Uploaded image for project: 'Compass '
  1. Compass
  2. COMPASS-7231

Investigate changes in SERVER-79496: Ban encryption options being provided in createCollection

    • Type: Icon: Investigation Investigation
    • Resolution: Done
    • Priority: Icon: Minor - P4 Minor - P4
    • No version
    • Affects Version/s: None
    • Component/s: None
    • None
    • Not Needed

      Original Downstream Change Summary

      createCollection will fail with an IllegalOperation error if the user attempts to pass in WiredTiger encryption options. For example {{db.createCollection("test", {storageEngine: {wiredTiger:

      {configString: "encryption=(keyid=key)"}

      } })}} will fail.

      The encryption option is currently only returned in collStats as part of the WT creationString field. If using that field for creating a collection, the encryption option must be removed.

      Description of Linked Ticket

      In SERVER-72227 we came to the conclusion that in some cases there can be situations where a collection is mistakenly created with encryption options in the config string. This can happen if an external tool makes a backup and saves the creation string as read from collStats.

      These options are ephemeral in nature and should never be inserted into the durable catalog. We should consider banning them from the set of valid user options.

            Assignee:
            Unassigned Unassigned
            Reporter:
            backlog-server-pm Backlog - Core Eng Program Management Team
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: