symfony
diff --git a/‎UPGRADE-4.4.md
Lines changed: 2 additions & 0 deletions b/‎UPGRADE-4.4.md
Lines changed: 2 additions & 0 deletions
diff --git a/‎UPGRADE-5.0.md
Lines changed: 2 additions & 0 deletions b/‎UPGRADE-5.0.md
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/Symfony/Bundle/FrameworkBundle/Console/Application.php
Lines changed: 2 additions & 2 deletions b/‎src/Symfony/Bundle/FrameworkBundle/Console/Application.php
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/Symfony/Bundle/FrameworkBundle/Resources/config/web.xml
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/FrameworkBundle/Resources/config/web.xml
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/FrameworkBundle/Tests/Kernel/ConcreteMicroKernel.php
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/FrameworkBundle/Tests/Kernel/ConcreteMicroKernel.php
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/SecurityBundle/CHANGELOG.md
Lines changed: 1 addition & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/CHANGELOG.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php
Lines changed: 4 additions & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/MainConfiguration.php
Lines changed: 4 additions & 0 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php
Lines changed: 4 additions & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/SecurityExtension.php
Lines changed: 4 additions & 0 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/CompleteConfigurationTest.php
Lines changed: 71 additions & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/CompleteConfigurationTest.php
Lines changed: 71 additions & 0 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Fixtures/php/migrating_encoder.php
Lines changed: 14 additions & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Fixtures/php/migrating_encoder.php
Lines changed: 14 additions & 0 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Fixtures/xml/migrating_encoder.xml
Lines changed: 18 additions & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Fixtures/xml/migrating_encoder.xml
Lines changed: 18 additions & 0 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Fixtures/yml/migrating_encoder.yml
Lines changed: 10 additions & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/Tests/DependencyInjection/Fixtures/yml/migrating_encoder.yml
Lines changed: 10 additions & 0 deletions
diff --git a/‎src/Symfony/Component/ErrorHandler/Exception/ErrorException.php
Lines changed: 0 additions & 42 deletions b/‎src/Symfony/Component/ErrorHandler/Exception/ErrorException.php
Lines changed: 0 additions & 42 deletions
diff --git a/‎src/Symfony/Component/ErrorRenderer/Exception/FlattenException.php
Lines changed: 1 addition & 2 deletions b/‎src/Symfony/Component/ErrorRenderer/Exception/FlattenException.php
Lines changed: 1 addition & 2 deletions
diff --git a/‎src/Symfony/Component/ErrorRenderer/Tests/Exception/FlattenExceptionTest.php
Lines changed: 0 additions & 11 deletions b/‎src/Symfony/Component/ErrorRenderer/Tests/Exception/FlattenExceptionTest.php
Lines changed: 0 additions & 11 deletions
diff --git a/‎src/Symfony/Component/HttpKernel/CHANGELOG.md
Lines changed: 2 additions & 0 deletions b/‎src/Symfony/Component/HttpKernel/CHANGELOG.md
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/Symfony/Component/HttpKernel/Controller/ErrorController.php
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Component/HttpKernel/Controller/ErrorController.php
Lines changed: 1 addition & 1 deletion
@@ -154,6 +154,8 @@ HttpKernel
  * Marked the `RouterDataCollector::collect()` method as `@final`.
  * The `DataCollectorInterface::collect()` and `Profiler::collect()` methods third parameter signature
    will be `\Throwable $exception = null` instead of `\Exception $exception = null` in Symfony 5.0.
+ * Deprecated methods `ExceptionEvent::get/setException()`, use `get/setThrowable()` instead
+ * Deprecated class `ExceptionListener`, use `ErrorListener` instead
 
 Lock
 ----
 
@@ -293,6 +293,8 @@ HttpKernel
  * Removed `TranslatorListener` in favor of `LocaleAwareListener`
  * The `DebugHandlersListener` class has been made `final`
  * Removed `SaveSessionListener` in favor of `AbstractSessionListener`
+ * Removed methods `ExceptionEvent::get/setException()`, use `get/setThrowable()` instead
+ * Removed class `ExceptionListener`, use `ErrorListener` instead
  * Added new Bundle directory convention consistent with standard skeletons:
 
     ```
 
@@ -19,8 +19,8 @@
 use Symfony\Component\Console\Output\ConsoleOutputInterface;
 use Symfony\Component\Console\Output\OutputInterface;
 use Symfony\Component\Console\Style\SymfonyStyle;
+use Symfony\Component\Debug\Exception\FatalThrowableError;
 use Symfony\Component\DependencyInjection\ContainerAwareInterface;
-use Symfony\Component\ErrorHandler\Exception\ErrorException;
 use Symfony\Component\HttpKernel\Bundle\Bundle;
 use Symfony\Component\HttpKernel\Kernel;
 use Symfony\Component\HttpKernel\KernelInterface;
@@ -211,7 +211,7 @@ private function renderRegistrationErrors(InputInterface $input, OutputInterface
                 $this->doRenderThrowable($error, $output);
             } else {
                 if (!$error instanceof \Exception) {
-                    $error = new ErrorException($error);
+                    $error = new FatalThrowableError($error);
                 }
 
                 $this->doRenderException($error, $output);
 
@@ -75,7 +75,7 @@
             <argument type="service" id="error_renderer" />
         </service>
 
-        <service id="exception_listener" class="Symfony\Component\HttpKernel\EventListener\ExceptionListener">
+        <service id="exception_listener" class="Symfony\Component\HttpKernel\EventListener\ErrorListener">
             <tag name="kernel.event_subscriber" />
             <tag name="monolog.logger" channel="request" />
             <argument>%kernel.error_controller%</argument>
 
@@ -32,7 +32,7 @@ class ConcreteMicroKernel extends Kernel implements EventSubscriberInterface
 
     public function onKernelException(ExceptionEvent $event)
     {
-        if ($event->getException() instanceof Danger) {
+        if ($event->getThrowable() instanceof Danger) {
             $event->setResponse(Response::create('It\'s dangerous to go alone. Take this ⚔'));
         }
     }
 
@@ -20,6 +20,7 @@ CHANGELOG
 4.4.0
 -----
 
+ * Added `migrate_from` option to encoders configuration.
  * Added new `argon2id` encoder, undeprecated the `bcrypt` and `argon2i` ones (using `auto` is still recommended by default.)
  * Deprecated the usage of "query_string" without a "search_dn" and a "search_password" config key in Ldap factories.
  * Marked the `SecurityDataCollector` class as `@final`.
 
@@ -363,6 +363,10 @@ private function addEncodersSection(ArrayNodeDefinition $rootNode)
                         ->beforeNormalization()->ifString()->then(function ($v) { return ['algorithm' => $v]; })->end()
                         ->children()
                             ->scalarNode('algorithm')->cannotBeEmpty()->end()
+                            ->arrayNode('migrate_from')
+                                ->prototype('scalar')->end()
+                                ->beforeNormalization()->castToArray()->end()
+                            ->end()
                             ->scalarNode('hash_algorithm')->info('Name of hashing algorithm for PBKDF2 (i.e. sha256, sha512, etc..) See hash_algos() for a list of supported algorithms.')->defaultValue('sha512')->end()
                             ->scalarNode('key_length')->defaultValue(40)->end()
                             ->booleanNode('ignore_case')->defaultFalse()->end()
 
@@ -507,6 +507,10 @@ private function createEncoder(array $config)
             return new Reference($config['id']);
         }
 
+        if ($config['migrate_from'] ?? false) {
+            return $config;
+        }
+
         // plaintext encoder
         if ('plaintext' === $config['algorithm']) {
             $arguments = [$config['ignore_case']];
 
@@ -285,6 +285,7 @@ public function testEncoders()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User3' => [
                 'algorithm' => 'md5',
@@ -296,6 +297,7 @@ public function testEncoders()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User4' => new Reference('security.encoder.foo'),
             'JMS\FooBundle\Entity\User5' => [
@@ -316,6 +318,7 @@ public function testEncoders()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
         ]], $container->getDefinition('security.encoder_factory.generic')->getArguments());
     }
@@ -343,6 +346,7 @@ public function testEncodersWithLibsodium()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User3' => [
                 'algorithm' => 'md5',
@@ -354,6 +358,7 @@ public function testEncodersWithLibsodium()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User4' => new Reference('security.encoder.foo'),
             'JMS\FooBundle\Entity\User5' => [
@@ -394,6 +399,7 @@ public function testEncodersWithArgon2i()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User3' => [
                 'algorithm' => 'md5',
@@ -405,6 +411,7 @@ public function testEncodersWithArgon2i()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User4' => new Reference('security.encoder.foo'),
             'JMS\FooBundle\Entity\User5' => [
@@ -422,9 +429,71 @@ public function testEncodersWithArgon2i()
         ]], $container->getDefinition('security.encoder_factory.generic')->getArguments());
     }
 
