Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 4.7.0
Affects Version/s: None
Component/s: Security
Labels:
None

Backwards Compatibility:
Fully Compatible
Sprint:
Security 2020-07-13
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

Add a new function returns this information so that rotation can log the information in one place instead of each implementation of the SSLManagerInterface. It should return a struct instead of BSON to ensure logging is done consistently across all implementations.

Example Function Name: CertInformationToLog getCertificateInformationToLog()

struct CertInformationToLog
{    
    SSLX509Name subject;
    SSLX509Name issuer;
    std::vector<char> thumbprint;
    Date_t validityNotBefore;
    Date_t validityNotAfter;   
};

struct CertInformationToLog
{    
    std::vector<char> thumbprint;
    Date_t validityNotBefore;
    Date_t validityNotAfter;
    
};

struct SSLInformationToLog
{ 
    CertInformationToLog server;
    boost::optional<CertInformationToLog> cluster;
    boost::optional<CRLInformationToLog> crl;
};

is depended on by

SERVER-49130 Log certificate information on startup for Linux

Closed

SERVER-49131 Log certificate information on startup for Windows

Closed

SERVER-49132 Log certificate information on startup for Apple

Closed

Assignee:: Gabriel Marks
Reporter:: Mark Benvenuto
Participants:: Gabriel Marks, Githook User, Mark Benvenuto
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Jun 25 2020 10:32:11 PM UTC
Updated:: Oct 29 2023 10:06:26 PM UTC
Resolved:: Jul 02 2020 04:41:03 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates