Merge pull request #199 from CyberSource/connection-pooling

Re-using old connection via curl_share_init and adding config for setting idle connection timeout.

Author: gaubansa

generator/cybersource-php-template/ApiClient.mustache

@@ -36,7 +36,7 @@ $stream_headers = array();
 class ApiClient
 {
     private static $logger = null;
-    
+    private static $shareHandle;
     public static $PATCH = "PATCH";
     public static $POST = "POST";
     public static $GET = "GET";
@@ -101,6 +101,11 @@ class ApiClient
             echo "Merchant Configuration cannot be null.";
         }
 
+        if (self::$shareHandle === null) {
+            self::$shareHandle = curl_share_init();
+            curl_share_setopt(self::$shareHandle, CURLSHOPT_SHARE, CURL_LOCK_DATA_CONNECT);
+        }
+
         $this->config = $config;
         $this->merchantConfig = $merchantConfig;
         $this->serializer = new ObjectSerializer();
@@ -291,6 +296,8 @@ class ApiClient
         self::$logger->debug("Request Headers :\n" . \CyberSource\Utilities\Helpers\DataMasker::maskAuthenticationData(\CyberSource\Utilities\Helpers\ListHelper::toString($reqHeaders)));
 
         $curl = curl_init();
+
+        curl_setopt($curl, CURLOPT_SHARE, self::$shareHandle);
         // set timeout, if needed
         if ($this->config->getCurlTimeout() !== 0) {
             curl_setopt($curl, CURLOPT_TIMEOUT, $this->config->getCurlTimeout());
@@ -329,6 +336,32 @@ class ApiClient
             curl_setopt($curl, CURLOPT_PROXYUSERPWD, $this->config->getCurlProxyUser() . ':' .$this->config->getCurlProxyPassword());
         }
 
+        if ($this->config->getTlsVersion()) {
+            curl_setopt($curl, CURLOPT_SSLVERSION, $this->config->getTlsVersion());
+        }
+
+        if ($this->config->getTlsCipherList()) {
+            if (
+                defined('CURL_SSLVERSION_TLSv1_3') &&
+                defined('CURLOPT_TLS13_CIPHERS') && 
+                $this->config->getTlsVersion() === CURL_SSLVERSION_TLSv1_3
+            ) {
+                curl_setopt($curl, CURLOPT_TLS13_CIPHERS, $this->config->getTlsCipherList());
+            } else {
+                curl_setopt($curl, CURLOPT_SSL_CIPHER_LIST, $this->config->getTlsCipherList());
+            }
+        }
+
+        // Set maximum age for connection reuse in the connection pool
+        if ($this->config->getKeepAliveTime()) {
+            if (defined('CURLOPT_MAXAGE_CONN')) {
+                curl_setopt($curl, CURLOPT_MAXAGE_CONN, $this->config->getKeepAliveTime());
+            } else {
+                self::$logger->warning("CURLOPT_MAXAGE_CONN is not supported in your cURL version. Keep-alive time setting will be ignored.");
+            }
+        }
+        
+
         if (!empty($queryParams)) {
             $url = ($url . '?' . http_build_query($queryParams));
         }

generator/cybersource-php-template/configuration.mustache

@@ -157,6 +157,27 @@ class Configuration
      */
     protected $proxyPassword;
 
+    /**
+     * TLS version to use for HTTPS requests
+     *
+     * @var string
+     */
+    protected $tlsVersion;
+
+    /**
+     * TLS cipher list to use for HTTPS requests
+     *
+     * @var string
+     */
+    protected $tlsCipherList;
+
+    /**
+     * Free socket time allowed for reusing a connection
+     *
+     * @var int
+     */
+    protected $keepAliveTime;
+
     /**
      * Allow Curl encoding header
      *
@@ -678,6 +699,80 @@ class Configuration
         return $this->proxyPassword;
     }
 
+    /**
+     * Gets the TLS version to use for HTTPS requests
+     *
+     * @return string
+     */
+    public function getTlsVersion()
+    {
+        return $this->tlsVersion;
+    }
+
+    /**
+     * Sets the TLS version to use for HTTPS requests
+     *
+     * @param string $tlsVersion
+     *
+     * @return $this
+     */
+    public function setTlsVersion($tlsVersion)
+    {
+        $this->tlsVersion = $tlsVersion;
+        return $this;
+    }
+
+    /**
+     * Gets the TLS cipher list to use for HTTPS requests
+     *
+     * @return string
+     */
+    public function getTlsCipherList()
+    {
+        return $this->tlsCipherList;
+    }
+
+    /**
+     * Sets the TLS cipher list to use for HTTPS requests
+     *
+     * @param string $tlsCipherList
+     *
+     * @return $this
+     */
+    public function setTlsCipherList($tlsCipherList)
+    {
+        $this->tlsCipherList = $tlsCipherList;
+        return $this;
+    }
+
+    /**
+     * Gets free socket time allowed for reusing a connection
+     *
+     * @return int
+     */
+    public function getKeepAliveTime()
+    {
+        return $this->keepAliveTime;
+    }
+
+    /**
+     * Sets keep-alive time allowed for reusing a connection
+     *
+     * @param int $keepAliveTime
+     *
+     * @return $this
+     */
+    public function setKeepAliveTime($keepAliveTime)
+    {
+        if (!is_numeric($keepAliveTime) || $keepAliveTime < 0) {
+            self::$logger->error("InvalidArgumentException : Keep-alive time value must be numeric and a non-negative number.");
+            self::$logger->close();
+            throw new \InvalidArgumentException('Keep-alive time value must be numeric and a non-negative number.');
+        }
+        $this->keepAliveTime = $keepAliveTime;
+        return $this;
+    }
+
     /**
      * Sets if SSL verification should be enabled or disabled
      *

lib/ApiClient.php

@@ -46,7 +46,7 @@
 class ApiClient
 {
     private static $logger = null;
-    
+    private static $shareHandle;
     public static $PATCH = "PATCH";
     public static $POST = "POST";
     public static $GET = "GET";
@@ -111,6 +111,11 @@ public function __construct(\CyberSource\Configuration $config = null, \CyberSou
             echo "Merchant Configuration cannot be null.";
         }
 
