Skip to content

bugfix: oem-factory-reset: debug mode; hide passphrase output on screen/debug log on gpg --detach-sign of /boot hash digest#1861

Merged
tlaurion merged 1 commit intolinuxboot:masterfrom
tlaurion:oem-factory_reset_hide-detach-sign-user-pin
Nov 25, 2024
Merged

bugfix: oem-factory-reset: debug mode; hide passphrase output on screen/debug log on gpg --detach-sign of /boot hash digest#1861
tlaurion merged 1 commit intolinuxboot:masterfrom
tlaurion:oem-factory_reset_hide-detach-sign-user-pin

Conversation

@tlaurion
Copy link
Copy Markdown
Collaborator

@tlaurion tlaurion commented Nov 25, 2024
edited
Loading

GPG User PIN was leaking on screen/debug.log when in debug/tracing mode only. Still a bug, we have helper to mask parameter content.

Before this PR:
[ 155.845101] DEBUG: gpg --pinentry-mode loopback --passphrase Please Change Me --digest-algo SHA256 --detach-sign -a

After this PR:
[ 131.272954] DEBUG: gpg --pinentry-mode loopback --passphrase <hidden> --digest-algo SHA256 --detach-sign -a

@tlaurion
oem-factory-reset: debug mode; hide passphrase output on screen/debug…
5501cd0 
….log on gpg --detach-sign of /boot hash digest

Before:
[  155.845101] DEBUG: gpg --pinentry-mode loopback --passphrase Please Change Me --digest-algo SHA256 --detach-sign -a

After:
[  131.272954] DEBUG: gpg --pinentry-mode loopback --passphrase <hidden> --digest-algo SHA256 --detach-sign -a

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
@tlaurion tlaurion merged commit 4f14058 into linuxboot:master Nov 25, 2024
@tlaurion tlaurion added the feature freeze - 2025-01-30 (originally targeted 2024-11-20) label Nov 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

automated testing bug debug enhancement / improvement feature freeze - 2025-01-30 (originally targeted 2024-11-20)

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tlaurion