Skip to content

PYTHON-3053 Key Management API #958

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 81 commits into from
Jun 30, 2022
Merged

PYTHON-3053 Key Management API #958

merged 81 commits into from
Jun 30, 2022

Conversation

blink1073
Copy link
Member

@blink1073 blink1073 commented Jun 2, 2022
edited
Loading

blink1073 added 30 commits June 2, 2022 09:04
@blink1073
PYTHON-3053 Key Management API
dbc4670
@blink1073
wip implementation
f086908
@blink1073
wip implementation
60d6dd0
@blink1073
wip implementation
6686479
@blink1073
Merge branch 'master' of github.com:mongodb/mongo-python-driver into …
3218ecd 
…PYTHON-3053
@blink1073
wip
5a0e737
@blink1073
implement rewrap_many_data_key
40887d7
@blink1073
wip
025998c
@blink1073
wip
bbd5b71
@blink1073
wip implementation
56c9b59
@blink1073
wip
c9571a1
@blink1073
wip
64bf896
@blink1073
clean up placeholder map
cd7a004
@blink1073
clean up placeholder map
5e030d8
@blink1073
lint
97e3618
@blink1073
update docstring
a3afa23
@blink1073
use my libmongocrypt
6a147cb
@blink1073
debug
81f6c3a
@blink1073
try again
fa87648
@blink1073
add support for rewrap_many_data_key
32efb29
@blink1073
handle RewrapManyDataKeyOpts
e5f7c5a
@blink1073
fix handling of existing opts object
f3c97ec
@blink1073
fix rewrapmanydatakey
4ebc8f1
@blink1073
fix method name
58ed247
@blink1073
remove unnecessary method
02d7588
@blink1073
handle key material and UUIDs
68a346c
@blink1073
remove extra file and fix handling of empty result
a6f3277
@blink1073
add handling of int keys
e8dfc55
@blink1073
cleanup
e441861
@blink1073
more cleanup
60a8de9
@blink1073
Copy link
Member Author

Test failures are being addressed in PYTHON-3286 and PYTHON-3319.
@blink1073 blink1073 requested a review from ShaneHarvey June 29, 2022 15:24
ShaneHarvey
ShaneHarvey reviewed Jun 29, 2022
View reviewed changes
Copy link
Member

@ShaneHarvey ShaneHarvey left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A few final comments.
test/unified_format.py Outdated


binary_types = (Binary, bytes)
binary_types = (Binary, bytes, uuid.UUID)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm a little concerned this might lead to masking bugs where we expect to be sending (or returning) Binary but actually end up with UUID. Can we remove this now that we use uuid_representation=unspecified?
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Trying it out
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hmm, the issue is actually coming from the expected event. We enforce that _ids given to create_data_key are of the type UUID, but the expected event wants a Binary _id. I don't see a precedent for altering the events, but it seems like that might be needed here.
Copy link
Member

@ShaneHarvey ShaneHarvey Jun 29, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more. 

 [2022/06/29 21:48:53.819] FAIL: test_create_data_key_with_AWS_KMS_provider (test.test_encryption.TestUnifiedCreateDataKey) [2022/06/29 21:48:53.819] ---------------------------------------------------------------------- [2022/06/29 21:48:53.819] Traceback (most recent call last): ... [2022/06/29 21:48:53.819] self.test.assertIsInstance(value, permissible_types) [2022/06/29 21:48:53.819] AssertionError: UUID('55c9396c-0d87-4128-93b0-095b806818cb') is not an instance of (<class 'bson.binary.Binary'>, <class 'bytes'>)

We should fix these errors by making _KEY_VAULT_OPTS use unspecified UUID representation (the default) instead of STANDARD. The "data_key _id must be a UUID" check will need to be updated to check for Binary with UUID_SUBTYPE too.

Note that _DATA_KEY_OPTS should still keep using uuid_representation=STANDARD otherwise we may break b/c for encoding a schema_map that contains UUIDs. _KEY_VAULT_OPTS is only used internally so we are free to change it as we please.
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done
@blink1073
Copy link
Member Author

I updated the pymongocrypt dependency to point to the commit merging mongodb/libmongocrypt#375
ShaneHarvey
ShaneHarvey reviewed Jun 29, 2022
View reviewed changes
ShaneHarvey
ShaneHarvey requested changes Jun 30, 2022
View reviewed changes
pymongo/encryption.py Outdated
if isinstance(data_key_id, Binary):
if data_key_id.subtype != UUID_SUBTYPE:
raise TypeError("data_key _id must have a UUID subtype")
elif not isinstance(data_key_id, uuid.UUID):
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should only accept Binary, never UUID here. Let's also update the return below:

- return Binary(data_key_id.bytes, subtype=UUID_SUBTYPE) + return data_key_id
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done
@blink1073 blink1073 requested a review from ShaneHarvey June 30, 2022 14:12
@blink1073 blink1073 merged commit b37b146 into mongodb:master Jun 30, 2022
@blink1073 blink1073 deleted the PYTHON-3053 branch June 30, 2022 17:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

2 participants

@blink1073 @ShaneHarvey