<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 05:46:11 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[SERVER-59048] Add support for SRV and SRV raw to LDAPDNSResolverCache</title>
                <link>https://jira.mongodb.org/browse/SERVER-59048</link>
                <project id="10000" key="SERVER">Core Server</project>
                    <description>&lt;p&gt;Add the ability for users to prefix LDAP servers with &quot;srv:&quot; and &quot;srv_raw:&quot; so that the code automatically does the DNS lookups for SRV records.&lt;/p&gt;

&lt;p&gt;Enhance mongoldap to advise users when they make mistakes around srv vs srv_raw.&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;When a user specifies &quot;srv:&amp;lt;DNS NAME&amp;gt;&quot;, mongoldap will check and verify &quot;_ldap._tcp.&amp;lt;DNS NAME&amp;gt;&quot; exists for SRV. If an SRV record cannot be found, it will check &quot;&amp;lt;DNS NAME&amp;gt;&quot; for SRV, and warn the user they should use &quot;srv_raw:&amp;lt;DNS_NAME&amp;gt;&quot; instead. MongoLDAP will do the reverse check for &quot;srv_raw:&amp;lt;DNS_NAME&amp;gt;&quot; by checking for &quot;_ldap._tcp.&amp;lt;DNS NAME&amp;gt;&quot;. When a user specifies &quot;multi:&amp;lt;DNS_NAME&amp;gt;&quot;, mongoldap will check for &quot;SRV&quot; and suggest the user should use &quot;srv_raw:&amp;lt;DNS_NAME&amp;gt;&quot; instead.&lt;/p&gt;&lt;/blockquote&gt;</description>
                <environment></environment>
        <key id="1839186">SERVER-59048</key>
            <summary>Add support for SRV and SRV raw to LDAPDNSResolverCache</summary>
                <type id="3" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14718&amp;avatarType=issuetype">Task</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="13201">Fixed</resolution>
                                        <assignee username="mark.benvenuto@mongodb.com">Mark Benvenuto</assignee>
                                    <reporter username="mark.benvenuto@mongodb.com">Mark Benvenuto</reporter>
                        <labels>
                    </labels>
                <created>Mon, 2 Aug 2021 23:47:46 +0000</created>
                <updated>Sun, 29 Oct 2023 21:50:01 +0000</updated>
                            <resolved>Tue, 31 Aug 2021 15:10:46 +0000</resolved>
                                                    <fixVersion>5.1.0-rc0</fixVersion>
                                                        <votes>0</votes>
                                    <watches>1</watches>
                                                                                                                <comments>
                            <comment id="4107364" author="JIRAUSER1259052" created="Wed, 6 Oct 2021 18:24:36 +0000"  >&lt;p&gt;Updating the fixversion since branching activities occurred yesterday. This ticket will be in rc0 when it&#8217;s been triggered. For more active release information, please keep an eye on #server-release. Thank you!&lt;/p&gt;</comment>
                            <comment id="4075572" author="xgen-internal-githook" created="Tue, 21 Sep 2021 20:27:39 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Mark Benvenuto&apos;, &apos;email&apos;: &apos;mark.benvenuto@mongodb.com&apos;, &apos;username&apos;: &apos;markbenvenuto&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-59048&quot; title=&quot;Add support for SRV and SRV raw to LDAPDNSResolverCache&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-59048&quot;&gt;&lt;del&gt;SERVER-59048&lt;/del&gt;&lt;/a&gt; Add support for SRV and SRV raw to LDAPDNSResolverCache&lt;br/&gt;
Branch: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-58852&quot; title=&quot;Add LDAP timeout failpoint testing&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-58852&quot;&gt;&lt;del&gt;SERVER-58852&lt;/del&gt;&lt;/a&gt;&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/mongo-enterprise-modules/commit/c0ed5f1b199af223114e86b8347acfa1c04ebca1&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/mongo-enterprise-modules/commit/c0ed5f1b199af223114e86b8347acfa1c04ebca1&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4036755" author="xgen-internal-githook" created="Thu, 2 Sep 2021 15:51:34 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Mark Benvenuto&apos;, &apos;email&apos;: &apos;mark.benvenuto@mongodb.com&apos;, &apos;username&apos;: &apos;markbenvenuto&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-59048&quot; title=&quot;Add support for SRV and SRV raw to LDAPDNSResolverCache&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-59048&quot;&gt;&lt;del&gt;SERVER-59048&lt;/del&gt;&lt;/a&gt; Add support for SRV and SRV raw to LDAPDNSResolverCache&lt;br/&gt;
Branch: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-57819&quot; title=&quot;Select sync source in FileCopyBasedInitialSyncer&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-57819&quot;&gt;&lt;del&gt;SERVER-57819&lt;/del&gt;&lt;/a&gt;&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/mongo-enterprise-modules/commit/c0ed5f1b199af223114e86b8347acfa1c04ebca1&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/mongo-enterprise-modules/commit/c0ed5f1b199af223114e86b8347acfa1c04ebca1&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4030474" author="xgen-internal-githook" created="Tue, 31 Aug 2021 00:22:28 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Mark Benvenuto&apos;, &apos;email&apos;: &apos;mark.benvenuto@mongodb.com&apos;, &apos;username&apos;: &apos;markbenvenuto&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-59048&quot; title=&quot;Add support for SRV and SRV raw to LDAPDNSResolverCache&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-59048&quot;&gt;&lt;del&gt;SERVER-59048&lt;/del&gt;&lt;/a&gt; Add support for SRV and SRV raw to LDAPDNSResolverCache&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/85f87c6f17a46c41e840a41bde03870589b9b103&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/85f87c6f17a46c41e840a41bde03870589b9b103&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4030473" author="xgen-internal-githook" created="Tue, 31 Aug 2021 00:22:24 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Mark Benvenuto&apos;, &apos;email&apos;: &apos;mark.benvenuto@mongodb.com&apos;, &apos;username&apos;: &apos;markbenvenuto&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-59048&quot; title=&quot;Add support for SRV and SRV raw to LDAPDNSResolverCache&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-59048&quot;&gt;&lt;del&gt;SERVER-59048&lt;/del&gt;&lt;/a&gt; Add support for SRV and SRV raw to LDAPDNSResolverCache&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/mongo-enterprise-modules/commit/c0ed5f1b199af223114e86b8347acfa1c04ebca1&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/mongo-enterprise-modules/commit/c0ed5f1b199af223114e86b8347acfa1c04ebca1&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="4013135" author="xgen-internal-githook" created="Fri, 20 Aug 2021 15:07:56 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;name&apos;: &apos;Mark Benvenuto&apos;, &apos;email&apos;: &apos;mark.benvenuto@mongodb.com&apos;, &apos;username&apos;: &apos;markbenvenuto&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-59048&quot; title=&quot;Add support for SRV and SRV raw to LDAPDNSResolverCache&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-59048&quot;&gt;&lt;del&gt;SERVER-59048&lt;/del&gt;&lt;/a&gt; Add support for SRV and SRV raw to LDAPDNSResolverCache&lt;br/&gt;
