internet/community.crypto
3
0
Fork 0
mirror of https://github.com/ansible-collections/community.crypto.git synced 2026-05-08 06:13:03 +00:00
Code Issues Packages Projects Releases Wiki Activity

CVE-2020-25646: no_log=True missing for private key content options (#125)

Browse Source 
* Mark private key content options as no_log (CVE-2020-25646.)

* Mention no_log for openssl_privatekey's return_content option.

* Add change PR's URL.

* Plural.
This commit is contained in:
Felix Fontein
2020-10-13 14:14:05 +02:00
committed by GitHub
parent 7d0e5e814e
commit 233d1afc29
8 changed files with 16 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
plugins/modules/openssl_privatekey_info.py
View File

@@ -583,7 +583,7 @@ def main():
module = AnsibleModule(
argument_spec=dict(
path=dict(type='path'),
content=dict(type='str'),
content=dict(type='str', no_log=True),
passphrase=dict(type='str', no_log=True),
return_private_key_data=dict(type='bool', default=False),
select_crypto_backend=dict(type='str', default='auto', choices=['auto', 'cryptography', 'pyopenssl']),