Similarly to what we have for media, let's add the "os" property to the
trees.
osinfo-detect code is already relying on having an "os" property and,
since commit 722e7d1d4, it errors out due to the missing property:
(osinfo-detect:7808): GLib-GObject-WARNING **: 09:27:58.656:
g_object_get_is_val
Those two patches introduce a fix for a low impact CVE where both user
& admin password would be passed to the osinfo-install-script via
command line.
In order to avoid doing so, let's introduce a --config-file and error
out whenever a password is passed via --config.
Fabiano Fidêncio (2):
tool
Let's add a new option so users can set their config from a file,
instead of directly passing the values via command-line.
Signed-off-by: Fabiano Fidêncio
---
tools/osinfo-install-script.c | 100 +-
1 file changed, 97 insertions(+), 3 deletions(-)
diff --git a/to
As passing user & admin password via command line is a low impact CVE,
let's error out when it's done and advertise the users to use
--config-file instead.
Signed-off-by: Fabiano Fidêncio
---
tools/osinfo-install-script.c | 11 +++
1 file changed, 11 insertions(+)
diff --git a/tools/osi
On Fri, Jul 5, 2019 at 10:27 AM Fabiano Fidêncio wrote:
>
> As passing user & admin password via command line is a low impact CVE,
> let's error out when it's done and advertise the users to use
> --config-file instead.
>
> Signed-off-by: Fabiano Fidêncio
> ---
> tools/osinfo-install-script.c |
On Fri, Jul 05, 2019 at 10:27:19AM +0200, Fabiano Fidêncio wrote:
> Let's add a new option so users can set their config from a file,
> instead of directly passing the values via command-line.
>
> Signed-off-by: Fabiano Fidêncio
> ---
> tools/osinfo-install-script.c | 100 +++
On Fri, Jul 05, 2019 at 10:27:20AM +0200, Fabiano Fidêncio wrote:
> As passing user & admin password via command line is a low impact CVE,
> let's error out when it's done and advertise the users to use
> --config-file instead.
>
> Signed-off-by: Fabiano Fidêncio
> ---
> tools/osinfo-install-scr
