Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make it slightly harder to dump private keys to logs #8029

Merged
merged 1 commit into from
Jul 1, 2021
Merged

Make it slightly harder to dump private keys to logs #8029

merged 1 commit into from
Jul 1, 2021

Conversation

randall
Copy link
Contributor

@randall randall commented Jul 1, 2021

Change the debug tag for logging secerts so that "ssl" doesn't
also include sensitive data (like private keys)

@randall
Make it slightly harder to dump private keys to logs
7f0fe44 
Change the debug tag for logging secerts so that "ssl" doesn't
also include sensitive data (like private keys)
@randall randall added the Debug Support for system debugging label Jul 1, 2021
@randall randall added this to the 10.0.0 milestone Jul 1, 2021
@randall randall requested a review from shinrich July 1, 2021 20:14
@randall randall self-assigned this Jul 1, 2021
@randall randall requested a review from bryancall as a code owner July 1, 2021 20:14
@randall randall merged commit af6eec7 into apache:master Jul 1, 2021
@zwoop zwoop modified the milestones: 10.0.0, 9.2.0 Sep 23, 2021
moonchen pushed a commit to moonchen/trafficserver that referenced this pull request Mar 7, 2022
@zwoop
Merge remote-tracking branch 'asf/master'
c699598 
* asf/master: (763 commits)
  rate_limit: Add a global hook to rate limit concurrent connections based on SNI (apache#8021)
  Fix uri_signing unit test for out of source builds (apache#8040)
  tests: Add conditions for BoringSSL and OpenSSL (apache#8045)
  change debug tags and make sure sni is printed on certain logs (apache#7673)
  Doc build in CI: build English docs with -W (apache#8039)
  When loading async SSL configuration file fails, log SSL error (apache#8036)
  Doc build: treat warnings as errors only by default (apache#8038)
  For test async_engine, export all symbols (apache#8037)
  Fix the server cert reload (apache#8030)
  Treat Sphinx doc build warnings as errors. (apache#8033)
  Stablize trace curl test in good_request_after_bad (apache#8032)
  Doc: Update documentation to build cleanly in Sphinx 3. Require Sphinx 3 or better. (apache#7978)
  Docs: Fix pre-formatting for ratelimit plugin (apache#7986)
  Make it slightly harder to dump private keys to logs (apache#8029)
  tls_bad_alpn: Add an openssl version skip check (apache#8026)
  per thread jemalloc arena for MADV_DONTDUMP (apache#7501)
  Adds a new rm-destination, this lets you specify either QUERY or PATH, and be able to drop them from the incoming request (apache#8025)
  Fix HPACK eviction iterator manipulation (apache#8004)
  Do not invalidate cached resources upon error responses to unsafe methods (apache#7999)
  Cleanup SSLUtils (apache#8007)
  ...
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@shinrich shinrich shinrich approved these changes

@bryancall bryancall Awaiting requested review from bryancall

Assignees

@randall randall

Labels
Debug Support for system debugging
Projects
None yet
Milestone
9.2.0
Development

Successfully merging this pull request may close these issues.
3 participants
@randall @shinrich @zwoop