Uploaded image for project: 'C Driver'
  1. C Driver
  2. CDRIVER-737

SCRAM-SHA-1 should not depend on openssl

XMLWordPrintableJSON

    • Type: Icon: Improvement Improvement
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 1.4.0
    • Affects Version/s: None
    • Component/s: libmongoc, tls
    • None

      May be required in 1.2 to support Phongo.

      Currently authenticating using the MongoDB default SCRAM-SHA-1 authentication mechanism requires compiling the driver against OpenSSL using '--enable-ssl'.

      This means, if you don't compile with --enable-ssl you will not be able to login to recent MongoDB versions, and will fail with:

      The authentication mechanism "SCRAM-SHA-1" is not supported.

      (which I was sure was coming from the server sigh).

      See: https://github.com/mongodb/mongo-c-driver/blob/f35fa646779f79c616f04d2323e695d20be8f6a1/src/mongoc/mongoc-cluster.c#L1001-L1018

      I think the docs need to updated to mention that building against OpenSSL is required for authentication as-is, and in the future we should probably vendor in things we need to not rely on OpenSSL.

      This also causes a lot of test failures all over the place :]

            Assignee:
            bjori Hannes Magnusson
            Reporter:
            bjori Hannes Magnusson
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: