From 15b6ec66bb3fc0bd4fd0aec928c4ba0f9d310d4f Mon Sep 17 00:00:00 2001 From: Bill Nottingham Date: Thu, 5 Apr 2018 09:25:11 -0400 Subject: [PATCH] Set `raw=True` when reading passwords from ConfigParser files. (#35582) * Set `raw=True` when reading passwords from ConfigParser files. The assumption is that no one is actually doing interpolation on the password value, even if they may for other configuration values, and passwords are far more likely to contain '%'. * Add vmware_inventory as well. --- contrib/inventory/cloudforms.py | 2 +- contrib/inventory/foreman.py | 2 +- contrib/inventory/ovirt4.py | 2 +- contrib/inventory/vmware_inventory.py | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/contrib/inventory/cloudforms.py b/contrib/inventory/cloudforms.py index 247d297e3d7..c6702dcce10 100755 --- a/contrib/inventory/cloudforms.py +++ b/contrib/inventory/cloudforms.py @@ -138,7 +138,7 @@ class CloudFormsInventory(object): warnings.warn("No username specified, you need to specify a CloudForms username.") if config.has_option('cloudforms', 'password'): - self.cloudforms_pw = config.get('cloudforms', 'password') + self.cloudforms_pw = config.get('cloudforms', 'password', raw=True) else: self.cloudforms_pw = None diff --git a/contrib/inventory/foreman.py b/contrib/inventory/foreman.py index 4d6fd32b809..e1ca8787d6b 100755 --- a/contrib/inventory/foreman.py +++ b/contrib/inventory/foreman.py @@ -84,7 +84,7 @@ class ForemanInventory(object): try: self.foreman_url = config.get('foreman', 'url') self.foreman_user = config.get('foreman', 'user') - self.foreman_pw = config.get('foreman', 'password') + self.foreman_pw = config.get('foreman', 'password', raw=True) self.foreman_ssl_verify = config.getboolean('foreman', 'ssl_verify') except (ConfigParser.NoOptionError, ConfigParser.NoSectionError) as e: print("Error parsing configuration: %s" % e, file=sys.stderr) diff --git a/contrib/inventory/ovirt4.py b/contrib/inventory/ovirt4.py index 53499220b9b..cf2f7ad3c98 100755 --- a/contrib/inventory/ovirt4.py +++ b/contrib/inventory/ovirt4.py @@ -138,7 +138,7 @@ def create_connection(): return sdk.Connection( url=config.get('ovirt', 'ovirt_url'), username=config.get('ovirt', 'ovirt_username'), - password=config.get('ovirt', 'ovirt_password'), + password=config.get('ovirt', 'ovirt_password', raw=True), ca_file=config.get('ovirt', 'ovirt_ca_file'), insecure=config.get('ovirt', 'ovirt_ca_file') is None, ) diff --git a/contrib/inventory/vmware_inventory.py b/contrib/inventory/vmware_inventory.py index 7f3537bb4ef..997f53dcaa0 100755 --- a/contrib/inventory/vmware_inventory.py +++ b/contrib/inventory/vmware_inventory.py @@ -268,7 +268,7 @@ class VMWareInventory(object): self.port = int(os.environ.get('VMWARE_PORT', config.get('vmware', 'port'))) self.username = os.environ.get('VMWARE_USERNAME', config.get('vmware', 'username')) self.debugl('username is %s' % self.username) - self.password = os.environ.get('VMWARE_PASSWORD', config.get('vmware', 'password')) + self.password = os.environ.get('VMWARE_PASSWORD', config.get('vmware', 'password', raw=True)) self.validate_certs = os.environ.get('VMWARE_VALIDATE_CERTS', config.get('vmware', 'validate_certs')) if self.validate_certs in ['no', 'false', 'False', False]: self.validate_certs = False