[SERVER-38141] Incorrect usage of MONGO_CONFIG_HAS_SSL_SET_ECDH_AUTO prevents enabling of elliptic curve auto negotiation Created: 14/Nov/18  Updated: 29/Oct/23  Resolved: 21/Nov/18

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 3.6.14, 4.1.6, 4.0.13

Type: Bug Priority: Major - P3
Reporter: Patrick Freed Assignee: Patrick Freed
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Backports
Depends
Gantt Dependency
has to be done before SERVER-36617 Hardcode a default Diffie-Hellman par... Closed
Backwards Compatibility: Fully Compatible
Operating System: ALL
Backport Requested:
v4.0, v3.6
Sprint: Security 2018-11-19, Security 2018-12-03
Participants:

 Description   

In ssl_manager_openssl.cpp, the setup code checks to see if the version of openssl supports elliptic curve auto negotiation via the macro MONGO_CONFIG_HAVE_SSL_SET_ECDH_AUTO. The macro is actually defined to be MONGO_CONFIG_HAS_SSL_SET_ECDH_AUTO, so this check always fails and auto negotiation is never enabled.

Fix the naming of elliptic curve related config defines to match the "HAVE" of previous defines.



 Comments   
Comment by Githook User [ 11/Sep/19 ]

Author:

{'username': 'jbreams', 'email': 'jonathan.reams@mongodb.com', 'name': 'Jonathan Reams'}

Message: SERVER-38141 Fix Incorrect usage of MONGO_CONFIG_HAS_SSL_SET_ECDH_AUTO

(cherry picked from commit 925d776b081b02b0034094d8c1277946f43a4f56)
Branch: v4.0
https://github.com/mongodb/mongo/commit/baa2e4333f6d94df4cf0714d1208f63655ce523a

Comment by Githook User [ 30/Jul/19 ]

Author:

{'name': 'Patrick Freed', 'email': 'patrick.freed@mongodb.com', 'username': 'patrickfreed'}

Message: SERVER-38141 Fix Incorrect usage of MONGO_CONFIG_HAS_SSL_SET_ECDH_AUTO

(cherry picked from commit 925d776b081b02b0034094d8c1277946f43a4f56)
Branch: v3.6
https://github.com/mongodb/mongo/commit/effa12b407861d211fd706992d92e6d39b24e493

Comment by Githook User [ 30/Jul/19 ]

Author:

{'name': 'Jonathan Reams', 'email': 'jbreams@mongodb.com', 'username': 'jbreams'}

Message: Revert "SERVER-38141 Fix Incorrect usage of MONGO_CONFIG_HAS_SSL_SET_ECDH_AUTO"

This reverts commit ed1b9123d7d1eeaa76dff21bea96fa556a079836.
Branch: v3.6
https://github.com/mongodb/mongo/commit/a07fb650f996ea0035f75d4b78990dffcde0a77d

Comment by Githook User [ 26/Jul/19 ]

Author:

{'name': 'Patrick Freed', 'email': 'patrick.freed@mongodb.com', 'username': 'patrickfreed'}

Message: SERVER-38141 Fix Incorrect usage of MONGO_CONFIG_HAS_SSL_SET_ECDH_AUTO

(cherry picked from commit 925d776b081b02b0034094d8c1277946f43a4f56)
Branch: v3.6
https://github.com/mongodb/mongo/commit/ed1b9123d7d1eeaa76dff21bea96fa556a079836

Comment by Githook User [ 21/Nov/18 ]

Author:

{'name': 'Patrick Freed', 'email': 'patrick.freed@mongodb.com', 'username': 'patrickfreed'}

Message: SERVER-38141 Fix Incorrect usage of MONGO_CONFIG_HAS_SSL_SET_ECDH_AUTO
Branch: master
https://github.com/mongodb/mongo/commit/925d776b081b02b0034094d8c1277946f43a4f56

Generated at Thu Feb 08 04:48:04 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.