<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Wed Feb 07 21:10:29 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[CDRIVER-744] Add support for native TLS on Windows (Secure Channel)</title>
                <link>https://jira.mongodb.org/browse/CDRIVER-744</link>
                <project id="10030" key="CDRIVER">C Driver</project>
                    <description>&lt;p&gt;Similar to &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-520&quot; title=&quot;Add support for native TLS on OSX (Secure Transport)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-520&quot;&gt;&lt;del&gt;CDRIVER-520&lt;/del&gt;&lt;/a&gt;. This would make building on Windows a lot easier for us and our users.&lt;/p&gt;

&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=mark.benvenuto&quot; class=&quot;user-hover&quot; rel=&quot;mark.benvenuto&quot;&gt;mark.benvenuto&lt;/a&gt; has an implementation here:&lt;br/&gt;
&lt;a href=&quot;https://github.com/markbenvenuto/mongo-c-driver/commit/ec6502f9f7c6e4eb72dd32affba6666fb2d8432d&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/markbenvenuto/mongo-c-driver/commit/ec6502f9f7c6e4eb72dd32affba6666fb2d8432d&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;Note that this change implements both TLS and SCRAM-SHA-1. &lt;/p&gt;</description>
                <environment></environment>
        <key id="216931">CDRIVER-744</key>
            <summary>Add support for native TLS on Windows (Secure Channel)</summary>
                <type id="2" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14711&amp;avatarType=issuetype">New Feature</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="9">Done</resolution>
                                        <assignee username="bjori">Hannes Magnusson</assignee>
                                    <reporter username="bernie@mongodb.com">Bernie Hackett</reporter>
                        <labels>
                    </labels>
                <created>Wed, 15 Jul 2015 00:31:10 +0000</created>
                <updated>Wed, 10 Aug 2016 22:10:47 +0000</updated>
                            <resolved>Fri, 27 May 2016 06:35:03 +0000</resolved>
                                                    <fixVersion>1.4.0</fixVersion>
                                    <component>libmongoc</component>
                    <component>tls</component>
                                        <votes>0</votes>
                                    <watches>3</watches>
                                                                                                                <comments>
                            <comment id="1277248" author="bjori" created="Fri, 27 May 2016 06:35:03 +0000"  >&lt;p&gt;To enable Secure Channel (NativeTLS on Windows):&lt;/p&gt;
&lt;p/&gt;
&lt;div id=&quot;syntaxplugin&quot; class=&quot;syntaxplugin&quot; style=&quot;border: 1px dashed #bbb; border-radius: 5px !important; overflow: auto; max-height: 30em;&quot;&gt;
&lt;table cellspacing=&quot;0&quot; cellpadding=&quot;0&quot; border=&quot;0&quot; width=&quot;100%&quot; style=&quot;font-size: 1em; line-height: 1.4em !important; font-weight: normal; font-style: normal; color: black;&quot;&gt;
		&lt;tbody &gt;
				&lt;tr id=&quot;syntaxplugin_code_and_gutter&quot;&gt;
						&lt;td  style=&quot; line-height: 1.4em !important; padding: 0em; vertical-align: top;&quot;&gt;
					&lt;pre style=&quot;font-size: 1em; margin: 0 10px;  margin-top: 10px;   margin-bottom: 10px;  width: auto; padding: 0;&quot;&gt;&lt;span style=&quot;color: black; font-family: &apos;Consolas&apos;, &apos;Bitstream Vera Sans Mono&apos;, &apos;Courier New&apos;, Courier, monospace !important;&quot;&gt;cmake -G Visual Studio 14 2015 Win64 &quot;-DENABLE_SSL=WINDOWS&quot;&lt;/span&gt;&lt;/pre&gt;
			&lt;/td&gt;
		&lt;/tr&gt;
			&lt;/tbody&gt;
&lt;/table&gt;
&lt;/div&gt;
&lt;p/&gt;

&lt;p&gt;The default value is still OpenSSL in mongoc 1.4.0&lt;/p&gt;

&lt;p&gt;This implementation is fully compatible with the existing &lt;tt&gt;mongoc_ssl_opt_t&lt;/tt&gt; options&lt;br/&gt;
(e.g. &lt;tt&gt;mongoc_ssl_opt_t.[pem_file|ca_file|crl_file]&lt;/tt&gt;), with the exception of &lt;tt&gt;ca_dir&lt;/tt&gt; and &lt;tt&gt;pem_pwd&lt;/tt&gt; (e.g. OpenSSL hash directory containing CA certificates, and password protected private keys).&lt;/p&gt;

&lt;p&gt;By default, enabling NativeTLS on Windows will lookup in the Windows Certificate Store, unless otherwise configured by the &lt;tt&gt;mongoc_ssl_opt_t&lt;/tt&gt;&lt;/p&gt;</comment>
                            <comment id="1277242" author="xgen-internal-githook" created="Fri, 27 May 2016 06:16:16 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;bjori&apos;, u&apos;name&apos;: u&apos;Hannes Magnusson&apos;, u&apos;email&apos;: u&apos;bjori@php.net&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-744&quot; title=&quot;Add support for native TLS on Windows (Secure Channel)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-744&quot;&gt;&lt;del&gt;CDRIVER-744&lt;/del&gt;&lt;/a&gt;: Run the dedicated SSL tests on Windows&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-c-driver/commit/251f62eff0921de13b44790383e522ed9ecd0261&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-c-driver/commit/251f62eff0921de13b44790383e522ed9ecd0261&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1277241" author="xgen-internal-githook" created="Fri, 27 May 2016 06:16:15 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;bjori&apos;, u&apos;name&apos;: u&apos;Hannes Magnusson&apos;, u&apos;email&apos;: u&apos;bjori@php.net&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-744&quot; title=&quot;Add support for native TLS on Windows (Secure Channel)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-744&quot;&gt;&lt;del&gt;CDRIVER-744&lt;/del&gt;&lt;/a&gt;: Remove unused variables, and fix missing format character&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-c-driver/commit/bfee60f4dfea262a5e86aa10d00ccc8d4f513bd8&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-c-driver/commit/bfee60f4dfea262a5e86aa10d00ccc8d4f513bd8&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1277240" author="xgen-internal-githook" created="Fri, 27 May 2016 06:16:14 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;bjori&apos;, u&apos;name&apos;: u&apos;Hannes Magnusson&apos;, u&apos;email&apos;: u&apos;bjori@php.net&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-744&quot; title=&quot;Add support for native TLS on Windows (Secure Channel)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-744&quot;&gt;&lt;del&gt;CDRIVER-744&lt;/del&gt;&lt;/a&gt;: Add support for ssl_opts.crl_file and ssl_opts.pem_file&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-c-driver/commit/2128e4579406cee17b0081e445f90b09bcfbc831&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-c-driver/commit/2128e4579406cee17b0081e445f90b09bcfbc831&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1268245" author="bjori" created="Wed, 18 May 2016 21:30:18 +0000"  >&lt;p&gt;Remaining tasks:&lt;/p&gt;
&lt;ul class=&quot;alternate&quot; type=&quot;square&quot;&gt;
	&lt;li&gt;Support ssl_opts.crl_file&lt;/li&gt;
	&lt;li&gt;Support ssl_opts.pem_file (currently only supported through currently-hardcoded subject name &quot;client&quot; through the certificate store)&lt;/li&gt;
&lt;/ul&gt;

</comment>
                            <comment id="1268235" author="xgen-internal-githook" created="Wed, 18 May 2016 21:26:02 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;bjori&apos;, u&apos;name&apos;: u&apos;Hannes Magnusson&apos;, u&apos;email&apos;: u&apos;bjori@php.net&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-744&quot; title=&quot;Add support for native TLS on Windows (Secure Channel)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-744&quot;&gt;&lt;del&gt;CDRIVER-744&lt;/del&gt;&lt;/a&gt;: Import ca_file into the CA Certificate Store&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-c-driver/commit/e1669db76d06a9ba55bc649314763332316cb2d7&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-c-driver/commit/e1669db76d06a9ba55bc649314763332316cb2d7&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1268234" author="xgen-internal-githook" created="Wed, 18 May 2016 21:26:01 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;bjori&apos;, u&apos;name&apos;: u&apos;Hannes Magnusson&apos;, u&apos;email&apos;: u&apos;bjori@php.net&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-744&quot; title=&quot;Add support for native TLS on Windows (Secure Channel)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-744&quot;&gt;&lt;del&gt;CDRIVER-744&lt;/del&gt;&lt;/a&gt;: Secure Channel Support&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-c-driver/commit/b163c93ea2278587fbabf08c8f656ba644758e39&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-c-driver/commit/b163c93ea2278587fbabf08c8f656ba644758e39&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1225475" author="xgen-internal-githook" created="Mon, 4 Apr 2016 22:56:22 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;bjori&apos;, u&apos;name&apos;: u&apos;Hannes Magnusson&apos;, u&apos;email&apos;: u&apos;bjori@php.net&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-744&quot; title=&quot;Add support for native TLS on Windows (Secure Channel)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-744&quot;&gt;&lt;del&gt;CDRIVER-744&lt;/del&gt;&lt;/a&gt;: Native SCRAM-SHA-1 authentication on Windows&lt;/p&gt;

