sonic-buildimage

matthew/sonic-buildimage

Fork 0

Commit Graph

Author	SHA1	Message	Date
Mai Bui	6f67a3ac6a	[device/quanta] Mitigation for security vulnerability (#11867 ) Signed-off-by: maipbui <maibui@microsoft.com> Dependency: [https://github.com/sonic-net/sonic-buildimage/pull/12065](https://github.com/sonic-net/sonic-buildimage/pull/12065) #### Why I did it `shell=True` is dangerous because this call will spawn the command using a shell process `os` - not secure against maliciously constructed input and dangerous if used to evaluate dynamic content. #### How I did it `os` - use with `subprocess` Use `shell=False` with shell features - redirection: [https://stackoverflow.com/questions/4965159/how-to-redirect-output-with-subprocess-in-python/6482200#6482200?newreg=53afb91b3ebd47c5930be627fcdf2930](https://stackoverflow.com/questions/4965159/how-to-redirect-output-with-subprocess-in-python/6482200#6482200?newreg=53afb91b3ebd47c5930be627fcdf2930) - `\|` operator: [https://docs.python.org/2/library/subprocess.html#replacing-shell-pipeline](https://docs.python.org/2/library/subprocess.html#replacing-shell-pipeline)	2022-10-19 10:05:36 -04:00
Jonathan Tsai	a5c351a467	[Quanta/platform] Update IX1B to support Stretch (#2358 ) * [Quanta/platform] Update IX1B to support Stretch What I did Update IX1B's platform folders to support Stretch How I did it Follow https://github.com/Azure/SONiC/wiki/Porting-Guide How to verify it Follow https://github.com/Azure/SONiC/wiki/Command-Reference to verify hardware information can get from CLI correctly Signed-off-by: Jonathan Tsai <jonathan.tsai@quantatw.com>	2019-08-15 02:25:43 -07:00
Guohan Lu	5d46e050d6	[devices]: move platform modules of accton, ingrasys, mitac, quanta into buildimage repo Signed-off-by: Guohan Lu <gulv@microsoft.com>	2018-08-11 09:09:03 +00:00

Author

SHA1

Message

Date

Mai Bui

6f67a3ac6a

[device/quanta] Mitigation for security vulnerability (#11867 )

Signed-off-by: maipbui <maibui@microsoft.com>
Dependency: [https://github.com/sonic-net/sonic-buildimage/pull/12065](https://github.com/sonic-net/sonic-buildimage/pull/12065)
#### Why I did it
`shell=True` is dangerous because this call will spawn the command using a shell process
`os` - not secure against maliciously constructed input and dangerous if used to evaluate dynamic content.
#### How I did it
`os` - use with `subprocess`
Use `shell=False` with shell features
- redirection: [https://stackoverflow.com/questions/4965159/how-to-redirect-output-with-subprocess-in-python/6482200#6482200?newreg=53afb91b3ebd47c5930be627fcdf2930](https://stackoverflow.com/questions/4965159/how-to-redirect-output-with-subprocess-in-python/6482200#6482200?newreg=53afb91b3ebd47c5930be627fcdf2930)
- `|` operator: [https://docs.python.org/2/library/subprocess.html#replacing-shell-pipeline](https://docs.python.org/2/library/subprocess.html#replacing-shell-pipeline)

2022-10-19 10:05:36 -04:00

Jonathan Tsai

a5c351a467

[Quanta/platform] Update IX1B to support Stretch (#2358 )

* [Quanta/platform] Update IX1B to support Stretch

What I did
Update IX1B's platform folders to support Stretch
How I did it
Follow https://github.com/Azure/SONiC/wiki/Porting-Guide
How to verify it
Follow https://github.com/Azure/SONiC/wiki/Command-Reference
to verify hardware information can get from CLI correctly

Signed-off-by: Jonathan Tsai <jonathan.tsai@quantatw.com>

2019-08-15 02:25:43 -07:00

Guohan Lu

5d46e050d6

[devices]: move platform modules of accton, ingrasys, mitac, quanta into buildimage repo

Signed-off-by: Guohan Lu <gulv@microsoft.com>

2018-08-11 09:09:03 +00:00

3 Commits