Remove CodeQL errors

2022-01-12 16:24:54 +01:00 · 2022-01-12 16:24:54 +01:00 · 4032d4f66a
parent e0a0fdc984
commit 4032d4f66a
4 changed files with 6 additions and 3 deletions
--- a/client/v2/curl.go
+++ b/client/v2/curl.go
@ -60,7 +60,7 @@ func printcURL(req *http.Request) error {
 		command += fmt.Sprintf(" -d %q", string(b))
 	}

-	fmt.Fprintf(os.Stderr, "cURL Command: %s\n", command)
+	fmt.Fprintf(os.Stderr, "cURL Command: %q\n", command)

 	// reset body
 	body := bytes.NewBuffer(b)
--- a/etcdutl/etcdutl/backup_command.go
+++ b/etcdutl/etcdutl/backup_command.go
@ -286,7 +286,6 @@ func saveDB(lg *zap.Logger, destDB, srcDB string, idx uint64, term uint64, desir
 		case src = <-ch:
 		case <-time.After(time.Second):
 			lg.Fatal("timed out waiting to acquire lock on", zap.String("srcDB", srcDB))
-			src = <-ch
 		}
 		defer src.Close()

--- a/tools/etcd-dump-db/backend.go
+++ b/tools/etcd-dump-db/backend.go
@ -122,7 +122,7 @@ func authUsersDecoder(k, v []byte) {
 	if err != nil {
 		panic(err)
 	}
-	fmt.Printf("user=%q, roles=%q, password=%q, option=%v\n", user.Name, user.Roles, string(user.Password), user.Options)
+	fmt.Printf("user=%q, roles=%q, option=%v\n", user.Name, user.Roles, user.Options)
 }

 func iterateBucket(dbPath, bucket string, limit uint64, decode bool) (err error) {
--- a/tools/etcd-dump-logs/main.go
+++ b/tools/etcd-dump-logs/main.go
@ -232,6 +232,10 @@ type EntryPrinter func(e raftpb.Entry)
 func printInternalRaftRequest(entry raftpb.Entry) {
 	var rr etcdserverpb.InternalRaftRequest
 	if err := rr.Unmarshal(entry.Data); err == nil {
+		// Ensure we don't log user password
+		if rr.AuthUserChangePassword != nil && rr.AuthUserChangePassword.Password != "" {
+			rr.AuthUserChangePassword.Password = "<value removed>"
+		}
 		fmt.Printf("%4d\t%10d\tnorm\t%s", entry.Term, entry.Index, rr.String())
 	}
 }