diff options
author | Madelyn Olson <34459052+madolson@users.noreply.github.com> | 2021-03-15 22:00:29 -0700 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-03-15 22:00:29 -0700 |
commit | e1d98bca5a54bb71ff10a69337863d5543ad4373 (patch) | |
tree | 1426b7f688fef57f5ba103543bf5d1ebd02eedf7 /src/acl.c | |
parent | dba33a943d508bc5929db4950b4abadf6278ef02 (diff) | |
download | redis-e1d98bca5a54bb71ff10a69337863d5543ad4373.tar.gz |
Redact slowlog entries for config with sensitive data. (#8584)
Redact config set requirepass/masterauth/masteruser from slowlog in addition to showing ACL commands without sensitive values.
Diffstat (limited to 'src/acl.c')
-rw-r--r-- | src/acl.c | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -1873,6 +1873,10 @@ void addACLLogEntry(client *c, int reason, int argpos, sds username) { void aclCommand(client *c) { char *sub = c->argv[1]->ptr; if (!strcasecmp(sub,"setuser") && c->argc >= 3) { + /* Consider information about passwords or permissions + * to be sensitive, which will be the arguments for this + * subcommand. */ + preventCommandLogging(c); sds username = c->argv[2]->ptr; /* Check username validity. */ if (ACLStringHasSpaces(username,sdslen(username))) { |