`sudo -k` before calling build scripts

Potentially build scripts would call sudo, if so we don't want that to automatically succeed just because the time-period in which sudo works is still active after a previous incantation. Closes Homebrew/homebrew#10629. In fact I don't see how this can have been the problem, but if this isn't the problem then I don't see what else can be the problem.
author: Max Howell 2012-05-15 01:56:33 -0400
committer: Max Howell 2012-05-15 01:56:33 -0400
commit: 1a63e9387539449bcd10e77eeb5b7a890213b8c7 (patch)
tree: 3fa55a4918dab16b2ef161409fd0282023aac7e7 /Library
parent: ec3615fec79043cb84dcd75da0f07cb85c8d240a (diff)
download: brew-1a63e9387539449bcd10e77eeb5b7a890213b8c7.tar.bz2
1 files changed, 5 insertions, 0 deletions
diff --git a/Library/Homebrew/build.rb b/Library/Homebrew/build.rb
index 319f58df9..ab1a44e6e 100755
--- a/Library/Homebrew/build.rb
+++ b/Library/Homebrew/build.rb
@@ -27,6 +27,11 @@ at_exit do
     # dev tools into /usr/bin as a default
     ENV.prepend 'PATH', MacOS.dev_tools_path, ':' unless ORIGINAL_PATHS.include? MacOS.dev_tools_path
 
+    # Force any future invocations of sudo to require the user's password to be
+    # re-entered. This is in-case any build script call sudo. Certainly this is
+    # can be inconvenient for the user. But we need to be safe.
+    system "/usr/bin/sudo -k"
+
     install(Formula.factory($0))
   rescue Exception => e
     if ENV['HOMEBREW_ERROR_PIPE']
author	Max Howell	2012-05-15 01:56:33 -0400
committer	Max Howell	2012-05-15 01:56:33 -0400
commit	1a63e9387539449bcd10e77eeb5b7a890213b8c7 (patch)
tree	3fa55a4918dab16b2ef161409fd0282023aac7e7 /Library
parent	ec3615fec79043cb84dcd75da0f07cb85c8d240a (diff)
download	brew-1a63e9387539449bcd10e77eeb5b7a890213b8c7.tar.bz2