Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 957273

Summary: autoinstall password should be scrubbed before logging
Product: Red Hat Enterprise Linux 6 Reporter: Joey Boggs <jboggs>
Component: ovirt-nodeAssignee: Fabian Deutsch <fdeutsch>
Status: CLOSED ERRATA QA Contact: Virtualization Bugs <virt-bugs>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.4CC: acathrow, bsarathy, cboyle, cshao, fabian.deutsch, gouyang, hadong, huiwa, jboggs, leiwang, mburns, ovirt-maint, yaniwang, ycui
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
When running an auto install, the temporary password was logged in the ovirt.log. This has now been altered so temporary password no longer appears.
 Story Points: ---
Clone Of: 957234 Environment:
Last Closed: 2014-01-21 19:32:26 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 957234    
Bug Blocks:    

Description Joey Boggs 2013-04-26 19:44:41 UTC 
+++ This bug was initially created as a clone of Bug #957234 +++

When running an autoinstall the temporary password is logged in ovirt.log. It should be replaced with "XXXXXXXX" instead of the hashed password

--- Additional comment from Joey Boggs on 2013-04-26 15:37:02 EDT ---

http://gerrit.ovirt.org/14276
Comment 8 Cheryn Tan 2013-11-08 00:37:24 UTC 
This bug is currently attached to errata RHBA-2013:15277. If this change is not to be documented in the text for this errata please either remove it from the errata, set the requires_doc_text flag to minus (-), or leave a "Doc Text" value of "--no tech note required" if you do not have permission to alter the flag.

Otherwise to aid in the development of relevant and accurate release documentation, please fill out the "Doc Text" field above with these four (4) pieces of information:

* Cause: What actions or circumstances cause this bug to present.
* Consequence: What happens when the bug presents.
* Fix: What was done to fix the bug.
* Result: What now happens when the actions or circumstances above occur. (NB: this is not the same as 'the bug doesn't present anymore')

Once filled out, please set the "Doc Type" field to the appropriate value for the type of change made and submit your edits to the bug.

For further details on the Cause, Consequence, Fix, Result format please refer to:

https://bugzilla.redhat.com/page.cgi?id=fields.html#cf_release_notes 

Thanks in advance.
Comment 9 cshao 2013-11-13 06:38:52 UTC 
Test version:
rhevh-6.5-20131031.1.0
ovirt-node-3.0.1-7.el6.noarch

Test steps:
1. auto install rhev-h with below parameters:
storage_init=/dev/sda adminpw=encrypt password cim_enabled=1 cim_passwd=encrypt passwd firstboot
2. Login RHEV-H
3. Logout and login RHEV-H
4. Check ovirt.log

Test result:
1. Auto install successful.
2. Pop-up msg: You are required to change your password immediately
3. Login with new password can successful
4. No temporary password logged in ovirt.log.

ovirt.log
======
Nov 13 06:25:35 Setting temporary admin password
usermod: user 'cim' does not exist
Nov 13 06:25:35 Setting temporary admin password
Nov 13 06:25:35 link to the kernel image for kdump
Nov 13 06:25:35 Skip runtime mode configuration.

For cim user doesn't exist issue, there is a exist bug -> Bug 1022435 - Throw "argument 1 must be Entity, not None" exception when setting cim password 

So the bug is fixed. I notice that the bug Depends On bug 957234, but bug 957234 is upstream bug. So I'd like verify this bug now. change bug status to VERIFIED.
Comment 11 errata-xmlrpc 2014-01-21 19:32:26 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2014-0033.html