hadoop-hdfs-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Mingliang Liu (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (HDFS-11048) Audit Log should escape control characters
Date Fri, 28 Oct 2016 19:50:58 GMT

     [ https://issues.apache.org/jira/browse/HDFS-11048?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel

Mingliang Liu updated HDFS-11048:
       Resolution: Fixed
     Hadoop Flags: Incompatible change,Reviewed  (was: Incompatible change)
    Fix Version/s: 3.0.0-alpha2
     Release Note: HDFS audit logs are formatted as individual lines, each of which has a
few of key-value pair fields. Some of the values come from client request (e.g. src, dst).
Before this patch the control characters including \t \n etc are not escaped in audit logs.
That may break lines unexpectedly or introduce additional table character (in the worst case,
both) within a field. Tools that parse audit logs had to deal with this case carefully. After
this patch, the control characters in the src/dst fields are escaped.
           Status: Resolved  (was: Patch Available)

Committed to {{trunk}} through {{branch-2.8}} branches. Thanks for the contribution [~ebadger].
Thanks for the discussion [~aw] and [~daryn].

> Audit Log should escape control characters
> ------------------------------------------
>                 Key: HDFS-11048
>                 URL: https://issues.apache.org/jira/browse/HDFS-11048
>             Project: Hadoop HDFS
>          Issue Type: Bug
>            Reporter: Eric Badger
>            Assignee: Eric Badger
>             Fix For: 2.8.0, 3.0.0-alpha2
>         Attachments: HDFS-11048.001.patch, HDFS-11048.002.patch
> Allowing control characters without escaping them allows for spoofing audit log entries
at worst and accidentally breaking log parsing at best.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: hdfs-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: hdfs-issues-help@hadoop.apache.org

View raw message