalid leak warning in debug mode when freeing the stream */
-#if ZEND_DEBUG
-	stream->__exposed = 1;
-#endif
-
 
 	base_stream = ecalloc(1, sizeof(php_phongo_stream_socket));
 	base_stream->stream = stream;
@@ -1420,6 +1424,7 @@ PHP_MINIT_FUNCTION(phongo)
 	PHP_MINIT(Exception)(INIT_FUNC_ARGS_PASSTHRU);
 	PHP_MINIT(RuntimeException)(INIT_FUNC_ARGS_PASSTHRU);
 	PHP_MINIT(ConnectionException)(INIT_FUNC_ARGS_PASSTHRU);
+	PHP_MINIT(SSLConnectionException)(INIT_FUNC_ARGS_PASSTHRU);
 	PHP_MINIT(WriteException)(INIT_FUNC_ARGS_PASSTHRU);
 
 	PHP_MINIT(Type)(INIT_FUNC_ARGS_PASSTHRU);

php_phongo_classes.h

@@ -191,6 +191,7 @@ extern PHONGO_API zend_class_entry *php_phongo_writeresult_ce;
 extern PHONGO_API zend_class_entry *php_phongo_exception_ce;
 extern PHONGO_API zend_class_entry *php_phongo_runtimeexception_ce;
 extern PHONGO_API zend_class_entry *php_phongo_connectionexception_ce;
+extern PHONGO_API zend_class_entry *php_phongo_sslconnectionexception_ce;
 extern PHONGO_API zend_class_entry *php_phongo_writeexception_ce;
 
 extern PHONGO_API zend_class_entry *php_phongo_type_ce;
@@ -225,6 +226,7 @@ PHP_MINIT_FUNCTION(WriteResult);
 PHP_MINIT_FUNCTION(Exception);
 PHP_MINIT_FUNCTION(RuntimeException);
 PHP_MINIT_FUNCTION(ConnectionException);
+PHP_MINIT_FUNCTION(SSLConnectionException);
 PHP_MINIT_FUNCTION(WriteException);
 
 PHP_MINIT_FUNCTION(Type);

src/MongoDB/SSLConnectionException.c

@@ -0,0 +1,81 @@
+/*
+  +---------------------------------------------------------------------------+
+  | PHP Driver for MongoDB                                                    |
+  +---------------------------------------------------------------------------+
+  | Copyright 2013-2014 MongoDB, Inc.                                         |
+  |                                                                           |
+  | Licensed under the Apache License, Version 2.0 (the "License");           |
+  | you may not use this file except in compliance with the License.          |
+  | You may obtain a copy of the License at                                   |
+  |                                                                           |
+  | http://www.apache.org/licenses/LICENSE-2.0                                |
+  |                                                                           |
+  | Unless required by applicable law or agreed to in writing, software       |
+  | distributed under the License is distributed on an "AS IS" BASIS,         |
+  | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.  |
+  | See the License for the specific language governing permissions and       |
+  | limitations under the License.                                            |
+  +---------------------------------------------------------------------------+
+  | Copyright (c) 2014, MongoDB, Inc.                                         |
+  +---------------------------------------------------------------------------+
+*/
+
+#ifdef HAVE_CONFIG_H
+#	include "config.h"
+#endif
+
+/* External libs */
+#include <bson.h>
+#include <mongoc.h>
+
+/* PHP Core stuff */
+#include <php.h>
+#include <php_ini.h>
+#include <ext/standard/info.h>
+#include <Zend/zend_interfaces.h>
+#include <ext/spl/spl_iterators.h>
+/* Our Compatability header */
+#include "php_compat_53.h"
+
+/* Our stuffz */
+#include "php_phongo.h"
+#include "php_bson.h"
+#include <ext/spl/spl_exceptions.h>
+
+
+PHONGO_API zend_class_entry *php_phongo_sslconnectionexception_ce;
+
+/* {{{ MongoDB\SSLConnectionException */
+
+static zend_function_entry php_phongo_sslconnectionexception_me[] = {
+	PHP_FE_END
+};
+
+/* }}} */
+
+
+/* {{{ PHP_MINIT_FUNCTION */
+PHP_MINIT_FUNCTION(SSLConnectionException)
+{
+	(void)type;
+	(void)module_number;
+	zend_class_entry ce;
+
+	INIT_NS_CLASS_ENTRY(ce, "MongoDB", "SSLConnectionException", php_phongo_sslconnectionexception_me);
+	php_phongo_sslconnectionexception_ce = zend_register_internal_class_ex(&ce, php_phongo_connectionexception_ce, NULL TSRMLS_CC);
+	php_phongo_sslconnectionexception_ce->ce_flags |= ZEND_ACC_FINAL_CLASS;
+
+	return SUCCESS;
+}
+/* }}} */
+
+
+
+/*
+ * Local variables:
+ * tab-width: 4
+ * c-basic-offset: 4
+ * End:
+ * vim600: noet sw=4 ts=4 fdm=marker
+ * vim<600: noet sw=4 ts=4
+ */

tests/connect/standalone-ssl-0002.phpt

@@ -0,0 +1,55 @@
+--TEST--
+MongoDB\Write\Batch: #001 Variety Batch
+--SKIPIF--
+<?php require "tests/utils/basic-skipif.inc"?>
+--FILE--
+<?php 
+require_once "tests/utils/basic.inc";
+
+$dsn = sprintf("%s/?ssl=true", MONGODB_STANDALONE_SSL_URI);
+
+$SSL_DIR = realpath(__DIR__ . "/" . "./../../scripts/ssl/");
+$opts = array(
+    "ssl" => array(
+        "peer_name" => "MongoDB",
+        "verify_peer" => true,
+        "verify_peer_name" => true,
+        "allow_self_signed" => false,
+        "cafile" => $SSL_DIR . "/ca.pem", /* Defaults to openssl.cafile */
+        "capath" => $SSL_DIR, /* Defaults to openssl.capath */
+        "local_cert" => $SSL_DIR . "/client.pem",
+        "passphrase" => "Very secretive client.pem passphrase",
+        "CN_match" => "Common Name (CN) match",
+        "verify_depth" => 5,
+        "ciphers" => "HIGH:!EXPORT:!aNULL@STRENGTH",
+        "capture_peer_cert" => true,
+        "capture_peer_cert_chain" => true,
+        "SNI_enabled" => true,
+        "disable_compression" => false,
+        "peer_fingerprint" => "",
+    ),
+);
+$context = stream_context_create($opts);
+
+$mc = new MongoDB\Manager($dsn, array(), array("context" => $context, "debug" => STDERR));
+
+
+echo throws(function() use($mc) {
+    $batch = new MongoDB\WriteBatch;
+    $batch->insert(array("my" => "value"));
+    $retval = $mc->executeWriteBatch(NS, $batch);
+}, "MongoDB\\SSLConnectionException", "executeWriteBatch"), "\n";
+/*
+
+$opts = stream_context_get_params($context);
+var_dump($opts);
+$cert = openssl_x509_parse($opts["options"]["ssl"]["peer_certificate"]);
+var_dump($cert["name"]);
+ */
+?>
+===DONE===
+<?php exit(0); ?>
+--EXPECTF--
+OK: Got MongoDB\SSLConnectionException thrown from executeWriteBatch
+%s
+===DONE===

tests/utils/tools.php

@@ -94,13 +94,13 @@ function throws(callable $function, $exceptionname, $infunction = null) {
                 } else {
                     printf("ALMOST: Got %s - but was thrown in %s, not %s\n", $exceptionname, $function, $infunction);
                 }
-                return;
+                return $e->getMessage();
             }
             printf("OK: Got %s\n", $exceptionname);
         } else {
             printf("ALMOST: Got %s - expected %s\n", get_class($e), $exceptionname);
         }
-        return;
+        return $e->getMessage();
     }
     echo "FAILED: Expected $exceptionname thrown!\n";
 }