<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 08:10:06 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[DOCS-14322] Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated</title>
                <link>https://jira.mongodb.org/browse/DOCS-14322</link>
                <project id="10380" key="DOCS">Documentation</project>
                    <description>&lt;h2&gt;&lt;a name=&quot;Description&quot;&gt;&lt;/a&gt;Description&lt;/h2&gt;

    &lt;div class=&quot;panel&quot; style=&quot;background-color: #c2d2c2;border-width: 1px;&quot;&gt;&lt;div class=&quot;panelHeader&quot; style=&quot;border-bottom-width: 1px;background-color: #239eb0;&quot;&gt;&lt;b&gt;Downstream Change Summary&lt;/b&gt;&lt;/div&gt;&lt;div class=&quot;panelContent&quot; style=&quot;background-color: #c2d2c2;&quot;&gt;
&lt;p&gt;    Following line needs to be added to release notes:&lt;/p&gt;

&lt;ul&gt;
	&lt;li&gt;TLS connections would now issue a startup warning when their certificates do not include Subject Alternative Name attribute&lt;/li&gt;
&lt;/ul&gt;
&lt;/div&gt;&lt;/div&gt;

&lt;h2&gt;&lt;a name=&quot;DescriptionofLinkedTicket&quot;&gt;&lt;/a&gt;Description of Linked Ticket&lt;/h2&gt;
&lt;p&gt;    X.509 certificates have had two mechanisms for defining the hostname they bind their public key to.&lt;br/&gt;
If a Subject Alternative Name is present in the certificate, the names defined there are considered to be bound.&lt;br/&gt;
If no SAN is present, but the certificate&apos;s subject name contains a Common Name component, and that Common Name was interpretable as a hostname, that hostname was considered bound.&lt;/p&gt;

&lt;p&gt;The Common Name has been considered deprecated by Subject Alternative Names, because Common Names don&apos;t, semantically, have anything to do with hostnames.&lt;/p&gt;

&lt;p&gt;Various cryptographic libraries are removing support for hostname validation via common names. Apple&apos;s TLS framework &lt;a href=&quot;https://support.apple.com/en-us/HT210176&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;stopped recognizing common names in iOS 13 and MacOS 10.15&lt;/a&gt;. &lt;a href=&quot;https://golang.org/doc/go1.15#commonname&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;Go 1.15 no longer recognizes common names&lt;/a&gt; by default, and the tunable knob will be removed in a future release.&lt;/p&gt;

&lt;p&gt;Clients using these platforms will find themselves unable to connect to MongoDB servers which use X509 certificate whose hostnames are advertised by CommonName attributes.&lt;/p&gt;

&lt;p&gt;We should indicate that these style of certificates are deprecated and should be replaced to all administrators whose servers use them. We should parse the server&apos;s server certificate at startup and emit a startup warning if it doesn&apos;t have a SAN. We should backport this change to all supported releases.&lt;/p&gt;


&lt;h2&gt;&lt;a name=&quot;Scopeofchanges&quot;&gt;&lt;/a&gt;Scope of changes&lt;/h2&gt;

&lt;h2&gt;&lt;a name=&quot;ImpacttoOtherDocs&quot;&gt;&lt;/a&gt;Impact to Other Docs&lt;/h2&gt;

&lt;h2&gt;&lt;a name=&quot;MVP%28WorkandDate%29&quot;&gt;&lt;/a&gt;MVP (Work and Date)&lt;/h2&gt;

&lt;h2&gt;&lt;a name=&quot;Resources%28ScopeorDesignDocs%2CInvision%2Cetc.%29&quot;&gt;&lt;/a&gt;Resources (Scope or Design Docs, Invision, etc.)&lt;/h2&gt;
</description>
                <environment></environment>
        <key id="1662633">DOCS-14322</key>
            <summary>Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated</summary>
                <type id="3" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14718&amp;avatarType=issuetype">Task</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="9">Done</resolution>
                                        <assignee username="ian.fogelman@mongodb.com">Ian Fogelman</assignee>
                                    <reporter username="backlog-server-pm">Backlog - Core Eng Program Management Team</reporter>
                        <labels>
                    </labels>
                <created>Mon, 29 Mar 2021 21:12:59 +0000</created>
                <updated>Mon, 13 Nov 2023 17:56:23 +0000</updated>
                            <resolved>Tue, 11 Jan 2022 15:39:26 +0000</resolved>
                                                    <fixVersion>4.2.15</fixVersion>
                    <fixVersion>4.4.7</fixVersion>
                    <fixVersion>5.0.0-rc0</fixVersion>
                    <fixVersion>4.0.26</fixVersion>
                    <fixVersion>Server_Docs_20231030</fixVersion>
                    <fixVersion>Server_Docs_20231106</fixVersion>
                    <fixVersion>Server_Docs_20231105</fixVersion>
                    <fixVersion>Server_Docs_20231113</fixVersion>
                                    <component>manual</component>
                    <component>Server</component>
                        <due></due>
                            <votes>0</votes>
                                    <watches>2</watches>
                                                                                                                <comments>
                            <comment id="4301950" author="xgen-internal-githook" created="Thu, 20 Jan 2022 00:38:57 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;ianf-mongodb&apos;, &apos;email&apos;: &apos;85948430+ianf-mongodb@users.noreply.github.com&apos;, &apos;username&apos;: &apos;ianf-mongodb&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-14322&quot; title=&quot;Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-14322&quot;&gt;&lt;del&gt;DOCS-14322&lt;/del&gt;&lt;/a&gt; init (#358)&lt;br/&gt;
Branch: v5.2&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/docs-mongodb-internal/commit/d2abffa79cc857a2232ebc38437b95c476175f5e&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/docs-mongodb-internal/commit/d2abffa79cc857a2232ebc38437b95c476175f5e&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4301445" author="xgen-internal-githook" created="Wed, 19 Jan 2022 21:19:52 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;ianf-mongodb&apos;, &apos;email&apos;: &apos;85948430+ianf-mongodb@users.noreply.github.com&apos;, &apos;username&apos;: &apos;ianf-mongodb&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-14322&quot; title=&quot;Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-14322&quot;&gt;&lt;del&gt;DOCS-14322&lt;/del&gt;&lt;/a&gt; init (#358)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/docs-mongodb-internal/commit/d2abffa79cc857a2232ebc38437b95c476175f5e&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/docs-mongodb-internal/commit/d2abffa79cc857a2232ebc38437b95c476175f5e&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4283492" author="xgen-internal-githook" created="Mon, 10 Jan 2022 16:53:52 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;ianf-mongodb&apos;, &apos;email&apos;: &apos;85948430+ianf-mongodb@users.noreply.github.com&apos;, &apos;username&apos;: &apos;ianf-mongodb&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-14322&quot; title=&quot;Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-14322&quot;&gt;&lt;del&gt;DOCS-14322&lt;/del&gt;&lt;/a&gt; v5.0 backport (#257)&lt;br/&gt;
Branch: v5.0&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/docs/commit/ec676b916b84fa264efee188d3d78a1deca3e741&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/docs/commit/ec676b916b84fa264efee188d3d78a1deca3e741&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4283491" author="xgen-internal-githook" created="Mon, 10 Jan 2022 16:53:41 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;ianf-mongodb&apos;, &apos;email&apos;: &apos;85948430+ianf-mongodb@users.noreply.github.com&apos;, &apos;username&apos;: &apos;ianf-mongodb&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-14322&quot; title=&quot;Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-14322&quot;&gt;&lt;del&gt;DOCS-14322&lt;/del&gt;&lt;/a&gt; v5.1 backport (#255)&lt;br/&gt;
Branch: v5.1&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/docs/commit/b6e3ad7314c65330332c85eccaf444ec1cbf3dd6&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/docs/commit/b6e3ad7314c65330332c85eccaf444ec1cbf3dd6&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4283487" author="xgen-internal-githook" created="Mon, 10 Jan 2022 16:53:10 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;ianf-mongodb&apos;, &apos;email&apos;: &apos;85948430+ianf-mongodb@users.noreply.github.com&apos;, &apos;username&apos;: &apos;ianf-mongodb&apos;}
&lt;p&gt;Message: Docs-14322 add 509 certificate warning (#197)&lt;/p&gt;

