Add :private_key and :preshared_key to redacted Info fields

These are new configuration keys introduced in `VintageNetWireguard` that should also be hidden from the Info results by default
nerves-networking · Feb 23, 2022 · 2895f84 · 2895f84
1 parent 55d5b37
commit 2895f84
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 4 deletions.
diff --git a/lib/vintage_net/info.ex b/lib/vintage_net/info.ex
@@ -133,7 +133,9 @@ defmodule VintageNet.Info do
        when key in [
               :psk,
               :password,
-              :sae_password
+              :sae_password,
+              :private_key,
+              :preshared_key
             ] do
     {key, "...."}
   end

diff --git a/test/vintage_net/info_test.exs b/test/vintage_net/info_test.exs
@@ -23,7 +23,7 @@ defmodule VintageNet.InfoTest do
     :ok
   end
 
-  test "info sanitizes psk and password fields" do
+  test "info sanitizes protected fields" do
     capture_log(fn ->
       :ok =
         VintageNet.configure("eth0", %{
@@ -34,8 +34,11 @@ defmodule VintageNet.InfoTest do
           },
           list_of_arbitrary_configuration: [
             %{psk: "psk2", password: "password2"},
-            %{psk: "psk3", password: "password3"}
-          ]
+            %{psk: "psk3", password: "password3"},
+            %{preshared_key: "psk4"},
+            %{sae_password: "sae1"}
+          ],
+          private_key: "priv_key"
         })
 
       # configure/2 is asynchronous, so wait for the interface to appear.
@@ -47,9 +50,12 @@ defmodule VintageNet.InfoTest do
     refute output =~ "psk1"
     refute output =~ "psk2"
     refute output =~ "psk3"
+    refute output =~ "psk4"
     refute output =~ "password1"
     refute output =~ "password2"
     refute output =~ "password3"
+    refute output =~ "sae1"
+    refute output =~ "priv_key"
   end
 
   test "info allows for not redacting" do