+    public function testMigratingEncoder()
+    {
+        if (!($sodium = SodiumPasswordEncoder::isSupported() && !\defined('SODIUM_CRYPTO_PWHASH_ALG_ARGON2ID13')) && !\defined('PASSWORD_ARGON2I')) {
+            $this->markTestSkipped('Argon2i algorithm is not supported.');
+        }
+
+        $container = $this->getContainer('migrating_encoder');
+
+        $this->assertEquals([[
+            'JMS\FooBundle\Entity\User1' => [
+                'class' => 'Symfony\Component\Security\Core\Encoder\PlaintextPasswordEncoder',
+                'arguments' => [false],
+            ],
+            'JMS\FooBundle\Entity\User2' => [
+                'algorithm' => 'sha1',
+                'encode_as_base64' => false,
+                'iterations' => 5,
+                'hash_algorithm' => 'sha512',
+                'key_length' => 40,
+                'ignore_case' => false,
+                'cost' => null,
+                'memory_cost' => null,
+                'time_cost' => null,
+                'migrate_from' => [],
+            ],
+            'JMS\FooBundle\Entity\User3' => [
+                'algorithm' => 'md5',
+                'hash_algorithm' => 'sha512',
+                'key_length' => 40,
                 'ignore_case' => false,
+                'encode_as_base64' => true,
+                'iterations' => 5000,
+                'cost' => null,
+                'memory_cost' => null,
+                'time_cost' => null,
+                'migrate_from' => [],
+            ],
+            'JMS\FooBundle\Entity\User4' => new Reference('security.encoder.foo'),
+            'JMS\FooBundle\Entity\User5' => [
+                'class' => 'Symfony\Component\Security\Core\Encoder\Pbkdf2PasswordEncoder',
+                'arguments' => ['sha1', false, 5, 30],
+            ],
+            'JMS\FooBundle\Entity\User6' => [
+                'class' => 'Symfony\Component\Security\Core\Encoder\NativePasswordEncoder',
+                'arguments' => [8, 102400, 15],
+            ],
+            'JMS\FooBundle\Entity\User7' => [
+                'algorithm' => 'argon2i',
+                'hash_algorithm' => 'sha512',
+                'key_length' => 40,
+                'ignore_case' => false,
+                'encode_as_base64' => true,
+                'iterations' => 5000,
+                'cost' => null,
+                'memory_cost' => 256,
+                'time_cost' => 1,
+                'migrate_from' => ['bcrypt'],
+            ],
+        ]], $container->getDefinition('security.encoder_factory.generic')->getArguments());
+    }
+
     public function testEncodersWithBCrypt()
     {
         $container = $this->getContainer('bcrypt_encoder');
+
         $this->assertEquals([[
             'JMS\FooBundle\Entity\User1' => [
                 'class' => 'Symfony\Component\Security\Core\Encoder\PlaintextPasswordEncoder',
@@ -440,6 +509,7 @@ public function testEncodersWithBCrypt()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User3' => [
                 'algorithm' => 'md5',
@@ -451,6 +521,7 @@ public function testEncodersWithBCrypt()
                 'cost' => null,
                 'memory_cost' => null,
                 'time_cost' => null,
+                'migrate_from' => [],
             ],
             'JMS\FooBundle\Entity\User4' => new Reference('security.encoder.foo'),
             'JMS\FooBundle\Entity\User5' => [
 
