Scope

Add encryption parameters to QE payloads intended for the server. contentionFactor is already present in payloads. Add: min, max, trimFactor, sparsity, precision to the range payloads:

FLE2InsertUpdatePayloadV2
FLE2FindRangePayloadV2.

Reject incoming QE payloads created with values differing from the server's encryptedFields.

Background & Motivation

If a QE payload is generated with parameters that do not match the server, the server may quietly accept the values. This may result in incorrect query responses.

Here is a runnable example. Relevant snippet:

# Create the collection with contention_factor=1
coll = db.create_collection("coll", encryptedFields=encrypted_fields)

# Insert with contention_factor=2
payload = client_encryption.encrypt(
    "foo", Algorithm.INDEXED, key_id, contention_factor=2
)
coll.insert_one({"encrypted": payload})  # No error!

# Find with contention_factor=1
find_payload = client_encryption.encrypt(
    "foo",
    Algorithm.INDEXED,
    key_id,
    query_type=QueryType.EQUALITY,
    contention_factor=1,
)

doc = coll.find_one({"encrypted": find_payload})
print(f"Got document: {doc}") # Sometimes 'None'!

See Safeguard mismatched encryption parameters for a further description.

has to be done after

SERVER-91889 Add parameter placeholders in QE payloads

In Progress

Assignee:: [DO NOT USE] Backlog - Security Team

Reporter:: Kevin Albertson

Participants:: [DO NOT USE] Backlog - Security Team, Kevin Albertson

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: Jun 26 2024 08:17:47 PM UTC

Updated:: Jun 26 2024 08:26:43 PM UTC

Details

Description

Scope

Background & Motivation

Attachments

Issue Links

Activity

People

Dates