acouzens
/
open5gs
1
0
Fork 1
Code Issues Pull Requests 1 Projects Releases Wiki Activity

mask mongo credentials when logging (#827)

This commit is contained in:
Charlie Lewis 2021-03-03 06:06:31 -08:00 committed by GitHub
parent 2f2178595d
commit 0790674c14
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 30 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
lib/dbi/ogs-mongoc.c
View File

@ -20,9 +20,11 @@
#include <mongoc.h> #include <mongoc.h>
#include "ogs-dbi.h" #include "ogs-dbi.h"
#include <string.h>
int __ogs_dbi_domain; int __ogs_dbi_domain;
static char masked_db_uri[255];
static ogs_mongoc_t self; static ogs_mongoc_t self;
/* /*
@ -48,6 +50,30 @@ ogs_mongoc_mongoc_client_get_server_status (mongoc_client_t *client, /* IN */
return ret; return ret;
} }
const char* ogs_mask_db_uri(const char *db_uri)
{
bzero(masked_db_uri, sizeof(masked_db_uri));
if (strnlen(db_uri, sizeof(masked_db_uri)) == sizeof(masked_db_uri)) {
return db_uri;
}
char *token = strtok((char *)db_uri, "@");
if (strlen(token) > 1) {
strcpy((char *)masked_db_uri, "mongodb://*****:*****@");
while (token != NULL) {
token = strtok(NULL, "@");
if (token != NULL) {
strcat((char *)masked_db_uri, token);
}
}
} else {
// no credentials provided, no need to mask anything
return db_uri;
}
return masked_db_uri;
}
int ogs_mongoc_init(const char *db_uri) int ogs_mongoc_init(const char *db_uri)
{ {
bson_t reply; bson_t reply;
@ -69,7 +95,7 @@ int ogs_mongoc_init(const char *db_uri)
self.client = mongoc_client_new(db_uri); self.client = mongoc_client_new(db_uri);
if (!self.client) { if (!self.client) {
ogs_error("Failed to parse DB URI [%s]", db_uri); ogs_error("Failed to parse DB URI [%s]", ogs_mask_db_uri(db_uri));
return OGS_ERROR; return OGS_ERROR;
} }
@ -88,7 +114,7 @@ int ogs_mongoc_init(const char *db_uri)
if (!ogs_mongoc_mongoc_client_get_server_status( if (!ogs_mongoc_mongoc_client_get_server_status(
self.client, NULL, &reply, &error)) { self.client, NULL, &reply, &error)) {
ogs_warn("Failed to connect to server [%s]", db_uri); ogs_warn("Failed to connect to server [%s]", ogs_mask_db_uri(db_uri));
return OGS_RETRY; return OGS_RETRY;
} }
@ -96,7 +122,7 @@ int ogs_mongoc_init(const char *db_uri)
bson_destroy(&reply); bson_destroy(&reply);
ogs_info("MongoDB URI: '%s'", db_uri); ogs_info("MongoDB URI: '%s'", ogs_mask_db_uri(db_uri));
return OGS_OK; return OGS_OK;
} }

1
lib/dbi/ogs-mongoc.h
View File

@ -42,6 +42,7 @@ typedef struct ogs_mongoc_s {
} collection; } collection;
} ogs_mongoc_t; } ogs_mongoc_t;
const char* ogs_mask_db_uri(const char *db_uri);
int ogs_mongoc_init(const char *db_uri); int ogs_mongoc_init(const char *db_uri);
void ogs_mongoc_final(void); void ogs_mongoc_final(void);
ogs_mongoc_t *ogs_mongoc(void); ogs_mongoc_t *ogs_mongoc(void);