Update of webmin fails: [ebuild U ] app-admin/webmin-1.441 [1.400-r1] USE="apache2 mysql pam ssl -minimal -postgres" 0 kB >>> Source unpacked. >>> Compiling source in /mnt/hda5/tmp/portage/app-admin/webmin-1.441/work/webmin-1.441 ... >>> Source compiled. >>> Test phase [not enabled]: app-admin/webmin-1.441 >>> Install webmin-1.441 into /mnt/hda5/tmp/portage/app-admin/webmin-1.441/image/ category app-admin >>> Completed installing webmin-1.441 into /mnt/hda5/tmp/portage/app-admin/webmin-1.441/image/ --------------------------- ACCESS VIOLATION SUMMARY --------------------------- LOG FILE = "/var/log/sandbox/sandbox-28496.log" open_wr: /dev/mapper/control (symlink to /dev/device-mapper) open_wr: /etc/lvm/cache/.cache.tmp -------------------------------------------------------------------------------- >>> Failed to emerge app-admin/webmin-1.441 Portage 2.2_rc17 (default/linux/x86/2008.0/desktop, gcc-4.1.2, glibc-2.6.1-r0, 2.6.27-gentoo-r4 i686) ================================================================= System uname: Linux-2.6.27-gentoo-r4-i686-Intel-R-_Core-TM-2_Duo_CPU_T9300_@_2.50GHz-with-glibc2.0 Timestamp of tree: Fri, 05 Dec 2008 08:01:01 +0000 distcc 2.18.3 i686-pc-linux-gnu (protocols 1 and 2) (default port 3632) [disabled] ccache version 2.4 [disabled] app-shells/bash: 3.2_p33 dev-java/java-config: 1.3.7, 2.1.6 dev-lang/python: 2.5.2-r7 dev-python/pycrypto: 2.0.1-r6 dev-util/ccache: 2.4-r7 dev-util/cmake: 2.6.2 sys-apps/baselayout: 1.12.11.1 sys-apps/sandbox: 1.2.18.1-r2 sys-devel/autoconf: 2.13, 2.61-r2 sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6-r2, 1.10.1-r1 sys-devel/binutils: 2.18-r3 sys-devel/gcc-config: 1.4.0-r4 sys-devel/libtool: 1.5.26 virtual/os-headers: 2.6.27-r2 ACCEPT_KEYWORDS="x86" CBUILD="i686-pc-linux-gnu" CFLAGS="-march=i686 -O2 -pipe" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/3.5/env /usr/kde/3.5/share/config /usr/kde/3.5/shutdown /usr/kde/4.1/env /usr/kde/4.1/share/config /usr/kde/4.1/shutdown /usr/share/config /var/bind /var/lib/hsqldb" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/fonts/fonts.conf /etc/gconf /etc/php/apache2-php5/ext-active/ /etc/php/cgi-php5/ext-active/ /etc/php/cli-php5/ext-active/ /etc/revdep-rebuild /etc/splash /etc/terminfo /etc/texmf/web2c /etc/udev/rules.d" CXXFLAGS="-march=i686 -O2 -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="distlocks fixpackages parallel-fetch preserve-libs protect-owned sandbox sfperms strict unmerge-orphans" GENTOO_MIRRORS="http://distfiles.gentoo.org http://distro.ibiblio.org/pub/linux/distributions/gentoo" LANG="de_DE" LC_ALL="de_DE@euro" LDFLAGS="-Wl,-O1" LINGUAS="de" MAKEOPTS="" PKGDIR="/usr/portage/packages" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/portage/local/layman/webapps-experimental /usr/portage/local/layman/sunrise /usr/portage/local/layman/jokey /usr/local/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="7zip X X509 a52 aac accessibility acl acpi activefilter additions ads alsa amarok apache2 apm archive arts artworkextra ass atmo audacious audiofile autoipd automount avahi beagle berkdb bidi bluetooth bonjour bugzilla bzip2 c++ cairo calendar cardbus cdaudio cdda cddb cdparanoia cdr cdrom cgi chipcard chm clamav cli clucene colordiff cpufreq cracklib crypt css ctype cups curl cvs cxx daap dbox2 dbus dc1394 deprecated designer-plugin device-mapper dga dhcp dia dialup directfb discouraged disk-partition divx dmi dmx dri dso dts dv dvb dvd dvdr dvdread eds emboss emf enca encode epson esd evo exif exiv2 expat extras faac faad fam fastbuild fat fax fbcon fbcondecor festival ffmpeg fftw firefox3 flac floppy fontconfig foomaticdb force-cgi-redirect fortran freebox ftp fuse gd gdbm gecko geldkarte geoip gif gimp git glade glib glitz glut gmp gnome gnome-keyring gnutls gphoto2 gpm gps graphviz groupwise gs gsm gstreamer gtk gtkhtml guile gzip hal hbci hddtemp hdri hfs howl-compat htmlhandbook httpd hvm icecast iconv icq icu id3 id3tag idea idn ieee1394 imagemagick imap imlib infowidget inkjar innodb intel ipod ipv6 irda irmc isdn isdnlog jabber jack java javascript jbig jfs joystick jpeg jpeg2k kde kde4 kdecards kdeenablefinal kdehiddenvisibility kdepim kdeprefix kerberos kexi kig-scripting kontact krb4 ktts kvm lame laptop latin1 lcd lcms ldap libass libdsk libnotify libsamplerate libv4l2 libvisual lirc live lm_sensors logrotate loop-aes lua lvm lvm2 lzo mad mailwrapper matroska matrox mbox mbrola mdnsresponder-compat mediaplayer memlimit metric midi mikmod mixer mjpeg mmap mmx mmxext mng modules moneyplex mono moonlight motif mozdevelop moznopango mp2 mp3 mp4 mp4live mpd mpeg mpeg2 mplayer msn mtp musicbrainz mysql nas ncurses nepomuk netboot network networking networkmanager nforce2 nfs nls nntp nptl nptlonly nsplugin ntfs nvidia nvtv oav ocaml ogg ogm openct openexr opengl openvpn oss pam parport parted pascal pch pcmcia pcre pda pdf perl php pike plasma plotutils pmu png pop3d portaudio posix postscript povray ppds pppd pptp pvr python qt3 qt3support qt4 quicktime quotas radio radius rar raw rc5 rdesktop readline realmedia reflection regex reiser4 reiserfs remote remoteosd replytolist rle rss samba sasl scanner schroedinger screen sdl semantic-desktop sendmail serial server session simplexml skins slang slp smartcard smp sms sndfile snes snmp soap sockets sound sox spamassassin spell spl sql sqlite sqlite3 srt sse sse2 ssl startup-notification stream subversion svg svga swat syslog taglib tcl tcpd teletext templates theora threads threadsafe thunderbird tidy tiff tk tokenizer toolbar tools tordns transcode translator truetype tv tvtime twolame unicode unsupported upnp ups usb utempter v4l v4l2 vboxwebsrv vcd vcdinfo vdr videos vidix visualization vlm vnc vorbis wavpack webdav webdav-neon webinterface webkit wifi win32codecs winpopup wireshark wma wmf wmp wxwindows x264 x86 xattr xcb xcomposite xen xfs xine xinerama xmame xml xmlreader xmlwriter xorg xpm xscreensaver xsl xulrunner xv xvid xvmc zeroconf zip zlib zvbi" ALSA_CARDS="ali5451 als4000 atiixp atiixp-modem bt87x ca0106 cmipci emu10k1 emu10k1x ens1370 ens1371 es1938 es1968 fm801 hda-intel intel8x0 intel8x0m maestro3 trident usb-audio via82xx via82xx-modem ymfpci" ALSA_PCM_PLUGINS="adpcm alaw copy dshare dsnoop extplug file hooks ladspa lfloat linear meter mmap_emul mulaw multi null rate route share shm asym dmix empty iec958 ioplug plug softvol" APACHE2_MODULES="actions alias auth_basic auth_digest authn_anon authn_dbd authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache dav dav_fs dav_lock dbd deflate dir disk_cache env expires ext_filter file_cache filter headers ident imagemap include info log_config logio mem_cache mime mime_magic negotiation proxy proxy_ajp proxy_balancer proxy_connect proxy_http rewrite setenvif so speling status unique_id userdir usertrack vhost_alias" ELIBC="glibc" INPUT_DEVICES="keyboard mouse evdev joystick vmmouse" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LINGUAS="de" LIRC_DEVICES="all" USERLAND="GNU" VIDEO_CARDS="fbdev i740 intel mga nv v4l vesa vmware nvidia radeonhd" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, FFLAGS, INSTALL_MASK, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS Reproducible: Always
*** Bug 277048 has been marked as a duplicate of this bug. ***
app-admin/webmin-1.490 still exhibits this: --------------------------- ACCESS VIOLATION SUMMARY --------------------------- LOG FILE "/var/log/sandbox/sandbox-19966.log" VERSION 1.0 FORMAT: F - Function called FORMAT: S - Access Status FORMAT: P - Path as passed to function FORMAT: A - Absolute Path (not canonical) FORMAT: R - Canonical Path FORMAT: C - Command Line F: open_wr S: deny P: /dev/mapper/control A: /dev/mapper/control R: /dev/mapper/control C: vgdisplay --version F: open_wr S: deny P: /etc/lvm/cache/.cache.tmp A: /etc/lvm/cache/.cache.tmp R: /etc/lvm/cache/.cache.tmp C: vgdisplay --version --------------------------------------------------------------------------------
I did an strace of the offending command, vgdisplay --version. For no good reason, vgdisplay (a symlink to lvm) opens the two files (/etc/mapper/control and /etc/lvm/cache/.cache.tmp, which it later renames to /etc/lvm/cache/.cache) for read/write. This is what the sandbox is complaining about. If these accesses were allowed, I don't think there would be any problem, though this is only a workaround, since the root cause is a programming error in vgdisplay (lvm). It isn't necessary to write to these files to simply answer the --version request, so I think that lvm should be recoded for the --version case.
*** Bug 287752 has been marked as a duplicate of this bug. ***
*** Bug 287844 has been marked as a duplicate of this bug. ***
*** Bug 288207 has been marked as a duplicate of this bug. ***
Please sync, and re-emerge app-admin/webmin-1.490. Keep in mind it should be fixed the sandbox violation which includes ONLY the command "vgdisplay --version" , for other sandbox violations, check bug 194305 and bug 267996
WORKSFORME! thx.
Fixed
