Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[sonic-py-common] Add getstatusoutput_noshell() functions to general module #12065

Merged
merged 10 commits into from
Sep 22, 2022
Merged

[sonic-py-common] Add getstatusoutput_noshell() functions to general module #12065

Changes from 1 commit
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
6a6dd70
Add getstatusoutput_noshell functions
maipbui Sep 13, 2022
f7d90d0
Fix getstatusoutput and add check_output_pipe
maipbui Sep 15, 2022
0e8f4ce
Fix PR commends and add UT
maipbui Sep 15, 2022
8e3b376
Add ref
maipbui Sep 16, 2022
5b256df
Modify code for python 2
maipbui Sep 16, 2022
bfd3862
Modify UT to pass py2
maipbui Sep 16, 2022
38ca258
Return p1.stdout in exception 1
maipbui Sep 16, 2022
fbe43bf
Extend 2 functions to handle more pipe commands
maipbui Sep 17, 2022
99ccf28
Fix PR comments
maipbui Sep 18, 2022
cd007de
Fix comments
maipbui Sep 18, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
31 changes: 31 additions & 0 deletions src/sonic-py-common/sonic_py_common/general.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
import sys
import subprocess


def load_module_from_source(module_name, file_path):
Expand All @@ -23,3 +24,33 @@ def load_module_from_source(module_name, file_path):
sys.modules[module_name] = module

return module


def getstatusoutput_noshell(cmd):
Copy link
Collaborator

@qiluo-msft qiluo-msft Sep 14, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

getstatusoutput_noshell

Please add unit tests to cover new functions. #Closed

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure, working on UT

"""
This function implements getstatusoutput API from subprocess module
but using shell=False to prevent shell injection.
"""
p = subprocess.run(cmd, capture_output=True, universal_newlines=True)
status, output = p.returncode, p.stdout
if output[-1:] == '\n':
output = output[:-1]
return (status, output)


def getstatusoutput_noshell_pipe(cmd1, cmd2):
"""
This function implements getstatusoutput API from subprocess module
but using shell=False to prevent shell injection. Input command includes
pipe command.
"""
status = 0
with subprocess.Popen(cmd1, universal_newlines=True, stdout=subprocess.PIPE) as p1:
with subprocess.Popen(cmd2, universal_newlines=True, stdin=p1.stdout, stdout=subprocess.PIPE) as p2:
output = p2.communicate()[0]
p1.wait()
if p1.returncode != 0 and p2.returncode != 0:
Copy link
Collaborator

@qiluo-msft qiluo-msft Sep 15, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

and

and -> or #Closed

status = 1
Copy link
Collaborator

@qiluo-msft qiluo-msft Sep 14, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

status = 1

This is a general function, so hide information into status 0/1 is not recommended. Suggest return an array of status as the first element in the returned pair. #Closed

if output[-1:] == '\n':
output = output[:-1]
return (status, output)