Hello Li,
+-- On Mon, 1 Jul 2019, Li Qiang wrote --+
| You do two things here(avoid buffer formatting and get rid of calling
| shell), I would suggest you split these into split patch.
Both are related, 'helper_cmd' formatting was used with the shell invocation
as:
helper_cmd = "qemu-bridge-helper --use-vnet --fd=sv[1] --br=bridge"
execv("/bin/sh", "sh", "-c", helper_cmd, NULL);
The 'else' part wherein 'helper' is a /path/to/qemu-bridge-helper binary, it
is invoked without shell "sh" and 'helper_cmd' formatting.
Thank you.
--
Prasad J Pandit / Red Hat Product Security Team
47AF CE69 3A90 54AA 9045 1053 DD13 3D32 FE5B 041F
