Adds ability to use custom stream context to allow TLS mode

tomponline · tomponline · commit 3ec34069ec9e · 2018-07-21T15:52:54.000Z
diff --git a/src/Nats/Connection.php b/src/Nats/Connection.php
@@ -443,12 +443,9 @@ public function connect($timeout = null)
             $timeout = intval(ini_get('default_socket_timeout'));
         }
 
-        $context = stream_context_create();
-        stream_context_set_option($context, 'ssl', 'verify_peer', false);
-        //stream_context_set_option($context, 'ssl', 'cafile', '/var/lib/puppet/ssl/certs/ca.pem');
-
         $this->timeout      = $timeout;
-        $this->streamSocket = $this->getStream($this->options->getAddress(), $timeout, $context);
+        $this->streamSocket = $this->getStream(
+            $this->options->getAddress(), $timeout, $this->options->getStreamContext());
         $this->setStreamTimeout($timeout);
 
         $infoResponse = $this->receive();
@@ -458,10 +455,18 @@ public function connect($timeout = null)
         } else {
             $this->processServerInfo($infoResponse);
             if ($this->serverInfo->isTLSRequired()) {
-                if (!stream_socket_enable_crypto($this->streamSocket, true,
-                                STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT)) {
-                    throw Exception('Couldnt enable crypto');
+                set_error_handler(
+                    function ($errno, $errstr, $errfile, $errline) {
+                        throw Exception::forFailedConnection($errstr);
+                    });
+
+                if (!stream_socket_enable_crypto(
+                        $this->streamSocket, true, STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT)) {
+                    throw Exception::forFailedConnection(
+                        'Error negotiating crypto');
                 }
+
+                restore_error_handler();
             }
         }
 
diff --git a/src/Nats/ConnectionOptions.php b/src/Nats/ConnectionOptions.php
@@ -81,6 +81,13 @@ class ConnectionOptions
      */
     private $reconnect = true;
 
+    /**
+     * Stream context to use.
+     *
+     * @var resource
+     */
+    private $streamContext = null;
+
     /**
      * Allows to define parameters which can be set by passing them to the class constructor.
      *
@@ -97,6 +104,7 @@ class ConnectionOptions
                              'verbose',
                              'pedantic',
                              'reconnect',
+                             'streamContext',
                             ];
 
 
@@ -120,6 +128,9 @@ class ConnectionOptions
      */
     public function __construct($options = null)
     {
+        //Default stream context
+        $this->streamContext = stream_context_create();
+
         if (empty($options) === false) {
             $this->initialize($options);
         }
@@ -420,6 +431,31 @@ public function setReconnect($reconnect)
         return $this;
     }
 
+    /**
+     * Get stream context.
+     *
+     * @return resource
+     */
+    public function getStreamContext()
+    {
+        return $this->streamContext;
+    }
+
+
+    /**
+     * Set stream context.
+     *
+     * @param resource $streamContext Stream context.
+     *
+     * @return $this
+     */
+    public function setStreamContext($streamContext)
+    {
+        $this->streamContext = $streamContext;
+
+        return $this;
+    }
+
     /**
      * Set the connection options.
      *
