Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(pii): Scrub arrays of 2 elements as key-value pairs #3639

Merged
merged 30 commits into from
Jun 10, 2024
Merged

feat(pii): Scrub arrays of 2 elements as key-value pairs #3639

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
30 commits
Select commit Hold shift + click to select a range
0ef6862
feat(pii): Scrub key value pairs
iambriccardo May 23, 2024
b5c2d3e
feat(pii): Scrub key value pairs
iambriccardo May 24, 2024
7aedc7b
Add code
iambriccardo May 24, 2024
fd9a5b2
Fix
iambriccardo May 27, 2024
d1acc1c
Fix
iambriccardo May 27, 2024
0967300
Fix
iambriccardo May 27, 2024
0672c9c
Fix
iambriccardo May 27, 2024
4902859
Update snapshot
iambriccardo May 27, 2024
901545f
Change
iambriccardo May 27, 2024
e13348d
Change
iambriccardo May 27, 2024
8b44603
Change
iambriccardo May 27, 2024
a99c1ae
wip
jjbayer May 28, 2024
399814f
wip
jjbayer May 28, 2024
a2d7868
test
jjbayer May 28, 2024
8bfc141
Fix
iambriccardo May 28, 2024
7a2c98e
Fix
iambriccardo May 28, 2024
0d40b4c
Fix
iambriccardo May 28, 2024
b3194c9
Fix
iambriccardo May 28, 2024
53e68be
Fix
iambriccardo May 28, 2024
684b095
Update relay-pii/src/processor.rs
iambriccardo May 28, 2024
48aef40
Fix
iambriccardo May 28, 2024
b96d3d7
Merge branch 'riccardo/feat/add-scrubbing' of github.com:getsentry/re…
iambriccardo May 28, 2024
123f6be
Fix
iambriccardo May 28, 2024
24d772b
Fix
iambriccardo Jun 5, 2024
d776b99
Merge
iambriccardo Jun 5, 2024
815a230
Update CHANGELOG.md
iambriccardo Jun 6, 2024
26842af
Fix
iambriccardo Jun 6, 2024
eff37fe
Fix
iambriccardo Jun 6, 2024
685cf83
Fix
iambriccardo Jun 6, 2024
d4af9b6
Fix
iambriccardo Jun 6, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
82 changes: 37 additions & 45 deletions relay-pii/src/processor.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -111,33 +111,39 @@ impl<'a> Processor for PiiProcessor<'a> {
T: ProcessValue,
{
if is_pairlist(array) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I prefer a design where the check already returns you a prepared datastructure to visit:

if let Some(pairlist) = Pairlist::try_from(array) {
    pairlist.visit(self)
} else {
   visit_children
}

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We would just pipe through the array since this check is not doing anything with the data structure itself.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same here, this was the original design, but I didn't manage to create a lightweight (i.e. borrowing) pairlist from the visitor because the visitor (process_string) gets a string reference without a lifetime parameter. I'm still open to going that route though, either by changing the Processor framework to allow such a thing, or by simply accepting the cost and creating an owned PairList tentatively.

for annotated in array {
let mut mapped = std::mem::take(annotated).map_value(T::into_value);
for (index, annotated) in array.iter_mut().enumerate() {
let mut mapped = mem::take(annotated).map_value(T::into_value);

if let Some(Value::Array(ref mut pair)) = mapped.value_mut() {
let mut value = std::mem::take(&mut pair[1]);
let mut value = mem::take(&mut pair[1]);
let value_type = ValueType::for_field(&value);

let value_type = ValueType::for_field(&pair[1]);
// BEGIN copied from process_pairlist
if let Some(key_name) = &pair[0].as_str() {
// if the pair has no key name, we skip over it for PII stripping. It is
// still processed with index-based path in the invocation of
// `process_child_values`.
let entered =
state.enter_borrowed(key_name, state.inner_attrs(), value_type);

processor::process_value(&mut value, self, &entered)?;
// We enter the index of the array.
let index_state = state.enter_index(index, state.inner_attrs(), value_type);
// We enter the key of the first element of the array, since we treat it
// as a pair.
let key_state = index_state.enter_borrowed(
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do we need to enter both by index and by key? That seems semantically incorrect, because we want the same semantics for [["a", 1], ["b": 2]] as for {"a": 1, "b": 2}. With the current code, we treat the list like [{"a": 1}, {"b": 2}].

