oslo-incubator

  1. Bug #1343604
  2. Comment #15

Comment 15 for bug 1343604

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to oslo.concurrency (master)

Reviewed: https://review.openstack.org/114656
Committed: https://git.openstack.org/cgit/openstack/oslo.concurrency/commit/?id=c906dccefccedd8d00d6aa3eacc76194e8199714
Submitter: Jenkins
Branch: master

commit c906dccefccedd8d00d6aa3eacc76194e8199714
Author: Amrith Kumar <email address hidden>
Date: Thu Aug 14 00:52:02 2014 -0400

    Mask passwords in exceptions and error messages

    When a ProcessExecutionError is thrown by processutils.execute(), the
    exception may contain information such as password. Upstream
    applications that just log the message (as several appear to do) could
    inadvertently expose these passwords to a user with read access to the
    log files. It is therefore considered prudent to invoke
    strutils.mask_password() on the command, stdout and stderr in the
    exception. A test case has been added to ensure that all three are
    properly masked.

    OSSA is aware of this change request.

    Originally-Submitted-In: I173dfb865e84eb7dee54a22c76db1e4f125a0a8a

    Change-Id: Ie122db5f19802f519b96ed024ab3f2b5eede3eee
    Closes-Bug: #1343604