Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

rpk bundle: Fix race condition in SASL credential redaction #24675

Merged
merged 1 commit into from
Jan 8, 2025
Merged

rpk bundle: Fix race condition in SASL credential redaction #24675

merged 1 commit into from
Jan 8, 2025
+38 −21

Conversation

r-vasquez
Copy link
Contributor

This PR addresses a bug where SASL credentials stored only in the redpanda.yaml could be redacted before being used for authentication in the debug bundle.

If the credentials were not provided elsewhere (e.g. via environment variables or flags), the redacted value would be used, leading to authentication errors due to invalid credentials.

Please note that this is an old mechanism for storing the credentials and it only affected debug bundle creation, this will not happen if profiles (or flags/env vars) are being used.

Backports Required

  • none - not a bug fix
  • none - this is a backport
  • none - issue does not exist in previous branches
  • none - papercut/not impactful enough to backport
  • v24.3.x
  • v24.2.x
  • v24.1.x

Release Notes

  • none

@r-vasquez
rpk bundle: Fix race condition in SASL credential redaction
57dc975 
This commit addresses a bug where SASL credentials
stored only in the redpanda.yaml could be redacted
before being used for authentication.

If the credentials were not provided elsewhere
(e.g. via environment variables or flags), the
redacted value would be used, leading to
authentication errors due to invalid credentials.
sago2k8
sago2k8 approved these changes Jan 8, 2025
View reviewed changes
Copy link
Contributor

@sago2k8 sago2k8 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@r-vasquez r-vasquez merged commit 4e71ed6 into redpanda-data:dev Jan 8, 2025
24 checks passed
@vbotbuildovich
Copy link
Collaborator

/backport v24.3.x

@vbotbuildovich
Copy link
Collaborator

/backport v24.2.x

@vbotbuildovich
Copy link
Collaborator

/backport v24.1.x

This was referenced Jan 8, 2025
Merged
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sago2k8 sago2k8 sago2k8 approved these changes

@twmb twmb Awaiting requested review from twmb twmb is a code owner

@gene-redpanda gene-redpanda Awaiting requested review from gene-redpanda gene-redpanda is a code owner

@Deflaimun Deflaimun Awaiting requested review from Deflaimun Deflaimun is a code owner

Assignees
No one assigned
Labels
area/rpk
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@r-vasquez @vbotbuildovich @sago2k8