Glance

Avoid printing URIs which can contain credentials

Bug #1233275 reported by Stuart McLaren on 2013-09-30

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Glance	Fix Released	Critical	Stuart McLaren	Glance 2013.2 "havana"

Bug Description

This is a recurrence of https://bugs.launchpad.net/glance/+bug/1171851

Revision history for this message

Stuart McLaren (stuart-mclaren) wrote on 2013-09-30:

There may be more of these:

glance/store/swift.py: LOG.debug(_("Invalid store URI: %(reason)s") % locals())
glance/store/swift.py: LOG.exception(_("Error during chunked upload to "
glance/store/rbd.py: LOG.debug(_("Invalid URI: %(uri)s: %(reason)s") % locals())
glance/store/rbd.py: LOG.debug(_("Invalid URI: %(uri)s: %(reason)s") % locals())
glance/store/rbd.py: LOG.debug(_("Invalid URI: %(uri)s: %(reason)s") % locals())
glance/store/rbd.py: LOG.debug(_("Invalid URI: %(uri)s: %(reason)s") % locals())
glance/store/s3.py: LOG.debug(_("Invalid store uri %(uri)s: %(reason)s") % locals())
Binary file glance/store/http.pyc matches
Binary file glance/store/rbd.pyc matches
Binary file glance/store/gridfs.pyc matches
Binary file glance/store/s3.pyc matches
glance/store/scrubber.py: LOG.debug(_("Deleting URI from image %(image_id)s.") %
Binary file glance/store/filesystem.pyc matches
glance/store/__init__.py: LOG.warn(msg % uri)
glance/common/client.py: LOG.debug(_("Configuring from URL: %s"), url)
glance/api/middleware/version_negotiation.py: LOG.debug('new uri %s' % req.path_info)
glance/db/sqlalchemy/migrate_repo/versions/017_quote_encrypted_swift_credentials.py: LOG.error(_("Invalid store uri %(uri)s: %(reason)s") % locals())
glance/db/sqlalchemy/migrate_repo/versions/015_quote_swift_credentials.py: LOG.error(_("Invalid store uri %(uri)s: %(reason)s") % locals())
Binary file glance/db/sqlalchemy/migrate_repo/versions/015_quote_swift_credentials.pyc matches

Stuart McLaren (stuart-mclaren) on 2013-09-30

summary:

- Scrubber prints Image URI
+ Avoid printing URIs which can contain credentials

Revision history for this message

Stuart McLaren (stuart-mclaren) wrote on 2013-10-03:

Fix fore review https://review.openstack.org/#/c/49009/

tags:

added: havana-rc-potential

Mark Washenberger (markwash) on 2013-10-08

Changed in glance:
milestone:	none → icehouse-1
importance:	Undecided → Critical
status:	New → Triaged

Thierry Carrez (ttx) on 2013-10-08

Changed in glance:
milestone:	icehouse-1 → havana-rc2
tags:	removed: havana-rc-potential

Mark Washenberger (markwash) on 2013-10-10

Changed in glance:
status:	Triaged → In Progress
assignee:	nobody → Stuart McLaren (stuart-mclaren)

Mark Washenberger (markwash) on 2013-10-11

Changed in glance:
status:	In Progress → Fix Committed

Revision history for this message

Thierry Carrez (ttx) wrote on 2013-10-11:

milestone-proposed: https://review.openstack.org/#/c/51127/

Changed in glance:
status:	Fix Committed → Fix Released

Thierry Carrez (ttx) on 2013-10-17

Changed in glance:
milestone:	havana-rc2 → 2013.2

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.