Skip to content

DRIVERS-3106 support automatic encryption in unified tests #1756

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 29 commits into from
Mar 17, 2025
Merged

DRIVERS-3106 support automatic encryption in unified tests #1756

merged 29 commits into from
Mar 17, 2025

Conversation

mdb-ad
Copy link
Contributor

@mdb-ad mdb-ad commented Feb 12, 2025
edited
Loading

Changes:

  • Introduce schema version 1.23
  • Add autoEncryptOpts to client entity
  • Add encryptedFields to collection entity
  • POC tests for QE

C driver implementation with tests passing: https://spruce.mongodb.com/version/67d1090e4ba7ad0007d78603/

mdb-ad and others added 6 commits February 11, 2025 19:01
@mdb-ad
add qe to unified tests

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
c6f645d
@mdb-ad
move encryptedFields to initialData

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
aa51fc3
@mdb-ad @kevinAlbs
Apply suggestions from code review

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
fe8ed1c 
Co-authored-by: Kevin Albertson <kevin.albertson@10gen.com>
@mdb-ad
poc test feedback

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
44d883c
@mdb-ad
make keyVaultNamespace required

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
ad2fd55
@mdb-ad
remaining auto encrypt options

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
Loading
Loading status checks…
573aac1
@mdb-ad mdb-ad requested review from a team as code owners February 12, 2025 03:03
@mdb-ad mdb-ad requested review from alcaeus, katcharov, jmikola and kevinAlbs and removed request for a team, alcaeus and katcharov February 12, 2025 03:03
@kevinAlbs kevinAlbs mentioned this pull request Feb 12, 2025
Closed
@mdb-ad
simple schema for schemaMap and encryptedFieldsMap

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
Loading
Loading status checks…
112d5bd
@mdb-ad mdb-ad requested a review from kevinAlbs February 13, 2025 02:24
@mdb-ad
Copy link
Contributor Author

mdb-ad commented Feb 13, 2025

lint failure is due to a flaky external URL

@mdb-ad
convert localSchema.yml

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
f910f65
@mdb-ad
convert fle2v2-EncryptedFields-vs-EncryptedFieldsMap

Verified

This commit was signed with the committer’s verified signature.
jhpratt Jacob Pratt
GPG key ID: FEAC5E6B1E5E6CEF
Verified
Learn about vigilant mode
364eb4c
@mdb-ad
document auto encrypt fields
Loading
Loading status checks…
01505fc
@mdb-ad
move bypassQueryAnalysis
Loading
Loading status checks…
22a670c
@mdb-ad
convert fle2v2-BypassQueryAnalysis
daafa64
@mdb-ad
review suggestions
Loading
Loading status checks…
b1f57f9
@mdb-ad
mandatory keyVaultNamespace field
bb8bd46
@mdb-ad
db name anchors
52cc64b
@mdb-ad
format
Loading
Loading status checks…
5e9203a
@mdb-ad
one more keyVaultNamespace
Loading
Loading status checks…
79d5ea3
@mdb-ad
convert maxWireVersion
Loading
Loading status checks…
5086df7
@mdb-ad
local key should be string
62bd89f
@mdb-ad
AWS placeholders
Loading
Loading status checks…
d5a864f
@mdb-ad
commandName
Loading
Loading status checks…
3b8ab83
@mdb-ad mdb-ad requested a review from kevinAlbs February 27, 2025 07:52
kevinAlbs
kevinAlbs reviewed Feb 28, 2025
View reviewed changes
Copy link
Contributor

@kevinAlbs kevinAlbs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Exciting. Can you check that new tests pass in the C driver and link to the branch? That may verify tests work, and serve as a reference for other implementers.

mdb-ad and others added 7 commits February 28, 2025 11:37
@mdb-ad @kevinAlbs
Apply suggestions from code review
Loading
Loading status checks…
f10d196 
Co-authored-by: Kevin Albertson <kevin.albertson@10gen.com>
@mdb-ad
legacy json removals
751b72c
@mdb-ad
remove unecessary db and coll entities
Loading
Loading status checks…
aded291
@mdb-ad
ensure localSchema collection is dropped
Loading
Loading status checks…
b604633
@mdb-ad
format
Loading
Loading status checks…
22e34ce
@mdb-ad
format
Loading
Loading status checks…
37141b6
@mdb-ad
remove templates for migrated tests
Loading
Loading status checks…
cd66b13
@mdb-ad mdb-ad requested a review from kevinAlbs March 12, 2025 04:13
@mdb-ad
update serverless message
Loading
Loading status checks…
9271514
@mdb-ad mdb-ad merged commit 52a076b into mongodb:master Mar 17, 2025
4 of 5 checks passed
@kevinAlbs kevinAlbs mentioned this pull request Mar 18, 2025
Merged
jmikola
jmikola reviewed Mar 19, 2025
View reviewed changes
source/unified-test-format/unified-test-format.md
[initialData](#initialData).
- `key_vault_data` can be expressed via [initialData](#initialData)
- `autoEncryptOpts` will need to be specified when defining a client entity. Preparation of this field may require
reading AWS credentials from environment variables.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It looks like the addition of autoEncryptOpts was the only change introduced in this PR.

Were the other changes not required? If so, why not?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • key_vault_data doesn't need to be specified as it's equivalent to putting the key documents in initialData.
  • Reading AWS variables is already done for clientEncryption entities so no extra changes are needed.

This was referenced Apr 24, 2025
Merged
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jmikola jmikola

@kevinAlbs kevinAlbs

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@mdb-ad @jmikola @kevinAlbs