[CSHARP-3521] Security sensitive commands are not redacted in command started events - MongoDB Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Major - P3
Resolution: Fixed
Affects Version/s: 2.11.0, 2.12.0
Fix Version/s: 2.12.2
Component/s: Diagnostics
Labels:
None

Backwards Compatibility:
Minor Change

Description

The commit for ~~CSHARP-3032~~ introduced an undetected regression to security-sensitive command redaction when sending command started events. As a result, the following commands are no longer redacted:

isMaster (with speculativeAuthenticate)
saslStart
saslContinue
createUser
updateUser

Attachments

Activity

People

Assignee:: Robert Stam

Reporter:: Jeffrey Yemin

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: Apr 01 2021 04:26:44 PM UTC

Updated:: Apr 07 2021 07:11:13 PM UTC

Resolved:: Apr 06 2021 04:19:57 PM UTC