-
Notifications
You must be signed in to change notification settings - Fork 81
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Server Name Indication (SNI) Support #103
Comments
Perhaps there's SNI tests somewhere we could try to run? It's really troublesome to support openssl features when there's no tests for most of them :-( |
Any update here? I am trying to connect my JRuby 9.1.17.0 app to MongoDB Atlas with |
@headius I am able to reproduce the issue with Ruby Mongo driver connecting to a TLS enabled MongoDB cluster.
Do you need anything else? I can share a dummy username and password to connect with the real mongo cluster on MongoDB Atlas. |
@estolfo Would it be safe to set hostname on the socket in a forked repo and use it to connect to MongoDB Atlas for now? |
@prcongithub My apologies, I don't work on this project anymore. I suggest reaching out to @p-mongo or @saghm instead. |
SNI works with jruby 9.1.17.0 and 9.2.0.0 when using java 8. We enabled it in mongodb/mongo-ruby-driver@e7421ba. |
thanks Oleg, was pretty sure its already working, since Java 8 is the preferred stack this will stay as is. |
Should this ticket be closed? It looks like SNI is supported with java 8 and higher and not supported with java 7 and this is the desired behavior going forward. |
This comment implies that SNI is supported but I'm not finding that it's the case.
I've been working on adding in TLS SNI support to the MongoDB driver and when on MRI, I can set the hostname on the SSLSocket after this line.
MongoDB then logs:
new ssl connection, SNI server name [server]
where
server
is the hostname.When I'm using JRuby, the MongoDB log shows:
new ssl connection, SNI server name []
Here is the relevant change to the MongoDB Ruby driver.
I've tried with JRuby 1.7.22 and 9.1.2.0.
Let me know if there something else I have to do to get SNI support from JRuby's openssl library. Thanks!
Emily
--- Want to back this issue? **[Post a bounty on it!](https://www.bountysource.com/issues/37691267-server-name-indication-sni-support?utm_campaign=plugin&utm_content=tracker%2F136995&utm_medium=issues&utm_source=github)** We accept bounties via [Bountysource](https://www.bountysource.com/?utm_campaign=plugin&utm_content=tracker%2F136995&utm_medium=issues&utm_source=github).The text was updated successfully, but these errors were encountered: