Cloud example and fixes (#282)

* Add example for cloud (CaaS)
* Fix crash when the socket times out during connection
* Handle `SSL_ERROR_ZERO_RETURN` properly
* Initialize the SSL library when using cloud
* Fix cloud `local_dc` issue where `ControlConnection::local_dc()` is used, but is never set
* Remove authentication using cloud secure connect bundle
* Remove secure bundle authentication from unit tests

Author: mpenick

cpp-driver/examples/cloud/.gitignore

@@ -0,0 +1 @@
+cloud

cpp-driver/examples/cloud/CMakeLists.txt

@@ -0,0 +1,12 @@
+cmake_minimum_required(VERSION 2.6.4)
+
+set(CMAKE_RUNTIME_OUTPUT_DIRECTORY ".")
+set(PROJECT_EXAMPLE_NAME cloud)
+
+file(GLOB EXAMPLE_SRC_FILES ${CASS_ROOT_DIR}/examples/cloud/*.c)
+include_directories(${INCLUDES})
+add_executable(${PROJECT_EXAMPLE_NAME} ${EXAMPLE_SRC_FILES})
+target_link_libraries(${PROJECT_EXAMPLE_NAME} ${PROJECT_LIB_NAME_TARGET} ${CASS_LIBS})
+add_dependencies(${PROJECT_EXAMPLE_NAME} ${PROJECT_LIB_NAME_TARGET})
+
+set_property(TARGET ${PROJECT_EXAMPLE_NAME} PROPERTY FOLDER "Examples")

cpp-driver/examples/cloud/cloud.c

@@ -0,0 +1,109 @@
+/*
+  This is free and unencumbered software released into the public domain.
+
+  Anyone is free to copy, modify, publish, use, compile, sell, or
+  distribute this software, either in source code form or as a compiled
+  binary, for any purpose, commercial or non-commercial, and by any
+  means.
+
+  In jurisdictions that recognize copyright laws, the author or authors
+  of this software dedicate any and all copyright interest in the
+  software to the public domain. We make this dedication for the benefit
+  of the public at large and to the detriment of our heirs and
+  successors. We intend this dedication to be an overt act of
+  relinquishment in perpetuity of all present and future rights to this
+  software under copyright law.
+
+  THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+  EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+  MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+  IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY CLAIM, DAMAGES OR
+  OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
+  ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
+  OTHER DEALINGS IN THE SOFTWARE.
+
+  For more information, please refer to <http://unlicense.org/>
+*/
+
+#include <cassandra.h>
+#include <stdio.h>
+
+int main(int argc, char* argv[]) {
+  /* Setup and connect to cluster */
+  CassFuture* connect_future = NULL;
+  CassCluster* cluster;
+  CassSession* session;
+
+  const char* secure_connect_bundle;
+  const char* username;
+  const char* password;
+
+  if (argc < 4) {
+    fprintf(stderr, "Usage: %s <secure connect bundle zip> <username> <password>\n", argv[0]);
+    return 1;
+  }
+
+  secure_connect_bundle = argv[1];
+  username = argv[2];
+  password = argv[3];
+
+  cluster = cass_cluster_new();
+  session = cass_session_new();
+
+  /* Setup driver to connect to the cloud using the secure connection bundle */
+  if (cass_cluster_set_cloud_secure_connection_bundle(cluster, secure_connect_bundle) != CASS_OK) {
+    fprintf(stderr, "Unable to configure cloud using the secure connection bundle: %s\n",
+            secure_connect_bundle);
+  }
+
+  cass_cluster_set_credentials(cluster, username, password);
+
+  /* Provide the cluster object as configuration to connect the session */
+  connect_future = cass_session_connect(session, cluster);
+
+  if (cass_future_error_code(connect_future) == CASS_OK) {
+    /* Build statement and execute query */
+    const char* query = "SELECT release_version FROM system.local";
+    CassStatement* statement = cass_statement_new(query, 0);
+
+    CassFuture* result_future = cass_session_execute(session, statement);
+
+    if (cass_future_error_code(result_future) == CASS_OK) {
+      /* Retrieve result set and get the first row */
+      const CassResult* result = cass_future_get_result(result_future);
+      const CassRow* row = cass_result_first_row(result);
+
+      if (row) {
+        const CassValue* value = cass_row_get_column_by_name(row, "release_version");
+
+        const char* release_version;
+        size_t release_version_length;
+        cass_value_get_string(value, &release_version, &release_version_length);
+        printf("release_version: '%.*s'\n", (int)release_version_length, release_version);
+      }
+
+      cass_result_free(result);
+    } else {
+      /* Handle error */
+      const char* message;
+      size_t message_length;
+      cass_future_error_message(result_future, &message, &message_length);
+      fprintf(stderr, "Unable to run query: '%.*s'\n", (int)message_length, message);
+    }
+
+    cass_statement_free(statement);
+    cass_future_free(result_future);
+  } else {
+    /* Handle error */
+    const char* message;
+    size_t message_length;
+    cass_future_error_message(connect_future, &message, &message_length);
+    fprintf(stderr, "Unable to connect: '%.*s'\n", (int)message_length, message);
+  }
+
+  cass_future_free(connect_future);
+  cass_cluster_free(cluster);
+  cass_session_free(session);
+
+  return 0;
+}

