[CDRIVER-2545] Make Secure Transport the default on macOS and SChannel the default on Windows Created: 13/Mar/18 Updated: 28/Oct/23 Resolved: 15/Apr/18 |
|
| Status: | Closed |
| Project: | C Driver |
| Component/s: | Build, tls |
| Affects Version/s: | None |
| Fix Version/s: | 1.10.0 |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | A. Jesse Jiryu Davis | Assignee: | Unassigned |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||||||
| Backwards Compatibility: | Major Change | ||||||||||||||||
| Description |
|
Before, I was afraid to break compatibility for people accustomed to our build systems' default behavior: build with OpenSSL if possible, even on macOS where a better alternative is always available. There's growing pressure to require TLS 1.1, however, which isn't supported by the OpenSSLs that old macOS shipped. Let's switch the default in the CMake build system and make Secure Transport the default on macOS. |
| Comments |
| Comment by Githook User [ 15/Apr/18 ] |
|
Author: {'name': 'A. Jesse Jiryu Davis', 'email': 'jesse@mongodb.com', 'username': 'ajdavis'}Message: The driver now uses Windows or Mac native TLS by default, instead of |
| Comment by Jeremy Mikola [ 12/Apr/18 ] |
|
This coincides nicely with a change we're making in |
| Comment by Bernie Hackett [ 13/Mar/18 ] |
|
I agree. The main thing we want to avoid is developers trying out Atlas being unable to do so because of TLS issues. |
| Comment by A. Jesse Jiryu Davis [ 13/Mar/18 ] |
|
Right, that's my thinking. |
| Comment by Jeremy Mikola [ 13/Mar/18 ] |
|
I assume |
| Comment by A. Jesse Jiryu Davis [ 13/Mar/18 ] |
|
Update mongoc_ssl_opt_t.rst. |