367629d289
Replaces our serialization of child process errors via Marshal with JSON, preventing unintentional or malicious code execution outside of the build sandbox. Additionally, adds tests for the new behavior.
22 lines
501 B
Ruby
22 lines
501 B
Ruby
old_trap = trap("INT") { exit! 130 }
|
|
|
|
require "global"
|
|
require "debrew"
|
|
require "fcntl"
|
|
require "socket"
|
|
|
|
begin
|
|
error_pipe = UNIXSocket.open(ENV["HOMEBREW_ERROR_PIPE"], &:recv_io)
|
|
error_pipe.fcntl(Fcntl::F_SETFD, Fcntl::FD_CLOEXEC)
|
|
|
|
trap("INT", old_trap)
|
|
|
|
formula = ARGV.resolved_formulae.first
|
|
formula.extend(Debrew::Formula) if ARGV.debug?
|
|
formula.run_post_install
|
|
rescue Exception => e # rubocop:disable Lint/RescueException
|
|
error_pipe.puts e.to_json
|
|
error_pipe.close
|
|
exit! 1
|
|
end
|