cpp-driver/gtests/src/unit/tests/test_cloud_secure_connect_config.cpp

@@ -61,7 +61,6 @@ using datastax::internal::core::ClusterMetadataResolver;
 using datastax::internal::core::ClusterSettings;
 using datastax::internal::core::Config;
 using datastax::internal::core::HttpClient;
-using datastax::internal::enterprise::DsePlainTextAuthProvider;
 using datastax::internal::json::StringBuffer;
 using datastax::internal::json::Writer;
 
@@ -122,10 +121,6 @@ class CloudSecureConnectionConfigTest : public HttpTest {
                                   int port = 1443) {
     Writer<StringBuffer> writer(buffer);
     writer.StartObject();
-    writer.Key("username");
-    writer.String("DataStax");
-    writer.Key("password");
-    writer.String("Constellation");
     writer.Key("host");
     writer.String(host.c_str());
     writer.Key("port");
@@ -171,8 +166,6 @@ TEST_F(CloudSecureConnectionConfigTest, CredsV1) {
   create_zip_file(buffer.GetString());
 
   EXPECT_TRUE(cloud_config.load(creds_zip_file(), &config));
-  EXPECT_EQ("DataStax", cloud_config.username());
-  EXPECT_EQ("Constellation", cloud_config.password());
   EXPECT_EQ("cloud.datastax.com", cloud_config.host());
   EXPECT_EQ(1443, cloud_config.port());
   EXPECT_EQ("database_as_a_service", cloud_config.keyspace());
@@ -181,7 +174,6 @@ TEST_F(CloudSecureConnectionConfigTest, CredsV1) {
   EXPECT_EQ(key(), cloud_config.key());
 
   EXPECT_TRUE(config.ssl_context());
-  EXPECT_TRUE(dynamic_cast<DsePlainTextAuthProvider*>(config.auth_provider().get()) != NULL);
 }
 
 TEST_F(CloudSecureConnectionConfigTest, CredsV1WithoutCreds) {
@@ -201,8 +193,6 @@ TEST_F(CloudSecureConnectionConfigTest, CredsV1WithoutCreds) {
   create_zip_file(buffer.GetString());
 
   EXPECT_TRUE(cloud_config.load(creds_zip_file(), &config));
-  EXPECT_EQ("", cloud_config.username());
-  EXPECT_EQ("", cloud_config.password());
   EXPECT_EQ("bigdata.datastax.com", cloud_config.host());
   EXPECT_EQ(2443, cloud_config.port());
   EXPECT_EQ("datastax", cloud_config.keyspace());
@@ -211,8 +201,6 @@ TEST_F(CloudSecureConnectionConfigTest, CredsV1WithoutCreds) {
   EXPECT_EQ(key(), cloud_config.key());
 
   EXPECT_TRUE(config.ssl_context());
-  EXPECT_TRUE(dynamic_cast<DsePlainTextAuthProvider*>(config.auth_provider().get()) ==
-              NULL); // Not configured
 }
 
 TEST_F(CloudSecureConnectionConfigTest, InvalidCredsV1ConfigMissingHost) {
@@ -221,10 +209,6 @@ TEST_F(CloudSecureConnectionConfigTest, InvalidCredsV1ConfigMissingHost) {
   StringBuffer buffer;
   Writer<StringBuffer> writer(buffer);
   writer.StartObject();
-  writer.Key("username");
-  writer.String("DataStax");
-  writer.Key("password");
-  writer.String("Constellation");
   writer.Key("port");
   writer.Int(1443);
   writer.Key("keyspace");
@@ -241,10 +225,6 @@ TEST_F(CloudSecureConnectionConfigTest, InvalidCredsV1ConfigMissingPort) {
   StringBuffer buffer;
   Writer<StringBuffer> writer(buffer);
   writer.StartObject();
-  writer.Key("username");
-  writer.String("DataStax");
-  writer.Key("password");
-  writer.String("Constellation");
   writer.Key("host");
   writer.String("cloud.datastax.com");
   writer.Key("keyspace");
@@ -261,10 +241,6 @@ TEST_F(CloudSecureConnectionConfigTest, InvalidCredsV1ConfigMissingKeyspace) {
   StringBuffer buffer;
   Writer<StringBuffer> writer(buffer);
   writer.StartObject();
-  writer.Key("username");
-  writer.String("DataStax");
-  writer.Key("password");
-  writer.String("Constellation");
   writer.Key("host");
   writer.String("cloud.datastax.com");
   writer.Key("port");

cpp-driver/include/cassandra.h

@@ -700,7 +700,8 @@ typedef enum  CassErrorSource_ {
   XX(CASS_ERROR_SOURCE_SSL, CASS_ERROR_SSL_NO_PEER_CERT, 3, "No peer certificate")  \
   XX(CASS_ERROR_SOURCE_SSL, CASS_ERROR_SSL_INVALID_PEER_CERT, 4, "Invalid peer certificate") \
   XX(CASS_ERROR_SOURCE_SSL, CASS_ERROR_SSL_IDENTITY_MISMATCH, 5, "Certificate does not match host or IP address") \
-  XX(CASS_ERROR_SOURCE_SSL, CASS_ERROR_SSL_PROTOCOL_ERROR, 6, "Protocol error")
+  XX(CASS_ERROR_SOURCE_SSL, CASS_ERROR_SSL_PROTOCOL_ERROR, 6, "Protocol error") \
+  XX(CASS_ERROR_SOURCE_SSL, CASS_ERROR_SSL_CLOSED, 7, "Connection closed")
 
 /* @cond IGNORE */
 #define CASS_ERROR_MAP CASS_ERROR_MAPPING /* Deprecated */
@@ -2771,12 +2772,14 @@ cass_cluster_set_host_listener_callback(CassCluster* cluster,
  */
 CASS_EXPORT CassError
 cass_cluster_set_cloud_secure_connection_bundle(CassCluster* cluster,
-                                                const char*path);
+                                                const char* path);
 
 /**
  * Same as cass_cluster_set_cloud_secure_connection_bundle(), but with lengths
  * for string parameters.
  *
+ * @see cass_cluster_set_cloud_secure_connection_bundle()
+ *
  * @param[in] cluster
  * @param[in] path Absolute path to DBaaS credentials file.
  * @param[in] path_length Length of path variable.
@@ -2787,6 +2790,41 @@ cass_cluster_set_cloud_secure_connection_bundle_n(CassCluster* cluster,
                                                   const char* path,
                                                   size_t path_length);
 
+/**
+ * Same as cass_cluster_set_cloud_secure_connection_bundle(), but it does not
+ * initialize the underlying SSL library implementation. The SSL library still
+ * needs to be initialized, but it's up to the client application to handle
+ * initialization. This is similar to the function cass_ssl_new_no_lib_init(),
+ * and its documentation should be used as a reference to properly initialize
+ * the underlying SSL library.
+ *
+ * @see cass_ssl_new_no_lib_init()
+ * @see cass_cluster_set_cloud_secure_connection_bundle()
+ *
+ * @param[in] cluster
+ * @param[in] path Absolute path to DBaaS credentials file.
+ * @return CASS_OK if successful, otherwise error occured.
+ */
+CASS_EXPORT CassError
+cass_cluster_set_cloud_secure_connection_bundle_no_ssl_lib_init(CassCluster* cluster,
+                                                                const char* path);
+
+/**
+ * Same as cass_cluster_set_cloud_secure_connection_bundle_no_ssl_lib_init(),
+ * but with lengths for string parameters.
+ *
+ * @see cass_cluster_set_cloud_secure_connection_bundle_no_ssl_lib_init()
+ *
+ * @param[in] cluster
+ * @param[in] path Absolute path to DBaaS credentials file.
+ * @param[in] path_length Length of path variable.
+ * @return CASS_OK if successful, otherwise error occured.
+ */
+CASS_EXPORT CassError
+cass_cluster_set_cloud_secure_connection_bundle_no_ssl_lib_init_n(CassCluster* cluster,
+                                                                  const char* path,
+                                                                  size_t path_length);
+
 /***********************************************************************************
  *
  * Session

cpp-driver/src/cloud_secure_connection_config.cpp

@@ -246,18 +246,6 @@ bool CloudSecureConnectionConfig::load(const String& filename, Config* config /*
     return false;
   }
 
-  if (document.HasMember("username") && document["username"].IsString()) {
-    username_ = document["username"].GetString();
-  }
-  if (document.HasMember("password") && document["password"].IsString()) {
-    password_ = document["password"].GetString();
-  }
-
-  if (config && (!username_.empty() || !password_.empty())) {
-    config->set_auth_provider(
-        AuthProvider::Ptr(new enterprise::DsePlainTextAuthProvider(username_, password_, "")));
-  }
-
   if (!document.HasMember("host") || !document["host"].IsString()) {
     LOG_ERROR(CLOUD_ERROR "Missing host");
     return false;

cpp-driver/src/cloud_secure_connection_config.hpp

@@ -30,8 +30,6 @@ class CloudSecureConnectionConfig {
   bool load(const String& filename, Config* config = NULL);
   bool is_loaded() const { return is_loaded_; }
 
-  const String& username() const { return username_; }
-  const String& password() const { return password_; }
   const String& host() const { return host_; }
   int port() const { return port_; }
   const String& keyspace() const { return keyspace_; }
@@ -42,8 +40,6 @@ class CloudSecureConnectionConfig {
 
 private:
   bool is_loaded_;
-  String username_;
-  String password_;
   String host_;
   int port_;
   String keyspace_;

cpp-driver/src/cluster_config.cpp

@@ -485,6 +485,19 @@ CassError cass_cluster_set_cloud_secure_connection_bundle(CassCluster* cluster,
 
 CassError cass_cluster_set_cloud_secure_connection_bundle_n(CassCluster* cluster, const char* path,
                                                             size_t path_length) {
+  SslContextFactory::init_once();
+  return cass_cluster_set_cloud_secure_connection_bundle_no_ssl_lib_init_n(cluster, path,
+                                                                           path_length);
+}
+
+CassError cass_cluster_set_cloud_secure_connection_bundle_no_ssl_lib_init(CassCluster* cluster,
+                                                                          const char* path) {
+  return cass_cluster_set_cloud_secure_connection_bundle_n(cluster, path, SAFE_STRLEN(path));
+}
+
+CassError cass_cluster_set_cloud_secure_connection_bundle_no_ssl_lib_init_n(CassCluster* cluster,
+                                                                            const char* path,
+                                                                            size_t path_length) {
   if (!cluster->config().set_cloud_secure_connection_bundle(String(path, path_length))) {
     return CASS_ERROR_LIB_BAD_PARAMS;
   }

cpp-driver/src/cluster_connector.cpp

@@ -230,7 +230,7 @@ void ClusterConnector::on_connect(ControlConnector* connector) {
     for (LoadBalancingPolicy::Vec::const_iterator it = policies.begin(), end = policies.end();
          it != end; ++it) {
       LoadBalancingPolicy::Ptr policy(*it);
-      policy->init(connected_host, hosts, random_, connector->local_dc());
+      policy->init(connected_host, hosts, random_, local_dc_);
       policy->register_handles(event_loop_->loop());
     }
 

cpp-driver/src/control_connector.hpp

@@ -153,8 +153,6 @@ class ControlConnector
 
   const ProtocolVersion protocol_version() const { return connector_->protocol_version(); }
 
-  const String& local_dc() const { return local_dc_; }
-
   bool is_ok() const { return error_code_ == CONTROL_CONNECTION_OK; }
   bool is_canceled() const { return error_code_ == CONTROL_CONNECTION_CANCELED; }
   bool is_invalid_protocol() const {
@@ -220,7 +218,6 @@ class ControlConnector
 
   ControlConnectionListener* listener_;
   Metrics* metrics_;
-  String local_dc_;
   Host::Ptr host_;
   ControlConnectionSettings settings_;
 };