+        if (self::$shareHandle === null) {
+            self::$shareHandle = curl_share_init();
+            curl_share_setopt(self::$shareHandle, CURLSHOPT_SHARE, CURL_LOCK_DATA_CONNECT);
+        }
+
         $this->config = $config;
         $this->merchantConfig = $merchantConfig;
         $this->serializer = new ObjectSerializer();
@@ -311,6 +316,8 @@ public function callApi($resourcePath, $method, $queryParams, $postData, $header
         self::$logger->debug("Request Headers :\n" . \CyberSource\Utilities\Helpers\DataMasker::maskAuthenticationData(\CyberSource\Utilities\Helpers\ListHelper::toString($reqHeaders)));
 
         $curl = curl_init();
+
+        curl_setopt($curl, CURLOPT_SHARE, self::$shareHandle);
         // set timeout, if needed
         if ($this->config->getCurlTimeout() !== 0) {
             curl_setopt($curl, CURLOPT_TIMEOUT, $this->config->getCurlTimeout());
@@ -349,6 +356,32 @@ public function callApi($resourcePath, $method, $queryParams, $postData, $header
             curl_setopt($curl, CURLOPT_PROXYUSERPWD, $this->config->getCurlProxyUser() . ':' .$this->config->getCurlProxyPassword());
         }
 
+        if ($this->config->getTlsVersion()) {
+            curl_setopt($curl, CURLOPT_SSLVERSION, $this->config->getTlsVersion());
+        }
+
+        if ($this->config->getTlsCipherList()) {
+            if (
+                defined('CURL_SSLVERSION_TLSv1_3') &&
+                defined('CURLOPT_TLS13_CIPHERS') && 
+                $this->config->getTlsVersion() === CURL_SSLVERSION_TLSv1_3
+            ) {
+                curl_setopt($curl, CURLOPT_TLS13_CIPHERS, $this->config->getTlsCipherList());
+            } else {
+                curl_setopt($curl, CURLOPT_SSL_CIPHER_LIST, $this->config->getTlsCipherList());
+            }
+        }
+
+        // Set maximum age for connection reuse in the connection pool
+        if ($this->config->getKeepAliveTime()) {
+            if (defined('CURLOPT_MAXAGE_CONN')) {
+                curl_setopt($curl, CURLOPT_MAXAGE_CONN, $this->config->getKeepAliveTime());
+            } else {
+                self::$logger->warning("CURLOPT_MAXAGE_CONN is not supported in your cURL version. Keep-alive time setting will be ignored.");
+            }
+        }
+        
+
         if (!empty($queryParams)) {
             $url = ($url . '?' . http_build_query($queryParams));
         }

lib/Configuration.php

@@ -166,6 +166,27 @@ class Configuration
      */
     protected $proxyPassword;
 
+    /**
+     * TLS version to use for HTTPS requests
+     *
+     * @var string
+     */
+    protected $tlsVersion;
+
+    /**
+     * TLS cipher list to use for HTTPS requests
+     *
+     * @var string
+     */
+    protected $tlsCipherList;
+
+    /**
+     * Free socket time allowed for reusing a connection
+     *
+     * @var int
+     */
+    protected $keepAliveTime;
+
     /**
      * Allow Curl encoding header
      *
@@ -687,6 +708,80 @@ public function getCurlProxyPassword()
         return $this->proxyPassword;
     }
 
+    /**
+     * Gets the TLS version to use for HTTPS requests
+     *
+     * @return string
+     */
+    public function getTlsVersion()
+    {
+        return $this->tlsVersion;
+    }
+
+    /**
+     * Sets the TLS version to use for HTTPS requests
+     *
+     * @param string $tlsVersion
+     *
+     * @return $this
+     */
+    public function setTlsVersion($tlsVersion)
+    {
+        $this->tlsVersion = $tlsVersion;
+        return $this;
+    }
+
+    /**
+     * Gets the TLS cipher list to use for HTTPS requests
+     *
+     * @return string
+     */
+    public function getTlsCipherList()
+    {
+        return $this->tlsCipherList;
+    }
+
+    /**
+     * Sets the TLS cipher list to use for HTTPS requests
+     *
+     * @param string $tlsCipherList
+     *
+     * @return $this
+     */
+    public function setTlsCipherList($tlsCipherList)
+    {
+        $this->tlsCipherList = $tlsCipherList;
+        return $this;
+    }
+
+    /**
+     * Gets free socket time allowed for reusing a connection
+     *
+     * @return int
+     */
+    public function getKeepAliveTime()
+    {
+        return $this->keepAliveTime;
+    }
+
+    /**
+     * Sets keep-alive time allowed for reusing a connection
+     *
+     * @param int $keepAliveTime
+     *
+     * @return $this
+     */
+    public function setKeepAliveTime($keepAliveTime)
+    {
+        if (!is_numeric($keepAliveTime) || $keepAliveTime < 0) {
+            self::$logger->error("InvalidArgumentException : Keep-alive time value must be numeric and a non-negative number.");
+            self::$logger->close();
+            throw new \InvalidArgumentException('Keep-alive time value must be numeric and a non-negative number.');
+        }
+        $this->keepAliveTime = $keepAliveTime;
+        return $this;
+    }
+
     /**
      * Sets if SSL verification should be enabled or disabled
      *