proxmox-mirrors/qemu-server
1
0
Fork 0
mirror of https://git.proxmox.com/git/qemu-server synced 2025-06-14 15:54:08 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

vzdump/pbs: die with missing, but configured master key

Browse Source 
the created backups are encrypted, but are not restorable with the
master key in case the original PVE system is lost.

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
This commit is contained in:
Fabian Grünbichler 2022-08-16 13:52:38 +02:00
parent 24e632818b
commit 1629b483e2
1 changed files with 7 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
PVE/VZDump/QemuServer.pm
View File

@ -554,9 +554,13 @@ sub archive_pbs {
$self->loginfo("enabling encryption");
$params->{keyfile} = $keyfile;
$params->{encrypt} = JSON::true;
if (defined($master_keyfile) && -e $master_keyfile) {
$self->loginfo("enabling master key feature");
$params->{"master-keyfile"} = $master_keyfile;
if (defined($master_keyfile)) {
if (-e $master_keyfile) {
$self->loginfo("enabling master key feature");
$params->{"master-keyfile"} = $master_keyfile;
} elsif ($scfg->{'master-pubkey'}) {
die "master public key configured but no key file found\n";
}
}
} else {
my $encryption_fp = $scfg->{'encryption-key'};