Redact slowlog entries for config with sensitive data. (#8584)

Redact config set requirepass/masterauth/masteruser from slowlog in addition to showing ACL commands without sensitive values.
author: Madelyn Olson <34459052+madolson@users.noreply.github.com> 2021-03-15 22:00:29 -0700
committer: GitHub <noreply@github.com> 2021-03-15 22:00:29 -0700
commit: e1d98bca5a54bb71ff10a69337863d5543ad4373 (patch)
tree: 1426b7f688fef57f5ba103543bf5d1ebd02eedf7 /src/acl.c
parent: dba33a943d508bc5929db4950b4abadf6278ef02 (diff)
download: redis-e1d98bca5a54bb71ff10a69337863d5543ad4373.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/src/acl.c b/src/acl.c
index f48fb405e..aecd0629b 100644
--- a/src/acl.c
+++ b/src/acl.c
@@ -1873,6 +1873,10 @@ void addACLLogEntry(client *c, int reason, int argpos, sds username) {
 void aclCommand(client *c) {
     char *sub = c->argv[1]->ptr;
     if (!strcasecmp(sub,"setuser") && c->argc >= 3) {
+        /* Consider information about passwords or permissions
+         * to be sensitive, which will be the arguments for this
+         * subcommand. */
+        preventCommandLogging(c); 
         sds username = c->argv[2]->ptr;
         /* Check username validity. */
         if (ACLStringHasSpaces(username,sdslen(username))) {
author	Madelyn Olson <34459052+madolson@users.noreply.github.com>	2021-03-15 22:00:29 -0700
committer	GitHub <noreply@github.com>	2021-03-15 22:00:29 -0700
commit	e1d98bca5a54bb71ff10a69337863d5543ad4373 (patch)
tree	1426b7f688fef57f5ba103543bf5d1ebd02eedf7 /src/acl.c
parent	dba33a943d508bc5929db4950b4abadf6278ef02 (diff)
download	redis-e1d98bca5a54bb71ff10a69337863d5543ad4373.tar.gz