flink icon indicating copy to clipboard operation
flink copied to clipboard
verified publisher icon apache

FLINK-37953: Add OBF password obfuscation support for SSL configurations

Open basapuram-kumar opened this issue 6 months ago • 2 comments

What is the purpose of the change

This PR implements OBF password obfuscation support for Flink's SSL configurations to eliminate plaintext password exposure in configuration files

Brief change log

New Features: Added support for Jetty OBF password obfuscation format (OBF:...) for all SSL-related passwords:

  1. keystore-password
  2. key-password
  3. truststore-password

Changes

  • Modified SSLUtils to automatically detect and decrypt OBF passwords
  • Updated configuration validation to handle both plaintext and OBF formats

Backwards Compatibility:

  • Maintained full support for existing plaintext passwords
  • No configuration format changes required
  • History server Web server UI launches as usual in this OBF mode too.

Verifying this change

With OBF password obfuscation way, the functionality of the Flink's works seamlessly and the history server webUI also launches in SSL mode same as the Plain-text mode.

(Please pick either of the following options)

This change is a trivial rework / code cleanup without any test coverage.

basapuram-kumar avatar Jun 13 '25 07:06 basapuram-kumar

CI report:

  • 6f3beaba989b196ffb73c159357d579b8f715f86 Azure: FAILURE
Bot commands The @flinkbot bot supports the following commands:
  • @flinkbot run azure re-run the last Azure build

flinkbot avatar Jun 13 '25 07:06 flinkbot

Adding OBF password support significantly improves Flink's security by eliminating plaintext password exposure in config files.

I don't see any increase because the stolen obfuscated passwords can be de-obfuscated on any machine which has java compiler. There are solutions which can be added to decrease the attack surface but that:

  • is encryption and not reversible obfuscation
  • has KMS system involved
  • has pluggable implementations

gaborgsomogyi avatar Jun 13 '25 09:06 gaborgsomogyi

This PR is being marked as stale since it has not had any activity in the last 90 days. If you would like to keep this PR alive, please leave a comment asking for a review. If the PR has merge conflicts, update it with the latest from the base branch.

If you are having difficulty finding a reviewer, please reach out to the community, contact details can be found here: https://flink.apache.org/what-is-flink/community/

If this PR is no longer valid or desired, please feel free to close it. If no activity occurs in the next 30 days, it will be automatically closed.

github-actions[bot] avatar Sep 12 '25 06:09 github-actions[bot]

This PR has been closed since it has not had any activity in 120 days. If you feel like this was a mistake, or you would like to continue working on it, please feel free to re-open the PR and ask for a review.

github-actions[bot] avatar Oct 13 '25 06:10 github-actions[bot]