virsh: secret: Print warning that passing secret on command-line is insecure

Print a warning if users pass in secrets as command line arguments and mention it in the man page. Signed-off-by: N Peter Krempa <pkrempa@redhat.com> Reviewed-by: N Daniel P. Berrangé <berrange@redhat.com>

virsh: secret: Print warning that passing secret on command-line is insecure
Print a warning if users pass in secrets as command line arguments and mention it in the man page. Signed-off-by: N Peter Krempa <pkrempa@redhat.com> Reviewed-by: N Daniel P. Berrangé <berrange@redhat.com>
3c5c90ca · Peter Krempa · dbbc74e4 · 3c5c90ca · 3c5c90ca
显示空白变更内容
内联并排

Showing with 7 addition and 0 deletion

docs/manpages/virsh.rst docs/manpages/virsh.rst +3 -0

tools/virsh-secret.c tools/virsh-secret.c +4 -0

未找到文件。
--- a/docs/manpages/virsh.rst
+++ b/docs/manpages/virsh.rst
@@ -6571,6 +6571,9 @@ Base64-encoded value *base64* or Base-64-encoded contents of file named

 Note that *--file* and *base64* options are mutually exclusive.

+Passing secrets via the *base64* option on command line is INSECURE and
+deprecated. Use the *--file* option instead.
+

 secret-get-value
 ----------------

--- a/tools/virsh-secret.c
+++ b/tools/virsh-secret.c
@@ -217,6 +217,10 @@ cmdSecretSetValue(vshControl *ctl, const vshCmd *cmd)
        return false;
    }

+    /* warn users that the --base64 option passed from command line is wrong */
+    if (base64)
+        vshError(ctl, _("Passing secret value as command-line argument is insecure!"));
+
    if (filename) {
        ssize_t read_ret;
        if ((read_ret = virFileReadAll(filename, 1024, &file_buf)) < 0) {