projects / portage.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 50c0a9e)
Use bash to spawn FETCHCOMMAND under selinux since most other binaries are forbidden...
authorZac Medico <zmedico@gentoo.org>
Tue, 22 May 2007 13:20:54 +0000 (13:20 -0000)
committerZac Medico <zmedico@gentoo.org>
Tue, 22 May 2007 13:20:54 +0000 (13:20 -0000)
svn path=/main/branches/2.1.2/; revision=6577

pym/portage.py patch | blob | history

diff --git a/pym/portage.py b/pym/portage.py
index 0abaf312628ba01b806d167364861ca9f115eecd..8df84d5b5064f01931a1910c66c6df40e2c662f5 100644 (file)
--- a/pym/portage.py
+++ b/pym/portage.py
@@ -2595,6 +2595,8 @@ def fetch(myuris, mysettings, listonly=0, fetchonly=0, locks_in_subdir=".locks",
                                                        con = selinux.getcontext()
                                                        con = con.replace(mysettings["PORTAGE_T"], mysettings["PORTAGE_FETCH_T"])
                                                        selinux.setexec(con)
+                                                       # bash is an allowed entrypoint, while most binaries are not
+                                                       myfetch = ["bash", "-c", "exec \"$@\"", myfetch[0]] + myfetch
 
                                                myret = portage_exec.spawn(myfetch,
                                                        env=mysettings.environ(), **spawn_keywords)
Unnamed repository; edit this file 'description' to name the repository.