When attach an encrypted volume, os-brick will output a debug msg:
Jan 12 21:12:05 localhost.localdomain nova-compute[59989]: DEBUG os_brick.encryptors [None req-a75d8573-9141-414d-86dc-1c3bb9af6585 admin admin] Using volume encryption metadata '{u'cipher': u'aes-xts-plain64', u'encryption_key_id': u'00000000-0000-0000-0000-000000000000', u'provider': u'luks', u'key_size': 256, u'control_location': u'front-end'}' for connection: {'status': u'reserved', 'detached_at': u'', u'volume_id': u'399284b9-f750-4938-8c3f-cded1383ed74', 'attach_mode': u'null', 'driver_volume_type': u'iscsi', 'instance': u'e8f6d6ca-9a25-4ebf-bfaf-b613632f1764', 'attached_at': u'', 'serial': u'399284b9-f750-4938-8c3f-cded1383ed74', 'data': {u'access_mode': u'rw', u'target_discovered': False, u'encrypted': True, u'qos_specs': None, u'target_iqn': u'iqn.2010-10.org.openstack:volume-399284b9-f750-4938-8c3f-cded1383ed74', u'target_portal': u'192.168.43.139:3260', u'volume_id': u'399284b9-f750-4938-8c3f-cded1383ed74', u'target_lun': 0, u'auth_password': u'***', u'auth_username': u'GxLKPQf6qPXPGGtMDdQJ', u'auth_method': u'CHAP'}} {{(pid=59989) get_encryption_metadata /usr/lib/python2.7/site-packages/os_brick/encryptors/__init__.py:125}}
We should mask 'encryption_key_id' as well as 'auth_password'.
Fix proposed to branch: master /review. openstack. org/634546
Review: https:/