Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Sync with upstream up to 3.29.1 #329

Draft
wants to merge 66 commits into
base: master
Choose a base branch
from
Draft

Sync with upstream up to 3.29.1 #329

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
66 commits
Select commit Hold shift + click to select a range
54ef7d3
Doc changes following on from 3.26.0 release
absurdfarce Mar 28, 2023
17adb81
Fix typo
absurdfarce Apr 8, 2023
32a2613
Add 3.26 for docs (#1147)
jgillenwater Apr 21, 2023
f1e9126
Update driver version supported (#1148)
jgillenwater Apr 21, 2023
9fa742a
Update ref to include latest version supported (#1149)
jgillenwater Apr 21, 2023
058be1e
PYTHON-1341 Impl of client-side column-level encryption/decryption (#…
absurdfarce May 1, 2023
ad40056
Release 3.27: changelog & version
absurdfarce May 1, 2023
5646fb0
Include docs for 3.27.0 (#1153)
absurdfarce May 1, 2023
1767fdb
update RH nav order (#1154)
jgillenwater May 1, 2023
7556a2d
Update docs.yaml to point to latest 3.27.0 docs
absurdfarce May 1, 2023
78b1e2b
remove future plans (#1155)
jgillenwater May 1, 2023
e98c26e
Update docs.yaml to point to latest 3.27.0 docs, take two
absurdfarce May 1, 2023
d911621
Missed dependency on cryptography in setup.py
absurdfarce May 2, 2023
078e2f6
Remove different build matrix selection for develop branches (#1138)
absurdfarce May 9, 2023
9ed9894
DOC-2813 (#1145)
emeliawilkinson24 May 9, 2023
1092fbd
DOC-3278 Update comment for retry policy (#1158)
absurdfarce May 12, 2023
0002e91
Fix for rendering of code blocks in CLE documentation (#1159)
absurdfarce May 19, 2023
7ba8761
Update docs.yaml to include recent fixes to CLE docs
absurdfarce May 18, 2023
6894b02
remove unnecessary import __future__ (#1156)
bschoening May 23, 2023
64aa5ba
docs: convert print statement to function in docs (#1157)
lukaselmer May 23, 2023
f46581e
Revert "remove unnecessary import __future__ (#1156)"
absurdfarce May 24, 2023
d8431d4
Don't fail when inserting UDTs with prepared queries with some missin…
Mokto May 24, 2023
a1e2d3d
PYTHON-1343 Use Cython for smoke builds (#1162)
absurdfarce May 24, 2023
863e690
Jenkinsfile cleanup (#1163)
absurdfarce May 31, 2023
5ea3f4b
PYTHON-1351 Convert cryptography to an optional dependency (#1164)
absurdfarce Jun 1, 2023
531a6c7
PYTHON-1350 Store IV along with encrypted text when using column-leve…
absurdfarce Jun 2, 2023
356d150
PYTHON-1356 Create session-specific protocol handlers to contain sess…
absurdfarce Jun 2, 2023
910f028
CONN-38 Notes for 3.27.0 on PYTHON-1350 (#1166)
absurdfarce Jun 5, 2023
643d3a6
Update docs.yaml to point to most recent 3.27.0 docs changes
absurdfarce Jun 5, 2023
2db3728
PYTHON-1352 Add vector type, codec + support for parsing CQL type (#1…
absurdfarce Jun 5, 2023
e3400a1
Release 3.28.0: changelog & version
absurdfarce Jun 5, 2023
7ccf502
Fixed non-valid rst in README
absurdfarce Jun 6, 2023
50c93e9
Include docs for 3.28.0
absurdfarce Jun 6, 2023
4325afb
CONN-38 Notes for 3.28.0 on PYTHON-1350 (#1167)
absurdfarce Jun 6, 2023
8c41066
Update docs.yaml to point to most recent 3.28.0 docs changes
absurdfarce Jun 6, 2023
8ba0a5c
Jenkins using new python versions in the matrix (#1174)
weideng1 Aug 28, 2023
e24ffe4
Update redirects in docs.yaml (#1178)
emeliawilkinson24 Sep 22, 2023
375da00
Add Jenkins support for Python 3.12.0 (#1180)
absurdfarce Oct 11, 2023
a7ab8cc
PYTHON-1364 Fix ssl.wrap_socket errors (from eventlet) for Python 3.1…
absurdfarce Oct 12, 2023
e9136f4
PYTHON-1313 Fix asyncio removals in Python 3.10 (#1179)
absurdfarce Oct 13, 2023
d0e639b
Remove some remnants of Python2 (#1172)
Lorak-mmk Oct 27, 2023
7845379
docs: Fix typo in add_callbacks (#1177)
Mhs-220 Oct 30, 2023
0e25845
Removed backup(.bak) files (#1185)
bschoening Nov 6, 2023
3ca41e2
PYTHON-1366 Handle removal of asyncore in Python 3.12 (#1187)
absurdfarce Nov 10, 2023
cea6e00
PYTHON-1368 Avoid installing DSE deps + executing DSE tests for Pytho…
absurdfarce Nov 13, 2023
120277d
Remove outdated Python pre-3.7 references (#1186)
bschoening Nov 13, 2023
e90c0f5
PYTHON-1371 Add explicit exception type for serialization failures (#…
absurdfarce Dec 18, 2023
8ff0ba0
PYTHON-1331 ssl.match_hostname() is deprecated in 3.7 (#1191)
absurdfarce Dec 19, 2023
1a947f8
Documentation (and other) updates for 3.29.0 (#1194)
absurdfarce Dec 20, 2023
9941ddb
Added 3.29.0 to docs.yaml
absurdfarce Dec 21, 2023
2c61ab2
fix build from source on macos using homebrew (#1196)
yriveiro Feb 27, 2024
7e0923a
clean up last "import six" (#1197)
a-detiste Feb 27, 2024
dbd4ea5
PYTHON-1378 Expand search directories for includes (#1198)
absurdfarce Mar 19, 2024
9629c2a
Release 3.29.1: changelog & version (#1199)
absurdfarce Mar 19, 2024
c69935e
Merge tag '3.27.0' of https://github.com/datastax/python-driver into …
fruch Jun 6, 2024
8953796
Merge tag '3.28.0' of https://github.com/datastax/python-driver into …
fruch Jun 6, 2024
de04ce0
Merge tag '3.29.0' of https://github.com/datastax/python-driver into …
fruch Jun 6, 2024
d93f25c
Merge tag '3.29.1' of https://github.com/datastax/python-driver into …
fruch Jun 6, 2024
76779b4
move `ColDesc` to `cassandra.util` to avoid circular dependecies
fruch Jun 6, 2024
7322b29
Docs: fix issues create by sync
fruch Jun 9, 2024
758f9c5
test_shard_aware: import ShardInfo from the correctly place
fruch Jun 9, 2024
ccf6347
tests: handle `DependencyException`
fruch Jun 9, 2024
90b17c6
docs: remove client column encryption from docs
fruch Jun 9, 2024
8b1f1eb
CI: download libev via conan, for windows builds to have it
fruch Jun 9, 2024
93f12d3
CI: drop the support for building win32 wheels
fruch Jun 10, 2024
7686480
Merge branch 'master' into sync_with_upstream_3.29.1
fruch Jun 20, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
15 changes: 9 additions & 6 deletions cassandra/cluster.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2545,12 +2545,6 @@ def __init__(self, cluster, hosts, keyspace=None):

