abiupdate.py: Use current config instead of downloading previous config
Until we authenticate downloads we should not do this as pickle.load allows running arbitrary code.
This commit is contained in:
parent
6ad80b7201
commit
f3ddd1118d
|
@ -110,13 +110,10 @@ class Main(object):
|
||||||
return version_abi, s
|
return version_abi, s
|
||||||
|
|
||||||
def get_config(self):
|
def get_config(self):
|
||||||
filename = "linux-support-%s_%s_all.deb" % (self.version_abi, self.version_source)
|
# XXX We used to fetch the previous version of linux-support here,
|
||||||
f = self.retrieve_package(self.url_config, filename, 'all')
|
# but until we authenticate downloads we should not do that as
|
||||||
d = self.extract_package(f, "linux-support")
|
# pickle.load allows running arbitrary code.
|
||||||
c = d + "/usr/src/linux-support-" + self.version_abi + "/config.defines.dump"
|
return self.config
|
||||||
config = ConfigCoreDump(fp=open(c, "rb"))
|
|
||||||
shutil.rmtree(d)
|
|
||||||
return config
|
|
||||||
|
|
||||||
def retrieve_package(self, url, filename, arch):
|
def retrieve_package(self, url, filename, arch):
|
||||||
u = url(self.source, filename, arch)
|
u = url(self.source, filename, arch)
|
||||||
|
|
|
@ -1,3 +1,9 @@
|
||||||
|
linux (4.9.1-1~exp2) UNRELEASED; urgency=medium
|
||||||
|
|
||||||
|
* abiupdate.py: Use current config instead of downloading previous config
|
||||||
|
|
||||||
|
-- Ben Hutchings <ben@decadent.org.uk> Sat, 07 Jan 2017 17:41:34 +0000
|
||||||
|
|
||||||
linux (4.9.1-1~exp1) experimental; urgency=medium
|
linux (4.9.1-1~exp1) experimental; urgency=medium
|
||||||
|
|
||||||
* New upstream release: https://kernelnewbies.org/Linux_4.9
|
* New upstream release: https://kernelnewbies.org/Linux_4.9
|
||||||
|
|
Loading…
Reference in New Issue