Uploaded image for project: 'Drivers'
  1. Drivers
  2. DRIVERS-124

Perform SSL server certificate validation in the drivers

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Major - P3
    • Resolution: Fixed
    • None
    • None

    Description

      Like SERVER-10330, but for all drivers that support SSL. Drivers should by default refuse to connect to servers that present expired certificates, certificates that are not-yet-valid, certificates that do not match the host name that the client tried to connect to, certificates with bad signatures and revoked certificates, at least.

      This behavior should be configurable by client code, in case the client intentionally wishes to ignore that the server's certificate is bad.

      Attachments

        Issue Links

          depends on

          New Feature - A new feature of the product, which has yet to be developed. RUST-159 Perform SSL server certificate validation in the drivers

          • Major - P3 - Major loss of function.
          • Closed

          New Feature - A new feature of the product, which has yet to be developed. SWIFT-471 Allow user-specified SSL options at the client level

          • Major - P3 - Major loss of function.
          • Closed

          Task - A task that needs to be done. PYTHON-1072 Test validation of peer cert notBefore and notAfter fields

          • Minor - P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. PYTHON-1073 Support CRL files

          • Minor - P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          is related to

          Improvement - An improvement or enhancement to an existing feature or task. NODE-946 Not performing SSL server certificate validation

          • Minor - P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          related to

          Task - A task that needs to be done. DRIVERS-302 Test connections to Mango

          • Major - P3 - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. DRIVERS-65 SSL certificate validation testing

          • Major - P3 - Major loss of function.
          • Closed

          Activity

            People

              barrie Barrie Segal
              schwerin@mongodb.com Andy Schwerin
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: