[SERVER-66662] Block insertion into __safeContent__ Created: 23/May/22  Updated: 29/Oct/23  Resolved: 20/Jun/22

Status: Closed
Project: Core Server
Component/s: Field Level Encryption
Affects Version/s: None
Fix Version/s: 6.0.0-rc11, 6.1.0-rc0

Type: Task Priority: Major - P3
Reporter: Mark Benvenuto Assignee: Shreyas Kalyan
Resolution: Fixed Votes: 0
Labels: equality-ga, ga-required
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Backports
Initiative
Related
is related to SERVER-67375 Make findAndModify updateShardKey wor... Closed
Backwards Compatibility: Fully Compatible
Backport Requested:
v6.0
Sprint: Security 2022-05-30, Security 2022-06-13, Security 2022-06-27
Participants:

 Description   

To prevent users from accidentally corrupted the FLE 2 index structures, the server should block insertion into the _safeContent_ array unless bypassDocumentValidation is enabled or the request is coming from mongos.



 Comments   
Comment by Githook User [ 20/Jun/22 ]

Author:

{'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@mongodb.com', 'username': 'shreyaskal'}

Message: SERVER-66662 Block insertion into _safeContent_

(cherry picked from commit 00300876a899a40fd6121b8f3abacdd3194daf54)
Branch: v6.0
https://github.com/mongodb/mongo/commit/e9f8857523cf7d125de8542a62ebfcd26fef5cb3

Comment by Githook User [ 20/Jun/22 ]

Author:

{'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@mongodb.com', 'username': 'shreyaskal'}

Message: SERVER-66662 Block insertion into _safeContent_

(cherry picked from commit 928e50729b2692a0f7157d7843eeebc053a409c8)
Branch: v6.0
https://github.com/10gen/mongo-enterprise-modules/commit/0a7fc739f552d5d32ea604941fabe638bec8524d

Comment by Githook User [ 17/Jun/22 ]

Author:

{'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@mongodb.com', 'username': 'shreyaskal'}

Message: SERVER-66662 Block insertion into _safeContent_
Branch: master
https://github.com/mongodb/mongo/commit/cc2a4dffbaed59cf50a0dec5b23ec124622f1240

Comment by Githook User [ 17/Jun/22 ]

Author:

{'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@mongodb.com', 'username': 'shreyaskal'}

Message: SERVER-66662 Block insertion into _safeContent_
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/f09eb30c7ef5f46dbd41aad1935900a06aea31af

Generated at Thu Feb 08 06:06:04 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.