[SERVER-63645] shell - support FLE 2 client-side transformations Created: 14/Feb/22  Updated: 29/Oct/23  Resolved: 10/Mar/22

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 6.0.0-rc0

Type: Task Priority: Major - P3
Reporter: Mark Benvenuto Assignee: Shreyas Kalyan
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Problem/Incident
causes SERVER-64427 Init-order fiasco in secure_allocator Closed
Backwards Compatibility: Major Change
Sprint: Security 2022-02-21, Security 2022-03-07, Security 2022-03-21
Participants:
Linked BF Score: 167

 Description   

Encryption:
The ImplicitEncryptedDBClientBase::preprocessRequest should call FLEClientCrypto::generateInsertOrUpdateFromPlaceholders (or its successor) after doing its FLE 1 processing.

Decryption:
The EncryptedDBClientBase::processResponse should call FLEClientCrypto::decryptDocument to decrypt FLE 2 documents.

While this will require two passes over the BSONObj in each case, I am not concerned about the perf since this code is only for testing.



 Comments   
Comment by Githook User [ 10/Mar/22 ]

Author:

{'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@10gen.com', 'username': 'shreyaskalyan'}

Message: SERVER-63645 shell - support FLE 2 client-side transformations
Branch: master
https://github.com/mongodb/mongo/commit/0c818a98dc5634a1536818d44f23573f19e3ffbf

Comment by Githook User [ 10/Mar/22 ]

Author:

{'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@10gen.com', 'username': 'shreyaskalyan'}

Message: SERVER-63645 shell - support FLE 2 client-side transformations
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/cb49fc57b575b313cdce5c7f203459293452c9cc

Generated at Thu Feb 08 05:58:18 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.