feat(NODE-6289): allow valid srv hostnames with less than 3 parts

[aditi-khare-mongoDB]

Description

Downstream changes for DRIVERS-2922 (PR).

What is changing?

• Remove logic asserting that SRV URIs need 3 parts
• When we check if a returned address matches its parent SRV, an SRV with <3 parts must assert that the returned address contains an additional domain level
• Add in prose tests.

Is there new documentation needed for these changes?

No

What is the motivation for this change?

Do not throw an error on valid URI formats pre-DNS resolution, and require stricter domain matching post-DNS resolution.

Release Highlight

Allow SRV hostnames with less than three . separated parts

The client now accepts SRV hostname strings with one or two . separated parts.

For example, the following code no longer throws an error.

await new MongoClient('mongodb+srv://localhost').connect();

For security reasons, the returned addresses of SRV strings with less than three parts must end with the entire SRV hostname and contain at least one additional domain level. This is because this added validation ensures that the returned address(es) are from a known host. In future releases, we plan on extending this validation to SRV strings with three or more parts, as well.

// Example 1: Validation fails since the returned address doesn't end with the entire SRV hostname
'mongodb+srv://mySite.com' => 'myEvilSite.com' 

// Example 2: Validation fails since the returned address is identical to the SRV hostname
'mongodb+srv://mySite.com' => 'mySite.com' 

// Example 3: Validation passes since the returned address ends with the entire SRV hostname and contains an additional domain level
'mongodb+srv://mySite.com' => 'cluster_1.mySite.com' 

Double check the following

• Ran npm run check:lint script
• Self-review completed using the steps outlined here
• PR title follows the correct format: type(NODE-xxxx)[!]: description
  • Example: feat(NODE-1234)!: rewriting everything in coffeescript
• Changes are covered by tests
• New TODOs have a related JIRA ticket

[W-A-James]

The metadata doesn't actually apply to context or describe blocks, only to it blocks, if you check this against a replica set, it still runs.

Also, why do we only want these tests to run against single topologies?

[aditi-khare-mongoDB]

Not sure why I originally made it only single topologies, if it's running and working for all I'll remove this line.

[W-A-James]

Suggested change

	it('do not error on an SRV because it has two domain levels', async function () {
	it('does not error on an SRV because it has two domain levels', async function () {

[aditi-khare-mongoDB]

Made the change!

[W-A-James]

Suggested change

	it('do not error on an SRV because it has one domain level', async function () {
	it('does not error on an SRV because it has one domain level', async function () {

[W-A-James]

throw is one of the few chai clauses that always needs to be called

Suggested change

	.throw;
	.throw();

[W-A-James]

Suggested change

	expect(() => checkParentDomainMatch(exampleHostNameWithoutDot, exampleSrvName)).to.not
	.throw;
	});
	expect(() => checkParentDomainMatch(exampleHostNameWithoutDot, exampleSrvName)).to.not
	.throw();
	});

[W-A-James]

Suggested change

	expect(() => checkParentDomainMatch(exampleHostNamesWithDot, exampleSrvName)).to.not.throw;
	expect(() => checkParentDomainMatch(exampleHostNamesWithDot, exampleSrvName)).to.not.throw();

[W-A-James]

Suggested change

	expect(() => checkParentDomainMatch(exampleHostNamesWithDot, exampleSrvName)).to.not.throw;
	expect(() => checkParentDomainMatch(exampleHostNamesWithDot, exampleSrvName)).to.not.throw();

[W-A-James]

Can we add the number of the prose test. Makes it quicker to map from our test implementation to the test in the spec

[aditi-khare-mongoDB]

Yep, added them in!

[W-A-James]

Suggested change

	context('1) When running validation on an SRV string before DNS resolution', function () {
	context('1. When running validation on an SRV string before DNS resolution', function () {

[W-A-James]

Suggested change

	'2) When given a host from DNS resolution that does NOT end with the original SRVs domain name',
	'2. When given a host from DNS resolution that does NOT end with the original SRVs domain name',

[W-A-James]

Suggested change

	'3) When given a host from DNS resolution that is identical to the original SRVs hostname',
	'3. When given a host from DNS resolution that is identical to the original SRVs hostname',

[W-A-James]

be sure to await client.connect() and client.close()

Suggested change

	client.connect();
	await client.connect();

[W-A-James]

For these tests, I'd move the client.close() call to an afterEach hook so that even if the connect fails, we clean up any resources created.