[Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Thu Sep 11 23:22:30 UTC 2014
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/120881
Log:
commit 3344affe60e261121005fff8c43e078263cc76ac
Author: Tristan Cacqueray <tristan.cacqueray at enovance.com>
Date: Thu Sep 11 16:31:24 2014 +0000
Fix password leak from ProcessExecution errors
This backport the necessary changes to fix both issues:
* Make execute method clean password in exeception
* Make sure mask_password works properly
The backport is not trivial as these fix relies on many other changes,
only the necesasry code have been imported/adapted.
------------------------------------------------
The sync pulls in the following changes (newest to oldest):
63c99a0f - Mask passwords in exceptions and error messages
66142c34 - Make strutils.mask_password more secure
d6b55fb2 - Remove `processutils` dependency on `log`
cb5a804b - Move `mask_password` to strutils
-----------------------------------------------
Closes-Bug: 1343604
Closes-Bug: 1345233
SecurityImpact
Change-Id: I3b49b1d667f6ade9ae3f6765d735440a3e838917
More information about the Openstack-security
mailing list