Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-10564

Galera `wsrep_debug` patch logs MySQL user credentials

Details

    • 10.1.24

    Description

      The recent 'wsrep_debug' patch supplied by Codership (to help diagnose replication issues) is logging various GRANT, UPDATE, DELETE, etc. statements.

      This is expected.

      However, what is not expected is that in the GRANT statements, the IDENTIFIED BY '**************' is coming through clear text.

      This is a problem when customers enable Syslog, and these statements are now shipped off-VM into uncontrolled territory.

      Is it possible to update the patch to mask out that string before logging?

      Also, can this please be added to 10.0 series?

      Attachments

        Activity

          Ascending order - Click to sort in descending order
          ccalender Chris Calender (Inactive) created issue -
          elenst Elena Stepanova made changes -
          Field Original Value New Value
          Assignee Nirbhay Choubey [ nirbhay_c ]
          nirbhay_c Nirbhay Choubey (Inactive) made changes -
          serg Sergei Golubchik made changes -
          Affects Version/s 10.0-galera [ 21901 ]
          serg Sergei Golubchik made changes -
          Fix Version/s 10.0-galera [ 21901 ]
          serg Sergei Golubchik made changes -
          Fix Version/s 10.1 [ 16100 ]
          serg Sergei Golubchik made changes -
          Affects Version/s 10.1 [ 16100 ]
          serg Sergei Golubchik made changes -
          Assignee Nirbhay Choubey [ nirbhay_c ]
          jplindst Jan Lindström (Inactive) made changes -
          Assignee Jan Lindström [ jplindst ]
          jplindst Jan Lindström (Inactive) made changes -
          Assignee Jan Lindström [ jplindst ] Sachin Setiya [ sachin.setiya.007 ]
          ratzpo Rasmus Johansson (Inactive) made changes -
          Sprint 10.1.24 [ 161 ]
          sachin.setiya.007 Sachin Setiya (Inactive) made changes -
          Status Open [ 1 ] In Progress [ 3 ]
          sachin.setiya.007 Sachin Setiya (Inactive) made changes -
          Status In Progress [ 3 ] Stalled [ 10000 ]
          sachin.setiya.007 Sachin Setiya (Inactive) made changes -
          Assignee Sachin Setiya [ sachin.setiya.007 ]
          ratzpo Rasmus Johansson (Inactive) made changes -
          Assignee Seppo Jaakola [ seppo ]
          jplindst Jan Lindström (Inactive) made changes -
          Assignee Seppo Jaakola [ seppo ] Jan Lindström [ jplindst ]
          jplindst Jan Lindström (Inactive) made changes -
          Status Stalled [ 10000 ] In Progress [ 3 ]
          jplindst Jan Lindström (Inactive) made changes -
          issue.field.resolutiondate 2018-07-25 03:47:31.0 2018-07-25 03:47:31.179
          jplindst Jan Lindström (Inactive) made changes -
          Component/s Galera [ 10124 ]
          Fix Version/s 10.1.35 [ 23116 ]
          Fix Version/s 10.2.17 [ 23111 ]
          Fix Version/s 10.3.9 [ 23114 ]
          Fix Version/s 10.0.36-galera [ 23101 ]
          Fix Version/s 10.1 [ 16100 ]
          Fix Version/s 10.0-galera [ 21901 ]
          Resolution Fixed [ 1 ]
          Status In Progress [ 3 ] Closed [ 6 ]
          julien.fritsch Julien Fritsch made changes -
          serg Sergei Golubchik made changes -
          Affects Version/s 10.0-galera [ 21901 ]
          serg Sergei Golubchik made changes -
          Workflow MariaDB v3 [ 76663 ] MariaDB v4 [ 150765 ]

          People

            jplindst Jan Lindström (Inactive)
            ccalender Chris Calender (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.