[SERVER-67238] Record Ingress TLS Handshake Duration Created: 13/Jun/22 Updated: 29/Oct/23 Resolved: 15/Aug/22 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 6.1.0-rc0 |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | George Wangensteen | Assignee: | Jason Chan |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Backwards Compatibility: | Fully Compatible | ||||||||
| Sprint: | Service Arch 2022-07-25, Service Arch 2022-08-08, Service Arch 2022-08-22 | ||||||||
| Participants: | |||||||||
| Description |
|
Log ingress TLS handshake duration after TLS handshake concludes for incoming connections. Additionally, record whether OCSP stapling was used during the handshake. Also add the TLS version and cipher information. Finally, add a counter that tracks the cumulative time the process has spent doing TLS handshaking for ingress connections. Add this cumulative measurement to FTDC. For details on OCSP stapling/questions, you can contact george.wangensteen@mongodb.com or mark.benvenuto@mongodb.com on the security team |
| Comments |
| Comment by Jason Chan [ 15/Aug/22 ] |
|
Author: {'name': 'Jason Chan', 'email': 'jason.chan@mongodb.com', 'username': 'jasonjhchan'}Message: |