See also

relay/relay-pii/src/utils.rs

Lines 28 to 29 in d812b63

let entered = state.enter_borrowed(key_name, state.inner_attrs(), value_type);
processor::process_value(value, slf, &entered)?;

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh yeah, that's actually a good point. I mistakenly implemented it before. Good catch

key_name,
index_state.inner_attrs(),
value_type,
);
// We process the value with a state that "simulates" the first value of the
// array as if it was the key of a dictionary.
process_value(&mut value, self, &key_state)?;
}
// END copied from process_pairlist

// Put value back into pair
// Put value back into pair.
pair[1] = value;
}
// Put pair back into array

// Put pair back into array.
*annotated = T::from_value(mapped);
}

Ok(())
} else {
// default treatment.
// If we didn't find a pairlist, we can process child values as normal.
array.process_child_values(self, state)
}
}
Expand Down Expand Up @@ -244,12 +250,20 @@ impl<'a> Processor for PiiProcessor<'a> {
}

#[derive(Default)]
struct IsObjectPair {
struct PairArrayChecker {
is_pair: bool,
has_string_key: bool,
}

impl Processor for IsObjectPair {
impl PairArrayChecker {
/// Returns true if the visitor identified the supplied data as an array composed of
/// a key (string) and a value.
fn is_pair_array(&self) -> bool {
self.is_pair && self.has_string_key
}
}

impl Processor for PairArrayChecker {
fn process_array<T>(
&mut self,
value: &mut relay_protocol::Array<T>,
Expand All @@ -259,9 +273,8 @@ impl Processor for IsObjectPair {
where
T: ProcessValue,
{
self.is_pair = value.len() == 2;
self.is_pair = state.depth() == 0 && value.len() == 2;
if self.is_pair {
// Visit only key:
let value_type = ValueType::for_field(&value[0]);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
let value_type = ValueType::for_field(&value[0]);
let key_type = ValueType::for_field(&value[0]);

process_value(
&mut value[0],
Expand All @@ -287,9 +300,9 @@ impl Processor for IsObjectPair {

fn is_pairlist<T: ProcessValue>(array: &mut Array<T>) -> bool {
for element in array.iter_mut() {
let mut visitor = IsObjectPair::default();
let mut visitor = PairArrayChecker::default();
process_value(element, &mut visitor, ProcessingState::root()).ok();
if !visitor.is_pair || !visitor.has_string_key {
if !visitor.is_pair_array() {
return false;
}
}
Expand Down Expand Up @@ -1899,29 +1912,8 @@ mod tests {
[
Array(
[
Annotated(
String(
"",
),
Meta {
remarks: [
Remark {
ty: Removed,
rule_id: "@password:remove",
range: Some(
(
0,
0,
),
),
},
],
errors: [],
original_length: Some(
13,
),
original_value: None,
},
String(
"authorization",
),
Meta {
remarks: [
Expand Down
15 changes: 1 addition & 14 deletions relay-pii/src/snapshots/relay_pii__convert__tests__bearer_tokens_scrubbed.snap
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ expression: data
"request": {
"headers": [
[
"[Filtered]",
"AuthToken",
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The first element is now kept since we treat is as a key.

"[Filtered]"
]
]
Expand All @@ -36,19 +36,6 @@ expression: data
"request": {
"headers": {
"0": {
"0": {
"": {
"rem": [
[
"@password:filter",
"s",
0,
10
]
],
"len": 9
}
},
"1": {
"": {
"rem": [
Expand Down
Loading