Uploaded image for project: 'C Driver'
  1. C Driver
  2. CDRIVER-249

SSL support for the new C driver

XMLWordPrintableJSON

    • Type: Icon: Improvement Improvement
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 0.90.0
    • Affects Version/s: None
    • Component/s: None
    • Labels:
      None

      There is currently a stub for doing SSL (TLS) connections in the new C driver codebase. See mongoc-stream-tls.

      {c,h}

      The goal of this is to use OpenSSL (someday I'd like to support gnutls, but that is another battle) to connect to MongoDB servers that use SSL.

      We need to do certificate validation as part of this as well. See CDRIVER-215

      The server team would prefer to use BIO instead of their current implementation and so we will do the same. This also allows us to reuse our stream abstraction already in the code-base.

      The PHP driver may eventually be based on this codebase, but they will likely use PHP streams so this is mostly contained to C consumers.

      We might need to configure the directory for the certificate database. This will probably need to be a function that can be called at library initialization time.

            Assignee:
            mira.carey@mongodb.com Mira Carey
            Reporter:
            christian.hergert@10gen.com Christian Hergert
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: