Bug #37847: debug logging for v4 auth does not sanitize encryption keys - rgw - Ceph

Bug #37847

debug logging for v4 auth does not sanitize encryption keys

Added by Casey Bodley about 1 month ago. Updated 27 days ago.

Status:

Resolved

Priority:

Normal

Assignee:

Casey Bodley

Target version:

Start date:

01/09/2019

Due date:

% Done:

Source:

Tags:

awsv4 encryption

Backport:

luminous mimic

Regression:

Severity:

3 - minor

Reviewed:

Affected Versions:

ceph-qa-suite:

Pull request ID:

Description

this flags a regression in teuthology when s3tests are run with v4 auth

Related issues

History

#1 Updated by Casey Bodley about 1 month ago

Status changed from In Progress to Need Review

https://github.com/ceph/ceph/pull/25881

#2 Updated by Siddharth Sharma about 1 month ago

CVE-2018-16889 has been assigned to this

#3 Updated by Nathan Cutler about 1 month ago

Status changed from Need Review to Pending Backport

#4 Updated by Nathan Cutler about 1 month ago

Copied to Backport #37948: mimic: debug logging for v4 auth does not sanitize encryption keys added

#5 Updated by Nathan Cutler about 1 month ago

Copied to Backport #37949: luminous: debug logging for v4 auth does not sanitize encryption keys added

#6 Updated by Nathan Cutler 27 days ago

Status changed from Pending Backport to Resolved

Also available in: Atom PDF

Project

General

Profile

Ceph » rgw

Issues

Custom queries