tarantool
/
tarantool
/
18135340014
88%
master: 88%
master: 88%
|
Ran
|
Jobs
1
|
Files
513
|
Run time
2min
|
Badge
Embed ▾
README BADGES
|
coverage: 87.619% (-0.003%) from 87.622%
push
github
sergepetrenkossl: eliminate sensitive data leak in cfg options Before this patch sensitive ssl data (password, paths to certificates, path to private key) could leak into log file during configuring `listen` and `replication` option of box.cfg. This could lead to serious security risks. Now we fix this issue by extending the functionality of the `purge_ensitive_data_from_uri` function so that it can process not only string uris, but also table uris with `uri` and `params` options. After this patch next uri parameters will not be printed in log file: `password` and all params which contain "ssl_" prefix. Also we rename main cleaner functions so that user can understand that it can purge not only `uri.password`, but also other sensitive params (e.g. ssl params). Needed for tarantool/tarantool-ee#1438 NO_DOC=<ee bugfix> NO_TEST=<ee bugfix> NO_CHANGELOG=<ee bugfix> (cherry picked from commit 23b5585c3)
71267 of 125045 branches covered (56.99%)
104730 of 119529 relevant lines covered (87.62%)
1354340.99 hits per line
Coverage Regressions
| Lines | Coverage | ∆ | File |
|---|---|---|---|
| 16 |
90.9 |
-0.42% | src/box/box.cc |
| 9 |
88.14 |
-7.63% | src/box/vy_regulator.c |
| 7 |
94.99 |
-1.46% | src/box/vy_read_iterator.c |
| 6 |
88.04 |
-0.11% | src/box/vy_run.c |
| 4 |
93.31 |
-1.27% | src/lib/swim/swim_io.c |
| 2 |
95.84 |
-0.11% | src/box/iproto.cc |
| 2 |
95.96 |
-0.37% | src/box/relay.cc |
| 2 |
89.23 |
-0.12% | src/box/xrow.c |
| 2 |
85.61 |
-0.72% | src/lib/core/coio.c |
| 1 |
90.72 |
0.15% | src/box/applier.cc |
| 1 |
92.5 |
-0.04% | src/box/vinyl.c |
| 1 |
97.26 |
-0.1% | src/lib/msgpuck/msgpuck.h |
| 1 |
96.15 |
-0.05% | src/lib/salad/bps_tree.h |
| 1 |
99.04 |
0.02% | src/lib/uri/uri.c |
Jobs
| ID | Job ID | Ran | Files | Coverage | |
|---|---|---|---|---|---|
| 1 | 18135340014.1 | 513 |
87.62 |
GitHub Action Run |