&lt;p&gt;Enable with cmake -DENABLE_SSL=WINDOWS.&lt;br/&gt;
The default is still to build against OpenSSL, if available.&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-c-driver/commit/00dd9a4d27e69c2da5c2c8d686b7ce248c2fc279&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-c-driver/commit/00dd9a4d27e69c2da5c2c8d686b7ce248c2fc279&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1225474" author="xgen-internal-githook" created="Mon, 4 Apr 2016 22:56:21 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;bjori&apos;, u&apos;name&apos;: u&apos;Hannes Magnusson&apos;, u&apos;email&apos;: u&apos;bjori@php.net&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/CDRIVER-744&quot; title=&quot;Add support for native TLS on Windows (Secure Channel)&quot; class=&quot;issue-link&quot; data-issue-key=&quot;CDRIVER-744&quot;&gt;&lt;del&gt;CDRIVER-744&lt;/del&gt;&lt;/a&gt;: Initial skeleton&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo-c-driver/commit/e73c3c25d806e8fe3a042b79ec7bd8f0faa6521b&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo-c-driver/commit/e73c3c25d806e8fe3a042b79ec7bd8f0faa6521b&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="966990" author="mark.benvenuto" created="Wed, 15 Jul 2015 18:26:41 +0000"  >&lt;p&gt;Here the status of work&lt;/p&gt;
&lt;ol&gt;
	&lt;li&gt;Supports Windows Vista/2008 &amp;amp; later&lt;/li&gt;
	&lt;li&gt;SCRAM (HMAC &amp;amp; SHA1) are implemented&lt;/li&gt;
	&lt;li&gt;Secure Random number generator is implemented&lt;/li&gt;
	&lt;li&gt;SSL/TLS is implemented&lt;/li&gt;
&lt;/ol&gt;


&lt;p&gt;&lt;b&gt;TODO&lt;/b&gt;&lt;/p&gt;
&lt;ol&gt;
	&lt;li&gt;Add support for SSL session renegotiation&lt;/li&gt;
	&lt;li&gt;Settle on the right interface for &lt;tt&gt;mongoc_ssl_opt_t&lt;/tt&gt; since the Windows SSL stack uses a differ mechanism for propagating certificate information then OpenSSL. I believe you should remove &lt;tt&gt;pem_file&lt;/tt&gt; and other members when compiling in the native Windows SSL mode.&lt;/li&gt;
&lt;/ol&gt;
</comment>
                            <comment id="966289" author="behackett" created="Wed, 15 Jul 2015 00:32:48 +0000"  >&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=mark.benvenuto&quot; class=&quot;user-hover&quot; rel=&quot;mark.benvenuto&quot;&gt;mark.benvenuto&lt;/a&gt;, can you add some notes about the state of your implementation (how complete it is, what versions of Windows it supports, etc.)?&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                            <outwardlinks description="related to">
                                        <issuelink>
            <issuekey id="264256">CDRIVER-1107</issuekey>
        </issuelink>
                            </outwardlinks>
                                                                <inwardlinks description="is related to">
                                        <issuelink>
            <issuekey id="215731">CDRIVER-737</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10857" key="com.pyxis.greenhopper.jira:gh-epic-link">
                        <customfieldname>Epic Link</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>CDRIVER-749</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hrdekn:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                    <customfield id="customfield_10557" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue id="865">C Driver 2016 sprint 1</customfieldvalue>
    <customfieldvalue id="894">C Driver 2016 sprint 2</customfieldvalue>
    <customfieldvalue id="918">C Driver 2016 sprint 3</customfieldvalue>
    <customfieldvalue id="959">C Driver 2016 sprint 4</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            </customfields>
    </item>
</channel>
</rss>