internet/community.crypto
3
0
Fork 0
mirror of https://github.com/ansible-collections/community.crypto.git synced 2026-05-07 13:53:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

CVE-2020-25646: no_log=True missing for private key content options (#125)

Browse Source 
* Mark private key content options as no_log (CVE-2020-25646.)

* Mention no_log for openssl_privatekey's return_content option.

* Add change PR's URL.

* Plural.
This commit is contained in:
Felix Fontein
2020-10-13 14:14:05 +02:00
committed by GitHub
parent 7d0e5e814e
commit 233d1afc29
8 changed files with 16 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
plugins/modules/openssl_csr.py
View File

@@ -1163,7 +1163,7 @@ def main():
state=dict(type='str', default='present', choices=['absent', 'present']),
digest=dict(type='str', default='sha256'),
privatekey_path=dict(type='path'),
privatekey_content=dict(type='str'),
privatekey_content=dict(type='str', no_log=True),
privatekey_passphrase=dict(type='str', no_log=True),
version=dict(type='int', default=1),
force=dict(type='bool', default=False),