Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-11109

Make it possible to switch or use multiple x.509 certificates in the shell

    XMLWordPrintableJSON

Details

    • Server Security

    Description

      In our current design we have two hardcoded SSL_CTX objects for incoming and outgoing connections. This makes it impossible to create multiple outgoing connections using different certificates.

      Actions:

      • Expand the SSL server/driver code to handle an arbitrary number of outgoing SSL_CTX objects.
      • Build shell functionality to specify which certificate should be used for a certain connection. This most likely involves expanding the connect() call to take a certificate path.

      Attachments

        Activity

          People

            backlog-server-security Backlog - Security Team
            andreas.nilsson Andreas Nilsson
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated: