Andrew Weaver created CASSANDRA-21113:
-----------------------------------------
Summary: PasswordObfuscator fails to obfuscate certain passwords
Key: CASSANDRA-21113
URL: https://issues.apache.org/jira/browse/CASSANDRA-21113
Project: Apache Cassandra
Issue Type: Bug
Reporter: Andrew Weaver
Assignee: Andrew Weaver
PasswordObfuscator fails to obfuscate passwords containing regex characters ($,
+, ?, etc.) or the regex end-quote sequence \E.
This leads to passwords containing these characters being logged in clear text
in audit logs for DCL statements, or in the case of \E on trunk, a
java.util.regex.PatternSyntaxException being thrown.
I've attached patches for the 4.0 branch and trunk.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
