<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Wed Feb 07 21:15:21 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[CDRIVER-2480] (SSL)windows secure Channel doesn&apos;t allow pemkeyfile has password</title>
                <link>https://jira.mongodb.org/browse/CDRIVER-2480</link>
                <project id="10030" key="CDRIVER">C Driver</project>
                    <description>&lt;p&gt;if I compile the c driver with &quot;-DENABLE_SSL=WINDOWS&quot; (windows secure Channel), connection would be failed if the client pem key file has password. &lt;br/&gt;
the error info of log: &lt;br/&gt;
****************************************************&lt;br/&gt;
&lt;span class=&quot;error&quot;&gt;&amp;#91;error@stream-secure-channel&amp;#93;&lt;/span&gt; Failed to parse private key. ASN1 bad tag value me&lt;br/&gt;
t.&lt;br/&gt;
 (0x8009310B)&lt;br/&gt;
&lt;span class=&quot;error&quot;&gt;&amp;#91;warning@stream-secure-channel&amp;#93;&lt;/span&gt; a client certificate has been requested&lt;br/&gt;
****************************************************&lt;/p&gt;

&lt;p&gt;note:&lt;br/&gt;
   1. I create the private key for the pem file with this command: openssl genrsa -des3 -out server.key 2048 , and then input password : 1234&lt;br/&gt;
       using mongo.exe , I can connect with the same pem file and password from my own working computer successfully:&lt;br/&gt;
       mongo --host 10.154.10.39 --ssl --authenticationDatabase admin --username user1 -p 123 --sslCAFile d:/ca.pem --sslPEMKeyFile d:/cry.pem --sslPEMKeyPassword  1234&lt;br/&gt;
       however, if my program uses the mongocxx driver, always get failed.&lt;/p&gt;

&lt;p&gt;    2. if I use the driver which is compiled with &quot;-DENABLE_SSL=OPENSSL&quot;, this issue dissapears.&lt;/p&gt;

&lt;p&gt;    3. my c++ program source code:&lt;br/&gt;
const auto uri = mongocxx::uri&lt;/p&gt;
{ &quot;mongodb://user1:123@10.154.10.39:27017/?authSource=admin&amp;amp;ssl=true&quot; }
&lt;p&gt;;&lt;br/&gt;
		mongocxx::options::client client_options;&lt;br/&gt;
		if (uri.ssl()) &lt;/p&gt;
{
			mongocxx::options::ssl ssl_options;	
		        ssl_options.pem_file(&quot;d:/cry.pem&quot;);
			ssl_options.pem_password(&quot;1234&quot;);
			ssl_options.ca_file(&quot;d:/ca.pem&quot;);
			client_options.ssl_opts(ssl_options);
		}
&lt;p&gt;....&lt;/p&gt;</description>
                <environment></environment>
        <key id="490119">CDRIVER-2480</key>
            <summary>(SSL)windows secure Channel doesn&apos;t allow pemkeyfile has password</summary>
                <type id="1" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14703&amp;avatarType=issuetype">Bug</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="2">Won&apos;t Fix</resolution>
                                        <assignee username="jesse@mongodb.com">A. Jesse Jiryu Davis</assignee>
                                    <reporter username="winnie_quest">winnie_quest</reporter>
                        <labels>
                    </labels>
                <created>Wed, 31 Jan 2018 09:46:06 +0000</created>
                <updated>Wed, 31 Jan 2018 11:36:22 +0000</updated>
                            <resolved>Wed, 31 Jan 2018 11:36:11 +0000</resolved>
                                    <version>1.7.0</version>
                                                    <component>libmongoc</component>
                    <component>tls</component>
                                        <votes>0</votes>
                                    <watches>2</watches>
                                                                                                                <comments>
                            <comment id="1790266" author="jesse" created="Wed, 31 Jan 2018 11:36:11 +0000"  >&lt;p&gt;Apologies, PEM file passwords are not supported with Windows Secure Channel, and it may not be possible to do so:&lt;/p&gt;

&lt;p&gt;&lt;a href=&quot;http://mongoc.org/libmongoc/current/mongoc_ssl_opt_t.html#native-tls-support-on-windows-secure-channel&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;http://mongoc.org/libmongoc/current/mongoc_ssl_opt_t.html#native-tls-support-on-windows-secure-channel&lt;/a&gt;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                            <outwardlinks description="related to">
                                        <issuelink>
            <issuekey id="350408">CDRIVER-2008</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|htgren:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            </customfields>
    </item>
</channel>
</rss>