self.encoder = Encoder()

if self.cluster.column_encryption_policy is not None:
try:
self.client_protocol_handler.column_encryption_policy = self.cluster.column_encryption_policy
except AttributeError:
log.info("Unable to set column encryption policy for session")

# create connection pools in parallel
self._initial_connect_futures = set()
for host in hosts:
Expand All @@ -2571,6 +2565,15 @@ def __init__(self, cluster, hosts, keyspace=None):
self.session_id = uuid.uuid4()
self._graph_paging_available = self._check_graph_paging_available()

if self.cluster.column_encryption_policy is not None:
try:
self.client_protocol_handler = type(
str(self.session_id) + "-ProtocolHandler",
(ProtocolHandler,),
{"column_encryption_policy": self.cluster.column_encryption_policy})
Comment on lines +2712 to +2715
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why would someone ever write such a code. It's absolutely disgusting.

except AttributeError:
log.info("Unable to set column encryption policy for session")

if self.cluster.monitor_reporting_enabled:
cc_host = self.cluster.get_control_connection_host()
valid_insights_version = (cc_host and version_supports_insights(cc_host.dse_version))
Expand Down
37 changes: 36 additions & 1 deletion tests/integration/standard/column_encryption/test_policies.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -95,7 +95,11 @@ def test_end_to_end_simple(self):
self.assertEquals(expected, encrypted)
self.assertEquals(expected, unencrypted)

def test_end_to_end_different_cle_contexts(self):
def test_end_to_end_different_cle_contexts_different_ivs(self):
"""
Test to validate PYTHON-1350. We should be able to decode the data from two different contexts (with two different IVs)
since the IV used to decrypt the data is actually now stored with the data.
"""

expected = 2

Expand Down Expand Up @@ -133,3 +137,34 @@ def test_end_to_end_different_cle_contexts(self):
(encrypted,unencrypted) = session2.execute("select encrypted, unencrypted from foo.bar where unencrypted = %s allow filtering", (expected,)).one()
self.assertEquals(expected, encrypted)
self.assertEquals(expected, unencrypted)

def test_end_to_end_different_cle_contexts_different_policies(self):
"""
Test to validate PYTHON-1356. Class variables used to pass CLE policy down to protocol handler shouldn't persist.
"""

expected = 3

key = os.urandom(AES256_KEY_SIZE_BYTES)
(col_desc, cl_policy) = self._create_policy(key)
cluster = TestCluster(column_encryption_policy=cl_policy)
session = cluster.connect()
self._recreate_keyspace(session)

# Use encode_and_encrypt helper function to populate date
session.execute("insert into foo.bar (encrypted, unencrypted) values (%s,%s)",(cl_policy.encode_and_encrypt(col_desc, expected), expected))

# We now open a new session _without_ the CLE policy specified. We should _not_ be able to read decrypted bits from this session.
cluster2 = TestCluster()
session2 = cluster2.connect()

# A straight select from the database will now return the decrypted bits. We select both encrypted and unencrypted
# values here to confirm that we don't interfere with regular processing of unencrypted vals.
(encrypted,unencrypted) = session2.execute("select encrypted, unencrypted from foo.bar where unencrypted = %s allow filtering", (expected,)).one()
self.assertEquals(cl_policy.encode_and_encrypt(col_desc, expected), encrypted)
self.assertEquals(expected, unencrypted)

# Confirm the same behaviour from a subsequent prepared statement as well
prepared = session2.prepare("select encrypted, unencrypted from foo.bar where unencrypted = ? allow filtering")
(encrypted,unencrypted) = session2.execute(prepared, [expected]).one()
self.assertEquals(cl_policy.encode_and_encrypt(col_desc, expected), encrypted)