[SERVER-46633] Windows TLS implementation may declare hostname mismatch on unrelated error - MongoDB

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Major - P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.0.19, 4.2.7, 4.4.0-rc4, 4.7.0
Component/s: Networking, Security
Labels:
None

Backwards Compatibility:
Fully Compatible
Operating System:
ALL
Backport Requested:

v4.4, v4.2, v4.0
Sprint:
Security 2020-03-23, Security 2020-04-06, Security 2020-04-20, Security 2020-05-04

Description

When the Windows TLS implementation encounters an error during certificate validation, it prints the error as well as a hostname mismatch error. The mismatch error is convenient for diagnostics, because it lists the hostname that was expected as well as all compared SANs. However, if the validation error which occurred was not actually a mismatch, the error is misleading.

Attachments

Issue Links

is depended on by

SERVER-46729 Make Windows shell soft-fail for unavailable OCSP responder

Closed

Activity

People

Assignee:: Mark Benvenuto

Reporter:: Spencer Jackson

Participants:: Githook User, Mark Benvenuto, Spencer Jackson

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: Mar 05 2020 12:42:35 AM UTC

Updated:: Sep 08 2020 11:05:03 PM UTC

Resolved:: Apr 21 2020 03:39:40 PM UTC