[SERVER-41941] [FLE] Shell doesn't decrypt BinData type 6 returned with getMore calls Created: 26/Jun/19 Updated: 29/Oct/23 Resolved: 02/Jul/19 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Shell |
| Affects Version/s: | None |
| Fix Version/s: | 4.2.0-rc4 |
| Type: | Bug | Priority: | Major - P3 |
| Reporter: | Davis Haupt (Inactive) | Assignee: | Mark Benvenuto |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
|||||||||||||||||||||||
| Backwards Compatibility: | Fully Compatible | |||||||||||||||||||||||
| Operating System: | ALL | |||||||||||||||||||||||
| Backport Requested: |
v4.2
|
|||||||||||||||||||||||
| Steps To Reproduce: | Add the snippet shown in the diff below to the bottom of testDeterministicCollection() in jstests/fle/fle_implicit_encryption.js in the enterprise module:
Changing 128 to a smaller number, like 10, will make the test pass, since then .toArray() won't have to call getMore(). |
|||||||||||||||||||||||
| Sprint: | Security 2019-07-15 | |||||||||||||||||||||||
| Participants: | ||||||||||||||||||||||||
| Description |
|
In the FLE enabled shell, it seems like BinData type 6 isn't decrypted as it should be when documents are fetched in getMore calls. When running an aggregation against the FLE-enabled shell which returns more than 101 documents, the first 101 are decrypted properly, while all the rest contain BinData. For example, one document looks like this:
When it should look like this:
|
| Comments |
| Comment by Githook User [ 12/Jul/19 ] |
|
Author: {'name': 'Mark Benvenuto', 'username': 'markbenvenuto', 'email': 'mark.benvenuto@mongodb.com'}Message: (cherry picked from commit ed93777d454809e649c66511ed8e48653befe767) |
| Comment by Githook User [ 02/Jul/19 ] |
|
Author: {'name': 'Mark Benvenuto', 'username': 'markbenvenuto', 'email': 'mark.benvenuto@mongodb.com'}Message: |
| Comment by Davis Haupt (Inactive) [ 26/Jun/19 ] |
|
mark.benvenuto@mongodb.com shreyas.kalyan This bug came up when writing integration tests for Query using implicit encryption/decryption in the shell. Let me know if there's any other info you might need from me. |