Skip to content

Feature | Added caching for Always Encrypted with secure enclaves#1189

Merged
ulvii merged 26 commits intomicrosoft:devfrom
rene-ye:aeRegression
Dec 7, 2019
Merged

Feature | Added caching for Always Encrypted with secure enclaves#1189
ulvii merged 26 commits intomicrosoft:devfrom
rene-ye:aeRegression

Conversation

@rene-ye
Copy link
Copy Markdown
Member

@rene-ye rene-ye commented Nov 22, 2019
edited
Loading

Adds the following

  • AAS Enclave Provider
  • AAS/VSM Certificate cache
  • Enclave Session cache

lilgreenbird
lilgreenbird reviewed Nov 22, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerVSMEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Nov 26, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Nov 26, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Nov 26, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Nov 27, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/ISQLServerEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Nov 27, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Nov 27, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/ISQLServerEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Nov 27, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java
}

@Override
public void invalidateEnclaveSession() {
Copy link
Copy Markdown
Contributor

@lilgreenbird lilgreenbird Nov 27, 2019

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this still isn't used, when do we need to call this?

lilgreenbird
lilgreenbird reviewed Nov 27, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java
if (null == rs) {
// No results. Meaning no parameter.
// Should never happen.
return enclaveRequestedCEKs;
Copy link
Copy Markdown
Contributor

@lilgreenbird lilgreenbird Nov 27, 2019

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should we log something?

lilgreenbird
lilgreenbird reviewed Nov 27, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java
}


class JWTCertificateEntry {
Copy link
Copy Markdown
Contributor

@lilgreenbird lilgreenbird Nov 27, 2019

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

general comment (applies elsewhere too)
Can we add comments to these classes? I know they're not public so no need for javadocs, but would be nice to have some descriptions on what these are

@ulvii ulvii requested review from peterbae and ulvii November 29, 2019 21:21
@ulvii ulvii added this to the 8.1.1 milestone Nov 29, 2019
lilgreenbird
lilgreenbird reviewed Dec 3, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerConnection.java Outdated
ulvii
ulvii reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/ISQLServerEnclaveProvider.java
ulvii
ulvii reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java Outdated
lilgreenbird
lilgreenbird reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerConnection.java
ulvii
ulvii reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java
@ulvii ulvii changed the title Caching for AEv2 Feature | Added caching for Always Encrypted with secure enclaves Dec 4, 2019
peterbae
peterbae reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/ISQLServerEnclaveProvider.java Outdated
peterbae
peterbae reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/ISQLServerEnclaveProvider.java Outdated
peterbae
peterbae reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/ISQLServerEnclaveProvider.java Outdated
peterbae
peterbae reviewed Dec 4, 2019
View reviewed changes
Comment thread src/main/java/com/microsoft/sqlserver/jdbc/SQLServerAASEnclaveProvider.java Outdated
@lilgreenbird lilgreenbird mentioned this pull request Dec 5, 2019
Closed
@ulvii ulvii merged commit 77f9f10 into microsoft:dev Dec 7, 2019
ulvii pushed a commit that referenced this pull request Mar 3, 2020
@rene-ye @ulvii
Feature | Added caching for Always Encrypted with secure enclaves (#1189
2bc048f 
)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

3 more reviewers

@lilgreenbird lilgreenbird lilgreenbird left review comments

@peterbae peterbae peterbae left review comments

@ulvii ulvii ulvii approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

8.1.1

Development

Successfully merging this pull request may close these issues.

4 participants

@rene-ye @lilgreenbird @ulvii @peterbae