[jira] [Comment Edited] (IGNITE-16936) Incorrect DML syntax error message contains sensitive information
[ https://issues.apache.org/jira/browse/IGNITE-16936?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17542069#comment-17542069 ] Yury Gerzhedovich edited comment on IGNITE-16936 at 5/25/22 2:12 PM: - [~AldoRaine] the GNITE-17001 about not only for 'Duplicate key during INSERT' event, please check patch for the ticket and description. was (Author: jooger): [~AldoRaine] the GNITE-17001 not only 'Duplicate key during INSERT', please check patch for the ticket and description. > Incorrect DML syntax error message contains sensitive information > - > > Key: IGNITE-16936 > URL: https://issues.apache.org/jira/browse/IGNITE-16936 > Project: Ignite > Issue Type: Bug >Reporter: Luchnikov Alexander >Priority: Major > Labels: ise > Attachments: > IGNITE-16936_Ignore_IGNITE_TO_STRING_INCLUDE_SENSITIVE_in_wrong_syntax_DML_error_message_-.patch > > > Incorrect DML syntax error message contains sensitive information. > Regardless of the value of IGNITE_TO_STRING_INCLUDE_SENSITIVE. > Reproducer > [^IGNITE-16936_Ignore_IGNITE_TO_STRING_INCLUDE_SENSITIVE_in_wrong_syntax_DML_error_message_-.patch] > show what SENSITIVE contains in message. -- This message was sent by Atlassian Jira (v8.20.7#820007)
[jira] [Comment Edited] (IGNITE-16936) Incorrect DML syntax error message contains sensitive information
[ https://issues.apache.org/jira/browse/IGNITE-16936?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17534897#comment-17534897 ] Yury Gerzhedovich edited comment on IGNITE-16936 at 5/11/22 1:23 PM: - As a solution could be don't print any parsing errors to server logs. Just send to client. I think it will be good solution even don't see to the security part. We shouldn't log user mistakes was (Author: jooger): As a solution could be don't print any parsing errors to server logs. Just send to client. > Incorrect DML syntax error message contains sensitive information > - > > Key: IGNITE-16936 > URL: https://issues.apache.org/jira/browse/IGNITE-16936 > Project: Ignite > Issue Type: Bug >Reporter: Luchnikov Alexander >Priority: Major > Labels: ise > Attachments: > IGNITE-16936_Ignore_IGNITE_TO_STRING_INCLUDE_SENSITIVE_in_wrong_syntax_DML_error_message_-.patch > > > Incorrect DML syntax error message contains sensitive information. > Regardless of the value of IGNITE_TO_STRING_INCLUDE_SENSITIVE. > Reproducer > [^IGNITE-16936_Ignore_IGNITE_TO_STRING_INCLUDE_SENSITIVE_in_wrong_syntax_DML_error_message_-.patch] > show what SENSITIVE contains in message. -- This message was sent by Atlassian Jira (v8.20.7#820007)
[jira] [Comment Edited] (IGNITE-16936) Incorrect DML syntax error message contains sensitive information
[ https://issues.apache.org/jira/browse/IGNITE-16936?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17532851#comment-17532851 ] Vladimir Steshin edited comment on IGNITE-16936 at 5/6/22 1:11 PM: --- As far as I see, this comes from H2 parser. As a workaround, other way to execute queries might be considered. was (Author: vladsz83): As far as I see, this comes from H2 parser. Might be there is some other way to execute the queries. > Incorrect DML syntax error message contains sensitive information > - > > Key: IGNITE-16936 > URL: https://issues.apache.org/jira/browse/IGNITE-16936 > Project: Ignite > Issue Type: Bug >Reporter: Luchnikov Alexander >Priority: Major > Labels: ise > Attachments: > IGNITE-16936_Ignore_IGNITE_TO_STRING_INCLUDE_SENSITIVE_in_wrong_syntax_DML_error_message_-.patch > > > Incorrect DML syntax error message contains sensitive information. > Regardless of the value of IGNITE_TO_STRING_INCLUDE_SENSITIVE. > Reproducer > [^IGNITE-16936_Ignore_IGNITE_TO_STRING_INCLUDE_SENSITIVE_in_wrong_syntax_DML_error_message_-.patch] > show what SENSITIVE contains in message. -- This message was sent by Atlassian Jira (v8.20.7#820007)
