Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 1.24.0
Affects Version/s: None
Component/s: OCSP
Labels:
- failing-on-waterfall
- flaky-tests

Epic Link:
Stabilize Evergreen
Confidence Status:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

Many of the CSFLE tests currently fail and/or are flaky as a result of certificate validation errors. The problematic tests are:

/client_side_encryption/datakey_and_double_encryption
/client_side_encryption/corpus
/client_side_encryption/custom_endpoint
/client_side_encryption/kms_tls/wrong_host
/client_side_encryption/kms_tls_options

Some of the errors messages produced include:

TLS handshake failed: Failed OCSP verification

mongoc: OCSP response failed verification: error:27069065:OCSP routines:OCSP_basic_verify:certificate verify error

[TLS handshake failed: Failed certificate verification] does not contain [IP address mismatch]

They are currently being skipped, so to work on them, it will first be necessary to remove them from .evergreen/skip-tests.txt and run a patch build to determine the current failure mode(s).

is related to

CDRIVER-3620 Audit evergreen matrix

Closed

related to

CDRIVER-3814 /client_side_encryption/azureKMS failing on RHEL 7.0 / RHEL 7.1

Closed

Assignee:: Ezra Chung
Reporter:: Roberto Sanchez
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: Apr 11 2022 06:36:50 PM UTC
Updated:: Oct 28 2023 11:28:09 AM UTC
Resolved:: Feb 14 2023 04:31:02 PM UTC
Confidence Status Last Update:: 10/Feb/23 8:01 PM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates