[MDEV-10564] Galera `wsrep_debug` patch logs MySQL user credentials - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 10.1(EOL)
Fix Version/s: 10.1.35, 10.2.17, 10.3.9, 10.0.36-galera
Component/s: Galera
Labels:
None

Sprint:
10.1.24

Description

The recent 'wsrep_debug' patch supplied by Codership (to help diagnose replication issues) is logging various GRANT, UPDATE, DELETE, etc. statements.

This is expected.

However, what is not expected is that in the GRANT statements, the IDENTIFIED BY '**************' is coming through clear text.

This is a problem when customers enable Syslog, and these statements are now shipped off-VM into uncontrolled territory.

Is it possible to update the patch to mask out that string before logging?

Also, can this please be added to 10.0 series?

Attachments

Activity

People

Assignee:: Jan Lindström (Inactive)

Reporter:: Chris Calender (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2016-08-15 23:04

Updated:: 2021-05-13 15:30

Resolved:: 2018-07-25 03:47

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.