Switch to built-in data structures in SecretsMasker #16424
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
potiuk
force-pushed
the
just_redact_primitive_values
branch
from
2bb0b92
to
ceab5ac
Compare
potiuk
changed the title
Using Iterable in SecretsMasker might cause undesireable side effect in case the object passed as log parameter is an iterable object and actually iterating it is not idempotent. For example in case of botocore, it passes StreamingBody object to log and this object is Iterable. However it can be iterated only once. Masking causes the object to be iterated during logging and results in empty body when actual results are retrieved later. This change only iterates list type of objects and recurrently redacts only dicts/strs/tuples/sets/lists which should never produce any side effects as all those objects do not have side effects when they are accessed. Fixes: apache#16148
potiuk
force-pushed
the
just_redact_primitive_values
branch
from
ceab5ac
to
af39d40
Compare
potiuk
commented
Jun 13, 2021
| return list(self.redact(subval) for subval in item) | ||
| else: | ||
| return item | ||
| # I think this should never happen, but it does not hurt to leave it just in case |
There was a problem hiding this comment.
I could not find an easy way to raise an exception any more after removing Iterable. I believe we cannot get the Exception if we do what we do now - i.e. walking the built-in structures in the way we do. But maybe there is some way an exception can be raised here?
There was a problem hiding this comment.
I think it’s technically possible if the user passes in some kind of custom subclass (e.g. class MyList(list): that overrides some weird stuff), so yeah let’s keep the exception handler there, but I don’t think it’s worthwhile to have a test for it.
potiuk
commented
Jun 13, 2021
| @@ -196,12 +195,11 @@ def redact(self, item: "RedactableItem", name: str = None) -> "RedactableItem": | |||
| elif isinstance(item, (tuple, set)): | |||
| # Turn set in to tuple! | |||
| return tuple(self.redact(subval) for subval in item) | |||
| elif isinstance(item, io.IOBase): | |||
There was a problem hiding this comment.
I think the only reason IOBase was added here specifically was that it was Iterable. This else is not needed now as this one will fall through the last return item anyway.
potiuk
commented
Jun 13, 2021
| @@ -72,22 +72,6 @@ def test_args(self, logger, caplog): | |||
|
|
|||
| assert caplog.text == "INFO Cannot connect to user:***\n" | |||
|
|
|||
| def test_non_redactable(self, logger, caplog): | |||
There was a problem hiding this comment.
Could not find a way to trigger Exception :)
There was a problem hiding this comment.
Inherit from list or dict should trigger it, but don't mind deleting this test
uranusjr
approved these changes
Jun 13, 2021
|
@ashb , does it look good for you? I think switching to list solves the problem entirely. |
ashb
reviewed
Jun 16, 2021
| @@ -165,7 +164,7 @@ def _redact_all(self, item: "RedactableItem") -> "RedactableItem": | |||
| elif isinstance(item, (tuple, set)): | |||
| # Turn set in to tuple! | |||
| return tuple(self._redact_all(subval) for subval in item) | |||
| elif isinstance(item, Iterable): | |||
| elif isinstance(item, list): | |||
| return list(self.redact(subval) for subval in item) | ||
| else: | ||
| return item | ||
| # I think this should never happen, but it does not hurt to leave it just in case |
| @@ -72,22 +72,6 @@ def test_args(self, logger, caplog): | |||
|
|
|||
| assert caplog.text == "INFO Cannot connect to user:***\n" | |||
|
|
|||
| def test_non_redactable(self, logger, caplog): | |||
There was a problem hiding this comment.
Inherit from list or dict should trigger it, but don't mind deleting this test
ashb
approved these changes
Jun 16, 2021
|
The PR most likely needs to run full matrix of tests because it modifies parts of the core of Airflow. However, committers might decide to merge it quickly and take the risk. If they don't merge it quickly - please rebase it to the latest main at your convenience, or amend the last commit of the PR, and push it with --force-with-lease. |
github-actions
bot
added
the
full tests needed
ashb
pushed a commit
that referenced
this pull request
Jun 22, 2021
Using Iterable in SecretsMasker might cause undesireable side effect in case the object passed as log parameter is an iterable object and actually iterating it is not idempotent. For example in case of botocore, it passes StreamingBody object to log and this object is Iterable. However it can be iterated only once. Masking causes the object to be iterated during logging and results in empty body when actual results are retrieved later. This change only iterates list type of objects and recurrently redacts only dicts/strs/tuples/sets/lists which should never produce any side effects as all those objects do not have side effects when they are accessed. Fixes: #16148 (cherry picked from commit d1d02b6)
kaxil
pushed a commit
to astronomer/airflow
that referenced
this pull request
Jun 22, 2021
Using Iterable in SecretsMasker might cause undesireable side effect in case the object passed as log parameter is an iterable object and actually iterating it is not idempotent. For example in case of botocore, it passes StreamingBody object to log and this object is Iterable. However it can be iterated only once. Masking causes the object to be iterated during logging and results in empty body when actual results are retrieved later. This change only iterates list type of objects and recurrently redacts only dicts/strs/tuples/sets/lists which should never produce any side effects as all those objects do not have side effects when they are accessed. Fixes: apache#16148 (cherry picked from commit d1d02b6) (cherry picked from commit 4c37aea)
kaxil
pushed a commit
to astronomer/airflow
that referenced
this pull request
Jun 23, 2021
Using Iterable in SecretsMasker might cause undesireable side effect in case the object passed as log parameter is an iterable object and actually iterating it is not idempotent. For example in case of botocore, it passes StreamingBody object to log and this object is Iterable. However it can be iterated only once. Masking causes the object to be iterated during logging and results in empty body when actual results are retrieved later. This change only iterates list type of objects and recurrently redacts only dicts/strs/tuples/sets/lists which should never produce any side effects as all those objects do not have side effects when they are accessed. Fixes: apache#16148 (cherry picked from commit d1d02b6) (cherry picked from commit 4c37aea) (cherry picked from commit 7e5968a)
kaxil
pushed a commit
to astronomer/airflow
that referenced
this pull request
Jun 23, 2021
Using Iterable in SecretsMasker might cause undesireable side effect in case the object passed as log parameter is an iterable object and actually iterating it is not idempotent. For example in case of botocore, it passes StreamingBody object to log and this object is Iterable. However it can be iterated only once. Masking causes the object to be iterated during logging and results in empty body when actual results are retrieved later. This change only iterates list type of objects and recurrently redacts only dicts/strs/tuples/sets/lists which should never produce any side effects as all those objects do not have side effects when they are accessed. Fixes: apache#16148 (cherry picked from commit d1d02b6) (cherry picked from commit 4c37aea) (cherry picked from commit 7e5968a) (cherry picked from commit 523bba0)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Using Iterable in SecretsMasker might cause undesireable
side effect in case the object passed as log parameter
is an iterable object and actually iterating it is not idempotent.
For example in case of botocore, it passes StreamingBody
object to log and this object is Iterable. However it can be
iterated only once. Masking causes the object to be iterated
during logging and results in empty body when actual results
are retrieved later.
This change only iterates list type of objects and recurrently
redacts only dicts/strs/tuples/sets/lists which should never
produce any side effects as all those objects do not have side
effects when they are accessed.
Fixes: #16148
^ Add meaningful description above
Read the Pull Request Guidelines for more information.
In case of fundamental code change, Airflow Improvement Proposal (AIP) is needed.
In case of a new dependency, check compliance with the ASF 3rd Party License Policy.
In case of backwards incompatible changes please leave a note in UPDATING.md.