[Openstack-security] [openstack/oslo-incubator] SecurityImpact review request change I3b49b1d667f6ade9ae3f6765d735440a3e838917
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Fri Sep 12 01:32:19 UTC 2014
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/120881
Log:
commit b50add90d8ec9402d73453f73c40ce283ac5c180
Author: Tristan Cacqueray <tristan.cacqueray at enovance.com>
Date: Thu Sep 11 16:31:24 2014 +0000
Fix password leak from ProcessExecution errors
This backport the necessary changes to fix both issues:
* Make execute method clean password in exeception
* Make sure mask_password works properly
The backport is not trivial as these fix relies on many other changes,
only the necesasry code have been imported/adapted.
------------------------------------------------
The sync pulls in the following changes (newest to oldest):
63c99a0f - Mask passwords in exceptions and error messages
66142c34 - Make strutils.mask_password more secure
d6b55fb2 - Remove `processutils` dependency on `log`
cb5a804b - Move `mask_password` to strutils
-----------------------------------------------
Closes-Bug: 1343604
Closes-Bug: 1345233
SecurityImpact
Change-Id: I3b49b1d667f6ade9ae3f6765d735440a3e838917
More information about the Openstack-security
mailing list