Mask vncPasswd being logged in agent.log (apache#12404)

Author: sudo87

plugins/hypervisors/kvm/src/main/java/com/cloud/hypervisor/kvm/resource/wrapper/LibvirtMigrateCommandWrapper.java

@@ -163,7 +163,7 @@ Use VIR_DOMAIN_XML_SECURE (value = 1) prior to v1.0.0.
             final String target = command.getDestinationIp();
             xmlDesc = dm.getXMLDesc(xmlFlag);
             if (logger.isDebugEnabled()) {
-                logger.debug(String.format("VM [%s] with XML configuration [%s] will be migrated to host [%s].", vmName, xmlDesc, target));
+                logger.debug("VM {} with XML configuration {} will be migrated to host {}.", vmName, maskSensitiveInfoInXML(xmlDesc), target);
             }
 
             // Limit the VNC password in case the length is greater than 8 characters
@@ -178,7 +178,7 @@ Use VIR_DOMAIN_XML_SECURE (value = 1) prior to v1.0.0.
                 logger.debug(String.format("Editing mount path of ISO from %s to %s", oldIsoVolumePath, newIsoVolumePath));
                 xmlDesc = replaceDiskSourceFile(xmlDesc, newIsoVolumePath, vmName);
                 if (logger.isDebugEnabled()) {
-                    logger.debug(String.format("Replaced disk mount point [%s] with [%s] in Instance [%s] XML configuration. New XML configuration is [%s].", oldIsoVolumePath, newIsoVolumePath, vmName, xmlDesc));
+                    logger.debug("Replaced disk mount point {} with {} in Instance {} XML configuration. New XML configuration is {}.", oldIsoVolumePath, newIsoVolumePath, vmName, maskSensitiveInfoInXML(xmlDesc));
                 }
             }
 
@@ -209,23 +209,23 @@ Use VIR_DOMAIN_XML_SECURE (value = 1) prior to v1.0.0.
 
             if (migrateStorage) {
                 if (logger.isDebugEnabled()) {
-                    logger.debug(String.format("Changing VM [%s] volumes during migration to host: [%s].", vmName, target));
+                    logger.debug("Changing VM {} volumes during migration to host: {}.", vmName, target);
                 }
                 xmlDesc = replaceStorage(xmlDesc, mapMigrateStorage, migrateStorageManaged);
                 if (logger.isDebugEnabled()) {
-                    logger.debug(String.format("Changed VM [%s] XML configuration of used storage. New XML configuration is [%s].", vmName, xmlDesc));
+                    logger.debug("Changed VM {} XML configuration of used storage. New XML configuration is {}.", vmName, maskSensitiveInfoInXML(xmlDesc));
                 }
                 migrateDiskLabels = getMigrateStorageDeviceLabels(disks, mapMigrateStorage);
             }
 
             Map<String, DpdkTO> dpdkPortsMapping = command.getDpdkInterfaceMapping();
             if (MapUtils.isNotEmpty(dpdkPortsMapping)) {
                 if (logger.isTraceEnabled()) {
-                    logger.trace(String.format("Changing VM [%s] DPDK interfaces during migration to host: [%s].", vmName, target));
+                    logger.trace("Changing VM {} DPDK interfaces during migration to host: {}.", vmName, target);
                 }
                 xmlDesc = replaceDpdkInterfaces(xmlDesc, dpdkPortsMapping);
                 if (logger.isDebugEnabled()) {
-                    logger.debug(String.format("Changed VM [%s] XML configuration of DPDK interfaces. New XML configuration is [%s].", vmName, xmlDesc));
+                    logger.debug("Changed VM {} XML configuration of DPDK interfaces. New XML configuration is {}.", vmName, maskSensitiveInfoInXML(xmlDesc));
                 }
             }
 
@@ -240,7 +240,7 @@ Use VIR_DOMAIN_XML_SECURE (value = 1) prior to v1.0.0.
             }
 
             //run migration in thread so we can monitor it
-            logger.info(String.format("Starting live migration of instance [%s] to destination host [%s] having the final XML configuration: [%s].", vmName, dconn.getURI(), xmlDesc));
+            logger.info("Starting live migration of instance {} to destination host {} having the final XML configuration: {}.", vmName, dconn.getURI(), maskSensitiveInfoInXML(xmlDesc));
             final ExecutorService executor = Executors.newFixedThreadPool(1);
             boolean migrateNonSharedInc = command.isMigrateNonSharedInc() && !migrateStorageManaged;
 
