Lines Matching full:as
21 INSECURE: Passing secrets as clear text inline
50 Passing secrets as clear text via a file
62 data. It is important to note that the contents of the file are treated as an
63 opaque blob. The entire raw file contents is used as the value, thus it is
77 will be launched under. If using mandatory access control such as SELinux, then
83 Passing secrets as cipher text inline
86 To address the insecurity of passing secrets inline as clear text, it is
87 possible to configure a second secret as an AES key to use for decrypting
90 The secret used as the AES key must always be configured using the file based
100 The contents of this file will by used as an AES-256 key to encrypt the
101 real secret that can now be safely passed to QEMU inline as cipher text
111 These bytes are used as the initialization vector for the AES-256-CBC value.
129 other features mentioned earlier such as base64 encoding:
151 deleted immediately upon QEMU shutdown. If passing the master key as a file,