open-source-mirrors
/
Radarr
mirror of https://github.com/Radarr/Radarr
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '64382e13a4'
${ noResults }
Radarr/src/NzbDrone.Common/Instrumentation/CleanseLogMessage.cs

93 lines
4.5 KiB
Raw Normal View History Unescape

Cleanse remote IP Address from trace log file
5 years ago
using System;
using System.Linq;
using System.Net;
Fixed: Resolved performance issue in the log cleaning method when running trace level.
10 years ago
using System.Text.RegularExpressions;
Moved Extension methods in common to subfolder
10 years ago
using NzbDrone.Common.Extensions;
Fixed: API keys should be more reliably cleansed from the logs
11 years ago
namespace NzbDrone.Common.Instrumentation
{
public class CleanseLogMessage
{
Fixed: Jackett apikey cleaned from log again. (#2177)
7 years ago
private static readonly Regex[] CleansingRules = new[]
Added additional rules to cleanse confidential details from log file messages.
10 years ago
{
// Url
Fixed: Jackett apikey cleaned from log again. (#2177)
7 years ago
new Regex(@"(?<=\?|&)(apikey|token|passkey|auth|authkey|user|uid|api|[a-z_]*apikey)=(?<secret>[^&=]+?)(?= |&|$)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
New: Implemented Torrent Download Clients: uTorrent, Transmission and Deluge. And several public and private Torrent Indexers.
11 years ago
new Regex(@"(?<=\?|&)[^=]*?(username|password)=(?<secret>[^&=]+?)(?= |&|$)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
Fixed: Additional log cleanse Regex to keep even more sensitive information out of the logs. fixes #1051
9 years ago
new Regex(@"torrentleech\.org/(?!rss)(?<secret>[0-9a-z]+)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
new Regex(@"torrentleech\.org/rss/download/[0-9]+/(?<secret>[0-9a-z]+)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
Fixed: Resolved performance issue in the log cleaning method when running trace level.
10 years ago
new Regex(@"iptorrents\.com/[/a-z0-9?&;]*?(?:[?&;](u|tp)=(?<secret>[^&=;]+?))+(?= |;|&|$)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
Fixed Regex mistake in CleanLogMessage.
9 years ago
new Regex(@"/fetch/[a-z0-9]{32}/(?<secret>[a-z0-9]{32})", RegexOptions.Compiled),
Cleanse getnzb url
5 years ago
new Regex(@"getnzb.*?(?<=\?|&)(r)=(?<secret>[^&=]+?)(?= |&|$)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
Remove trailing whitespace
5 years ago
New: Implemented Torrent Download Clients: uTorrent, Transmission and Deluge. And several public and private Torrent Indexers.
11 years ago
// Path
new Regex(@"""C:\\Users\\(?<secret>[^\""]+?)(\\|$)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
new Regex(@"""/home/(?<secret>[^/""]+?)(/|$)", RegexOptions.Compiled | RegexOptions.IgnoreCase),
Added additional rules to cleanse confidential details from log file messages.
10 years ago
// NzbGet
new Regex(@"""Name""\s*:\s*""[^""]*(username|password)""\s*,\s*""Value""\s*:\s*""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
// Sabnzbd
new Regex(@"""[^""]*(username|password|api_?key|nzb_key)""\s*:\s*""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
New: Implemented Torrent Download Clients: uTorrent, Transmission and Deluge. And several public and private Torrent Indexers.
11 years ago
new Regex(@"""email_(account|to|from|pwd)""\s*:\s*""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
// uTorrent
Fixed Regex mistake in CleanLogMessage.
9 years ago
new Regex(@"\[""[a-z._]*(username|password)"",\d,""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
New: Implemented Torrent Download Clients: uTorrent, Transmission and Deluge. And several public and private Torrent Indexers.
11 years ago
new Regex(@"\[""(boss_key|boss_key_salt|proxy\.proxy)"",\d,""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
Fixed Deluge and BTN cleanse password logic.
9 years ago
// Deluge
new Regex(@"auth.login\(""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
New: Implemented Torrent Download Clients: uTorrent, Transmission and Deluge. And several public and private Torrent Indexers.
11 years ago
// BroadcastheNet
new Regex(@"""?method""?\s*:\s*""(getTorrents)"",\s*""?params""?\s*:\s*\[\s*""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
Fixed Deluge and BTN cleanse password logic.
9 years ago
new Regex(@"getTorrents\(""(?<secret>[^""]+?)""", RegexOptions.Compiled | RegexOptions.IgnoreCase),
New: Implemented Torrent Download Clients: uTorrent, Transmission and Deluge. And several public and private Torrent Indexers.
11 years ago
new Regex(@"(?<=\?|&)(authkey|torrent_pass)=(?<secret>[^&=]+?)(?=""|&|$)", RegexOptions.Compiled | RegexOptions.IgnoreCase)
Added additional rules to cleanse confidential details from log file messages.
10 years ago
};
Cleanse remote IP Address from trace log file
5 years ago
private static readonly Regex CleanseRemoteIPRegex = new Regex(@"(?:Auth-\w+(?<!Failure|Unauthorized) ip|from) (\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})", RegexOptions.Compiled);
Fixed: API keys should be more reliably cleansed from the logs
11 years ago
public static string Cleanse(string message)
{
if (message.IsNullOrWhiteSpace())
{
return message;
}
Added additional rules to cleanse confidential details from log file messages.
10 years ago
foreach (var regex in CleansingRules)
{
Fixed: Resolved performance issue in the log cleaning method when running trace level.
10 years ago
message = regex.Replace(message, m =>
{
var value = m.Value;
foreach (var capture in m.Groups["secret"].Captures.OfType<Capture>().Reverse())
{
Replaced <removed> with (removed) for the log cleanser so it doesn't mess with forums.
9 years ago
value = value.Replace(capture.Index - m.Index, capture.Length, "(removed)");
Fixed: Resolved performance issue in the log cleaning method when running trace level.
10 years ago
}
return value;
});
Added additional rules to cleanse confidential details from log file messages.
10 years ago
}
Cleanse remote IP Address from trace log file
5 years ago
message = CleanseRemoteIPRegex.Replace(message, CleanseRemoteIP);
Added additional rules to cleanse confidential details from log file messages.
10 years ago
return message;
Fixed: API keys should be more reliably cleansed from the logs
11 years ago
}
Cleanse remote IP Address from trace log file
5 years ago
private static string CleanseRemoteIP(Match match)
{
var group = match.Groups[1];
var valueAll = match.Value;
var valueIP = group.Value;
if (IPAddress.TryParse(valueIP, out var address) && !address.IsLocalAddress())
{
var prefix = match.Value.Substring(0, group.Index - match.Index);
var postfix = match.Value.Substring(group.Index + group.Length - match.Index);
var items = valueIP.Split('.');
return $"{prefix}{items[0]}.*.*.{items[3]}{postfix}";
}
return match.Value;
}
Fixed: API keys should be more reliably cleansed from the logs
11 years ago
}
}