firefox-bin does not start with message: ago@devil ~ $ firefox-bin /opt/firefox/firefox-bin: error while loading shared libraries: /opt/firefox/libxul.so: cannot make segment writable for relocation: Permission denied Should be a good idea mask it for hardened profile if it certainly not works?
*** Bug 372935 has been marked as a duplicate of this bug. ***
What version, can you paste 'emerge --info' ?
firefox 4 Portage 2.1.9.42 (hardened/linux/x86, gcc-4.4.5, libc-0-r0, 2.6.39-hardened-r2 i686) ================================================================= System uname: Linux-2.6.39-hardened-r2-i686-Intel-R-_Celeron-R-_M_CPU_430_@_1.73GHz-with-gentoo-2.0.2 Timestamp of tree: Mon, 20 Jun 2011 14:00:01 +0000 app-shells/bash: 4.1_p9 dev-lang/python: 2.7.1-r1, 3.1.3-r1 dev-util/cmake: 2.8.4-r1 sys-apps/baselayout: 2.0.2 sys-apps/openrc: 0.8.2-r1 sys-apps/sandbox: 2.4 sys-devel/autoconf: 2.65-r1 sys-devel/automake: 1.9.6-r3, 1.11.1 sys-devel/binutils: 2.20.1-r1 sys-devel/gcc: 4.4.5 sys-devel/gcc-config: 1.4.1-r1 sys-devel/libtool: 2.2.10 sys-devel/make: 3.82 sys-kernel/linux-headers: 2.6.36.1 sys-libs/glibc: 2.12.2 virtual/os-headers: 0 ACCEPT_KEYWORDS="x86" ACCEPT_LICENSE="*" CBUILD="i686-pc-linux-gnu" CFLAGS="-O2 -march=prescott -g0 -w" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/config /usr/share/gnupg/qualified.txt" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo" CXXFLAGS="-O2 -march=prescott -g0 -w" DISTDIR="/media/sources" EMERGE_DEFAULT_OPTS="--with-bdeps y" FEATURES="assume-digests binpkg-logs collision-protect distlocks fixlafiles fixpackages news parallel-fetch protect-owned sandbox sfperms split-log strict unknown-features-warn unmerge-logs unmerge-orphans userfetch" FFLAGS="" GENTOO_MIRRORS="http://distfiles.gentoo.org http://192.168.2.3" LANG="it_IT.UTF-8" LDFLAGS="-Wl,-O1 -Wl,--as-needed -Wl,--hash-style=gnu" LINGUAS="en en_GB" MAKEOPTS="-j1" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/local/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="X acl acpi alsa apic bash-completion berkdb bzip2 cairo cli consolekit cracklib crypt custom-cflags custom-optimization cxx dbus dri dvd extras ffmpeg gdbm gpm gtk hardened iconv jpeg jpeg2k kde lame lm_sensors mad mmx modules mp3 mudflap ncurses networkmanager nls nptl nptlonly nsplugin opengl openmp pam pcre perl pic png policykit pppd python qt3support qt4 readline semantic-desktop session sse sse2 ssl svg symlink sysfs tcpd threads tiff udev urandom x264 x86 xorg zlib" ALSA_CARDS="hda-intel" ALSA_PCM_PLUGINS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mmap_emul mulaw multi null plug rate route share shm softvol" CALLIGRA_FEATURES="braindump flow karbon kexi kpresenter krita tables words" CAMERAS="ptp2" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" ELIBC="glibc" INPUT_DEVICES="keyboard mouse evdev synaptics" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LINGUAS="en en_GB" PHP_TARGETS="php5-3" RUBY_TARGETS="ruby18" USERLAND="GNU" VIDEO_CARDS="intel" Unset: CPPFLAGS, CTARGET, INSTALL_MASK, LC_ALL, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
4.0.1-r1?
(In reply to comment #4) > 4.0.1-r1? there is only 4.0.1
Just making sure, your tree is from the 20th. I'll test it tonight.
Works for me
www-client/firefox-bin-6.0 does not work on hardened profile also. Portage 2.2.0_alpha53 (hardened/linux/amd64/no-multilib, gcc-4.6.1, glibc-2.13-r4, 3.0.4-hardened x86_64) % strace firefox-bin (part) munmap(0x6e1c8ba9f000, 1048576) = 0 mmap(NULL, 2097152, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x6e1c8b99f000 munmap(0x6e1c8b99f000, 2097152) = 0 mmap(0x6e1c8ba00000, 1048576, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x6e1c8ba9f000 munmap(0x6e1c8ba9f000, 1048576) = 0 ^C--- {si_signo=SIGINT, si_code=SI_KERNEL, si_value={int=0, ptr=0x7b1c00000000}} (Interrupt) --- and so on to infinity.
(In reply to comment #8) > www-client/firefox-bin-6.0 does not work on hardened profile also. > > Portage 2.2.0_alpha53 (hardened/linux/amd64/no-multilib, gcc-4.6.1, > glibc-2.13-r4, 3.0.4-hardened x86_64) > > % strace firefox-bin (part) > munmap(0x6e1c8ba9f000, 1048576) = 0 > mmap(NULL, 2097152, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = > 0x6e1c8b99f000 > munmap(0x6e1c8b99f000, 2097152) = 0 > mmap(0x6e1c8ba00000, 1048576, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, > -1, 0) = 0x6e1c8ba9f000 > munmap(0x6e1c8ba9f000, 1048576) = 0 > ^C--- {si_signo=SIGINT, si_code=SI_KERNEL, si_value={int=0, > ptr=0x7b1c00000000}} (Interrupt) --- > > and so on to infinity. your strace is incomplete, also please show me last 15 lines of dmesg after initial attempting to start firefox-bin. If you want to give us a much more complete strace, please provide stace -f firefox-bin
If any can be duplicated or reproduce feel free to update summary and reopen please.