@@ -0,0 +1,14 @@
+<?php
+
+$this->load('container1.php', $container);
+
+$container->loadFromExtension('security', [
+    'encoders' => [
+        'JMS\FooBundle\Entity\User7' => [
+            'algorithm' => 'argon2i',
+            'memory_cost' => 256,
+            'time_cost' => 1,
+            'migrate_from' => 'bcrypt',
+        ],
+    ],
+]);
@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<container xmlns="http://symfony.com/schema/dic/services"
+   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+   xmlns:sec="http://symfony.com/schema/dic/security"
+   xsi:schemaLocation="http://symfony.com/schema/dic/services https://symfony.com/schema/dic/services/services-1.0.xsd">
+
+    <imports>
+        <import resource="container1.xml"/>
+    </imports>
+
+    <sec:config>
+        <sec:encoder class="JMS\FooBundle\Entity\User7" algorithm="argon2i" memory-cost="256" time-cost="1">
+            <sec:migrate-from>bcrypt</sec:migrate-from>
+        </sec:encoder>
+    </sec:config>
+
+</container>
@@ -0,0 +1,10 @@
+imports:
+    - { resource: container1.yml }
+
+security:
+    encoders:
+        JMS\FooBundle\Entity\User7:
+            algorithm: argon2i
+            memory_cost: 256
+            time_cost: 1
+            migrate_from: bcrypt
@@ -11,7 +11,6 @@
 
 namespace Symfony\Component\ErrorRenderer\Exception;
 
-use Symfony\Component\ErrorHandler\Exception\ErrorException;
 use Symfony\Component\HttpFoundation\Exception\RequestExceptionInterface;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\HttpExceptionInterface;
@@ -75,7 +74,7 @@ public static function createFromThrowable(\Throwable $exception, int $statusCod
         $e->setStatusCode($statusCode);
         $e->setHeaders($headers);
         $e->setTraceFromThrowable($exception);
-        $e->setClass($exception instanceof ErrorException ? $exception->getOriginalClassName() : \get_class($exception));
+        $e->setClass(\get_class($exception));
         $e->setFile($exception->getFile());
         $e->setLine($exception->getLine());
 
 
@@ -12,7 +12,6 @@
 namespace Symfony\Component\ErrorRenderer\Tests\Exception;
 
 use PHPUnit\Framework\TestCase;
-use Symfony\Component\ErrorHandler\Exception\ErrorException;
 use Symfony\Component\ErrorRenderer\Exception\FlattenException;
 use Symfony\Component\HttpFoundation\Exception\SuspiciousOperationException;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
@@ -130,16 +129,6 @@ public function testFlattenHttpException(\Throwable $exception)
         $this->assertInstanceOf($flattened->getClass(), $exception, 'The class is set to the class of the original exception');
     }
 
-    public function testWrappedThrowable()
-    {
-        $exception = new ErrorException(new \DivisionByZeroError('Ouch', 42));
-        $flattened = FlattenException::createFromThrowable($exception);
-
-        $this->assertSame('Ouch', $flattened->getMessage(), 'The message is copied from the original error.');
-        $this->assertSame(42, $flattened->getCode(), 'The code is copied from the original error.');
-        $this->assertSame('DivisionByZeroError', $flattened->getClass(), 'The class is set to the class of the original error');
-    }
-
     public function testThrowable()
     {
         $error = new \DivisionByZeroError('Ouch', 42);
 
@@ -48,6 +48,8 @@ CHANGELOG
  * Marked the `RouterDataCollector::collect()` method as `@final`.
  * The `DataCollectorInterface::collect()` and `Profiler::collect()` methods third parameter signature
    will be `\Throwable $exception = null` instead of `\Exception $exception = null` in Symfony 5.0.
+ * Deprecated methods `ExceptionEvent::get/setException()`, use `get/setThrowable()` instead
+ * Deprecated class `ExceptionListener`, use `ErrorListener` instead
 
 4.3.0
 -----
 
@@ -52,7 +52,7 @@ public function preview(Request $request, int $code): Response
 
         /*
          * This Request mimics the parameters set by
-         * \Symfony\Component\HttpKernel\EventListener\ExceptionListener::duplicateRequest, with
+         * \Symfony\Component\HttpKernel\EventListener\ErrorListener::duplicateRequest, with
          * the additional "showException" flag.
          */
         $subRequest = $request->duplicate(null, null, [
Original file line number	Diff line number	Diff line change
`@@ -32,7 +32,7 @@ class ConcreteMicroKernel extends Kernel implements EventSubscriberInterface`
`32`	`32`
`33`	`33`	`public function onKernelException(ExceptionEvent $event)`
`34`	`34`	`{`
`35`		`- if ($event->getException() instanceof Danger) {`
	`35`	`+ if ($event->getThrowable() instanceof Danger) {`
`36`	`36`	`$event->setResponse(Response::create('It\'s dangerous to go alone. Take this ⚔'));`
`37`	`37`	`}`
`38`	`38`	`}`