mongo icon indicating copy to clipboard operation
mongo copied to clipboard

Published 20 hours ago verified publisher icon mongodb

socket connection when ssl is opened

Open leoloel opened this issue 6 years ago • 4 comments

Solve the problem that mongod can not be connected by socket connection when ssl is opened.

leoloel avatar Dec 29 '18 00:12 leoloel

@jbreams - Could you please take a look? Thanks.

acmorrow avatar Jan 07 '19 18:01 acmorrow

@leoloel I'm trying to understand the issue this pull request is meant to solve. It looks like it will let you use SSL over UNIX domain sockets, which isn't something we've supported in the past. Can you explain the motivation for wanting to do that?

Also, before we can consider merging this, we will need to have a corresponding ticket in our Jira bug tracker, the commit message should reference that ticket number, and we'll need you to sign our contributor agreement.

jbreams avatar Jan 11 '19 19:01 jbreams

@leoloel I'm trying to understand the issue this pull request is meant to solve. It looks like it will let you use SSL over UNIX domain sockets, which isn't something we've supported in the past. Can you explain the motivation for wanting to do that?

Also, before we can consider merging this, we will need to have a corresponding ticket in our Jira bug tracker, the commit message should reference that ticket number, and we'll need you to sign our contributor agreement.

@jbreams Thanks for your reply. Yes I want to use SSL over UNIX domain sockets, which is supported in v3.4 and v3.6. Also, I have a question that I think no certificates are required when connecting to mongod with UNIX domain sockets whether or not SSL is turned on.

leoloel avatar Jan 12 '19 02:01 leoloel

SSL over domain sockets was possible before 4.0, but it was not intended as a supported feature, and its removal in 4.0 was intentional. Since UNIX sockets only connect through the local system's memory, and the kernel can see the plaintext bytes anyways, using SSL over UNIX sockets did not seem like a feature that actually adds any security. I also think certificate verification is going to be broken unless your certificates have the UNIX path as their CN or alternate subject name. So you don't really get useful encryption or identity verification of the server. This feature was something we considered somewhat broken when it was removed, so I think we'll need some justification for bringing it back. Is there a security reason or use case this feature would enable?

Also, as I said in my reply, before considering merging this we'll need a ticket opened in our Jira bug tracker and you will need to sign our contributor agreement.

jbreams avatar Jan 15 '19 18:01 jbreams