Uploaded image for project: 'C Driver'
  1. C Driver
  2. CDRIVER-5649

Require MinGW 6.0.0 or higher

XMLWordPrintableJSON

    • Type: Icon: Task Task
    • Resolution: Unresolved
    • Priority: Icon: Unknown Unknown
    • None
    • Affects Version/s: None
    • Component/s: Platform Support
    • None
    • C Drivers

      Making the C driver SCRAM SHA-256 FIPS compliant when compiled with Native Crypto support on Windows requires use of BCryptDeriveKeyPBKDF2 in the bcrypt.h library.

      BCryptDeriveKeyPBKDF2 was seemingly added in MinGW-w64 6.0.0, we test against some Evergreen hosts using MinGW-w64 4.9.1.

      CDRIVER-5634 currently deals with this by checking if theĀ BCryptDeriveKeyPBKDF2 symbol is available with CMake. If it is not available, the driver falls back to the previous key derivation implementation and computes the SCRAM step Hi() as defined in RFC5802 which is not FIPS compliant.

            Assignee:
            Unassigned Unassigned
            Reporter:
            julia.garland@mongodb.com Julia Garland (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated: