OpenStack DBaaS (Trove)

Password for Database User in Plaintext in Trove API Log

Bug #1254914 reported by Auston McReynolds on 2013-11-25

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack DBaaS (Trove)	Fix Released	Low	Khyati Sheth	OpenStack DBaaS (Trove) 2014.1 "icehouse"

Bug Description

Bug #1224700 addressed the logging of passwords in plaintext on the Guest, but not the API.

Example:

{"instance": {"volume": {"size": 5}, "users": [{"password": "thepassword", "name": "theuser"}], "flavorRef": "9", "name": "thedb", "databases": [{"name": "adb"}]}} authorize /opt/stack/trove/trove/common/auth.py:67
2013-11-25 23:38:21.536 762 DEBUG routes.middleware [-] No route matched for POST /1655cf7ab12043cbae9dfe01c84753e5/instances __call__ /usr/lib/python2.7/dist-packages/routes/middleware.py:97
2013-11-25 23:38:21.538 762 DEBUG routes.middleware [-] Matched POST /1655cf7ab12043cbae9dfe01c84753e5/instances __call__ /usr/lib/python2.7/dist-packages/routes/middleware.py:100

oslo-incubator already handles this situation (https://github.com/openstack/oslo-incubator/blob/00f2b55268a4405c95ff12f67709f21803b86509/openstack/common/log.py#L52-L67), but trove's copy of log.py is out of date (see https://github.com/openstack/trove/blob/master/trove/openstack/common/log.py)

See https://github.com/openstack/nova/commit/c6d82083295e9b1b42f22d3a2d25a1ab7d341a13#diff-8023864a19c262aa58d716b065a25b1b for guidance on how to apply.

Khyati Sheth (khysheth) on 2013-11-26

Changed in trove:
assignee:	nobody → Khyati Sheth (khysheth)

Denis M. (dmakogon) on 2013-11-26

Changed in trove:
status:	New → Incomplete
status:	Incomplete → Confirmed

Khyati Sheth (khysheth) on 2013-11-26

Changed in trove:
status:	Confirmed → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2013-11-27: Fix proposed to trove (master)

Fix proposed to branch: master
Review: https://review.openstack.org/58858

Revision history for this message

Sushil Kumar (sushil-kumar2) wrote on 2013-12-15:

Its a security threat on behalf of a user that his password is exposed in the logs in the flat texts.
I think we should either remove the password or somehow hide it probably masking it.

Michael Basnight (hubcap) on 2013-12-23

Changed in trove:
importance:	Undecided → Low

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2014-01-10:

Fix proposed to branch: master
Review: https://review.openstack.org/66075

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2014-01-29: Fix merged to trove (master)

Reviewed: https://review.openstack.org/66075
Committed: https://git.openstack.org/cgit/openstack/trove/commit/?id=a65dcdd952e394bd978c615cf01b8b05736bf74d
Submitter: Jenkins
Branch: master

commit a65dcdd952e394bd978c615cf01b8b05736bf74d
Author: Khyati Sheth <email address hidden>
Date: Thu Jan 16 19:18:42 2014 -0800

Mask database user's password in trove logs

    Currently passwords are logged in plaintext in trove-api and
    trove-taskmanager logs. This fix will mask the passwords in the logs.
    Syncing modules log, common.py from rpc and versionutils from oslo.
    common.py requires versionutils.py.

Change-Id:I50deb003d866e85e7c7ec8ab3ce7248d1c005e57
Closes-Bug: #1254914

Changed in trove:
status:	In Progress → Fix Committed

Thierry Carrez (ttx) on 2014-03-05

Changed in trove:
milestone:	none → icehouse-3
status:	Fix Committed → Fix Released

Thierry Carrez (ttx) on 2014-04-17

Changed in trove:
milestone:	icehouse-3 → 2014.1

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.