Page MenuHomePhabricator
Differential D8546

Censor URI credentials in CommandException summaries
ClosedPublic
Actions

Authored by epriestley on Mar 15 2014, 3:53 PM.
Tags
None
Referenced Files
F14095457: D8546.diff
Mon, Nov 25, 9:26 PM
Unknown Object (File)
Sun, Nov 24, 9:01 PM
Unknown Object (File)
Thu, Nov 21, 6:31 PM
Unknown Object (File)
Thu, Nov 21, 1:52 PM
Unknown Object (File)
Sat, Nov 16, 5:23 PM
Unknown Object (File)
Wed, Nov 6, 8:51 PM
Unknown Object (File)
Mon, Oct 28, 2:01 AM
Unknown Object (File)
Oct 20 2024, 8:50 AM
View All Files
Subscribers
epriestley

Details

Reviewers
btrahan
Maniphest Tasks
T4347: Some Git error messages include the full URI, including credentials
Commits
rPHU44faddd048df: Censor URI credentials in CommandException summaries
Summary

Fixes T4347. Make a simple effort to mask credentials (e.g., arising from stderr on git fetch) when formatting command failures for user consumption.

This isn't perfect, but I think it's a net positive overall.

Test Plan

Added and executed unit tests. Also triggered a real exception:

EXCEPTION (CommandException): Command failed with error #1!
COMMAND
echo 'http://xxxxx@example.com' && false

STDOUT
http://xxxxx@example.com


STDERR
(empty)

Diff Detail

Repository
rPHU libphutil
Branch
censor3
Lint
Lint Passed
Unit
Tests Passed

Event Timeline

epriestley updated this revision to Diff 20275.Mar 15 2014, 3:53 PM
epriestley retitled this revision from to Censor URI credentials in CommandException summaries.
epriestley updated this object.
epriestley edited the test plan for this revision. (Show Details)
epriestley added a reviewer: btrahan.
epriestley added a task: T4347: Some Git error messages include the full URI, including credentials.
Herald added a subscriber: epriestley.Mar 15 2014, 3:53 PM
btrahan accepted this revision.Mar 15 2014, 4:20 PM
btrahan edited edge metadata.
This revision is now accepted and ready to land.Mar 15 2014, 4:20 PM
epriestley closed this revision.Mar 15 2014, 6:27 PM
epriestley updated this revision to Diff 20279.

Closed by commit rPHU44faddd048df (authored by @epriestley).

epriestley mentioned this in T9966: Diffusion credentials may be leaked under some circumstances.Dec 12 2015, 12:11 AM

Revision Contents
Changeset List

PathSize
src/
future/
exec/
20 lines
utils/
__tests__/
30 lines
16 lines

Diff 20275

View Options

src/future/exec/CommandException.php

Loading...
View Options

src/utils/__tests__/PhutilUtilsTestCase.php

Loading...
View Options

src/utils/utils.php

Loading...
Phabricator · Built by Phacility