Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-21670

Option to anonymize customer labels

    XMLWordPrintable

    Details

    • Epic Name:
      Bundle anonymization
    • Similar Issues:

      Description

      For sites with stringent security policies, there should be an option when generating a support bundle (or perhaps just a global setting applicable also to auto-generated bundles) that would search for mentions in all files of labels created by the customer which might reflect proprietary processes: job, folder, view, slave, and template names, slave labels, etc.

      The plugin would gather a list of all such labels, create randomized tokens, and produce a mapping so that a job AppBuild becomes Job_ayrzw. For labels with spaces or other special characters, which could have triggered bugs, the mapping should follow, so App ? Build should become Job_ayrzw ? X, and the mapping should also include encoded variants such as App%20%E2%86%92%20Build to Job_ayrzw%20%E2%86%92%20X and App%20%e2%86%92%20Build to Job_ayrzw%20%e2%86%92%20X.

      Then these substitutions would be applied to all files included in the support bundle, particularly log files and thread dumps.

      It is impossible to guarantee that customer text does not appear in some unusual context, e.g. an exception quoting a syntactically incorrect Groovy script, but these substitutions would sanitize the great majority of what the support bundle produces, and make it feasible for the customer to do a final inspection without needing to do much or any manual editing.

        Attachments

          Issue Links

            Activity

            jglick Jesse Glick created issue -
            aheritier Arnaud Héritier made changes -
            Field Original Value New Value
            Link This issue is blocking JENKINS-33091 [ JENKINS-33091 ]
            aheritier Arnaud Héritier made changes -
            Assignee Minudika Malshan [ minudika ]
            aheritier Arnaud Héritier made changes -
            Issue Type New Feature [ 2 ] Story [ 10002 ]
            aheritier Arnaud Héritier made changes -
            Labels gsoc gsoc-2016
            aheritier Arnaud Héritier made changes -
            Environment originally RM-1956
            aheritier Arnaud Héritier made changes -
            Issue Type Story [ 10002 ] Epic [ 10001 ]
            aheritier Arnaud Héritier made changes -
            Epic Name Bundle anonymization
            minudika Minudika Malshan made changes -
            Assignee Minudika Malshan [ minudika ] Steven Christou [ schristou ]
            minudika Minudika Malshan made changes -
            Assignee Steven Christou [ schristou ] Minudika Malshan [ minudika ]
            rtyler R. Tyler Croy made changes -
            Workflow JNJira [ 153669 ] JNJira + In-Review [ 178568 ]
            jglick Jesse Glick made changes -
            Link This issue is duplicated by SECURITY-424 [ SECURITY-424 ]
            aheritier Arnaud Héritier made changes -
            Link This issue is related to JENKINS-42558 [ JENKINS-42558 ]
            rysteboe Rebecca Ysteboe made changes -
            Assignee Minudika Malshan [ minudika ] Rebecca Ysteboe [ rysteboe ]
            rysteboe Rebecca Ysteboe made changes -
            Status Open [ 1 ] In Progress [ 3 ]
            cloudbees CloudBees Inc. made changes -
            Remote Link This issue links to "CloudBees Internal OSS-1391 (Web Link)" [ 18718 ]
            rysteboe Rebecca Ysteboe made changes -
            Remote Link This issue links to "PR 132 (Web Link)" [ 19749 ]
            jvz Matt Sicker made changes -
            Assignee Rebecca Ysteboe [ rysteboe ] Matt Sicker [ jvz ]
            jvz Matt Sicker made changes -
            jvz Matt Sicker made changes -
            Status In Progress [ 3 ] In Review [ 10005 ]
            cloudbees CloudBees Inc. made changes -
            Remote Link This issue links to "CloudBees Internal OSS-2705 (Web Link)" [ 20678 ]
            cloudbees CloudBees Inc. made changes -
            Remote Link This issue links to "CloudBees Internal CJP-8820 (Web Link)" [ 20695 ]
            cloudbees CloudBees Inc. made changes -
            Remote Link This issue links to "CloudBees Internal FNDN-164 (Web Link)" [ 20726 ]
            jglick Jesse Glick made changes -
            Remote Link This issue links to "PR 144 (Web Link)" [ 21110 ]
            dnusbaum Devin Nusbaum made changes -
            Resolution Fixed [ 1 ]
            Status In Review [ 10005 ] Resolved [ 5 ]
            jvz Matt Sicker made changes -
            Remote Link This issue links to "Wiki Page (Jenkins Wiki)" [ 21135 ]
            jvz Matt Sicker made changes -
            Status Resolved [ 5 ] Closed [ 6 ]
            cloudbees CloudBees Inc. made changes -
            Remote Link This issue links to "CloudBees Internal CLTS-3193 (Web Link)" [ 21137 ]
            aheritier Arnaud Héritier made changes -
            Link This issue is blocking JENKINS-42558 [ JENKINS-42558 ]
            aheritier Arnaud Héritier made changes -
            Link This issue relates to JENKINS-53184 [ JENKINS-53184 ]
            fcojfernandez Francisco Fernández made changes -
            Link This issue is related to JENKINS-54999 [ JENKINS-54999 ]

              People

              Assignee:
              jvz Matt Sicker
              Reporter:
              jglick Jesse Glick
              Votes:
              2 Vote for this issue
              Watchers:
              11 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: