dotnet
diff --git a/‎src/Microsoft.Data.SqlClient/netcore/ref/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 0 deletions b/‎src/Microsoft.Data.SqlClient/netcore/ref/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/Microsoft.Data.SqlClient/netcore/src/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 1 deletion b/‎src/Microsoft.Data.SqlClient/netcore/src/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Microsoft.Data.SqlClient/netfx/ref/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 0 deletions b/‎src/Microsoft.Data.SqlClient/netfx/ref/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/Microsoft.Data.SqlClient/netfx/src/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 0 deletions b/‎src/Microsoft.Data.SqlClient/netfx/src/Microsoft.Data.SqlClient.csproj
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/ActiveDirectoryAuthenticationProvider.cs
Lines changed: 6 additions & 6 deletions b/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/ActiveDirectoryAuthenticationProvider.cs
Lines changed: 6 additions & 6 deletions
diff --git a/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/AzureAttestationBasedEnclaveProvider.cs
Lines changed: 8 additions & 4 deletions b/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/AzureAttestationBasedEnclaveProvider.cs
Lines changed: 8 additions & 4 deletions
diff --git a/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/EnclaveProviderBase.cs
Lines changed: 8 additions & 4 deletions b/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/EnclaveProviderBase.cs
Lines changed: 8 additions & 4 deletions
diff --git a/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/EnclaveSessionCache.cs
Lines changed: 14 additions & 6 deletions b/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/EnclaveSessionCache.cs
Lines changed: 14 additions & 6 deletions
diff --git a/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/SignatureVerificationCache.cs
Lines changed: 13 additions & 10 deletions b/‎src/Microsoft.Data.SqlClient/src/Microsoft/Data/SqlClient/SignatureVerificationCache.cs
Lines changed: 13 additions & 10 deletions
@@ -17,6 +17,7 @@
     <Compile Include="..\..\ref\Microsoft.Data.SqlClient.Batch.NetCoreApp.cs" />
   </ItemGroup>
   <ItemGroup>
+    <PackageReference Include="Microsoft.Extensions.Caching.Memory" Version="$(MicrosoftExtensionsCachingMemoryVersion)" />
     <PackageReference Include="System.Security.Cryptography.Cng" Version="$(SystemSecurityCryptographyCngVersion)" />
     <PackageReference Include="Microsoft.Identity.Client" Version="$(MicrosoftIdentityClientVersion)" />
   </ItemGroup>
 
@@ -938,10 +938,10 @@
   <!-- Package References Etc -->
   <ItemGroup Condition="'$(TargetGroup)' == 'netcoreapp'">
     <PackageReference Include="System.Configuration.ConfigurationManager" Version="$(SystemConfigurationConfigurationManagerVersion)" />
-    <PackageReference Include="System.Runtime.Caching" Version="$(SystemRuntimeCachingVersion)" />
   </ItemGroup>
   <ItemGroup>
     <PackageReference Include="Microsoft.Data.SqlClient.SNI.runtime" Version="$(MicrosoftDataSqlClientSNIRuntimeVersion)" />
+    <PackageReference Include="Microsoft.Extensions.Caching.Memory" Version="$(MicrosoftExtensionsCachingMemoryVersion)"  />
     <!-- Enable the project reference for debugging purposes. -->
     <!-- <ProjectReference Include="$(SqlServerSourceCode)\Microsoft.SqlServer.Server.csproj" /> -->
     <PackageReference Include="Microsoft.SqlServer.Server" Version="$(MicrosoftSqlServerServerVersion)" />
 
@@ -16,6 +16,7 @@
     <Reference Include="System.Transactions" />
   </ItemGroup>
   <ItemGroup>
+    <PackageReference Include="Microsoft.Extensions.Caching.Memory" Version="$(MicrosoftExtensionsCachingMemoryVersion)" />
     <PackageReference Include="Microsoft.Identity.Client" Version="$(MicrosoftIdentityClientVersion)" />
   </ItemGroup>
 </Project>
@@ -740,6 +740,7 @@
     </COMReference>
   </ItemGroup>
   <ItemGroup>
+    <PackageReference Include="Microsoft.Extensions.Caching.Memory" Version="$(MicrosoftExtensionsCachingMemoryVersion)"  />
     <PackageReference Include="System.Text.Encodings.Web">
       <Version>$(SystemTextEncodingsWebVersion)</Version>
     </PackageReference>
 
@@ -5,13 +5,13 @@
 using System;
 using System.Collections.Concurrent;
 using System.Linq;
-using System.Runtime.Caching;
 using System.Security.Cryptography;
 using System.Text;
 using System.Threading;
 using System.Threading.Tasks;
 using Azure.Core;
 using Azure.Identity;
+using Microsoft.Extensions.Caching.Memory;
 using Microsoft.Identity.Client;
 using Microsoft.Identity.Client.Extensibility;
 
@@ -27,7 +27,7 @@ public sealed class ActiveDirectoryAuthenticationProvider : SqlAuthenticationPro
         /// </summary>
         private static ConcurrentDictionary<PublicClientAppKey, IPublicClientApplication> s_pcaMap
             = new ConcurrentDictionary<PublicClientAppKey, IPublicClientApplication>();
-        private static readonly MemoryCache s_accountPwCache = new(nameof(ActiveDirectoryAuthenticationProvider));
+        private static readonly MemoryCache s_accountPwCache = new MemoryCache(new MemoryCacheOptions()); 
         private static readonly int s_accountPwCacheTtlInHours = 2;
         private static readonly string s_nativeClientRedirectUri = "https://login.microsoftonline.com/common/oauth2/nativeclient";
         private static readonly string s_defaultScopeSuffix = "/.default";
@@ -270,11 +270,11 @@ previousPw is byte[] previousPwBytes &&
                     // We cache the password hash to ensure future connection requests include a validated password
                     // when we check for a cached MSAL account. Otherwise, a connection request with the same username
                     // against the same tenant could succeed with an invalid password when we re-use the cached token.
-                    if (!s_accountPwCache.Add(pwCacheKey, GetHash(parameters.Password), DateTime.UtcNow.AddHours(s_accountPwCacheTtlInHours)))
+                    using (ICacheEntry entry = s_accountPwCache.CreateEntry(pwCacheKey))
                     {
-                        s_accountPwCache.Remove(pwCacheKey);
-                        s_accountPwCache.Add(pwCacheKey, GetHash(parameters.Password), DateTime.UtcNow.AddHours(s_accountPwCacheTtlInHours));
-                    }
+                        entry.Value = GetHash(parameters.Password);
+                        entry.AbsoluteExpirationRelativeToNow = TimeSpan.FromHours(s_accountPwCacheTtlInHours);
+                    };
 
                     SqlClientEventSource.Log.TryTraceEvent("AcquireTokenAsync | Acquired access token for Active Directory Password auth mode. Expiry Time: {0}", result?.ExpiresOn);
                 }
 
@@ -6,11 +6,11 @@
 using System.Collections.Generic;
 using System.Diagnostics;
 using System.IdentityModel.Tokens.Jwt;
-using System.Runtime.Caching;
 using System.Security.Claims;
 using System.Security.Cryptography;
 using System.Text;
 using System.Threading;
+using Microsoft.Extensions.Caching.Memory;
 using Microsoft.IdentityModel.JsonWebTokens;
 using Microsoft.IdentityModel.Logging;
 using Microsoft.IdentityModel.Protocols;
@@ -59,7 +59,7 @@ internal class AzureAttestationEnclaveProvider : EnclaveProviderBase
         // such as https://sql.azure.attest.com/.well-known/openid-configuration
         private const string AttestationUrlSuffix = @"/.well-known/openid-configuration";
 
-        private static readonly MemoryCache OpenIdConnectConfigurationCache = new MemoryCache("OpenIdConnectConfigurationCache");
+        private static readonly MemoryCache OpenIdConnectConfigurationCache = new MemoryCache(new MemoryCacheOptions());
         #endregion
 
         #region Internal methods
@@ -332,7 +332,7 @@ private static string GetInnerMostExceptionMessage(Exception exception)
         // It also caches that information for 1 day to avoid DDOS attacks.
         private OpenIdConnectConfiguration GetOpenIdConfigForSigningKeys(string url, bool forceUpdate)
         {
-            OpenIdConnectConfiguration openIdConnectConfig = OpenIdConnectConfigurationCache[url] as OpenIdConnectConfiguration;
+            OpenIdConnectConfiguration openIdConnectConfig = OpenIdConnectConfigurationCache.Get<OpenIdConnectConfiguration>(url);
             if (forceUpdate || openIdConnectConfig == null)
             {
                 // Compute the meta data endpoint
@@ -348,7 +348,11 @@ private OpenIdConnectConfiguration GetOpenIdConfigForSigningKeys(string url, boo
                     throw SQL.AttestationFailed(string.Format(Strings.GetAttestationTokenSigningKeysFailed, GetInnerMostExceptionMessage(exception)), exception);
                 }
 
-                OpenIdConnectConfigurationCache.Add(url, openIdConnectConfig, DateTime.UtcNow.AddDays(1));
+                MemoryCacheEntryOptions options = new MemoryCacheEntryOptions
+                {
+                    AbsoluteExpirationRelativeToNow = TimeSpan.FromDays(1)
+                };
+                OpenIdConnectConfigurationCache.Set<OpenIdConnectConfiguration>(url, openIdConnectConfig, options);
             }
 
             return openIdConnectConfig;
 
@@ -3,9 +3,9 @@
 // See the LICENSE file in the project root for more information.
 
 using System;
-using System.Runtime.Caching;
 using System.Security.Cryptography;
 using System.Threading;
+using Microsoft.Extensions.Caching.Memory;
 
 // Enclave session locking model
 // 1. For doing the enclave attestation, driver makes either 1, 2 or 3 API calls(in order)
@@ -84,7 +84,7 @@ internal abstract class EnclaveProviderBase : SqlColumnEncryptionEnclaveProvider
         private static readonly Object lockUpdateSessionLock = new Object();
 
         // It is used to save the attestation url and nonce value across API calls
-        protected static readonly MemoryCache ThreadRetryCache = new MemoryCache("ThreadRetryCache");
+        protected static readonly MemoryCache ThreadRetryCache = new MemoryCache(new MemoryCacheOptions());
         #endregion
 
         #region protected methods
@@ -102,7 +102,7 @@ protected void GetEnclaveSessionHelper(EnclaveSessionParameters enclaveSessionPa
 
                 // In case if on some thread we are running SQL workload which don't require attestation, then in those cases we don't want same thread to wait for event to be signaled.
                 // hence skipping it
-                string retryThreadID = ThreadRetryCache[Thread.CurrentThread.ManagedThreadId.ToString()] as string;
+                string retryThreadID = ThreadRetryCache.Get<string>(Thread.CurrentThread.ManagedThreadId.ToString());
                 if (!string.IsNullOrEmpty(retryThreadID))
                 {
                     sameThreadRetry = true;
@@ -167,7 +167,11 @@ protected void GetEnclaveSessionHelper(EnclaveSessionParameters enclaveSessionPa
                         retryThreadID = Thread.CurrentThread.ManagedThreadId.ToString();
                     }
 
-                    ThreadRetryCache.Set(Thread.CurrentThread.ManagedThreadId.ToString(), retryThreadID, DateTime.UtcNow.AddMinutes(ThreadRetryCacheTimeoutInMinutes));
+                    MemoryCacheEntryOptions options = new MemoryCacheEntryOptions
+                    {
+                        AbsoluteExpirationRelativeToNow = TimeSpan.FromMinutes(ThreadRetryCacheTimeoutInMinutes)
+                    };
+                    ThreadRetryCache.Set<string>(Thread.CurrentThread.ManagedThreadId.ToString(), retryThreadID, options);
                 }
             }
         }
 
@@ -3,15 +3,15 @@
 // See the LICENSE file in the project root for more information.
 
 using System;
-using System.Runtime.Caching;
+using Microsoft.Extensions.Caching.Memory;
 using System.Threading;
 
 namespace Microsoft.Data.SqlClient
 {
     // Maintains a cache of SqlEnclaveSession instances
     internal class EnclaveSessionCache
     {
-        private readonly MemoryCache enclaveMemoryCache = new MemoryCache("EnclaveMemoryCache");
+        private readonly MemoryCache enclaveMemoryCache = new MemoryCache(new MemoryCacheOptions());
         private readonly object enclaveCacheLock = new object();
 
         // Nonce for each message sent by the client to the server to prevent replay attacks by the server,
@@ -25,7 +25,7 @@ internal class EnclaveSessionCache
         internal SqlEnclaveSession GetEnclaveSession(EnclaveSessionParameters enclaveSessionParameters, out long counter)
         {
             string cacheKey = GenerateCacheKey(enclaveSessionParameters);
-            SqlEnclaveSession enclaveSession = enclaveMemoryCache[cacheKey] as SqlEnclaveSession;
+            SqlEnclaveSession enclaveSession = enclaveMemoryCache.Get<SqlEnclaveSession>(cacheKey);
             counter = Interlocked.Increment(ref _counter);
             return enclaveSession;
         }
@@ -41,8 +41,12 @@ internal void InvalidateSession(EnclaveSessionParameters enclaveSessionParameter
 
                 if (enclaveSession != null && enclaveSession.SessionId == enclaveSessionToInvalidate.SessionId)
                 {
-                    SqlEnclaveSession enclaveSessionRemoved = enclaveMemoryCache.Remove(cacheKey) as SqlEnclaveSession;
-                    if (enclaveSessionRemoved == null)
+                    enclaveMemoryCache.TryGetValue<SqlEnclaveSession>(cacheKey, out SqlEnclaveSession enclaveSessionToRemove);
+                    if (enclaveSessionToRemove != null)
+                    {
+                        enclaveMemoryCache.Remove(cacheKey);
+                    }
+                    else
                     {
                         throw new InvalidOperationException(Strings.EnclaveSessionInvalidationFailed);
                     }
@@ -58,7 +62,11 @@ internal SqlEnclaveSession CreateSession(EnclaveSessionParameters enclaveSession
             lock (enclaveCacheLock)
             {
                 enclaveSession = new SqlEnclaveSession(sharedSecret, sessionId);
-                enclaveMemoryCache.Add(cacheKey, enclaveSession, DateTime.UtcNow.AddHours(enclaveCacheTimeOutInHours));
+                MemoryCacheEntryOptions options = new MemoryCacheEntryOptions
+                {
+                    AbsoluteExpirationRelativeToNow = TimeSpan.FromHours(enclaveCacheTimeOutInHours)
+                };
+                enclaveMemoryCache.Set<SqlEnclaveSession>(cacheKey, enclaveSession, options);
                 counter = Interlocked.Increment(ref _counter);
             }
 
 
@@ -3,9 +3,9 @@
 // See the LICENSE file in the project root for more information.
 
 using System;
-using System.Runtime.Caching;
 using System.Text;
 using System.Threading;
+using Microsoft.Extensions.Caching.Memory;
 
 namespace Microsoft.Data.SqlClient
 {
@@ -35,7 +35,7 @@ internal class ColumnMasterKeyMetadataSignatureVerificationCache
 
         private ColumnMasterKeyMetadataSignatureVerificationCache()
         {
-            _cache = new MemoryCache(_className);
+            _cache = new MemoryCache(new MemoryCacheOptions());
             _inTrim = 0;
         }
 
@@ -46,17 +46,15 @@ private ColumnMasterKeyMetadataSignatureVerificationCache()
         /// <param name="masterKeyPath">Key Path for CMK</param>
         /// <param name="allowEnclaveComputations">boolean indicating whether the key can be sent to enclave</param>
         /// <param name="signature">Signature for the CMK metadata</param>
-        /// <returns>null if the data is not found in cache otherwise returns true/false indicating signature verification success/failure</returns>
-        internal bool? GetSignatureVerificationResult(string keyStoreName, string masterKeyPath, bool allowEnclaveComputations, byte[] signature)
+        internal bool GetSignatureVerificationResult(string keyStoreName, string masterKeyPath, bool allowEnclaveComputations, byte[] signature)
         {
-
             ValidateStringArgumentNotNullOrEmpty(masterKeyPath, _masterkeypathArgumentName, _getSignatureVerificationResultMethodName);
             ValidateStringArgumentNotNullOrEmpty(keyStoreName, _keyStoreNameArgumentName, _getSignatureVerificationResultMethodName);
             ValidateSignatureNotNullOrEmpty(signature, _getSignatureVerificationResultMethodName);
 
             string cacheLookupKey = GetCacheLookupKey(masterKeyPath, allowEnclaveComputations, signature, keyStoreName);
 
-            return _cache.Get(cacheLookupKey) as bool?;
+            return _cache.TryGetValue<bool>(cacheLookupKey, out bool value);
         }
 
         /// <summary>
@@ -69,7 +67,6 @@ private ColumnMasterKeyMetadataSignatureVerificationCache()
         /// <param name="result">result indicating signature verification success/failure</param>
         internal void AddSignatureVerificationResult(string keyStoreName, string masterKeyPath, bool allowEnclaveComputations, byte[] signature, bool result)
         {
-
             ValidateStringArgumentNotNullOrEmpty(masterKeyPath, _masterkeypathArgumentName, _addSignatureVerificationResultMethodName);
             ValidateStringArgumentNotNullOrEmpty(keyStoreName, _keyStoreNameArgumentName, _addSignatureVerificationResultMethodName);
             ValidateSignatureNotNullOrEmpty(signature, _addSignatureVerificationResultMethodName);
@@ -79,7 +76,11 @@ internal void AddSignatureVerificationResult(string keyStoreName, string masterK
             TrimCacheIfNeeded();
 
             // By default evict after 10 days.
-            _cache.Set(cacheLookupKey, result, DateTimeOffset.UtcNow.AddDays(10));
+            MemoryCacheEntryOptions options = new MemoryCacheEntryOptions
+            {
+                AbsoluteExpirationRelativeToNow = TimeSpan.FromDays(10)
+            };
+            _cache.Set<bool>(cacheLookupKey, result, options);
         }
 
         private void ValidateSignatureNotNullOrEmpty(byte[] signature, string methodName)
@@ -115,15 +116,17 @@ private void ValidateStringArgumentNotNullOrEmpty(string stringArgValue, string
         private void TrimCacheIfNeeded()
         {
             // If the size of the cache exceeds the threshold, set that we are in trimming and trim the cache accordingly.
-            long currentCacheSize = _cache.GetCount();
+            long currentCacheSize = _cache.Count;
             if ((currentCacheSize > _cacheSize + _cacheTrimThreshold) && (0 == Interlocked.CompareExchange(ref _inTrim, 1, 0)))
             {
                 try
                 {
-                    _cache.Trim((int)(((double)(currentCacheSize - _cacheSize) / (double)currentCacheSize) * 100));
+                    // Example: 2301 - 2000 = 301; 301 / 2301 = 0.1308 * 100 = 13% compacting
+                    _cache.Compact((((double)(currentCacheSize - _cacheSize) / (double)currentCacheSize) * 100));
                 }
                 finally
                 {
+                    // Reset _inTrim flag
                     Interlocked.CompareExchange(ref _inTrim, 0, 1);
                 }
             }
Original file line number	Diff line number	Diff line change
`@@ -3,15 +3,15 @@`
`3`	`3`	`// See the LICENSE file in the project root for more information.`
`4`	`4`
`5`	`5`	`using System;`
`6`		`-using System.Runtime.Caching;`
	`6`	`+using Microsoft.Extensions.Caching.Memory;`
`7`	`7`	`using System.Threading;`
`8`	`8`
`9`	`9`	`namespace Microsoft.Data.SqlClient`
`10`	`10`	`{`
`11`	`11`	`// Maintains a cache of SqlEnclaveSession instances`
`12`	`12`	`internal class EnclaveSessionCache`
`13`	`13`	`{`
`14`		`- private readonly MemoryCache enclaveMemoryCache = new MemoryCache("EnclaveMemoryCache");`
	`14`	`+ private readonly MemoryCache enclaveMemoryCache = new MemoryCache(new MemoryCacheOptions());`
`15`	`15`	`private readonly object enclaveCacheLock = new object();`
`16`	`16`
`17`	`17`	`// Nonce for each message sent by the client to the server to prevent replay attacks by the server,`
`@@ -25,7 +25,7 @@ internal class EnclaveSessionCache`
`25`	`25`	`internal SqlEnclaveSession GetEnclaveSession(EnclaveSessionParameters enclaveSessionParameters, out long counter)`
`26`	`26`	`{`
`27`	`27`	`string cacheKey = GenerateCacheKey(enclaveSessionParameters);`
`28`		`- SqlEnclaveSession enclaveSession = enclaveMemoryCache[cacheKey] as SqlEnclaveSession;`
	`28`	`+ SqlEnclaveSession enclaveSession = enclaveMemoryCache.Get<SqlEnclaveSession>(cacheKey);`
`29`	`29`	`counter = Interlocked.Increment(ref _counter);`
`30`	`30`	`return enclaveSession;`
`31`	`31`	`}`
`@@ -41,8 +41,12 @@ internal void InvalidateSession(EnclaveSessionParameters enclaveSessionParameter`
`41`	`41`
`42`	`42`	`if (enclaveSession != null && enclaveSession.SessionId == enclaveSessionToInvalidate.SessionId)`
`43`	`43`	`{`
`44`		`- SqlEnclaveSession enclaveSessionRemoved = enclaveMemoryCache.Remove(cacheKey) as SqlEnclaveSession;`
`45`		`- if (enclaveSessionRemoved == null)`
	`44`	`+ enclaveMemoryCache.TryGetValue<SqlEnclaveSession>(cacheKey, out SqlEnclaveSession enclaveSessionToRemove);`
	`45`	`+ if (enclaveSessionToRemove != null)`
	`46`	`+ {`
	`47`	`+ enclaveMemoryCache.Remove(cacheKey);`
	`48`	`+ }`
	`49`	`+ else`
`46`	`50`	`{`
`47`	`51`	`throw new InvalidOperationException(Strings.EnclaveSessionInvalidationFailed);`
`48`	`52`	`}`
`@@ -58,7 +62,11 @@ internal SqlEnclaveSession CreateSession(EnclaveSessionParameters enclaveSession`
`58`	`62`	`lock (enclaveCacheLock)`
`59`	`63`	`{`
`60`	`64`	`enclaveSession = new SqlEnclaveSession(sharedSecret, sessionId);`
`61`		`- enclaveMemoryCache.Add(cacheKey, enclaveSession, DateTime.UtcNow.AddHours(enclaveCacheTimeOutInHours));`
	`65`	`+ MemoryCacheEntryOptions options = new MemoryCacheEntryOptions`
	`66`	`+ {`
	`67`	`+ AbsoluteExpirationRelativeToNow = TimeSpan.FromHours(enclaveCacheTimeOutInHours)`
	`68`	`+ };`
	`69`	`+ enclaveMemoryCache.Set<SqlEnclaveSession>(cacheKey, enclaveSession, options);`
`62`	`70`	`counter = Interlocked.Increment(ref _counter);`
`63`	`71`	`}`
`64`	`72`
Original file line number	Diff line number	Diff line change
`@@ -3,9 +3,9 @@`
`3`	`3`	`// See the LICENSE file in the project root for more information.`
`4`	`4`
`5`	`5`	`using System;`
`6`		`-using System.Runtime.Caching;`
`7`	`6`	`using System.Text;`
`8`	`7`	`using System.Threading;`
	`8`	`+using Microsoft.Extensions.Caching.Memory;`
`9`	`9`
`10`	`10`	`namespace Microsoft.Data.SqlClient`
`11`	`11`	`{`
`@@ -35,7 +35,7 @@ internal class ColumnMasterKeyMetadataSignatureVerificationCache`
`35`	`35`
`36`	`36`	`private ColumnMasterKeyMetadataSignatureVerificationCache()`
`37`	`37`	`{`
`38`		`- _cache = new MemoryCache(_className);`
	`38`	`+ _cache = new MemoryCache(new MemoryCacheOptions());`
`39`	`39`	`_inTrim = 0;`
`40`	`40`	`}`
`41`	`41`
`@@ -46,17 +46,15 @@ private ColumnMasterKeyMetadataSignatureVerificationCache()`
`46`	`46`	`/// <param name="masterKeyPath">Key Path for CMK</param>`
`47`	`47`	`/// <param name="allowEnclaveComputations">boolean indicating whether the key can be sent to enclave</param>`
`48`	`48`	`/// <param name="signature">Signature for the CMK metadata</param>`
`49`		`- /// <returns>null if the data is not found in cache otherwise returns true/false indicating signature verification success/failure</returns>`
`50`		`- internal bool? GetSignatureVerificationResult(string keyStoreName, string masterKeyPath, bool allowEnclaveComputations, byte[] signature)`
	`49`	`+ internal bool GetSignatureVerificationResult(string keyStoreName, string masterKeyPath, bool allowEnclaveComputations, byte[] signature)`
`51`	`50`	`{`
`52`		`-`
`53`	`51`	`ValidateStringArgumentNotNullOrEmpty(masterKeyPath, _masterkeypathArgumentName, _getSignatureVerificationResultMethodName);`
`54`	`52`	`ValidateStringArgumentNotNullOrEmpty(keyStoreName, _keyStoreNameArgumentName, _getSignatureVerificationResultMethodName);`
`55`	`53`	`ValidateSignatureNotNullOrEmpty(signature, _getSignatureVerificationResultMethodName);`
`56`	`54`
`57`	`55`	`string cacheLookupKey = GetCacheLookupKey(masterKeyPath, allowEnclaveComputations, signature, keyStoreName);`
`58`	`56`
`59`		`- return _cache.Get(cacheLookupKey) as bool?;`
	`57`	`+ return _cache.TryGetValue<bool>(cacheLookupKey, out bool value);`
`60`	`58`	`}`
`61`	`59`
`62`	`60`	`/// <summary>`
`@@ -69,7 +67,6 @@ private ColumnMasterKeyMetadataSignatureVerificationCache()`
`69`	`67`	`/// <param name="result">result indicating signature verification success/failure</param>`
`70`	`68`	`internal void AddSignatureVerificationResult(string keyStoreName, string masterKeyPath, bool allowEnclaveComputations, byte[] signature, bool result)`
`71`	`69`	`{`
`72`		`-`
`73`	`70`	`ValidateStringArgumentNotNullOrEmpty(masterKeyPath, _masterkeypathArgumentName, _addSignatureVerificationResultMethodName);`
`74`	`71`	`ValidateStringArgumentNotNullOrEmpty(keyStoreName, _keyStoreNameArgumentName, _addSignatureVerificationResultMethodName);`
`75`	`72`	`ValidateSignatureNotNullOrEmpty(signature, _addSignatureVerificationResultMethodName);`
`@@ -79,7 +76,11 @@ internal void AddSignatureVerificationResult(string keyStoreName, string masterK`
`79`	`76`	`TrimCacheIfNeeded();`
`80`	`77`
`81`	`78`	`// By default evict after 10 days.`
`82`		`- _cache.Set(cacheLookupKey, result, DateTimeOffset.UtcNow.AddDays(10));`
	`79`	`+ MemoryCacheEntryOptions options = new MemoryCacheEntryOptions`
	`80`	`+ {`
	`81`	`+ AbsoluteExpirationRelativeToNow = TimeSpan.FromDays(10)`
	`82`	`+ };`
	`83`	`+ _cache.Set<bool>(cacheLookupKey, result, options);`
`83`	`84`	`}`
`84`	`85`
`85`	`86`	`private void ValidateSignatureNotNullOrEmpty(byte[] signature, string methodName)`
`@@ -115,15 +116,17 @@ private void ValidateStringArgumentNotNullOrEmpty(string stringArgValue, string`
`115`	`116`	`private void TrimCacheIfNeeded()`
`116`	`117`	`{`
`117`	`118`	`// If the size of the cache exceeds the threshold, set that we are in trimming and trim the cache accordingly.`
`118`		`- long currentCacheSize = _cache.GetCount();`
	`119`	`+ long currentCacheSize = _cache.Count;`
`119`	`120`	`if ((currentCacheSize > _cacheSize + _cacheTrimThreshold) && (0 == Interlocked.CompareExchange(ref _inTrim, 1, 0)))`
`120`	`121`	`{`
`121`	`122`	`try`
`122`	`123`	`{`
`123`		`- _cache.Trim((int)(((double)(currentCacheSize - _cacheSize) / (double)currentCacheSize) * 100));`
	`124`	`+ // Example: 2301 - 2000 = 301; 301 / 2301 = 0.1308 * 100 = 13% compacting`
	`125`	`+ _cache.Compact((((double)(currentCacheSize - _cacheSize) / (double)currentCacheSize) * 100));`
`124`	`126`	`}`
`125`	`127`	`finally`
`126`	`128`	`{`
	`129`	`+ // Reset _inTrim flag`
`127`	`130`	`Interlocked.CompareExchange(ref _inTrim, 0, 1);`
`128`	`131`	`}`
`129`	`132`	`}`