Fix redacting secrets in context exceptions. #17618
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
@kaxil @jhtimmins - we might want to include that in 2.1.3 |
potiuk
force-pushed
the
fix-secret-masking-in-context-exceptions
branch
from
00981d2
to
2a047fd
Compare
potiuk
changed the title
potiuk
force-pushed
the
fix-secret-masking-in-context-exceptions
branch
from
2a047fd
to
b8e43d9
Compare
ashb
approved these changes
Aug 14, 2021
github-actions
bot
added
the
full tests needed
|
The PR most likely needs to run full matrix of tests because it modifies parts of the core of Airflow. However, committers might decide to merge it quickly and take the risk. If they don't merge it quickly - please rebase it to the latest main at your convenience, or amend the last commit of the PR, and push it with --force-with-lease. |
ashb
reviewed
Aug 14, 2021
ashb
requested changes
Aug 14, 2021
try:
try:
raise Exception("user:pass")
except Exception as e:
# This is how you get an exception with a __cause__
raise Exception("two") from e
except Exception as e:
err = e |
Secret masking did not work in implicit and explicit context exceptions (see https://www.python.org/dev/peps/pep-3134/) When there was a `try/except/raise` sequence, or `raise ... from` exception - the original exceptions were not redacted. Related: apache#17604
potiuk
force-pushed
the
fix-secret-masking-in-context-exceptions
branch
from
b8e43d9
to
b3f878a
Compare
|
Added |
|
Interesting thing... Actually that would work even before latest change, because in this case, the "cause" is also in "context": But this wuldn't work: |
ashb
approved these changes
Aug 14, 2021
|
Ahh cause and context are the same object in some cases: |
ashb
reviewed
Aug 14, 2021
Co-authored-by: Ash Berlin-Taylor <ash_github@firemirror.com>
potiuk
added a commit
that referenced
this pull request
Aug 14, 2021
* Fix redacting secrets in context exceptions. Secret masking did not work in implicit and explicit context exceptions (see https://www.python.org/dev/peps/pep-3134/) When there was a `try/except/raise` sequence, or `raise ... from` exception - the original exceptions were not redacted. Related: #17604 (cherry picked from commit 6df3ee7)
|
I cherry-picked that one to v2-1 @jhtimmins @kaxil |
kaxil
pushed a commit
that referenced
this pull request
Aug 17, 2021
* Fix redacting secrets in context exceptions. Secret masking did not work in implicit and explicit context exceptions (see https://www.python.org/dev/peps/pep-3134/) When there was a `try/except/raise` sequence, or `raise ... from` exception - the original exceptions were not redacted. Related: #17604 (cherry picked from commit 6df3ee7)
jhtimmins
pushed a commit
that referenced
this pull request
Aug 17, 2021
* Fix redacting secrets in context exceptions. Secret masking did not work in implicit and explicit context exceptions (see https://www.python.org/dev/peps/pep-3134/) When there was a `try/except/raise` sequence, or `raise ... from` exception - the original exceptions were not redacted. Related: #17604 (cherry picked from commit 6df3ee7)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Secret masking did not work in implicit and
explicit context exceptions (see
https://www.python.org/dev/peps/pep-3134/)
When there was a
try/except/raisesequence,or
raise ... fromexception - the originalexceptions were not redacted.
Related: #17604
^ Add meaningful description above
Read the Pull Request Guidelines for more information.
In case of fundamental code change, Airflow Improvement Proposal (AIP) is needed.
In case of a new dependency, check compliance with the ASF 3rd Party License Policy.
In case of backwards incompatible changes please leave a note in UPDATING.md.