From e56d668ade5f08ac5630b92431da77e106a096c7 Mon Sep 17 00:00:00 2001
From: Matt Clay <matt@mystile.com>
Date: Sun, 31 Jan 2016 02:22:59 -0800
Subject: [PATCH] Split shell command to avoid use_unsafe_shell.

This mirrors a nearly identical change made to apt_repository.py.

Also removes the use of apt-get --force-yes as it can be dangerous
and should not be necessary (apt_repository.py does not use it).

Repeating the explanation from the apt_respository change below:

Since use_unsafe_shell is suspicious from a security point
of view (or it wouldn't be unsafe), the less we have, the less
code we have to thoroughly inspect for a security audit.

In this case, the '&&' can be replaced by doing 2 calls to run_command.
---
 packaging/os/apt.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/packaging/os/apt.py b/packaging/os/apt.py
index 84a019ae203..9e99a436294 100755
--- a/packaging/os/apt.py
+++ b/packaging/os/apt.py
@@ -567,7 +567,8 @@ def main():
 
     if not HAS_PYTHON_APT:
         try:
-            module.run_command('apt-get update && apt-get install python-apt -y -q --force-yes', use_unsafe_shell=True, check_rc=True)
+            module.run_command('apt-get update', check_rc=True)
+            module.run_command('apt-get install python-apt -y -q', check_rc=True)
             global apt, apt_pkg
             import apt
             import apt.debfile