[PATCH 0/1] Whitelist sftp - Peter Kjellerstedt

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
To: openembedded-core@lists.openembedded.org
Subject: [PATCH 0/1] Whitelist sftp
Date: Sat, 11 Mar 2017 06:14:09 +0100	[thread overview]
Message-ID: <cover.1489209195.git.pkj@axis.com> (raw)

I have been trying out the whitelisting of tools in $PATH, and it
seems to work very well. However, one thing that I realized is that
the tools used by the various fetchers need to be whitelisted. This
patch adds sftp to HOSTTOOLS_NONFATAL as that is the only fetcher we
use appart from git and wget, but I expect other tools such as cvs,
svn, hg, etc need to be added as well.

Feel free to squash this commit with the "base/bitbake.conf: Filter
contents of PATH to only allow whitelisted tools" commit.

//Peter

The following changes since commit 1cf50b756c589d8bf8f1f32f2062b69fb769242d:

  base/bitbake.conf: Filter contents of PATH to only allow whitelisted tools (2017-03-10 18:07:27 +0000)

are available in the git repository at:

  git://git.yoctoproject.org/poky-contrib pkj/whitelist_sftp
  http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=pkj/whitelist_sftp

Peter Kjellerstedt (1):
  bitbake.conf: Add 'sftp' to HOSTTOOLS_NONFATAL

 meta/conf/bitbake.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

-- 
2.12.0

next             reply	other threads:[~2017-03-11  5:14 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2017-03-11  5:14 Peter Kjellerstedt [this message]
2017-03-11  5:14 ` [PATCH 1/1] bitbake.conf: Add 'sftp' to HOSTTOOLS_NONFATAL Peter Kjellerstedt
2017-03-11 11:24 ` [PATCH 0/1] Whitelist sftp Richard Purdie

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=cover.1489209195.git.pkj@axis.com \
    --to=peter.kjellerstedt@axis.com \
    --cc=openembedded-core@lists.openembedded.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.