Skip to content

@W-19159693@: mongo driver update #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: v0.11.2-evg
Choose a base branch
from
Open

@W-19159693@: mongo driver update #1

wants to merge 2 commits into from

Conversation

anayabuSF
Copy link

GUS: W-19159693

The previous version of mongodb_exporter was built with an outdated Go MongoDB driver that had a TLS handling limitation. Specifically, it was only reading the first certificate in the CA chain file, assuming it to be the issuer of the server certificate. This caused TLS validation failures when the server certificate was issued by an intermediate CA instead of the first certificate in the file.

To fix this, we upgraded mongodb_exporter to use go.mongodb.org/mongo-driver v1.8.6, which correctly processes full CA chains. With this update, the exporter can validate certificates issued by intermediate CAs, ensuring successful TLS/X.509 connections and reliable metric collection.

ispringer
ispringer approved these changes Jul 29, 2025
View reviewed changes
Copy link

@ispringer ispringer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

minor: but I prefer naming a branch like this v0.11.2-evg, and name the tags cut off that branch evg1, evg2, etc. Not a big deal though. We can always rename the branch later if/when we have another patch

@anayabuSF anayabuSF changed the base branch from v0.11.2-evg1 to v0.11.2-evg July 29, 2025 21:29
@anayabuSF
Copy link
Author

Not sure why it did not dismiss review on pushing commit.

go version fixed:

/opt/mongodb_exporter/mongodb_exporter --version
mongodb_exporter, version 0.11.2-evg1 (branch: remotes/origin/ops/W-19159693-update-mongo-driver, revision: 8bb62b6391a886304daa270af6c260868a67bd1d)
  build user:       [email protected]
  build date:       20250729-21:15:59
  go version:       go1.24.2

And then make file make both binaries for us on running make release-multi-arch

anayabu-ltm28hm:mongodb_exporter anayabu$ ls -al bin/
total 20864
drwxr-xr-x  6 anayabu staff      192 Jul 29 14:16 .
drwxr-xr-x 33 anayabu staff     1056 Jul 29 14:28 ..
drwxr-xr-x  3 anayabu staff       96 Jul 29 14:16 mongodb_exporter-0.11.2-evg1.linux-aarch64
-rw-r--r--  1 anayabu staff 10288788 Jul 29 14:16 mongodb_exporter-0.11.2-evg1.linux-aarch64.tar.gz
drwxr-xr-x  3 anayabu staff       96 Jul 29 14:16 mongodb_exporter-0.11.2-evg1.linux-amd64
-rw-r--r--  1 anayabu staff 11074095 Jul 29 14:16 mongodb_exporter-0.11.2-evg1.linux-amd64.tar.gz

@johnwatts johnwatts requested review from ispringer and johnwatts July 30, 2025 13:55
@johnwatts
Copy link

johnwatts commented Jul 30, 2025
edited
Loading

Not sure why it did not dismiss review on pushing commit.

Branch protection rules have to be set on each repository individually and none of this stuff is on by default. Similarly, zero reviews are required to merge in this repository. We should follow the written policy (same as evergage-product) but since these repos are almost never modified and there are many it probably isn't worth creating the rules.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ispringer ispringer ispringer approved these changes

@johnwatts johnwatts johnwatts approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@anayabuSF @johnwatts @ispringer