From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-python+bounces-673-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id 3B82E138D14
	for <garchives@archives.gentoo.org>; Sun, 12 Jul 2015 19:32:06 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id C29A0E08E1;
	Sun, 12 Jul 2015 19:32:05 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 5ED92E08EE
	for <gentoo-python@lists.gentoo.org>; Sun, 12 Jul 2015 19:32:04 +0000 (UTC)
Received: from naomi.gilbertsystems.net (d192-24-148-25.try.wideopenwest.com [24.192.25.148])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits))
	(No client certificate requested)
	(Authenticated sender: floppym)
	by smtp.gentoo.org (Postfix) with ESMTPSA id 00EAC34087C;
	Sun, 12 Jul 2015 19:32:02 +0000 (UTC)
From: Mike Gilbert <floppym@gentoo.org>
To: gentoo-python@lists.gentoo.org
Cc: python@gentoo.org
Subject: [gentoo-python] [PATCH] distutils-r1: Prevent sandbox violations due to stale pyc files
Date: Sun, 12 Jul 2015 15:32:00 -0400
Message-Id: <1436729520-27910-1-git-send-email-floppym@gentoo.org>
X-Mailer: git-send-email 2.4.5
Precedence: bulk
List-Post: <mailto:gentoo-python@lists.gentoo.org>
List-Help: <mailto:gentoo-python+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-python+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-python+subscribe@lists.gentoo.org>
List-Id: Discussions centering around the Python ecosystem in Gentoo Linux <gentoo-python.gentoo.org>
X-BeenThere: gentoo-python@gentoo.org
X-BeenThere: gentoo-python@lists.gentoo.org
X-Archives-Salt: 8581a263-cc4d-4a69-b40e-ef1512950adf
X-Archives-Hash: 37f7ae6d1561bdc336bfbde1588ed18f

Just add the entire python directory to SANDBOX_PREDICT.

Should resolve bugs like 508234 and 554252.

--- distutils-r1.eclass
+++ distutils-r1.eclass
@@ -505,7 +505,7 @@
 
 	# python likes to compile any module it sees, which triggers sandbox
 	# failures if some packages haven't compiled their modules yet.
-	addpredict "$(python_get_sitedir)"
+	addpredict "${EPREFIX}/usr/$(get_libdir)/${EPYTHON}"
 	addpredict /usr/lib/portage/pym
 	addpredict /usr/local # bug 498232