[SERVER-49129] Extend SSLManagerInterface with new function Created: 25/Jun/20  Updated: 29/Oct/23  Resolved: 02/Jul/20

Status: Closed
Project: Core Server
Component/s: Security
Affects Version/s: None
Fix Version/s: 4.7.0

Type: Task Priority: Major - P3
Reporter: Mark Benvenuto Assignee: Gabriel Marks
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
is depended on by SERVER-49130 Log certificate information on startu... Closed
is depended on by SERVER-49131 Log certificate information on startu... Closed
is depended on by SERVER-49132 Log certificate information on startu... Closed
Backwards Compatibility: Fully Compatible
Sprint: Security 2020-07-13
Participants:

 Description   

Add a new function returns this information so that rotation can log the information in one place instead of each implementation of the SSLManagerInterface. It should return a struct instead of BSON to ensure logging is done consistently across all implementations.

Example Function Name: CertInformationToLog getCertificateInformationToLog()

struct CertInformationToLog
{    
    SSLX509Name subject;
    SSLX509Name issuer;
    std::vector<char> thumbprint;
    Date_t validityNotBefore;
    Date_t validityNotAfter;   
};
 
struct CertInformationToLog
{    
    std::vector<char> thumbprint;
    Date_t validityNotBefore;
    Date_t validityNotAfter;
    
};
 
struct SSLInformationToLog
{ 
    CertInformationToLog server;
    boost::optional<CertInformationToLog> cluster;
    boost::optional<CRLInformationToLog> crl;
};



 Comments   
Comment by Githook User [ 02/Jul/20 ]

Author:

{'name': 'Gabriel Marks', 'email': 'gabriel.marks@mongodb.com', 'username': 'marksg07'}

Message: SERVER-49129 Add getSSLInformationToLog skeleton
Branch: master
https://github.com/mongodb/mongo/commit/f91bcaeeca0427577fbec5c5a2a916ac1302aef6

Generated at Thu Feb 08 05:19:00 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.