&lt;ul&gt;
	&lt;li&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-14322&quot; title=&quot;Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-14322&quot;&gt;&lt;del&gt;DOCS-14322&lt;/del&gt;&lt;/a&gt; init&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;update include verbiage&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;names -&amp;gt; name&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Addressing Jason Edits #1&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Glossary update&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;**&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;***&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Change glossary link&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Use term decorator for Subject Alternative Name&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Remove extra line in glossary.txt&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Address Sergey comments #1&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Added ref to mongod and mongos&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;correct 5.0 release notes placement&lt;br/&gt;
Branch: v5.0&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/docs/commit/8e80b15ddcb4a355b81ae905a331aa59d84767b7&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/docs/commit/8e80b15ddcb4a355b81ae905a331aa59d84767b7&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
</comment>
                            <comment id="4283485" author="xgen-internal-githook" created="Mon, 10 Jan 2022 16:53:08 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;ianf-mongodb&apos;, &apos;email&apos;: &apos;85948430+ianf-mongodb@users.noreply.github.com&apos;, &apos;username&apos;: &apos;ianf-mongodb&apos;}
&lt;p&gt;Message: Docs-14322 add 509 certificate warning (#197)&lt;/p&gt;

&lt;ul&gt;
	&lt;li&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-14322&quot; title=&quot;Investigate changes in SERVER-55119: Create startup warning indicating that X.509 certificates without SANs are deprecated&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-14322&quot;&gt;&lt;del&gt;DOCS-14322&lt;/del&gt;&lt;/a&gt; init&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;update include verbiage&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;names -&amp;gt; name&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Addressing Jason Edits #1&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Glossary update&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;**&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;***&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Change glossary link&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Use term decorator for Subject Alternative Name&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Remove extra line in glossary.txt&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Address Sergey comments #1&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;Added ref to mongod and mongos&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;correct 5.0 release notes placement&lt;br/&gt;
Branch: v5.0&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/docs/commit/8e80b15ddcb4a355b81ae905a331aa59d84767b7&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/docs/commit/8e80b15ddcb4a355b81ae905a331aa59d84767b7&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10420">
                    <name>Backports</name>
                                            <outwardlinks description="backported by">
                                        <issuelink>
            <issuekey id="1792800">DOCS-14584</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="1793300">DOCS-14586</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="1794043">DOCS-14588</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                            <issuelinktype id="10320">
                    <name>Documented</name>
                                            <outwardlinks description="documents">
                                        <issuelink>
            <issuekey id="1645878">SERVER-55119</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>6.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10055" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>Date of 1st Reply</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Mon, 14 Jun 2021 19:38:29 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        2 years, 3 weeks ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                            <customfield id="customfield_10857" key="com.pyxis.greenhopper.jira:gh-epic-link">
                        <customfieldname>Epic Link</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>DOCSP-15042</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_14873" key="com.atlassian.jira.plugin.system.customfieldtypes:multiuserpicker">
                        <customfieldname>External Reviewer</customfieldname>
                        <customfieldvalues>
                                    <customfieldvalue><![CDATA[sergey.galtsev@mongodb.com]]></customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>emet.ozar@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            2 years, 3 weeks ago
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                            <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>backlog-server-pm</customfieldvalue>
            <customfieldvalue>xgen-internal-githook</customfieldvalue>
            <customfieldvalue>ian.fogelman@mongodb.com</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hz1tev:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hymyiv:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10555" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Story Points</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>3.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_10053" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>Time In Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hz1fnz:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                </customfields>
    </item>
</channel>
</rss>