Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-48006

getParameter for opensslCipherConfig doesn't return the ciphers string if a custom string isn't set

XMLWordPrintableJSON

    • Type: Icon: Improvement Improvement
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 4.7.0
    • Affects Version/s: None
    • Component/s: Security
    • Labels:
    • Fully Compatible
    • Security 2020-06-29

      Currently if you run the following command and the opensslCipherConfig parameter doesn't contain a custom string of OpenSSL ciphers, the result is an empty string:

      db.adminCommand( { getParameter : 1, "opensslCipherConfig" : 1 } )

{ "opensslCipherConfig" : "", "ok" : 1 }

      It would be nice if MongoDB returns the currently used ciphers string for example by calling out SSL_CTX_get_ciphers()

      This is only valid for platforms using the OpenSSL library.

            Assignee:
            gabriel.marks@mongodb.com Gabriel Marks
            Reporter:
            emilio.scalise@mongodb.com Emilio Scalise
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: