Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-50333

mongo shell ignores TestData.encryptionCipherMode specified in test suites

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 4.9.0
    • Affects Version/s: None
    • Component/s: Shell
    • None
    • Fully Compatible
    • ALL
    • Hide

      Start resmoke with one of the GCM test suites and check what parameters are passed to mongod instances.

      Show
      Start resmoke with one of the GCM test suites and check what parameters are passed to mongod instances.
    • Security 2020-10-05, Security 2020-10-19, Security 2020-11-02

      There are several test suites for testing encrypted storage with GCM cipher mode:

      • sharding_ese_gcm.yml
      • replica_sets_ese_gcm.yml
      • aggregation_ese_gcm.yml
      • core_ese_gcm.yml

      Those suites assign 'AES256-GCM' value to the TestData.encryptionCipherMode , but the mongo shell ignores it and starts mongod without --encryptionCipherMode parameter.

      Thus mongod uses default CBC cipher so it wouldn't be testing GCM at all.

            Assignee:
            adam.cooper@mongodb.com Adam Cooper (Inactive)
            Reporter:
            igorsol Igor Solodovnikov
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: