Skip to content

Fix xtrace helper logic inversion and set -e abort risk in util-common.sh#4692

Closed
Copilot wants to merge 6 commits intoehvs/ARO-24815from
copilot/sub-pr-4675
Closed

Fix xtrace helper logic inversion and set -e abort risk in util-common.sh#4692
Copilot wants to merge 6 commits intoehvs/ARO-24815from
copilot/sub-pr-4675

Conversation

Copy link

Copilot AI commented Mar 18, 2026
edited
Loading

Two bugs in the xtrace save/restore helpers introduced in the ACR token protection work cause incorrect xtrace state and potential script abort under errexit.

Bugs fixed

  • Logic inversion in xtrace_set(): was checking XTRACE_IS_SET == XTRACE_UNSET — the opposite of the intended restore-if-was-on semantics. Result: xtrace was re-enabled when it was originally off, and not re-enabled when it was originally on.

  • set -e abort risk: (( cond )) && cmd returns non-zero when the condition is false. Since bootstrap scripts run with errexit, calling either helper when the condition doesn't hold would terminate the script.

Change

# Before
xtrace_unset() {
    (( XTRACE_IS_SET == XTRACE_SET )) && set +x
}
xtrace_set() {
    (( XTRACE_IS_SET == XTRACE_UNSET )) && set -x  # wrong condition, wrong behavior
}

# After
xtrace_unset() {
    if (( XTRACE_IS_SET == XTRACE_SET )); then
        set +x
    fi
}
xtrace_set() {
    if (( XTRACE_IS_SET == XTRACE_SET )); then  # restore only if was set
        set -x
    fi
}

🔒 GitHub Advanced Security automatically protects Copilot coding agent pull requests. You can protect all pull requests by enabling Advanced Security for your repositories. Learn more about Advanced Security.

s-fairchild and others added 5 commits March 17, 2026 14:32
@s-fairchild
Unset xtrace while logging into acr via podman to prevent exposing th…
0c59144 
…e acr login secret

Reference: https://portal.microsofticm.com/imp/v5/incidents/details/752908291/summary
@s-fairchild
Add unset xtrace while configuring tls certificates
5f5c1a4 
To be extra safe and ensure no certificate details are logged via shell tracing.
@s-fairchild
Add shell check comments, Update function descriptions
a1fb17a 
Add shellcheck comments for warnings that can be safely ignored.
Improve function readability by formatting them all in the same style.
@s-fairchild
Address shellcheck warnings in bootstrap scripts
467e224 
Several warnings were unaddressed. Some of them were disabled as they can be safely ignored.
Others were refactored as the warnings were legitimate.
Initial plan
47f9ce2
Copilot AI requested a review from hlipsig March 18, 2026 18:18
Copilot AI mentioned this pull request Mar 18, 2026
Open
@openshift-ci
Copy link

openshift-ci bot commented Mar 18, 2026

Hi @copilot. Thanks for your PR.

I'm waiting for a Azure member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@github-actions github-actions bot added the needs-rebase branch needs a rebase label Mar 18, 2026
@github-actions
Copy link

github-actions bot commented Mar 18, 2026

Please rebase pull request.

@hlipsig
Fix xtrace helper logic inversion and set -e safety in util-common.sh
2c175ee 
- xtrace_set() was checking XTRACE_IS_SET == XTRACE_UNSET but should
  check XTRACE_IS_SET == XTRACE_SET to restore xtrace when it was on
- Both xtrace_unset() and xtrace_set() used (( cond )) && cmd which
  returns non-zero when condition is false, potentially aborting scripts
  under set -e; changed to if-statements which always return 0

Co-authored-by: hlipsig <8000786+hlipsig@users.noreply.github.com>
Copilot AI changed the title [WIP] [ARO-24815] Prevent ACR refresh token exposure in audit logs Fix xtrace helper logic inversion and set -e abort risk in util-common.sh Mar 18, 2026
@hlipsig hlipsig closed this Mar 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hlipsig hlipsig Awaiting requested review from hlipsig hlipsig is a code owner

@bennerv bennerv Awaiting requested review from bennerv bennerv will be requested when the pull request is marked ready for review bennerv is a code owner

@hawkowl hawkowl Awaiting requested review from hawkowl hawkowl will be requested when the pull request is marked ready for review hawkowl is a code owner

@rogbas rogbas Awaiting requested review from rogbas rogbas will be requested when the pull request is marked ready for review rogbas is a code owner

@mrWinston mrWinston Awaiting requested review from mrWinston mrWinston will be requested when the pull request is marked ready for review mrWinston is a code owner

@jharrington22 jharrington22 Awaiting requested review from jharrington22 jharrington22 will be requested when the pull request is marked ready for review jharrington22 is a code owner

@cadenmarchese cadenmarchese Awaiting requested review from cadenmarchese cadenmarchese will be requested when the pull request is marked ready for review cadenmarchese is a code owner

@yjst2012 yjst2012 Awaiting requested review from yjst2012 yjst2012 will be requested when the pull request is marked ready for review yjst2012 is a code owner

@tiguelu tiguelu Awaiting requested review from tiguelu tiguelu will be requested when the pull request is marked ready for review tiguelu is a code owner

@mociarain mociarain Awaiting requested review from mociarain mociarain will be requested when the pull request is marked ready for review mociarain is a code owner

@kimorris27 kimorris27 Awaiting requested review from kimorris27 kimorris27 will be requested when the pull request is marked ready for review kimorris27 is a code owner

@tsatam tsatam Awaiting requested review from tsatam tsatam will be requested when the pull request is marked ready for review tsatam is a code owner

@sankur-codes sankur-codes Awaiting requested review from sankur-codes sankur-codes will be requested when the pull request is marked ready for review sankur-codes is a code owner

@wanghaoran1988 wanghaoran1988 Awaiting requested review from wanghaoran1988 wanghaoran1988 will be requested when the pull request is marked ready for review wanghaoran1988 is a code owner

@alcasim alcasim Awaiting requested review from alcasim alcasim will be requested when the pull request is marked ready for review alcasim is a code owner

@tuxerrante tuxerrante Awaiting requested review from tuxerrante tuxerrante will be requested when the pull request is marked ready for review tuxerrante is a code owner

@ventifus ventifus Awaiting requested review from ventifus ventifus will be requested when the pull request is marked ready for review ventifus is a code owner

Assignees

@hlipsig hlipsig

Copilot code review Copilot

Labels

needs-ok-to-test needs-rebase branch needs a rebase

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@hlipsig @s-fairchild