Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

executor: remove sensitive information in slow-log and statement (#18107) #18129

Merged
merged 5 commits into from
Jul 6, 2020
Merged

executor: remove sensitive information in slow-log and statement (#18107) #18129

merged 5 commits into from
Jul 6, 2020

Conversation

ti-srebot
Copy link
Contributor

cherry-pick #18107 to release-3.1

Signed-off-by: crazycs520 [email protected]

What problem does this PR solve?

Before this PR, TiDB slow log will record sensitive information such as passwords in slow-log query.

This PR remove sensitive information in slow-log. Such as below:

execute below sql:

set tidb_slow_log_threshold=0;
create user u1 identified by "456789";
alter user 'u1'@'%' identified by 'abcd';
set password for 'u1'@'%' = 'abcsdafd';

The related slow-log will be:

create user {u1@% password = ***};
alter user {u1@% password = ***};
set password for user u1@%;

the related statement will be:

mysql>select query_sample_text from `STATEMENTS_SUMMARY` where query_sample_text like "set password%" or query_sample_text like "create user%" or query_sample_text like 'alter user%';
+-----------------------------------+
| query_sample_text                 |
+-----------------------------------+
| alter user {u1@% password = ***}  |
| create user {u1@% password = ***} |
| set password for user u1@%        |
+-----------------------------------+

What is changed and how it works?

Proposal: xxx

What's Changed:

How it Works:

Related changes

  • Need to cherry-pick to the release branch

Check List

Tests

  • Manual test (add detailed scripts or steps below)

Side effects

  • Performance regression
    • Consumes more CPU
    • Consumes more MEM
  • Breaking backward compatibility

Release note

  • Remove sensitive information in slow-log and statement.

@ti-srebot
Copy link
Contributor Author

/run-all-tests

@ti-srebot ti-srebot mentioned this pull request Jun 19, 2020
Merged
@ti-srebot ti-srebot added sig/sql-infra SIG: SQL Infra sig/execution SIG execution security Everything related with security type/3.1-cherry-pick labels Jun 19, 2020
@ti-srebot ti-srebot requested review from bb7133, kennytm and qw4990 June 19, 2020 08:32
@ti-srebot ti-srebot added this to the v3.1.3 milestone Jun 19, 2020
bb7133
bb7133 reviewed Jun 19, 2020
View reviewed changes
Copy link
Member

@bb7133 bb7133 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please resolve the conflict @crazycs520

@qw4990 qw4990 removed their request for review June 28, 2020 02:49
zimulala
zimulala reviewed Jun 28, 2020
View reviewed changes
executor/adapter.go Outdated
if costTime < threshold && level > zapcore.DebugLevel {
return
}
sql := FormatSQL(a.Text, sessVars.PreparedParams)
=======
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please resolve the conflict @crazycs520

@crazycs520
Copy link
Contributor

/run-all-tests

zimulala
zimulala reviewed Jun 29, 2020
View reviewed changes
Copy link
Contributor

@zimulala zimulala left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@ti-srebot
Copy link
Contributor Author

@zimulala,Thanks for you review.

@zimulala zimulala added the status/LGT1 Indicates that a PR has LGTM 1. label Jun 29, 2020
AilinKid
AilinKid reviewed Jul 6, 2020
View reviewed changes
Copy link
Contributor

@AilinKid AilinKid left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@ti-srebot ti-srebot added status/LGT2 Indicates that a PR has LGTM 2. and removed status/LGT1 Indicates that a PR has LGTM 1. labels Jul 6, 2020
@ti-srebot
Copy link
Contributor Author

@AilinKid,Thanks for your review.

@AilinKid
Copy link
Contributor

AilinKid commented Jul 6, 2020

/run-all-tests

@crazycs520
Copy link
Contributor

/rebuild

@SunRunAway
Copy link
Contributor

/merge

@ti-srebot ti-srebot added the status/can-merge Indicates a PR has been approved by a committer. label Jul 6, 2020
@ti-srebot
Copy link
Contributor Author

/run-all-tests

@ti-srebot ti-srebot merged commit 65406be into pingcap:release-3.1 Jul 6, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bb7133 bb7133 bb7133 left review comments

@zimulala zimulala zimulala left review comments

@AilinKid AilinKid AilinKid approved these changes

@kennytm kennytm Awaiting requested review from kennytm

Assignees

@crazycs520 crazycs520

Labels
security Everything related with security sig/execution SIG execution sig/sql-infra SIG: SQL Infra status/can-merge Indicates a PR has been approved by a committer. status/LGT2 Indicates that a PR has LGTM 2. type/3.1-cherry-pick
Projects
None yet
Milestone
v3.1.3
Development

Successfully merging this pull request may close these issues.
6 participants
@ti-srebot @crazycs520 @AilinKid @SunRunAway @bb7133 @zimulala