build_distrib: preserve executable permissions in wheel zip entries

linesight · claude · linesight · commit a68d6b1b09ad · 2026-05-03T09:49:36.000-07:00
ZipFile.write() does not preserve Unix file mode bits, so the subprocess
binary inside the wheel lost its +x permission. pip extracts it as a
non-executable file, and CEF cannot launch the renderer process, leaving
browser windows blank. Use ZipInfo.from_file() which stores the real
file mode in the zip entry's external_attr field.

Co-Authored-By: Claude Opus 4.7 &lt;noreply@anthropic.com&gt;
diff --git a/tools/build_distrib.py b/tools/build_distrib.py
@@ -79,7 +79,8 @@ def _add_bytes(arcname, data):
                 digest = base64.urlsafe_b64encode(
                     hashlib.sha256(data).digest()).rstrip(b"=").decode()
                 records.append((arcname, "sha256=" + digest, str(len(data))))
-                zf.write(filepath, arcname)
+                info = zipfile.ZipInfo.from_file(filepath, arcname)
+                zf.writestr(info, data)
 
         # dist-info/METADATA
         _add_bytes(dist_info + "/METADATA", (
