Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-10564

Galera `wsrep_debug` patch logs MySQL user credentials

Details

    • 10.1.24

    Description

      The recent 'wsrep_debug' patch supplied by Codership (to help diagnose replication issues) is logging various GRANT, UPDATE, DELETE, etc. statements.

      This is expected.

      However, what is not expected is that in the GRANT statements, the IDENTIFIED BY '**************' is coming through clear text.

      This is a problem when customers enable Syslog, and these statements are now shipped off-VM into uncontrolled territory.

      Is it possible to update the patch to mask out that string before logging?

      Also, can this please be added to 10.0 series?

      Attachments

        Activity

          Transition Time In Source Status Execution Times
          Sachin Setiya (Inactive) made transition -
          Open In Progress
          		280d 10h 52m 1
          Sachin Setiya (Inactive) made transition -
          In Progress Stalled
          		259d 9h 40m 1
          Jan Lindström (Inactive) made transition -
          Stalled In Progress
          		162d 14h 45m 1
          Jan Lindström (Inactive) made transition -
          In Progress Closed
          		5d 17h 25m 1

          People

            jplindst Jan Lindström (Inactive)
            ccalender Chris Calender (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.