Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-50333

mongo shell ignores TestData.encryptionCipherMode specified in test suites

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 4.9.0
    • Component/s: Shell
    • Labels:
      None
    • Backwards Compatibility:
      Fully Compatible
    • Operating System:
      ALL
    • Steps To Reproduce:
      Hide

      Start resmoke with one of the GCM test suites and check what parameters are passed to mongod instances.

      Show
      Start resmoke with one of the GCM test suites and check what parameters are passed to mongod instances.
    • Sprint:
      Security 2020-10-05, Security 2020-10-19, Security 2020-11-02

      Description

      There are several test suites for testing encrypted storage with GCM cipher mode:

      • sharding_ese_gcm.yml
      • replica_sets_ese_gcm.yml
      • aggregation_ese_gcm.yml
      • core_ese_gcm.yml

      Those suites assign 'AES256-GCM' value to the TestData.encryptionCipherMode , but the mongo shell ignores it and starts mongod without --encryptionCipherMode parameter.

      Thus mongod uses default CBC cipher so it wouldn't be testing GCM at all.

        Attachments

          Activity

            People

            Assignee:
            adam.cooper Adam Cooper (Inactive)
            Reporter:
            igorsol Igor Solodovnikov
            Participants:
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: