[SERVER-78082] Ensure $queryStats HMAC key argument is not logged Created: 14/Jun/23  Updated: 29/Oct/23  Resolved: 26/Jul/23

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 7.1.0-rc0

Type: Improvement Priority: Major - P3
Reporter: Charlie Swanson Assignee: William Qian
Resolution: Fixed Votes: 0
Labels: customer-security-and-privacy-considerations
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
is depended on by SERVER-85105 Tracking: PM-2885 Milestone 0 Closed
is depended on by DRIVERS-2687 Add BSON Binary Data subtype Sensitive Implementing
Gantt Dependency
Assigned Teams:
Query Optimization
Backwards Compatibility: Fully Compatible
Sprint: QO 2023-06-26, QO 2023-07-10, QO 2023-07-24, QO 2023-08-07
Participants:

 Description   

Current proposal is to use BinData subtype 6 to pass this argument, which should ensure it is always redacted in the logs.



 Comments   
Comment by Githook User [ 26/Jul/23 ]

Author:

{'name': 'William Qian', 'email': 'william.qian@mongodb.com', 'username': 'wqian94'}

Message: SERVER-78082 Set query stats HMAC key argument to BinData type Sensitive
Branch: master
https://github.com/mongodb/mongo/commit/e6164c564518c8b0fb8a34f03dbf032293973d1a

Generated at Thu Feb 08 06:37:25 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.