[Bug #77120] Handle OCI_SUCCESS_WITH_INFO returned from OCISessionBegin

morozov · ramsey · commit ee51eac39f33 · 2021-06-09T15:45:46.000-05:00
1. Proceed with connection initialization if OCI_SUCCESS_WITH_INFO is returned
2. Do not throw an exception upon OCI_SUCCESS_WITH_INFO
diff --git a/ext/pdo_oci/oci_driver.c b/ext/pdo_oci/oci_driver.c
@@ -175,7 +175,7 @@ ub4 _oci_error(OCIError *err, pdo_dbh_t *dbh, pdo_stmt_t *stmt, char *what, swor
 	}
 
 	/* little mini hack so that we can use this code from the dbh ctor */
-	if (!dbh->methods) {
+	if (!dbh->methods && status != OCI_SUCCESS_WITH_INFO) {
 		zend_throw_exception_ex(php_pdo_get_exception(), einfo->errcode, "SQLSTATE[%s]: %s", *pdo_err, einfo->errmsg);
 	}
 
@@ -831,7 +831,12 @@ static int pdo_oci_handle_factory(pdo_dbh_t *dbh, zval *driver_options) /* {{{ *
 	H->last_err = OCISessionBegin(H->svc, H->err, H->session, OCI_CRED_RDBMS, OCI_DEFAULT);
 	if (H->last_err) {
 		oci_drv_error("OCISessionBegin");
-		goto cleanup;
+		/* OCISessionBegin returns OCI_SUCCESS_WITH_INFO when
+		 * user's password has expired, but is still usable.
+		 */
+		if (H->last_err != OCI_SUCCESS_WITH_INFO) {
+			goto cleanup;
+		}
 	}
 
 	/* set the server handle into service handle */
diff --git a/ext/pdo_oci/tests/oci_success_with_info.phpt b/ext/pdo_oci/tests/oci_success_with_info.phpt
@@ -0,0 +1,79 @@
+--TEST--
+Handling OCI_SUCCESS_WITH_INFO
+--SKIPIF--
+<?php
+if (!extension_loaded('pdo') || !extension_loaded('pdo_oci')) die('skip not loaded');
+?>
+--FILE--
+<?php
+
+function connectAsAdmin(): PDO {
+    return PDOTest::test_factory(__DIR__ . '/../../pdo_oci/tests/common.phpt');
+}
+
+function connectAsUser(string $username, string $password): PDO {
+    return new PDO(getenv('PDOTEST_DSN'), $username, $password);
+}
+
+function dropProfile(PDO $conn): void {
+    $conn->exec(<<<'SQL'
+BEGIN
+    EXECUTE IMMEDIATE 'DROP PROFILE BUG77120_PROFILE CASCADE';
+EXCEPTION
+    WHEN OTHERS THEN
+        IF SQLCODE != -2380 THEN
+            RAISE;
+        END IF;
+END;
+SQL
+    );
+}
+
+function dropUser(PDO $conn): void {
+    $conn->exec(<<<'SQL'
+BEGIN
+    EXECUTE IMMEDIATE 'DROP USER BUG77120_USER CASCADE';
+EXCEPTION
+    WHEN OTHERS THEN
+        IF SQLCODE != -1918 THEN
+            RAISE;
+        END IF;
+END;
+SQL
+    );
+}
+
+require __DIR__ . '/../../pdo/tests/pdo_test.inc';
+
+$conn = connectAsAdmin();
+
+dropUser($conn);
+dropProfile($conn);
+
+$password = bin2hex(random_bytes(8));
+
+$conn->exec('CREATE PROFILE BUG77120_PROFILE LIMIT PASSWORD_LIFE_TIME 1/86400 PASSWORD_GRACE_TIME 1');
+$conn->exec('CREATE USER BUG77120_USER IDENTIFIED BY "' . $password . '" PROFILE BUG77120_PROFILE');
+$conn->exec('GRANT CREATE SESSION TO BUG77120_USER');
+
+// let the password expire
+sleep(2);
+
+$conn = connectAsUser('BUG77120_USER', $password);
+var_dump($conn->errorInfo());
+
+$conn = connectAsAdmin();
+dropUser($conn);
+dropProfile($conn);
+
+?>
+--EXPECTF--
+array(3) {
+  [0]=>
+  string(5) "HY000"
+  [1]=>
+  int(28002)
+  [2]=>
+  string(%d) "OCISessionBegin: OCI_SUCCESS_WITH_INFO: ORA-28002: %s
+ (%s:%d)"
+}

Original file line number	Diff line number	Diff line change
`@@ -175,7 +175,7 @@ ub4 _oci_error(OCIError err, pdo_dbh_t dbh, pdo_stmt_t stmt, char what, swor`
`175`	`175`	`}`
`176`	`176`
`177`	`177`	`/* little mini hack so that we can use this code from the dbh ctor */`
`178`		`- if (!dbh->methods) {`
	`178`	`+ if (!dbh->methods && status != OCI_SUCCESS_WITH_INFO) {`
`179`	`179`	`zend_throw_exception_ex(php_pdo_get_exception(), einfo->errcode, "SQLSTATE[%s]: %s", *pdo_err, einfo->errmsg);`
`180`	`180`	`}`
`181`	`181`
`@@ -831,7 +831,12 @@ static int pdo_oci_handle_factory(pdo_dbh_t dbh, zval driver_options) /* {{{ *`
`831`	`831`	`H->last_err = OCISessionBegin(H->svc, H->err, H->session, OCI_CRED_RDBMS, OCI_DEFAULT);`
`832`	`832`	`if (H->last_err) {`
`833`	`833`	`oci_drv_error("OCISessionBegin");`
`834`		`- goto cleanup;`
	`834`	`+ /* OCISessionBegin returns OCI_SUCCESS_WITH_INFO when`
	`835`	`+ * user's password has expired, but is still usable.`
	`836`	`+ */`
	`837`	`+ if (H->last_err != OCI_SUCCESS_WITH_INFO) {`
	`838`	`+ goto cleanup;`
	`839`	`+ }`
`835`	`840`	`}`
`836`	`841`
`837`	`842`	`/* set the server handle into service handle */`