@@ -715,9 +715,7 @@ String replaceIpForVNCInDescFileAndNormalizePassword(String xmlDesc, final Strin
                     graphElem = graphElem.replaceAll("passwd='([^\\s]+)'", "passwd='" + vncPassword + "'");
                 }
                 xmlDesc = xmlDesc.replaceAll(GRAPHICS_ELEM_START + CONTENTS_WILDCARD + GRAPHICS_ELEM_END, graphElem);
-                if (logger.isDebugEnabled()) {
-                    logger.debug(String.format("Replaced the VNC IP address [%s] with [%s] in VM [%s].", originalGraphElem, graphElem, vmName));
-                }
+                logger.debug("Replaced the VNC IP address {} with {} in VM {}.", maskSensitiveInfoInXML(originalGraphElem), maskSensitiveInfoInXML(graphElem), vmName);
             }
         }
         return xmlDesc;
@@ -1036,4 +1034,10 @@ private boolean findSourceNode(Document doc, Node diskNode, String vmName, Strin
         }
         return false;
     }
+
+    public static String maskSensitiveInfoInXML(String xmlDesc) {
+        if (xmlDesc == null) return null;
+        return xmlDesc.replaceAll("(graphics\\s+[^>]*type=['\"]vnc['\"][^>]*passwd=['\"])([^'\"]*)(['\"])",
+                "$1*****$3");
+    }
 }

plugins/hypervisors/kvm/src/main/java/com/cloud/hypervisor/kvm/resource/wrapper/LibvirtStartCommandWrapper.java

@@ -83,8 +83,9 @@ public Answer execute(final StartCommand command, final LibvirtComputingResource
             }
 
             libvirtComputingResource.createVifs(vmSpec, vm);
-
-            logger.debug("starting " + vmName + ": " + vm.toString());
+            if (logger.isDebugEnabled()) {
+                logger.debug("Starting {} : {}", vmName, LibvirtMigrateCommandWrapper.maskSensitiveInfoInXML(vm.toString()));
+            }
             String vmInitialSpecification = vm.toString();
             String vmFinalSpecification = performXmlTransformHook(vmInitialSpecification, libvirtComputingResource);
             libvirtComputingResource.startVM(conn, vmName, vmFinalSpecification);

plugins/hypervisors/kvm/src/test/java/com/cloud/hypervisor/kvm/resource/wrapper/LibvirtMigrateCommandWrapperTest.java

@@ -658,7 +658,7 @@ private Map<String, MigrateDiskInfo> createMapMigrateStorage(String sourceText,
     @Test
     public void testReplaceIpForVNCInDescFile() {
         final String targetIp = "192.168.22.21";
-        final String result = libvirtMigrateCmdWrapper.replaceIpForVNCInDescFileAndNormalizePassword(fullfile, targetIp, null, "");
+        final String result = libvirtMigrateCmdWrapper.replaceIpForVNCInDescFileAndNormalizePassword(fullfile, targetIp, "vncSecretPwd", "");
         assertEquals("transformation does not live up to expectation:\n" + result, targetfile, result);
     }
 
@@ -1090,152 +1090,26 @@ public void replaceCdromIsoPathTest() throws ParserConfigurationException, IOExc
     }
 
     @Test
-    public void updateGpuDevicesIfNeededTestNoGpuDevice() throws Exception {
-        Mockito.doReturn(virtualMachineTOMock).when(migrateCommandMock).getVirtualMachine();
-        Mockito.doReturn(null).when(virtualMachineTOMock).getGpuDevice();
-
-        String result = libvirtMigrateCmdWrapper.updateGpuDevicesIfNeeded(migrateCommandMock, xmlWithoutGpuDevices, libvirtComputingResourceMock);
-
-        Assert.assertEquals("XML should remain unchanged when no GPU device is present", xmlWithoutGpuDevices, result);
-    }
-
-    @Test
-    public void updateGpuDevicesIfNeededTestNoDevicesSection() throws Exception {
-        List<VgpuTypesInfo> gpuDevices = createTestMixedGpuDevices();
-        GPUDeviceTO gpuDeviceTO = Mockito.mock(GPUDeviceTO.class);
-        Mockito.doReturn(gpuDevices).when(gpuDeviceTO).getGpuDevices();
-
-        Mockito.doReturn(virtualMachineTOMock).when(migrateCommandMock).getVirtualMachine();
-        Mockito.doReturn(gpuDeviceTO).when(virtualMachineTOMock).getGpuDevice();
-
-        String result = libvirtMigrateCmdWrapper.updateGpuDevicesIfNeeded(migrateCommandMock, xmlNoDevicesSection, libvirtComputingResourceMock);
-
-        Assert.assertEquals("XML should remain unchanged when no devices section is found", xmlNoDevicesSection, result);
-    }
-
-    @Test
-    public void updateGpuDevicesIfNeededTestWithPciDevice() throws Exception {
-        List<VgpuTypesInfo> gpuDevices = createTestPciGpuDevice();
-        GPUDeviceTO gpuDeviceTO = Mockito.mock(GPUDeviceTO.class);
-        Mockito.doReturn(gpuDevices).when(gpuDeviceTO).getGpuDevices();
-
-        Mockito.doReturn(virtualMachineTOMock).when(migrateCommandMock).getVirtualMachine();
-        Mockito.doReturn(gpuDeviceTO).when(virtualMachineTOMock).getGpuDevice();
-
-        String result = libvirtMigrateCmdWrapper.updateGpuDevicesIfNeeded(migrateCommandMock, xmlWithGpuDevices, libvirtComputingResourceMock);
-
-        // Verify that old GPU devices are removed and new ones are added
-        Assert.assertFalse("Old PCI device should be removed", result.contains("bus='0x01' slot='0x00'"));
-        Assert.assertFalse("Old MDEV device should be removed", result.contains("4b20d080-1b54-4048-85b3-a6a62d165c01"));
-        Assert.assertTrue("New PCI device should be added", result.contains("bus=\"0x02\""));
-        Assert.assertTrue("New PCI device should be added", result.contains("slot=\"0x00\""));
-        Assert.assertTrue("PCI device should have vfio driver", result.contains("name=\"vfio\""));
-    }
-
-    @Test
-    public void updateGpuDevicesIfNeededTestWithMdevDevice() throws Exception {
-        List<VgpuTypesInfo> gpuDevices = createTestMdevGpuDevice();
-        GPUDeviceTO gpuDeviceTO = Mockito.mock(GPUDeviceTO.class);
-        Mockito.doReturn(gpuDevices).when(gpuDeviceTO).getGpuDevices();
-
-        Mockito.doReturn(virtualMachineTOMock).when(migrateCommandMock).getVirtualMachine();
-        Mockito.doReturn(gpuDeviceTO).when(virtualMachineTOMock).getGpuDevice();
-
-        String result = libvirtMigrateCmdWrapper.updateGpuDevicesIfNeeded(migrateCommandMock, xmlWithGpuDevices, libvirtComputingResourceMock);
-
-        // Verify that old GPU devices are removed and new ones are added
-        Assert.assertFalse("Old PCI device should be removed", result.contains("bus='0x01' slot='0x00'"));
-        Assert.assertFalse("Old MDEV device should be removed", result.contains("4b20d080-1b54-4048-85b3-a6a62d165c01"));
-        Assert.assertTrue("New MDEV device should be added", result.contains("6f20d080-1b54-4048-85b3-a6a62d165c01"));
-        Assert.assertTrue("MDEV device should have display=off", result.contains("display=\"off\""));
-    }
-
-    @Test
-    public void updateGpuDevicesIfNeededTestWithMixedDevices() throws Exception {
-        List<VgpuTypesInfo> gpuDevices = createTestMixedGpuDevices();
-        GPUDeviceTO gpuDeviceTO = Mockito.mock(GPUDeviceTO.class);
-        Mockito.doReturn(gpuDevices).when(gpuDeviceTO).getGpuDevices();
-
-        Mockito.doReturn(virtualMachineTOMock).when(migrateCommandMock).getVirtualMachine();
-        Mockito.doReturn(gpuDeviceTO).when(virtualMachineTOMock).getGpuDevice();
-
-        String result = libvirtMigrateCmdWrapper.updateGpuDevicesIfNeeded(migrateCommandMock, xmlWithGpuDevices, libvirtComputingResourceMock);
-
-        // Verify both PCI and MDEV devices are added
-        Assert.assertTrue("PCI device should be added", result.contains("bus=\"0x02\""));
-        Assert.assertTrue("PCI device should be added", result.contains("slot=\"0x00\""));
-        Assert.assertTrue("MDEV device should be added", result.contains("6f20d080-1b54-4048-85b3-a6a62d165c01"));
-
-        // Count hostdev elements to ensure we have both
-        long hostdevCount = result.lines().filter(line -> line.contains("<hostdev")).count();
-        Assert.assertEquals("Should have 2 hostdev elements", 2, hostdevCount);
-    }
-
-    @Test
-    public void updateGpuDevicesIfNeededTestRemoveAllGpuDevices() throws Exception {
-        List<VgpuTypesInfo> gpuDevices = new ArrayList<>(); // Empty list
-        GPUDeviceTO gpuDeviceTO = Mockito.mock(GPUDeviceTO.class);
-        Mockito.doReturn(gpuDevices).when(gpuDeviceTO).getGpuDevices();
-
-        Mockito.doReturn(virtualMachineTOMock).when(migrateCommandMock).getVirtualMachine();
-        Mockito.doReturn(gpuDeviceTO).when(virtualMachineTOMock).getGpuDevice();
-
-        String result = libvirtMigrateCmdWrapper.updateGpuDevicesIfNeeded(migrateCommandMock, xmlWithoutGpuDevices, libvirtComputingResourceMock);
-
-        // Verify all GPU devices are removed
-        Assert.assertFalse("Old PCI device should be removed", result.contains("bus=\"0x01\""));
-        Assert.assertFalse("Old PCI device should be removed", result.contains("slot=\"0x00\""));
-        Assert.assertFalse("Old MDEV device should be removed", result.contains("4b20d080-1b54-4048-85b3-a6a62d165c01"));
-
-        // Verify no hostdev elements remain
-        long hostdevCount = result.lines().filter(line -> line.contains("<hostdev")).count();
-        Assert.assertEquals("Should have no hostdev elements", 0, hostdevCount);
-    }
-
-    // Helper methods for creating test GPU devices
-    private List<VgpuTypesInfo> createTestPciGpuDevice() {
-        List<VgpuTypesInfo> devices = new ArrayList<>();
-        VgpuTypesInfo pciDevice = new VgpuTypesInfo(
-                GpuDevice.DeviceType.PCI,
-                "NVIDIA Corporation Tesla T4",
-                "passthrough",
-                "02:00.0", // New bus address for destination host
-                "10de",
-                "NVIDIA Corporation",
-                "1eb8",
-                "Tesla T4"
-        );
-        pciDevice.setDisplay(false);
-        devices.add(pciDevice);
-        return devices;
-    }
-
-    private List<VgpuTypesInfo> createTestMdevGpuDevice() {
-        List<VgpuTypesInfo> devices = new ArrayList<>();
-        VgpuTypesInfo mdevDevice = new VgpuTypesInfo(
-                GpuDevice.DeviceType.MDEV,
-                "nvidia-63",
-                "GRID T4-2Q",
-                "6f20d080-1b54-4048-85b3-a6a62d165c01", // New UUID for destination host
-                "10de",
-                "NVIDIA Corporation",
-                "1eb8",
-                "Tesla T4"
-        );
-        mdevDevice.setDisplay(false);
-        devices.add(mdevDevice);
-        return devices;
-    }
-
-    private List<VgpuTypesInfo> createTestMixedGpuDevices() {
-        List<VgpuTypesInfo> devices = new ArrayList<>();
-
-        // Add PCI device
-        devices.addAll(createTestPciGpuDevice());
-
-        // Add MDEV device
-        devices.addAll(createTestMdevGpuDevice());
-
-        return devices;
+    public void testMaskVncPwdDomain() {
+        // Test case 1: Single quotes
+        String xml1 = "<graphics type='vnc' port='5900' passwd='secret123'/>";
+        String expected1 = "<graphics type='vnc' port='5900' passwd='*****'/>";
+        assertEquals(expected1, LibvirtMigrateCommandWrapper.maskSensitiveInfoInXML(xml1));
+
+        // Test case 2: Double quotes
+        String xml2 = "<graphics type=\"vnc\" port=\"5901\" passwd=\"mypassword\"/>";
+        String expected2 = "<graphics type=\"vnc\" port=\"5901\" passwd=\"*****\"/>";
+        assertEquals(expected2, LibvirtMigrateCommandWrapper.maskSensitiveInfoInXML(xml2));
+
+        // Test case 3: Non-VNC graphics (should remain unchanged)
+        String xml3 = "<graphics type='spice' port='5902' passwd='notvnc'/>";
+        assertEquals(xml3, LibvirtMigrateCommandWrapper.maskSensitiveInfoInXML(xml3));
+
+        // Test case 4: Multiple VNC entries in one string
+        String xml4 = "<graphics type='vnc' port='5900' passwd='a'/>\n" +
+                "<graphics type='vnc' port='5901' passwd='b'/>";
+        String expected4 = "<graphics type='vnc' port='5900' passwd='*****'/>\n" +
+                "<graphics type='vnc' port='5901' passwd='*****'/>";
+        assertEquals(expected4, LibvirtMigrateCommandWrapper.maskSensitiveInfoInXML(xml4));
     }
 }