Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-34742

Stop running ssl_cert_password.js on OS X

    XMLWordPrintable

    Details

    • Backwards Compatibility:
      Fully Compatible
    • Backport Requested:
      v3.6, v3.4
    • Sprint:
      TIG 2018-05-07
    • Linked BF Score:
      43

      Description

      As mentioned in https://github.com/golang/go/issues/8860, golang doesn't support parsing PKCS#8 encrypted private keys despite it being the default format since OpenSSL 1.0.0. The changes from TOOLS-1948 have dropped support for using OpenSSL 0.9.x in favor of using golang's crypto/tls package.

      Converting jstests/libs/password_protected.pem from a PKCS#8 encrypted private key shouldn't cause a loss in test coverage because the JavaScript tests which use jstests/libs/password_protected.pem care only that a password is required and not what mechanism was used for the encryption. There isn't an encrypted private key format that is supported by the mongo shell, the server, and the mongo tools across all platforms.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              max.hirschhorn Max Hirschhorn
              Reporter:
              max.hirschhorn Max Hirschhorn
              Participants:
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: