Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-39376

4.2 with ssl has mixed translation in getCmdLineOpts

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 4.1.9
    • Component/s: Security
    • Labels:
    • Backwards Compatibility:
      Fully Compatible
    • Operating System:
      ALL
    • Sprint:
      Security 2019-02-25

      Description

      If you start a 4.2 process with the following in the config file:

       ssl:
          CAFile: /tmp/mms-automation/test/output/certificates/mmsCA.pem
          PEMKeyFile: /tmp/mms-automation/test/output/certificates/cert-763911616
          clusterFile: /tmp/mms-automation/test/output/certificates/cert-827743263
          mode: requireSSL
      

      When you run getCmdLineOpts, you get the following:

      tls: {
        certificateKeyFile:/tmp/mms-automation/test/output/certificates/cert-991138764, 
        clusterFile:/tmp/mms-automation/test/output/certificates/cert-391280315, 
        CAFile:/tmp/mms-automation/test/output/certificates/mmsCA.pem
      }, 
      ssl: {
        mode:requireSSL
      }
      

      The fact that the ssl arguments are translated at all is unexpected – the server hasn't done that for other deprecated args.

      Automation cares about this because we run getCmdLineOpts to check that the process is running with the correct process arguments.

      Our preference here would be that the server translates none of the arguments – that getCmdLineOpts returns what the user actually started with in the conf file. If that's not possible, to translate all of the arguments, and not leave the dangling "ssl" in a case like this.

      Thank you!
      (spoke to Spencer Jackson who recommended filing a ticket)

        Attachments

          Activity

            People

            Assignee:
            sara.golemon Sara Golemon
            Reporter:
            louisa.berger Louisa Berger
            Participants:
            Votes:
            0 Vote for this issue
            Watchers:
            8 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: