From 1833897d18fe0930984215372e1343cff1531b61 Mon Sep 17 00:00:00 2001
From: lhinds <lhinds@redhat.com>
Date: Sat, 8 Jul 2017 16:51:27 +0100
Subject: Utilize yaml.safe_load

The patch changes instances of yaml.load with yaml.safe_load
which is more secure at blocking arbitrary code execution.

The following blog has a decent explaination:

https://www.kevinlondon.com/2015/08/15/dangerous-python-functions-pt2.html

Change-Id: I8201baab6cb31ab31228eca83134f87a57c2f5d2
Signed-off-by: lhinds <lhinds@redhat.com>
---
 deploy/reset_compute.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'deploy/reset_compute.py')

diff --git a/deploy/reset_compute.py b/deploy/reset_compute.py
index 86afc4f1..2e5103ba 100644
--- a/deploy/reset_compute.py
+++ b/deploy/reset_compute.py
@@ -20,7 +20,7 @@ def exec_cmd(cmd):
 def reset_baremetal(dha_info):
     print "reset_baremetal"
 
-    hosts_info = yaml.load(open(dha_info))
+    hosts_info = yaml.safe_load(open(dha_info))
     # print hosts_info
 
     ipmiUserDf = hosts_info.get('ipmiUser', 'root')
@@ -48,7 +48,7 @@ def reset_baremetal(dha_info):
 def reset_virtual(dha_info):
     print "reset_virtual"
 
-    hosts_info = yaml.load(open(dha_info))
+    hosts_info = yaml.safe_load(open(dha_info))
     print hosts_info
 
     hosts_list = hosts_info.get('hosts', [])
-- 
cgit 1.2.3-korg