Closed JaySon-Huang closed 3 months ago
[APPROVALNOTIFIER] This PR is APPROVED
This pull-request has been approved by: JinheLin, Lloyd-Pottiger
The full list of commands accepted by this bot can be found here.
The pull request process is described here
Timeline:
2024-06-18 03:40:00.189331854 +0000 UTC m=+86126.674820681
: :ballot_box_with_check: agreed by JinheLin.2024-06-18 03:47:05.417885443 +0000 UTC m=+86551.903374275
: :ballot_box_with_check: agreed by Lloyd-Pottiger.
What problem does this PR solve?
Issue Number: close https://github.com/pingcap/tiflash/issues/8977
Problem Summary:
In the previous PR, https://github.com/pingcap/tiflash/issues/1277, tiflash support setting
security.redact_info_log
to be set as "true" / "false". If the configuration item is set to true, all user data in the log is replaced by?
.What is changed and how it works?
Mark sensitive data with
‹..›
. whensecurity.redact_info_log=marker
. Note that‹
is not "less"<
but U+2039. If the raw data contains‹
,‹
will be escaped to‹‹
, similar to›
.Introduce
Redact::toMarkerString
to handle marking sensitive data with‹..›
and escaping.Check List
Tests
Side effects
Documentation
Release note