Summary: | dev-libs/efl: `efreetd` triggers sandbox denied mkdir /run/user/1000/.ecore | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Michael Jones <gentoo> |
Component: | Current packages | Assignee: | enlightenment+disabled |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | brankob, jrmalaq, Sander.Sweers, Sergiy.Borodych |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: |
https://bugs.gentoo.org/show_bug.cgi?id=587868 https://github.com/gentoo/gentoo/pull/8700 |
||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: | build.log.gz |
Description
Michael Jones
2015-08-12 21:15:33 UTC
Created attachment 408892 [details]
build.log.gz
ymir jonesmz # cat /var/log/sandbox/sandbox-8965.log VERSION 1.0 FORMAT: F - Function called FORMAT: S - Access Status FORMAT: P - Path as passed to function FORMAT: A - Absolute Path (not canonical) FORMAT: R - Canonical Path FORMAT: C - Command Line F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd F: mkdir S: deny P: /run/user/1000/.ecore A: /run/user/1000/.ecore R: /run/user/1000/.ecore C: /usr/bin/efreetd Getting the same issue tried 1.13.1 and 1.15.0 emerge --info Portage 2.2.20 (python 2.7.9-final-0, default/linux/amd64/13.0, gcc-4.8.4, glibc-2.20-r2, 3.10.7-gentoo x86_64) ================================================================= System uname: Linux-3.10.7-gentoo-x86_64-Intel-R-_Core-TM-_i7-3930K_CPU_@_3.20GHz-with-gentoo-2.2 KiB Mem: 32892132 total, 28528476 free KiB Swap: 9437180 total, 9437180 free Timestamp of repository gentoo: Thu, 13 Aug 2015 16:15:01 +0000 sh bash 4.3_p33-r2 ld GNU ld (Gentoo 2.24 p1.4) 2.24 app-shells/bash: 4.3_p33-r2::gentoo dev-java/java-config: 2.2.0::gentoo dev-lang/perl: 5.20.2::gentoo dev-lang/python: 2.7.9-r1::gentoo, 3.2.5-r6::gentoo, 3.3.5-r1::gentoo, 3.4.1::gentoo dev-util/cmake: 3.2.2::gentoo dev-util/pkgconfig: 0.28-r2::gentoo sys-apps/baselayout: 2.2::gentoo sys-apps/openrc: 0.17::gentoo sys-apps/sandbox: 2.6-r1::gentoo sys-devel/autoconf: 2.13::gentoo, 2.69::gentoo sys-devel/automake: 1.10.3::gentoo, 1.11.6-r1::gentoo, 1.12.6::gentoo, 1.13.4::gentoo, 1.14.1::gentoo, 1.15::gentoo sys-devel/binutils: 2.24-r3::gentoo sys-devel/gcc: 4.6.3::gentoo, 4.7.3-r1::gentoo, 4.8.4::gentoo sys-devel/gcc-config: 1.7.3::gentoo sys-devel/libtool: 2.4.6::gentoo sys-devel/make: 4.1-r1::gentoo sys-kernel/linux-headers: 3.18::gentoo (virtual/os-headers) sys-libs/glibc: 2.20-r2::gentoo Repositories: gentoo location: /usr/portage sync-type: rsync sync-uri: rsync://rsync.us.gentoo.org/gentoo-portage priority: -1000 ACCEPT_KEYWORDS="amd64" ACCEPT_LICENSE="* -@EULA PUEL" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-march=native -O2 -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/gnupg/qualified.txt" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/dconf /etc/env.d /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo /etc/texmf/language.dat.d /etc/texmf/language.def.d /etc/texmf/updmap.d /etc/texmf/web2c" CXXFLAGS="-march=native -O2 -pipe" DISTDIR="/usr/portage/distfiles" FCFLAGS="-O2 -pipe" FEATURES="assume-digests binpkg-logs config-protect-if-modified distlocks ebuild-locks fixlafiles merge-sync news parallel-fetch preserve-libs protect-owned sandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch userpriv usersandbox usersync" FFLAGS="-O2 -pipe" GENTOO_MIRRORS="ftp://ftp.ucsb.edu/pub/mirrors/linux/gentoo/ http://mirror.usu.edu/mirrors/gentoo/" LDFLAGS="-Wl,-O1 -Wl,--as-needed" MAKEOPTS="-j12" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --omit-dir-times --compress --force --whole-file --delete --stats --human-readable --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" USE="X a52 aac acl acpi alsa amd64 apache2 bash-completion bcmath berkdb bluetooth bzip2 cdda cddb cdparanoia cdr cli connman cracklib crypt cxx dbus dri dv dvd dvdr encode exif ffmpeg firefox flac fontconfig fortran gd gdbm gif gtk gzip hybrid-auth iconv imagemagick ipv6 jpeg keymap ladspa lame libnotify mmx mmxext modules mozilla mp3 mp4 mpeg mplayer multilib mysql ncurses nls nptl nsplugin ogg opengl openmp pam pcre pdf php png python qt3support qt4 quicktime readline recode scanner sdl session sndfile sound sox sqlite3 sse sse2 ssl static-libs svg syslog taglib tcl tcpd theora threads tidy tiff truetype udev unicode usb v4l v4l2 vdpau virtualbox wifi xcomposite xinerama xml xv xvid zlib" ABI_X86="64 32" ALSA_CARDS="hda-intel usb-audio" APACHE2_MODULES="authn_core authz_core socache_shmcb unixd actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache cgi cgid dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" CALLIGRA_FEATURES="kexi words flow plan sheets stage tables krita karbon braindump author" CAMERAS="ptp2" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" CPU_FLAGS_X86="mmx mmxext sse sse2" ELIBC="glibc" GPSD_PROTOCOLS="ashtech aivdm earthmate evermore fv18 garmin garmintxt gpsclock itrax mtk3301 nmea ntrip navcom oceanserver oldstyle oncore rtcm104v2 rtcm104v3 sirf superstar2 timing tsip tripmate tnt ublox ubx" INPUT_DEVICES="evdev wacom keyboard mouse synaptics" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LIBREOFFICE_EXTENSIONS="presenter-console presenter-minimizer" LINGUAS="en" OFFICE_IMPLEMENTATION="libreoffice" PHP_TARGETS="php5-5" PYTHON_SINGLE_TARGET="python2_7" PYTHON_TARGETS="python2_7 python3_4" RUBY_TARGETS="ruby19 ruby20" SANE_BACKENDS="plustek" USERLAND="GNU" VIDEO_CARDS="nvidia v4l virtualbox" XTABLES_ADDONS="quota2 psd pknock lscan length2 ipv4options ipset ipp2p iface geoip fuzzy condition tee tarpit sysrq steal rawnat logmark ipmark dhcpmac delude chaos account" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, INSTALL_MASK, LANG, LC_ALL, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS, USE_PYTHON output of error: make[3]: *** Waiting for unfinished jobs.... Makefile:2589: recipe for target 'elm_app_server.eo.c' failed make[3]: *** [elm_app_server.eo.c] Error 127 Makefile:2589: recipe for target 'elm_actionslider.eo.c' failed make[3]: *** [elm_actionslider.eo.c] Error 127 Makefile:2589: recipe for target 'elm_app_client.eo.c' failed make[3]: *** [elm_app_client.eo.c] Error 127 Makefile:2589: recipe for target 'elm_app_client_view.eo.c' failed make[3]: *** [elm_app_client_view.eo.c] Error 127 /opt/efl/bin/eolian_gen: symbol lookup error: /opt/efl/bin/eolian_gen: undefined symbol: eolian_file_parse Makefile:2589: recipe for target 'elm_bg.eo.c' failed make[3]: *** [elm_bg.eo.c] Error 127 /opt/efl/bin/eolian_gen: symbol lookup error: /opt/efl/bin/eolian_gen: undefined symbol: eolian_file_parse Makefile:2589: recipe for target 'elm_atspi_app_object.eo.c' failed make[3]: *** [elm_atspi_app_object.eo.c] Error 127 /opt/efl/bin/eolian_gen: symbol lookup error: /opt/efl/bin/eolian_gen: undefined symbol: eolian_file_parse Makefile:2589: recipe for target 'elm_app_server_view.eo.c' failed make[3]: *** [elm_app_server_view.eo.c] Error 127 /opt/efl/bin/eolian_gen: symbol lookup error: /opt/efl/bin/eolian_gen: undefined symbol: eolian_file_parse Makefile:2589: recipe for target 'elm_box.eo.c' failed make[3]: *** [elm_box.eo.c] Error 127 make[3]: Leaving directory '/var/tmp/portage/media-libs/elementary-1.13.1/work/elementary-1.13.1/src/lib' Makefile:426: recipe for target 'all-recursive' failed make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory '/var/tmp/portage/media-libs/elementary-1.13.1/work/elementary-1.13.1/src' Makefile:620: recipe for target 'all-recursive' failed make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory '/var/tmp/portage/media-libs/elementary-1.13.1/work/elementary-1.13.1' Makefile:503: recipe for target 'all' failed make: *** [all] Error 2 * ERROR: media-libs/elementary-1.13.1::gentoo failed (compile phase): * emake failed * * If you need support, post the output of `emerge --info '=media-libs/elementary-1.13.1::gentoo'`, * the complete build log and the output of `emerge -pqv '=media-libs/elementary-1.13.1::gentoo'`. * The complete build log is located at '/var/tmp/portage/media-libs/elementary-1.13.1/temp/build.log'. * The ebuild environment file is located at '/var/tmp/portage/media-libs/elementary-1.13.1/temp/environment'. * Working directory: '/var/tmp/portage/media-libs/elementary-1.13.1/work/elementary-1.13.1' * S: '/var/tmp/portage/media-libs/elementary-1.13.1/work/elementary-1.13.1' I'm not certain that the compile failures are the same in our two cases. Have you confirmed that you've got the same version of EFL installed as elementary? Yea, no idea why its working now.. :| Apologies.. does it work if you manually mkdir /run/user/1000/.ecore immediately before emerging? I created the directory, and then emerged elementary-1.15.0 again. No obvious change in the build log :( Still fails with elementary-1.15.1 . Seems to be the same cause. Same here, see comment (2). However, I found a workaround (see end of my comment).
Those "ACCESS DENIED" remarks are placed in the build log as well.
Excerpt:
__________________________________________________________________________
make[3]: Entering directory '/var/tmp/portage/media-libs/elementary-1.15.0/work/elementary-1.15.0/data/edje_externals'
/usr/bin/edje_cc -v -fastdecomp -id . -fd . -id ../../data/edje_externals -fd
../../data/edje_externals \
../../data/edje_externals/icons.edc \
../../data/edje_externals/icons.edj
* ACCESS DENIED: mkdir: /run/user/1000/.ecore
edje_cc: Wrote 734 bytes ( 1Kb) for "edje_file" header
edje_cc: header: 0.00051
edje_cc: groups: 0.00254
edje_cc: scripts: 0.00000
edje_cc: lua scripts: 0.00000
edje_cc: source: 0.00004
edje_cc: fontmap: 0.00001
__________________________________________________________________________
Manually creating that directory didn't help here. Creating the directory and giving it full permissions (777) didn't change anything. Not creating the directory and giving /run/user/1000 recursive 777 permission created a difference, that is, the subdirectory of ecore, efreetd couldn't be created.
__________________________________________________________________________
make[3]: Entering directory '/var/tmp/portage/media-libs/elementary-1.15.0/work/elementary-1.15.0/data/edje_externals'
/usr/bin/edje_cc -v -fastdecomp -id . -fd . -id ../../data/edje_externals -fd ../../data/edje_externals \
../../data/edje_externals/icons.edc \
../../data/edje_externals/icons.edj
* ACCESS DENIED: mkdir: /run/user/1000/.ecore/efreetd
edje_cc: Wrote 734 bytes ( 1Kb) for "edje_file" header
edje_cc: header: 0.00046
edje_cc: groups: 0.00238
edje_cc: scripts: 0.00000
edje_cc: lua scripts: 0.00000
edje_cc: source: 0.00004
edje_cc: fontmap: 0.00001
__________________________________________________________________________
Subsequently
mkdir -p /run/user/1000/.ecore/efreetd/
chmod -R 777 /run/user/1000/.ecore
leads to:
__________________________________________________________________________
make[3]: Entering directory '/var/tmp/portage/media-libs/elementary-1.15.0/work/elementary-1.15.0/data/edje_externals'
/usr/bin/edje_cc -v -fastdecomp -id . -fd . -id ../../data/edje_externals -fd ../../data/edje_externals \
../../data/edje_externals/icons.edc \
../../data/edje_externals/icons.edj
* ACCESS DENIED: unlink: /run/user/1000/.ecore/efreetd/0
edje_cc: Wrote 734 bytes ( 1Kb) for "edje_file" header
edje_cc: header: 0.00169
edje_cc: groups: 0.00984
edje_cc: scripts: 0.00002
edje_cc: lua scripts: 0.00000
edje_cc: source: 0.00020
edje_cc: fontmap: 0.00006
__________________________________________________________________________
The sandbox log changes (compared to the original from Michael Jones) accordingly:
__________________________________________________________________________
>>> Source compiled.
* --------------------------- ACCESS VIOLATION SUMMARY ---------------------------
* LOG FILE: "/var/log/sandbox/sandbox-2524.log"
*
VERSION 1.0
FORMAT: F - Function called
FORMAT: S - Access Status
FORMAT: P - Path as passed to function
FORMAT: A - Absolute Path (not canonical)
FORMAT: R - Canonical Path
FORMAT: C - Command Line
F: unlink
S: deny
P: /run/user/1000/.ecore/efreetd/0
A: /run/user/1000/.ecore/efreetd/0
R: /run/user/1000/.ecore/efreetd/0
C: /usr/bin/efreetd
__________________________________________________________________________
workaround:
The issue listed above applies when logging in as normal user, opening the terminal, getting root via "su" without changing getting the new environment for root ("su -"). If you log in as root in a terminal or change to root via "su -". I've rarely seen the missing environment causing this kind of issue.
So you should be able to work around this by:
mkdir -p /run/user/1000/.ecore/efreetd/
chmod -R 777 /run/user/1000/.ecore
(and then emerge -v enlightenment)
Had to both create the directory, chmod it, AND use a terminal that I assumed root via "su -" Logging in directly as root didn't work, and neither did using "su" without the -. At least I've gotten it compiled now, so that's nice. I'm getting this error now with Elementary 1.15.2, but none of the suggested workarounds are working. I've tried running: mkdir -p /run/user/1000/.ecore/efreetd/ chmod -R 777 /run/user/1000/.ecore and it didn't work, and I always run emerge as root anyway so that part didn't really affect me. *** Bug 577672 has been marked as a duplicate of this bug. *** I tried FEATURES="-usersandbox" emerge etcetc It works for me, at least with enlightenment-0.20.{5,6}. Haven't tried others. *** Bug 570376 has been marked as a duplicate of this bug. *** This is unfortunately common with packages using xdg/gio. Below should fix it for all folks here. ------------------------------------------------------------------------ --- efl-1.18.4.ebuild.orig 2017-10-07 01:27:48.591416049 +0200 +++ efl-1.18.4.ebuild 2017-10-07 01:24:58.508430820 +0200 @@ -16,7 +16,7 @@ KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~sh ~sparc ~x86 ~amd64-fbsd ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x86-macos ~x64-solaris ~x86-solaris" fi -inherit enlightenment pax-utils +inherit enlightenment pax-utils xdg-utils DESCRIPTION="Enlightenment Foundation Libraries all-in-one package" @@ -167,6 +167,11 @@ S=${WORKDIR}/${MY_P} +pkg_setup() { + # Get clean environment, see bug 557408 + xdg_environment_reset +} + src_prepare() { enlightenment_src_prepare ------------------------------------------------------------------------ fixed in dev-libs/efl-1.20.7 |