Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Unresolved
Priority: Major - P3
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Assigned Teams:

Server Security
Confidence Status:
None
Work Order:
3
Size Category:
TBD
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

We never want to write QE-encrypted data to collections without QE schemas, since this presents problems for compaction and cleanup later. Upon any write with an encryptionInformation field, ensure that the collection being written to exists and has a QE schema (i.e. an encryptedFields set in its collection options). We won't check for schema matching in this ticket, that will be done in https://jira.mongodb.org/browse/SERVER-104797.

As part of this work, investigate possible impact on mongorestore.

is related to

SERVER-104797 Ensure schema match between QE-encrypted writes and target collections

Needs Scheduling

related to

SERVER-103112 Compaction fails on implicitly-created encrypted collections and on new encrypted fields

Closed

Assignee:: Unassigned
Reporter:: Gabriel Marks
Participants:: Gabriel Marks
Votes:: 0 Vote for this issue
Watchers:: 1 Start watching this issue

Created:: May 06 2025 05:45:24 PM UTC
Updated:: May 20 2025 02:57:35 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates