plain password logged in rhel-registration actions
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
In Progress
|
High
|
Unassigned |
Bug Description
This only affects Queens as we've moved to the ansible role in later releases.
Description of problem:
Plain password from RHSM in the logs during OSP13 deployment with subscription-
overcloud_
2021-05-17 23:18:58Z [overcloud]: CREATE_FAILED Resource CREATE failed: resources.Compute: Resource CREATE failed: Error: resources[
loyment: Deployment to server failed: deploy_status_code: Deployment exited with non-zero status code: 1
Stack overcloud CREATE_FAILED
overcloud.
resource_type: OS::Heat:
physical_
status: CREATE_FAILED
status_reason: |
Error: resources.
deploy_stdout: |
...
WARN: Failed to connect when running 'subscription-
INFO: Sleeping 2.0 ...
INFO: Executing 'subscription-
WARN: Failed to connect when running 'subscription-
INFO: Sleeping 2.0 ...
INFO: Executing 'subscription-
Registering to: subscription.
WARN: Failed to connect when running 'subscription-
ERROR: Failed to connect after 10 attempts when running 'subscription-
(truncated, view all with --long)
deploy_stderr: |
HTTP error (401 - Unauthorized): Invalid username or password. To create a login, please visit https:/
HTTP error (401 - Unauthorized): Invalid username or password. To create a login, please visit https:/
HTTP error (401 - Unauthorized): Invalid username or password. To create a login, please visit https:/
CVE References
Changed in tripleo: | |
milestone: | xena-1 → none |
This issue has been assigned CVE-2021-3585.