Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 1.6.0alpha2, 1.6.0
Affects Version/s: 1.5.0
Component/s: None
Labels:
None

Epic Link:
PHPC to EVG
Quarter:
- FY20Q1

Historically, the PHPC test suite has used self-signed certificates for its test servers and disabled peer certificate verification in its SSL tests. Since changes in ~~PHPC-1113~~ will now allow the entire test suite to be run against an SSL cluster, we'll need to come up with a more robust solution.

Additionally, newer OpenSSL versions no longer support the hash that our generated keys use, so they need to be regenerated as well. The error when mongod starts is:

2018-09-06T12:35:08.739+0100 E NETWORK  [main] cannot read certificate file: /home/derick/dev/php/derickr-mongo-php-driver/scripts/ssl/server.pem error:140AB18E:SSL routines:SSL_CTX_use_certificate:ca md too weak
2018-09-06T12:35:08.739+0100 F CONTROL  [main] Failed global initialization: InvalidSSLConfiguration: Can not set up PEM key file.

is depended on by

PHPC-1262 Reimplement X509 tests

Backlog

is related to

RUBY-1722 Distinguish client configuration TLS errors from network ones

Backlog

related to

PHPC-774 Recreate test suite certificates to allow for host name verification

Backlog

PHPC-1343 Add test to catch inaccessible server when running tests

Closed

Assignee:: Jeremy Mikola

Reporter:: Jeremy Mikola

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: May 01 2018 08:32:15 PM UTC

Updated:: Oct 28 2023 10:48:58 AM UTC

Resolved:: Feb 28 2019 06:51:29 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates