Uploaded image for project: 'Spark'
  1. Spark
  2. SPARK-42946

Sensitive data could still be exposed by variable substitution

Log workAgile BoardRank to TopRank to BottomAttach filesAttach ScreenshotBulk Copy AttachmentsBulk Move AttachmentsVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete CommentsDelete
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 3.3.2, 3.4.0
    • 3.4.0
    • SQL
    • None

    Description

      Case 1 by SET syntax's key part

       

      Time taken: 0.017 seconds, Fetched 1 row(s)
      spark-sql> set ${spark.ssl.keyPassword}
               > ;
      abc    <undefined> 

      Case 2 by SELECT as String lit

       

      spark-sql> set spark.ssl.keyPassword;
      spark.ssl.keyPassword    *********(redacted)
      Time taken: 0.009 seconds, Fetched 1 row(s)
      spark-sql> select '${spark.ssl.keyPassword}'
               > ;
      abc
      

      Attachments

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            yao Kent Yao Assign to me
            yao Kent Yao
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment