Merge "Mask passwords included without quotes at the ends of commands"

2014-06-27 21:34:21 +00:00
parent a2509082e9 97acd1f840
commit 4b71cbb3d9
2 changed files with 11 additions and 1 deletions
--- a/openstack/common/log.py
+++ b/openstack/common/log.py
@@ -62,7 +62,7 @@ _FORMAT_PATTERNS = [r'(%(key)s\s*[=]\s*[\"\']).*?([\"\'])',
                    r'([\'"].*?%(key)s[\'"]\s*:\s*u?[\'"]).*?([\'"])',
                    r'([\'"].*?%(key)s[\'"]\s*,\s*\'--?[A-z]+\'\s*,\s*u?[\'"])'
                    '.*?([\'"])',
-                    r'(%(key)s\s*--?[A-z]+\s*).*?([\s])']
+                    r'(%(key)s\s*--?[A-z]+\s*)\S+(\s*)']

 for key in _SANITIZE_KEYS:
    for pattern in _FORMAT_PATTERNS:
--- a/tests/unit/test_log.py
+++ b/tests/unit/test_log.py
@@ -907,6 +907,12 @@ class MaskPasswordTestCase(test_base.BaseTestCase):
                    "'***', 'nomask'")
        self.assertEqual(expected, log.mask_password(payload))

+        payload = ("test = 'node.session.auth.password', '--password', "
+                   "'mypassword'")
+        expected = ("test = 'node.session.auth.password', '--password', "
+                    "'***'")
+        self.assertEqual(expected, log.mask_password(payload))
+
        payload = "test = node.session.auth.password -v mypassword nomask"
        expected = "test = node.session.auth.password -v *** nomask"
        self.assertEqual(expected, log.mask_password(payload))
@@ -916,3 +922,7 @@ class MaskPasswordTestCase(test_base.BaseTestCase):
        expected = ("test = node.session.auth.password --password *** "
                    "nomask")
        self.assertEqual(expected, log.mask_password(payload))
+
+        payload = ("test = node.session.auth.password --password mypassword")
+        expected = ("test = node.session.auth.password --password ***")
+        self.assertEqual(expected, log.mask_password(payload))