e2lib: don't leak writefunc file descriptor into chroot

Signed-off-by: Tobias Ulmer <tu@emlix.com>

diff --git a/generic/e2lib.lua b/generic/e2lib.lua
index 36d3cc02b5ece293558fc247692fe12f4598ed8f..b0cf1ac96572e71106ecea7846e77190356a09fc 100644 (file)
--- a/generic/e2lib.lua
+++ b/generic/e2lib.lua
@@ -1142,6 +1142,12 @@ function e2lib.callcmd(argv, fdctv, workdir, envdict)
                 fdct._p.rfd = rc
                 fdct._p.wfd = re
                 fdct._p.buffer = ""
+
+                rc, re = eio.cloexec(fdct._p.wfd)
+                if not rc then
+                    return false, re
+                end
+
             elseif fdct.istype == "readfo" then
             else
                 return false, err.new("while setting up parent file " ..