Merge remote-tracking branch 'remotes/auth/develop' into develop

# Conflicts:
#	cluster_library.c
#	common.h
#	library.c
#	library.h
#	redis.c
#	redis_array_impl.c
#	redis_cluster.c
#	redis_commands.c
#	redis_session.c

Author: zhenghaosheng1

cluster.markdown

@@ -19,6 +19,9 @@ $obj_cluster = new RedisCluster(NULL, Array("host:7000", "host:7001"), 1.5, 1.5)
 // persistent connections to each node.
 $obj_cluster = new RedisCluster(NULL, Array("host:7000", "host:7001"), 1.5, 1.5, true);
 
+// Connect with cluster using password.
+$obj_cluster = new RedisCluster(NULL, Array("host:7000", "host:7001"), 1.5, 1.5, true, "password");
+
 </pre>
 
 #### Loading a cluster configuration by name
@@ -29,6 +32,7 @@ In order to load a named array, one must first define the seed nodes in redis.in
 redis.clusters.seeds = "mycluster[]=localhost:7000&test[]=localhost:7001"
 redis.clusters.timeout = "mycluster=5"
 redis.clusters.read_timeout = "mycluster=10"
+redis.clusters.auth = "mycluster=password"
 </pre>
 
 Then, this cluster can be loaded by doing the following
@@ -161,7 +165,7 @@ To do this, you must configure your `session.save_handler` and `session.save_pat
 
 ~~~
 session.save_handler = rediscluster
-session.save_path = "seed[]=host1:port1&seed[]=host2:port2&seed[]=hostN:portN&timeout=2&read_timeout=2&failover=error&persistent=1"
+session.save_path = "seed[]=host1:port1&seed[]=host2:port2&seed[]=hostN:portN&timeout=2&read_timeout=2&failover=error&persistent=1&auth=password"
 ~~~
 
 ### session.session_handler
@@ -175,5 +179,6 @@ The save path for cluster based session storage takes the form of a PHP GET requ
 * _persistent_: Tells phpredis whether persistent connections should be used.
 * _distribute_: phpredis will randomly distribute session reads between masters and any attached slaves (load balancing).
 * _failover (string)_:  How phpredis should distribute session reads between master and slave nodes.
+* _auth (string, empty by default)_:  The password used to authenticate with the server prior to sending commands.
 * * _none_ : phpredis will only communicate with master nodes
 * * _error_: phpredis will communicate with master nodes unless one failes, in which case an attempt will be made to read session information from a slave. 

cluster_library.c

@@ -609,6 +609,10 @@ clusterReply* cluster_get_slots(RedisSock *redis_sock TSRMLS_DC)
     REDIS_REPLY_TYPE type;
     long len;
 
+    if (redis_sock->auth && resend_auth(redis_sock TSRMLS_CC) != 0) {
+        return NULL;
+    }
+
     // Send the command to the socket and consume reply type
     if (redis_sock_write(redis_sock, RESP_CLUSTER_SLOTS_CMD,
                         sizeof(RESP_CLUSTER_SLOTS_CMD)-1 TSRMLS_CC) < 0 ||
@@ -642,8 +646,8 @@ cluster_node_create(redisCluster *c, char *host, size_t host_len,
     node->slaves = NULL;
 
     // Attach socket
-    node->sock = redis_sock_create(host, host_len, port, c->timeout,
-        c->read_timeout, c->persistent, NULL, 0, 1);
+    node->sock = redis_sock_create(host, host_len, port, c->auth, c->auth_len,
+        c->timeout, c->read_timeout,c->persistent, NULL, 0, 1);
 
     return node;
 }
@@ -800,7 +804,7 @@ static void ht_free_node(zval *data)
 
 /* Construct a redisCluster object */
 PHP_REDIS_API redisCluster *cluster_create(double timeout, double read_timeout,
-                                           int failover, int persistent)
+                                           int failover, int persistent, char *auth, int auth_len)
 {
     redisCluster *c;
 
@@ -815,6 +819,8 @@ PHP_REDIS_API redisCluster *cluster_create(double timeout, double read_timeout,
     c->read_timeout = read_timeout;
     c->failover = failover;
     c->persistent = persistent;
+    c->auth = auth;
+    c->auth_len = auth_len;
     c->err = NULL;
 
     /* Set up our waitms based on timeout */
@@ -913,8 +919,8 @@ cluster_init_seeds(redisCluster *cluster, HashTable *ht_seeds) {
 
         // Allocate a structure for this seed
         redis_sock = redis_sock_create(str, psep-str,
-            (unsigned short)atoi(psep+1), cluster->timeout,
-            cluster->read_timeout, cluster->persistent, NULL, 0, 0);
+            (unsigned short)atoi(psep+1), cluster->auth, cluster->auth_len,
+            cluster->timeout, cluster->read_timeout, cluster->persistent, NULL, 0, 0);
 
         // Index this seed by host/port
         key_len = snprintf(key, sizeof(key), "%s:%u", ZSTR_VAL(redis_sock->host),

cluster_library.h

@@ -52,11 +52,26 @@
     memcmp(ZSTR_VAL(SLOT_SOCK(c,c->redir_slot)->host),c->redir_host,c->redir_host_len))
 
 /* Lazy connect logic */
+#if 0
 #define CLUSTER_LAZY_CONNECT(s) \
     if(s->lazy_connect) { \
         s->lazy_connect = 0; \
         redis_sock_server_open(s TSRMLS_CC); \
     }
+#endif
+#define CLUSTER_LAZY_CONNECT(s) \
+    int needs_auth = 0;   \
+    if(s->lazy_connect) { \
+        s->lazy_connect = 0; \
+        if(s->auth && s->status != REDIS_SOCK_STATUS_CONNECTED) {\
+            needs_auth = 1;\
+        }\
+        redis_sock_server_open(s TSRMLS_CC); \
+        if(needs_auth) {\
+            resend_auth(s TSRMLS_CC);\
+        }\
+    }
+
 
 /* Clear out our "last error" */
 #define CLUSTER_CLEAR_ERROR(c) do { \
@@ -177,6 +192,10 @@ typedef struct redisCluster {
     zend_object std;
 #endif
 
+    /*RedisCluster auth*/
+    char *auth;
+    int auth_len;
+
     /* Timeout and read timeout (for normal operations) */
     double timeout;
     double read_timeout;
@@ -367,7 +386,7 @@ PHP_REDIS_API int cluster_send_slot(redisCluster *c, short slot, char *cmd,
     int cmd_len, REDIS_REPLY_TYPE rtype TSRMLS_DC);
 
 PHP_REDIS_API redisCluster *cluster_create(double timeout, double read_timeout,
-    int failover, int persistent);
+    int failover, int persistent, char *auth, int auth_len);
 PHP_REDIS_API void cluster_free(redisCluster *c, int free_ctx TSRMLS_DC);
 PHP_REDIS_API int cluster_init_seeds(redisCluster *c, HashTable *ht_seeds);
 PHP_REDIS_API int cluster_map_keyspace(redisCluster *c TSRMLS_DC);

library.c

@@ -86,7 +86,7 @@ static int reselect_db(RedisSock *redis_sock TSRMLS_DC) {
 }
 
 /* Helper to resend AUTH <password> in the case of a reconnect */
-static int resend_auth(RedisSock *redis_sock TSRMLS_DC) {
+int resend_auth(RedisSock *redis_sock TSRMLS_DC) {
     char *cmd, *response;
     int cmd_len, response_len;
 
@@ -1364,8 +1364,8 @@ PHP_REDIS_API void redis_debug_response(INTERNAL_FUNCTION_PARAMETERS, RedisSock
  * redis_sock_create
  */
 PHP_REDIS_API RedisSock*
-redis_sock_create(char *host, int host_len, unsigned short port,
-                  double timeout, double read_timeout,
+redis_sock_create(char *host, int host_len, unsigned short port, char *auth, 
+                  int auth_len, double timeout, double read_timeout,
                   int persistent, char *persistent_id,
                   long retry_interval, zend_bool lazy_connect)
 {
@@ -1390,6 +1390,10 @@ redis_sock_create(char *host, int host_len, unsigned short port,
     redis_sock->timeout = timeout;
     redis_sock->read_timeout = read_timeout;
 
+    if (auth && auth_len){
+        redis_sock->auth = zend_string_init(auth, auth_len, 0);
+    }
+
     redis_sock->serializer = REDIS_SERIALIZER_NONE;
     redis_sock->compression = REDIS_COMPRESSION_NONE;
     redis_sock->mode = ATOMIC;

library.h

@@ -38,7 +38,8 @@ PHP_REDIS_API void redis_info_response(INTERNAL_FUNCTION_PARAMETERS, RedisSock *
 PHP_REDIS_API void redis_parse_info_response(char *response, zval *z_ret);
 PHP_REDIS_API void redis_parse_client_list_response(char *response, zval *z_ret);
 PHP_REDIS_API void redis_type_response(INTERNAL_FUNCTION_PARAMETERS, RedisSock *redis_sock, zval *z_tab, void *ctx);
-PHP_REDIS_API RedisSock* redis_sock_create(char *host, int host_len, unsigned short port, double timeout, double read_timeout, int persistent, char *persistent_id, long retry_interval, zend_bool lazy_connect);
+PHP_REDIS_API RedisSock* redis_sock_create(char *host, int host_len, unsigned short port, 
+    char *auth, int auth_len, double timeout, double read_timeout, int persistent, char *persistent_id, long retry_interval, zend_bool lazy_connect);
 PHP_REDIS_API int redis_sock_connect(RedisSock *redis_sock TSRMLS_DC);
 PHP_REDIS_API int redis_sock_server_open(RedisSock *redis_sock TSRMLS_DC);
 PHP_REDIS_API int redis_sock_disconnect(RedisSock *redis_sock TSRMLS_DC);

redis.c

@@ -72,6 +72,7 @@ PHP_INI_BEGIN()
     PHP_INI_ENTRY("redis.clusters.persistent", "", PHP_INI_ALL, NULL)
     PHP_INI_ENTRY("redis.clusters.read_timeout", "", PHP_INI_ALL, NULL)
     PHP_INI_ENTRY("redis.clusters.seeds", "", PHP_INI_ALL, NULL)
+    PHP_INI_ENTRY("redis.clusters.auth", "", PHP_INI_ALL, NULL)    
     PHP_INI_ENTRY("redis.clusters.timeout", "", PHP_INI_ALL, NULL)
 
     /* redis session */
@@ -950,7 +951,7 @@ redis_connect(INTERNAL_FUNCTION_PARAMETERS, int persistent)
         redis_free_socket(redis->sock);
     }
 
-    redis->sock = redis_sock_create(host, host_len, port, timeout, read_timeout, persistent,
+    redis->sock = redis_sock_create(host, host_len, port, NULL, 0, timeout, read_timeout, persistent, 
         persistent_id, retry_interval, 0);
 
     if (redis_sock_server_open(redis->sock TSRMLS_CC) < 0) {

redis_array_impl.c

@@ -72,7 +72,7 @@ ra_load_hosts(RedisArray *ra, HashTable *hosts, long retry_interval, zend_bool b
         redis = PHPREDIS_GET_OBJECT(redis_object, &ra->redis[i]);
 
         /* create socket */
-        redis->sock = redis_sock_create(host, host_len, port, ra->connect_timeout, ra->read_timeout, ra->pconnect, NULL, retry_interval, b_lazy_connect);
+        redis->sock = redis_sock_create(host, host_len, port, NULL, 0, ra->connect_timeout, ra->read_timeout, ra->pconnect, NULL, retry_interval, b_lazy_connect);
 
         if (!b_lazy_connect)
         {

redis_cluster.c

@@ -384,8 +384,8 @@ free_cluster_context(zend_object *object)
 #endif
 
 /* Attempt to connect to a Redis cluster provided seeds and timeout options */
-void redis_cluster_init(redisCluster *c, HashTable *ht_seeds, double timeout,
-                        double read_timeout, int persistent TSRMLS_DC)
+void redis_cluster_init(redisCluster *c, HashTable *ht_seeds, char *auth, int auth_len, 
+            double timeout, double read_timeout, int persistent TSRMLS_DC)
 {
     // Validate timeout
     if (timeout < 0L || timeout > INT_MAX) {
@@ -404,6 +404,12 @@ void redis_cluster_init(redisCluster *c, HashTable *ht_seeds, double timeout,
         zend_throw_exception(redis_cluster_exception_ce,
             "Must pass seeds", 0 TSRMLS_CC);
     }
+    // Redis Cluster auth
+    if (auth && auth_len > 0){
+        c->auth = estrndup(auth, auth_len);
+        c->auth_len = auth_len;
+    }
+
     /* Set our timeout and read_timeout which we'll pass through to the
      * socket type operations */
     c->timeout = timeout;
@@ -421,15 +427,19 @@ void redis_cluster_init(redisCluster *c, HashTable *ht_seeds, double timeout,
 
     // Create and map our key space
     cluster_map_keyspace(c TSRMLS_CC);
+
+    efree(c->auth);
 }
 
 /* Attempt to load a named cluster configured in php.ini */
 void redis_cluster_load(redisCluster *c, char *name, int name_len TSRMLS_DC) {
-    zval z_seeds, z_timeout, z_read_timeout, z_persistent, *z_value;
+    zval z_seeds, z_auth, z_timeout, z_read_timeout, z_persistent, *z_value;
     char *iptr;
     double timeout = 0, read_timeout = 0;
     int persistent = 0;
     HashTable *ht_seeds = NULL;
+    char *auth = NULL;
+    int auth_len = 0;
 
     /* Seeds */
     array_init(&z_seeds);
@@ -444,6 +454,25 @@ void redis_cluster_load(redisCluster *c, char *name, int name_len TSRMLS_DC) {
         return;
     }
 
+
+    /* auth */
+    array_init(&z_auth);
+    if ((iptr = INI_STR("redis.clusters.auth")) != NULL) {
+        sapi_module.treat_data(PARSE_STRING, estrdup(iptr), &z_auth TSRMLS_CC);
+    }
+    if ((z_value = zend_hash_str_find(Z_ARRVAL(z_auth), name, name_len)) != NULL) {
+        if (Z_TYPE_P(z_value) == IS_STRING) {
+            auth = Z_STRVAL_P(z_value);
+            auth_len = strlen(auth);
+        } else {
+            zval_dtor(&z_seeds);
+            zval_dtor(&z_auth);
+            zend_throw_exception(redis_cluster_exception_ce, "Couldn't find legal auth for cluster", 0 TSRMLS_CC);
+            return;
+        }
+    }
+
+
     /* Connection timeout */
     array_init(&z_timeout);
     if ((iptr = INI_STR("redis.clusters.timeout")) != NULL) {
@@ -488,13 +517,14 @@ void redis_cluster_load(redisCluster *c, char *name, int name_len TSRMLS_DC) {
     }
 
     /* Attempt to create/connect to the cluster */
-    redis_cluster_init(c, ht_seeds, timeout, read_timeout, persistent TSRMLS_CC);
+    redis_cluster_init(c, ht_seeds, auth, auth_len, timeout, read_timeout, persistent TSRMLS_CC);    
 
     /* Clean up our arrays */
     zval_dtor(&z_seeds);
     zval_dtor(&z_timeout);
     zval_dtor(&z_read_timeout);
     zval_dtor(&z_persistent);
+    zval_dtor(&z_auth);
 }
 
 /*
@@ -506,15 +536,18 @@ PHP_METHOD(RedisCluster, __construct) {
     zval *object, *z_seeds = NULL;
     char *name;
     strlen_t name_len;
+    char *auth = NULL;
+    int auth_len = 0;
     double timeout = 0.0, read_timeout = 0.0;
     zend_bool persistent = 0;
     redisCluster *context = GET_CONTEXT();
 
