mirror of
https://github.com/projectacrn/acrn-hypervisor.git
synced 2025-11-19 01:53:17 +00:00
6f96614e6f
This patch is to fix Bandit scan issue b313-b320 which is vulnerable to XML attacks when parsing untrusted XML data. I replace lxml.etree with the equivalent defusedxml package. I confirm it works after making a Bandit scan, building the configurator and compiling the acrn. Signed-off-by: dongpingx <dongpingx.wu@intel.com> Tracked-On: #8717
board_parser.py will collect all board related info and then generate a board info file for acrn-config host tool usage. usage: python3 board_inspector.py <board_name> [--out board_info_file] board_name : the name of board that run ACRN hypervisor, like apl-up2/nuc7i7dnb. It will be used as name of the board configurations folder which created by acrn-config host tool. board_info_file : (optional) the name of board info file. if it is not specified, a name of <board_name>.xml will be generated under the current working directory by default. Please run this script under native Linux environment with root privilege. OS requirement: Release: Ubuntu 18.04+ Tools: cpuid, rdmsr, lspci, lxml, dmidecode (optional) kernel cmdline: "iomem=relaxed intel_idle.max_cstate=0 intel_pstate=disable" or "idle=nomwait iomem=relaxed intel_idle.max_cstate=0 intel_pstate=disable" for Apollo Lake