mongo shell ignores TestData.encryptionCipherMode specified in test suites

XMLWordPrintableJSON

    • Type: Bug
    • Resolution: Fixed
    • Priority: Major - P3
    • 4.9.0
    • Affects Version/s: None
    • Component/s: Shell
    • None
    • Fully Compatible
    • ALL
    • Hide

      Start resmoke with one of the GCM test suites and check what parameters are passed to mongod instances.

      Show
      Start resmoke with one of the GCM test suites and check what parameters are passed to mongod instances.
    • Security 2020-10-05, Security 2020-10-19, Security 2020-11-02
    • None
    • 3
    • None
    • None
    • None
    • None
    • None
    • None

      There are several test suites for testing encrypted storage with GCM cipher mode:

      • sharding_ese_gcm.yml
      • replica_sets_ese_gcm.yml
      • aggregation_ese_gcm.yml
      • core_ese_gcm.yml

      Those suites assign 'AES256-GCM' value to the TestData.encryptionCipherMode , but the mongo shell ignores it and starts mongod without --encryptionCipherMode parameter.

      Thus mongod uses default CBC cipher so it wouldn't be testing GCM at all.

            Assignee:
            Adam Cooper (Inactive)
            Reporter:
            Igor Solodovnikov
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: