[SERVER-74962] Omit sensitive information for QE currentOp operations Created: 16/Mar/23  Updated: 29/Oct/23  Resolved: 04/Apr/23

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 7.0.0-rc0

Type: Task Priority: Major - P3
Reporter: Mark Benvenuto Assignee: Mark Benvenuto
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Backwards Compatibility: Fully Compatible
Sprint: Security 2023-04-03, Security 2023-04-17
Participants:

 Description   
  • Omit the information about the current operation from the currentOp command and $currentOp aggregation stage
  • The command will report information about which client is connected. This means fields below “command” will not be reported.  Command will be redacted such that only the first element, $comment and $db exist. If the command is a getMore, the collection field will not be omitted since it is critical for BI connector to kill connections. Details in appendix below.
  • On MongoD & MongoS, information will be omitted for QE operations and QE state collections.

If OpDebug::shouldOmitDiagnosticInformation, then CurOp::reportCurrentOpForClient should filter the information as described above.



 Comments   
Comment by Githook User [ 05/Apr/23 ]

Author:

{'name': 'Adrian Gonzalez', 'email': 'adriangonzalezmontemayor@gmail.com', 'username': 'adriangzz'}

Message: SERVER-74962 Omit sensitive information for QE currentOp operations
Branch: master
https://github.com/mongodb/mongo/commit/f1c6cdc65e7dce60bbe0a049906ec18421dc3510

Generated at Thu Feb 08 06:28:59 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.