     // Parse arguments
     if (zend_parse_method_parameters(ZEND_NUM_ARGS() TSRMLS_CC, getThis(),
-                                    "Os!|addb", &object, redis_cluster_ce, &name,
+                                    "Os!|addbs", &object, redis_cluster_ce, &name,
                                     &name_len, &z_seeds, &timeout,
-                                    &read_timeout, &persistent) == FAILURE)
+                                    &read_timeout, &persistent,
+                                    &auth, &auth_len)==FAILURE)
     {
         RETURN_FALSE;
     }
@@ -529,7 +562,7 @@ PHP_METHOD(RedisCluster, __construct) {
     /* If we've been passed only one argument, the user is attempting to connect
      * to a named cluster, stored in php.ini, otherwise we'll need manual seeds */
     if (ZEND_NUM_ARGS() > 1) {
-        redis_cluster_init(context, Z_ARRVAL_P(z_seeds), timeout, read_timeout,
+        redis_cluster_init(context, Z_ARRVAL_P(z_seeds), auth, auth_len, timeout, read_timeout,
             persistent TSRMLS_CC);
     } else {
         redis_cluster_load(context, name, name_len TSRMLS_CC);

redis_session.c

@@ -509,15 +509,15 @@ PS_OPEN_FUNC(redis)
             RedisSock *redis_sock;
             if (url->host) {
 #if (PHP_VERSION_ID < 70300)
-                redis_sock = redis_sock_create(url->host, strlen(url->host), url->port, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
+                redis_sock = redis_sock_create(url->host, strlen(url->host), url->port, NULL, 0, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
 #else
-                redis_sock = redis_sock_create(ZSTR_VAL(url->host), ZSTR_LEN(url->host), url->port, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
+                redis_sock = redis_sock_create(ZSTR_VAL(url->host), ZSTR_LEN(url->host), url->port, NULL, 0, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
 #endif
             } else { /* unix */
 #if (PHP_VERSION_ID < 70300)
-                redis_sock = redis_sock_create(url->path, strlen(url->path), 0, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
+                redis_sock = redis_sock_create(url->path, strlen(url->path), 0, NULL, 0, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
 #else
-                redis_sock = redis_sock_create(ZSTR_VAL(url->path), ZSTR_LEN(url->path), 0, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
+                redis_sock = redis_sock_create(ZSTR_VAL(url->path), ZSTR_LEN(url->path), 0, NULL, 0, timeout, read_timeout, persistent, persistent_id, retry_interval, 0);
 #endif
             }
             redis_pool_add(pool, redis_sock, weight, database, prefix, auth TSRMLS_CC);
@@ -982,6 +982,8 @@ PS_OPEN_FUNC(rediscluster) {
     int persistent = 0;
     int retval, prefix_len, failover = REDIS_FAILOVER_NONE;
     char *prefix;
+    char *auth; 
+    int auth_len; 
 
     /* Parse configuration for session handler */
     array_init(&z_conf);
@@ -1037,7 +1039,18 @@ PS_OPEN_FUNC(rediscluster) {
         }
     }
 
-    c = cluster_create(timeout, read_timeout, failover, persistent);
+    /* Look for a specific prefix */
+    if ((z_val = zend_hash_str_find(ht_conf, "auth", sizeof("auth") - 1)) != NULL &&
+        Z_TYPE_P(z_val) == IS_STRING && Z_STRLEN_P(z_val) > 0
+    ) {
+        auth = Z_STRVAL_P(z_val);
+        auth_len = Z_STRLEN_P(z_val);
+    } else {
+        auth = NULL;
+        auth_len = 0;
+    }
+
+    c = cluster_create(timeout, read_timeout, failover, persistent, auth, auth_len);
     if (!cluster_init_seeds(c, ht_seeds) && !cluster_map_keyspace(c TSRMLS_CC)) {
         /* Set up our prefix */
         c->flags->prefix = zend_string_init(prefix, prefix_len, 0);