File tree Expand file tree Collapse file tree 2 files changed +27
-0
lines changed
Expand file tree Collapse file tree 2 files changed +27
-0
lines changed Original file line number Diff line number Diff line change @@ -3,6 +3,13 @@ Tue Sep 30 18:23:45 UTC 2025 - Stefan Schubert <schubi@suse.de>
33
44- Checking for TPM version. TPM2 < 1.38 will not be supported
55 (bsc#1250403).
6+ - 5.0.18
7+
8+ -------------------------------------------------------------------
9+ Tue Oct 14 13:40:00 UTC 2025 - Stefan Hundhammer <shundhammer@suse.com>
10+
11+ - save_y2logs: Sanitize confidential data in macro_inst_initial.ycp
12+ (bsc#1251768)
613- 5.0.17
714
815-------------------------------------------------------------------
Original file line number Diff line number Diff line change @@ -91,6 +91,26 @@ if [ -f /etc/install.inf ]; then
9191 LIST_TMP=" $LIST_TMP install.inf"
9292fi
9393
94+ MACRO_INST=/var/log/YaST2/macro_inst_initial.ycp
95+
96+ if [ -f $MACRO_INST ]; then
97+ # bsc#1251768: Don't leak registration code or e-mail to the y2logs tarball
98+ #
99+ # UI::ChangeWidget( `id (`email), `Value, "kilroy@example.com" ); // YInputField ...
100+ # UI::ChangeWidget( `id (`reg_code), `Value, "MY-REG-CODE" ); // YInputField ...
101+ #
102+ # -->
103+ #
104+ # UI::ChangeWidget( `id (`email), `Value, [confidential] ); // YInputField ...
105+ # UI::ChangeWidget( `id (`reg_code), `Value, [confidential] ); // YInputField ...
106+ #
107+ # Intentionally doing this in-place in the real /var/log/YaST2/macro_inst_initial.ycp
108+
109+ sed -i -E \
110+ -e ' /id.*(reg_code|email).*YInputField/s/(Value,\s)[^)]+(.*$)*/\1[confidential] \2/'
111+ $MACRO_INST
112+ fi
113+
94114# if storing logs at the end of installation after bootloader fail, try to store pbl log from target system
95115if [ -f /mnt/var/log/pbl.log ]; then
96116 cp /mnt/var/log/pbl.log $TMPDIR /pbl-target.log
You can’t perform that action at this time.
0 commit comments