[CDRIVER-2008] Test X.509 authentication with Secure Channel Created: 30/Jan/17  Updated: 09/Feb/23

Status: Backlog
Project: C Driver
Component/s: tls
Affects Version/s: None
Fix Version/s: None

Type: Task Priority: Minor - P4
Reporter: Hannes Magnusson Assignee: Unassigned
Resolution: Unresolved Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
Related
related to CDRIVER-2940 Regenerate test certificates with SHA... Closed
is related to CDRIVER-2480 (SSL)windows secure Channel doesn't a... Closed
is related to CDRIVER-857 C - Test the support of MONGODB-X509 ... Closed
Epic Link: CDRIVER-2733

 Description   

The certificate that needs to be used for X.509 authentication on ldaptest isn't very well liked by Secure Channel and therefore needs to be regenerated:

$ ./Debug/mongoc-ping.exe 'mongodb://CN=client,OU=kerneluser,O=10Gen,L=New York City,ST=New York,C=US@ldaptest.10gen.cc/?ssl=true&authMechanism=MONGODB-X509&sslClientCertificateKeyFile=tests/x509gen/legacy-x509.pem&sslCertificateAuthorityFile=tests/x509gen/legacy-ca.crt&sslAllowInvalidHostname=true'
2017/01/30 21:55:14.0990: [  976]:    DEBUG:      cluster: Authentication failed: auth failed
2017/01/30 21:55:14.0984: [  976]:    ERROR: stream-secure-channel: Failed to parse private key. ASN1 bad tag value met. (0x8009310B)
2017/01/30 21:55:14.0987: [  976]:  WARNING: stream-secure-channel: a client certificate has been requested
Ping failure: auth failed



 Comments   
Comment by A. Jesse Jiryu Davis [ 07/Sep/17 ]

Currently blocked on a changed certificate on our test server. Hannes will see if this can be tested using Atlas instead.

Comment by Hannes Magnusson [ 10/Aug/17 ]

I don't think this will be unblocked for a while, moving it to "Next" fixversion

Generated at Wed Feb 07 21:13:52 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.