Skip to content

Comments

[WIP] Add secure error and exception handling framework#3035

Draft
mathur07 wants to merge 1 commit intotektoncd:mainfrom
mathur07:secure-error-exception-handling
Draft

[WIP] Add secure error and exception handling framework#3035
mathur07 wants to merge 1 commit intotektoncd:mainfrom
mathur07:secure-error-exception-handling

Conversation

@mathur07
Copy link

@mathur07 mathur07 commented Dec 2, 2025

Implements secure error handling utilities to prevent sensitive information leakage through error messages, logs, and Kubernetes events.

This addresses SRVKP-4185 T159 requirements for secure error handling:

  • Centralized error message generation and handling
  • Automatic sanitization of sensitive data (passwords, tokens, API keys, secrets)
  • Generic error messages that don't reveal internal system details
  • Secure logging with debug-level internal details
  • Error categorization for better classification
  • Integration with Kubernetes reconcilers and event recording

Components added:

  • pkg/common/secerrors: Core secure error handling package

    • SecureError type with user/internal message separation
    • Automatic pattern-based sanitization (passwords, tokens, keys, etc.)
    • Error categories (authentication, authorization, configuration, etc.)
    • Secure logging utilities with zap integration
    • ReconcilerErrorHandler for consistent reconciler error handling
    • Comprehensive test coverage (100% of core functions)

  • Documentation:

    • docs/SecureErrorHandling.md: Complete usage guide and best practices
    • docs/SecureErrorHandlingExamples.md: Real-world code examples
    • docs/SecureErrorHandling_ReconcilerUpdateExample.md: Migration guide
    • pkg/common/secerrors/README.md: Package documentation

Features:

  • Detects and redacts: passwords, API keys, tokens, secrets, private keys, AWS keys, JWT tokens, credentials in URLs, base64-encoded secrets
  • Preserves error chains for errors.Is() and errors.As() compatibility
  • Pre-defined common errors for reuse
  • Zero dependencies beyond existing project dependencies

All tests passing with no linter errors.

Future work: Update existing reconcilers to use secure error handling (tracked separately).

Changes

Submitter Checklist

These are the criteria that every PR should meet, please check them off as you
review them:

See the contribution guide for more details.

Release Notes

NONE

@mathur07
Add secure error and exception handling framework
f34ec25 
Implements secure error handling utilities to prevent sensitive information
leakage through error messages, logs, and Kubernetes events.

This addresses SRVKP-4185 T159 requirements for secure error handling:
- Centralized error message generation and handling
- Automatic sanitization of sensitive data (passwords, tokens, API keys, secrets)
- Generic error messages that don't reveal internal system details
- Secure logging with debug-level internal details
- Error categorization for better classification
- Integration with Kubernetes reconcilers and event recording

Components added:
- pkg/common/secerrors: Core secure error handling package
  - SecureError type with user/internal message separation
  - Automatic pattern-based sanitization (passwords, tokens, keys, etc.)
  - Error categories (authentication, authorization, configuration, etc.)
  - Secure logging utilities with zap integration
  - ReconcilerErrorHandler for consistent reconciler error handling
  - Comprehensive test coverage (100% of core functions)

- Documentation:
  - docs/SecureErrorHandling.md: Complete usage guide and best practices
  - docs/SecureErrorHandlingExamples.md: Real-world code examples
  - docs/SecureErrorHandling_ReconcilerUpdateExample.md: Migration guide
  - pkg/common/secerrors/README.md: Package documentation

Features:
- Detects and redacts: passwords, API keys, tokens, secrets, private keys,
  AWS keys, JWT tokens, credentials in URLs, base64-encoded secrets
- Preserves error chains for errors.Is() and errors.As() compatibility
- Pre-defined common errors for reuse
- Zero dependencies beyond existing project dependencies

All tests passing with no linter errors.

Future work: Update existing reconcilers to use secure error handling
(tracked separately).

Signed-off-by: Shubham Mathur <shumathu@redhat.com>
@tekton-robot tekton-robot added do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. release-note-none Denotes a PR that doesnt merit a release note. labels Dec 2, 2025
@tekton-robot
Copy link
Contributor

tekton-robot commented Dec 2, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
To complete the pull request process, please assign jkandasa after the PR has been reviewed.
You can assign the PR to them by writing /assign @jkandasa in a comment when ready.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@tekton-robot tekton-robot added the size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. label Dec 2, 2025
@mathur07 mathur07 marked this pull request as draft December 2, 2025 07:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jkhelil jkhelil Awaiting requested review from jkhelil

@PuneetPunamiya PuneetPunamiya Awaiting requested review from PuneetPunamiya

Assignees

No one assigned

Labels

do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. release-note-none Denotes a PR that doesnt merit a release note. size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mathur07 @tekton-robot