[CDRIVER-2675] TLS connection to mongo does not work Created: 31/May/18 Updated: 28/Oct/23 Resolved: 01/Jun/18 |
|
| Status: | Closed |
| Project: | C Driver |
| Component/s: | None |
| Affects Version/s: | 1.3.1 |
| Fix Version/s: | None |
| Type: | Bug | Priority: | Major - P3 |
| Reporter: | Arun Muralidharan | Assignee: | A. Jesse Jiryu Davis |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Environment: |
Ubuntu 16.04 |
||
| Description |
I am trying to configure self signed certificate for the mongo server by following the official MongoDB docs.
Now I tried mapping this setup to mongoc_ssl_opt_t, but it doesn't work, as select server results in Timeout with much error context.
I am trying to map the python arguments I used to the C structure. Can someone tell me what "ssl_ca_certs" and "ssl_keyfile" maps to in the C structure ?
In my code above, "ssl_opts_.ca_file" points to the certificate and "ssl_opts_.pem_file" points to the concat of private key and certificate. Thanks in advance |
| Comments |
| Comment by A. Jesse Jiryu Davis [ 01/Jun/18 ] |
|
I’m closing this as “fixed” since development of the driver since 1.3.1 has fixed the issue reported here. |
| Comment by Arun Muralidharan [ 01/Jun/18 ] |
|
Ok. Thanks Jesse. |
| Comment by A. Jesse Jiryu Davis [ 01/Jun/18 ] |
|
Hi Arun. I looked through our bug tracker and I don't see an issue in 1.3.1 that would explain the bug you observe. I'm sorry to say that we won't investigate an issue with 1.3.1 now. I understand that it's the version packaged with Ubuntu 16.04 but we only support the latest version of the C Driver. There have been many bug fixes and improvements, I recommend you upgrade. |
| Comment by Arun Muralidharan [ 01/Jun/18 ] |
|
Thanks Jesses. Yes, it works after the upgrade. Is there any known issue with 1.3.1 version ? I would prefer not to upgrade if there is something that can be done on that version. |
| Comment by A. Jesse Jiryu Davis [ 31/May/18 ] |
|
Thanks for the information! Could you upgrade to 1.10.1 and tell me if the problem persists? |
| Comment by Arun Muralidharan [ 31/May/18 ] |
|
I am setting "ssl=true" in the URI. |