[SERVER-59175] Investigate and Support for AES-256 GCM on Windows Created: 06/Aug/21  Updated: 29/Oct/23  Resolved: 28/Sep/21

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 5.1.0-rc0

Type: Improvement Priority: Major - P3
Reporter: Shreyas Kalyan Assignee: Spencer Jackson
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Problem/Incident
Backwards Compatibility: Fully Compatible
Sprint: Security 2021-08-23, Security 2021-09-06, Security 2021-09-20, Security 2021-10-04
Participants:
Linked BF Score: 35

 Description   

AES-256 GCM works out of the box on Linux, but we need to do some work to support it on windows. We should enable AES-256 GCM and add the padding in the SymmetricEncryptor (if it makes sense for it to be there - this is part of the investigation). We should also ensure that AES-256 GCM is disabled for ESE on Windows until we enable tests for it.



 Comments   
Comment by Vivian Ge (Inactive) [ 06/Oct/21 ]

Updating the fixversion since branching activities occurred yesterday. This ticket will be in rc0 when it’s been triggered. For more active release information, please keep an eye on #server-release. Thank you!

Comment by Githook User [ 05/Oct/21 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-59175 Fix Windows GCM behaviour
Branch: fausto.leyva/SERVER-57826
https://github.com/10gen/mongo-enterprise-modules/commit/d4e760d661b33c5942dad3ffd72ada9cf69bbc14

Comment by Githook User [ 29/Sep/21 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-59175 Fix Windows GCM behaviour
Branch: marksg07/server-59917
https://github.com/10gen/mongo-enterprise-modules/commit/d4e760d661b33c5942dad3ffd72ada9cf69bbc14

Comment by Githook User [ 29/Sep/21 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-59175 Fix Windows GCM behaviour
Branch: matthew.russotto/SERVER-57817
https://github.com/10gen/mongo-enterprise-modules/commit/d4e760d661b33c5942dad3ffd72ada9cf69bbc14

Comment by Githook User [ 28/Sep/21 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-59175 Make Windows support GCM
Branch: master
https://github.com/mongodb/mongo/commit/c1f41cbaec4a4d570b072c75634f45d33472aec6

Comment by Githook User [ 28/Sep/21 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-59175 Fix Windows GCM behaviour
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/d4e760d661b33c5942dad3ffd72ada9cf69bbc14

Generated at Thu Feb 08 05:46:33 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.