Uploaded image for project: 'Spark'
  1. Spark
  2. SPARK-33504

The application log in the Spark history server contains sensitive attributes such as password that should be redated instead of plain text

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 3.0.1
    • 3.0.3, 3.1.0
    • Spark Core
    • None
    • Spark 3.0.1

    Description

      We found the secure attributes in SparkListenerJobStart and SparkListenerStageSubmitted events would not been redated, resulting in sensitive attributes can be viewd directly.

      Attachments

        1. SparkListernerJobStart-wrong.png
          64 kB
          huangkunlun
        2. SparkListenerStageSubmitted-log-wrong.png
          62 kB
          huangkunlun
        3. SparkListenerEnvironmentUpdate log shows ok.png
          46 kB
          huangkunlun

        Activity

          People

            echohlne huangkunlun
            echohlne huangkunlun
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: