[SERVER-72909] Create FLE2IndexedRangeEncryptedValueV2 class and implement parse & serialization Created: 17/Jan/23 Updated: 29/Oct/23 Resolved: 03/Feb/23 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 6.3.0-rc0 |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Erwin Pe | Assignee: | Shreyas Kalyan |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Assigned Teams: |
Server Security
|
| Backwards Compatibility: | Fully Compatible |
| Sprint: | Security 2023-02-06 |
| Participants: |
| Description |
|
Define the FLE2RangeIndexedValueV2 payload type in the EncryptedBinDataType enum in fle_field_schema.idl. Then, create the class FLE2IndexedRangeEncryptedValueV2 which implements the parseAndDecrypt() and serialize() methods. The serialize method shall output the binary string that can be parsed as: index_key_id (16) || bson_type (1) || SKE.Enc(serverToken, ciphertext) || encrypted_counters_and_tags where encrypted_counters_and_tags can be further parsed as: [ ( SKE.Enc(FS[ f, 2, e, 1 ], (e.counter || contentionFactor)) || e.tag || SKE.Enc(FS[ f, 2, e, 2 ], 0128) ) ] for each e in payload.edgeTokenSet |
| Comments |
| Comment by Githook User [ 03/Feb/23 ] |
|
Author: {'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@mongodb.com', 'username': 'shreyaskal'}Message: |