Skip to content

feat: inherit PYTHONSAFEPATH env var from outer process#2076

Merged
rickeylev merged 2 commits intobazel-contrib:mainfrom
rickeylev:feat.allow.env.override
Jul 19, 2024
Merged

feat: inherit PYTHONSAFEPATH env var from outer process#2076
rickeylev merged 2 commits intobazel-contrib:mainfrom
rickeylev:feat.allow.env.override

Conversation

@rickeylev
Copy link
Collaborator

@rickeylev rickeylev commented Jul 18, 2024
edited
Loading

By default, PYTHONSAFEPATH is enabled to help prevent imports being found where they
shouldn't be. However, this behavior can't be disabled, which makes it harder to use
a py_binary when the non-safe path behavior is explicitly desired.

To fix, the bootstrap now respects the caller environment's PYTHONSAFEPATH environment variable, if set. This allows the callers to set PYTHONSAFEPATH= (empty string) to
override the default behavior that enables it.

Fixes #2060

@rickeylev rickeylev requested a review from aignas as a code owner July 18, 2024 18:39
@rickeylev rickeylev force-pushed the feat.allow.env.override branch from 7687eb7 to f730df0 Compare July 18, 2024 18:44
@rickeylev rickeylev changed the title feat: allow overriding PYTHONSAFEPATH env var feat: inherit PYTHONSAFEPATH env var from outer process Jul 18, 2024
@rickeylev rickeylev enabled auto-merge July 19, 2024 15:44
@rickeylev rickeylev added this pull request to the merge queue Jul 19, 2024
Merged via the queue into bazel-contrib:main with commit ecad092 Jul 19, 2024
@allsey87
Copy link

allsey87 commented Jul 19, 2024

I will check if this solves #2060, but I have a hunch that just setting PYTHONSAFEPATH as empty (which is required for the opt-out to work) will still be enough to trigger this behavior in Python.

@rickeylev
Copy link
Collaborator Author

rickeylev commented Jul 19, 2024

One of the tests does exactly that and checks the interpreter flag to verify that safe path is disabled, so it should work :). Feel free to re-open the issue with a repro if you find otherwise.

Actually, I'm going to re-open the issue for now. This only fixes it for --bootstrap_impl=script, not windows, and, come to think of it, certain types of zips might also still have the bug.

@rickeylev rickeylev deleted the feat.allow.env.override branch July 19, 2024 19:00
@rickeylev rickeylev mentioned this pull request Jul 19, 2024
Merged
@rickeylev
Copy link
Collaborator Author

rickeylev commented Jul 19, 2024

Doh, this introduced a bug that disable safe path by default unless it was opted in to. That'll be fixed shortly in #2073.

github-merge-queue bot pushed a commit that referenced this pull request Jul 19, 2024
@rickeylev
fix: insert user imports before runtime site-packages (#2073)
ae2eb70 
Previously, all the user import paths were put at the end of sys.path.
This was done so that
user import paths didn't hide stdlib modules. However, a side-effect is
that user import
paths came after the runtime's site-packages directory. This prevented
user imports from
overriding non-stdlib modules included in a runtime (e.g. pip).

To fix, we look for the runtime site-packages directory, then insert the
user import paths
before it. A test is used to ensure that the ordering is `[stdlib, user,
runtime site-packages]`

Also fixes a bug introduced by #2076: safe path was being disabled by
default

Fixes #2064
@allsey87 allsey87 mentioned this pull request Aug 15, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aignas aignas aignas approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add an option to opt-out of PYTHONSAFEPATH

3 participants

@rickeylev @allsey87 @aignas