Branch: markbenvenuto/SERVER_59048_srv_support&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/mongo-enterprise-modules/commit/6691e3141242fb3a2211b9377d1df22b3472be21&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/mongo-enterprise-modules/commit/6691e3141242fb3a2211b9377d1df22b3472be21&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="3984014" author="mark.benvenuto" created="Thu, 5 Aug 2021 20:24:46 +0000"  >&lt;p&gt;We also need to add a warning to documentation about the risks of DNS Cache poisoning. A DNS cache could be posioned with incorrect SRV records which redirects the LDAP client code in MongoDB to connect to a server under an attacker&apos;s control. DNSSEC and/or strict management of root CAs will manage the risk of this.&lt;/p&gt;</comment>
                            <comment id="3981278" author="mark.benvenuto" created="Wed, 4 Aug 2021 18:50:41 +0000"  >&lt;p&gt;Under SRV mode, probe for&#160;&lt;br/&gt;
_ldap._tcp.gc_msdcs.&amp;lt;DNSDomainName&amp;gt;&lt;br/&gt;
then&lt;br/&gt;
_ldap._tcp.&amp;lt;DNSDomainName&amp;gt;&lt;br/&gt;
&#160;&lt;br/&gt;
It is not an error if the GC entry is missing, the server will ignore the missing record. MongoLDAP will also not warn the user since this is only present in AD deployments.&#160;&lt;br/&gt;
&#160;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10011">
                    <name>Depends</name>
                                                                <inwardlinks description="is depended on by">
                                        <issuelink>
            <issuekey id="488555">SERVER-32948</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                            <issuelinktype id="10320">
                    <name>Documented</name>
                                                                <inwardlinks description="is documented by">
                                        <issuelink>
            <issuekey id="1887337">DOCS-14832</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                                                <inwardlinks description="is related to">
                                        <issuelink>
            <issuekey id="1859084">SERVER-59527</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="488555">SERVER-32948</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>8.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18555" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname># of Sprints</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2.0</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10011" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Backwards Compatibility</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10038"><![CDATA[Fully Compatible]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                    <customfield id="customfield_13552" key="com.go2group.jira.plugin.crm:crm_generic_field">
                        <customfieldname>Case</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[[5006R00001lAu1lQAC]]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10055" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>Date of 1st Reply</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Fri, 20 Aug 2021 15:07:56 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        2 years, 18 weeks ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_17052" key="com.atlassian.jira.plugin.system.customfieldtypes:textarea">
                        <customfieldname>Downstream Changes Summary</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Added &amp;quot;srv:&amp;quot; and &amp;quot;srv_raw:&amp;quot; prefix for ldap servers. See description in ticket.&lt;br/&gt;
&lt;br/&gt;
Note: multi was NOT added.</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_17050" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Downstream Team Attention</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="16942"><![CDATA[Needed]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_10857" key="com.pyxis.greenhopper.jira:gh-epic-link">
                        <customfieldname>Epic Link</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>PM-1808</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>luke.bonanomi@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            2 years, 18 weeks ago
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                    <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>xgen-internal-githook</customfieldvalue>
            <customfieldvalue>mark.benvenuto@mongodb.com</customfieldvalue>
            <customfieldvalue>vivian.ge@mongodb.com</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hzvpuv:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hzfxaf:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_23361" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Requested By</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_22251" key="com.atlassian.jira.plugin.system.customfieldtypes:textarea">
                        <customfieldname>Special Downgrade Instructions</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>If a cluster&amp;#39;s configuration has been updated to take advantage of the new &amp;quot;srv:&amp;quot; or &amp;quot;srv_raw:&amp;quot; URL types in its LDAP configuration, it will be unable to restart after a downgrade. Remove the new URL types from the cluster&amp;#39;s configuration before or while downgrading.</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_22250" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Special Downgrade Instructions Required</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="23342"><![CDATA[Needed]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10557" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue id="5135">Security 2021-08-23</customfieldvalue>
    <customfieldvalue id="5136">Security 2021-09-06</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                    <customfield id="customfield_17051" key="com.atlassian.jira.plugin.system.customfieldtypes:multicheckboxes">
                        <customfieldname>Teams Impacted</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="16944"><![CDATA[Docs]]></customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10053" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>Time In Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_22870" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Triagers</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hzvc3z:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                    </customfields>
    </item>
</channel>
</rss>