Uploaded image for project: 'Go Driver'
  1. Go Driver
  2. GODRIVER-1559

Adding a tlsCertificateSelector client option

XMLWordPrintableJSON

    • Type: Icon: Task Task
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: None
    • Component/s: None
    • None
    • Hide

      1. What would you like to communicate to the user about this feature?
      2. Would you like the user to see examples of the syntax and/or executable code and its output?
      3. Which versions of the driver/connector does this apply to?

      Show
      1. What would you like to communicate to the user about this feature? 2. Would you like the user to see examples of the syntax and/or executable code and its output? 3. Which versions of the driver/connector does this apply to?

      We've had a request in TOOLS-2362 to add a --tlsCertificateSelector option.

      This seems like the kind of feature that it would make sense to implement in the driver, not tools. But it looks to me like this isn't built into the Go TLS stack so might take considerable effort. crypto/x509 has SystemCertPool(), but it's broken on Windows (https://github.com/golang/go/issues/18609) and it might only get CA certs anyway, I'm not sure of the details.

      Do you think this is practical to implement?

            Assignee:
            Unassigned Unassigned
            Reporter:
            tim.fogarty@mongodb.com Tim Fogarty
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated: