The CMake-based build system of keepassxc runs `mandb -` which result in access violation of sandbox. The src/cli/CMakeLists.txt contains if(APPLE OR UNIX) install(FILES keepassxc-cli.1 DESTINATION ${CMAKE_INSTALL_MANDIR}/man1/) execute_process(COMMAND mandb -q) endi f() Log: # emerge -1u keepassxc Calculating dependencies... done! >>> Verifying ebuild manifests >>> Emerging (1 of 1) app-admin/keepassxc-2.3.4-r1::gentoo * keepassxc-2.3.4-src.tar.xz BLAKE2B SHA512 size ;-) ... [ ok ] >>> Unpacking source... >>> Unpacking keepassxc-2.3.4-src.tar.xz to /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work >>> Source unpacked in /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work >>> Preparing source in /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4 ... * Applying keepassxc-2.3.3-qt-5.11-edit-entry-widget-includes.patch ... [ ok ] >>> Source prepared. >>> Configuring source in /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4 ... >>> Working in BUILD_DIR: "/var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4_build" cmake -C /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4_build/gentoo_common_config.cmake -G Ninja -DCMAKE_INSTALL_PREFIX=/usr -DWITH_GUI_TESTS=OFF -DWITH_TESTS=no -DWITH_XC_AUTOTYPE=yes -DWITH_XC_BROWSER=no -DWITH_XC_HTTP=OFF -DWITH_XC_NETWORKING=no -DWITH_XC_SSHAGENT=ON -DWITH_XC_YUBIKEY=no -DCMAKE_BUILD_TYPE=Gentoo -DCMAKE_TOOLCHAIN_FILE=/var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4_build/gentoo_toolchain.cmake /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4 loading initial cache file /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4_build/gentoo_common_config.cmake -- The C compiler identification is GNU 8.3.0 -- The CXX compiler identification is GNU 8.3.0 -- Check for working C compiler: /usr/lib64/ccache/bin/x86_64-pc-linux-gnu-gcc -- Check for working C compiler: /usr/lib64/ccache/bin/x86_64-pc-linux-gnu-gcc -- works -- Detecting C compiler ABI info -- Detecting C compiler ABI info - done -- Detecting C compile features -- Detecting C compile features - done -- Check for working CXX compiler: /usr/lib64/ccache/bin/x86_64-pc-linux-gnu-g++ -- Check for working CXX compiler: /usr/lib64/ccache/bin/x86_64-pc-linux-gnu-g++ -- works -- Detecting CXX compiler ABI info -- Detecting CXX compiler ABI info - done -- Detecting CXX compile features -- Detecting CXX compile features - done fatal: not a git repository (or any of the parent directories): .git -- Setting up build for KeePassXC v2.3.4 -- Performing Test WERROR_C_AVAILABLE -- Performing Test WERROR_C_AVAILABLE - Success -- Performing Test WERROR_CXX_AVAILABLE -- Performing Test WERROR_CXX_AVAILABLE - Success -- Found LibGPGError: /usr/lib/libgpg-error.so -- Found Gcrypt: /usr/lib/libgcrypt.so (Required is at least version "1.7.0") -- Found Argon2: /usr/lib/libargon2.so -- Found ZLIB: /usr/lib/libz.so (found version "1.2.11") -- Performing Test HAVE_PR_SET_DUMPABLE -- Performing Test HAVE_PR_SET_DUMPABLE - Success -- Performing Test HAVE_RLIMIT_CORE -- Performing Test HAVE_RLIMIT_CORE - Success -- Looking for XOpenDisplay in /usr/lib/libX11.so;/usr/lib/libXext.so -- Looking for XOpenDisplay in /usr/lib/libX11.so;/usr/lib/libXext.so - found -- Looking for gethostbyname -- Looking for gethostbyname - found -- Looking for connect -- Looking for connect - found -- Looking for remove -- Looking for remove - found -- Looking for shmat -- Looking for shmat - found -- Looking for IceConnectionNumber in ICE -- Looking for IceConnectionNumber in ICE - found -- Found X11: /usr/lib/libX11.so * ACCESS DENIED: mkdir: /usr/lib/llvm/7/share/man/cat1 * ACCESS DENIED: open_wr: /usr/lib/llvm/7/share/man/238 * ACCESS DENIED: unlink: /usr/lib/llvm/7/share/man/238 -- Including translations... -- Enabled features: * Auto-Type, Automatic password typing * SSHAgent, SSH agent integration compatible with KeeAgent -- Disabled features: * Networking, Compile KeePassXC with network access code (e.g. for downloading website icons) * KeePassXC-Browser, Browser integration with KeePassXC-Browser * KeePassHTTP, Browser integration compatible with ChromeIPass and PassIFox (deprecated, implies Networking) * YubiKey, YubiKey HMAC-SHA1 challenge-response -- <<< Gentoo configuration >>> Build type Gentoo Install path /usr Compiler flags: C -O3 -pipe -march=native -fno-common -Wall -Wextra -Wundef -Wpointer-arith -Wno-long-long -Wformat=2 -Wmissing-format-attribute -fvisibility=hidden -fstack-protector-strong -Wchar-subscripts -Wwrite-strings -Werror=format-security -Werror=implicit-function-declaration -Wcast-align -pie -fPIE -std=c99 C++ -O3 -pipe -march=native -fno-common -Wall -Wextra -Wundef -Wpointer-arith -Wno-long-long -Wformat=2 -Wmissing-format-attribute -fvisibility=hidden -fvisibility-inlines-hidden -fstack-protector-strong -fno-exceptions -fno-rtti -Wnon-virtual-dtor -Wold-style-cast -Woverloaded-virtual -Werror=format-security -Wcast-align -pie -fPIE -std=c++11 Linker flags: Executable -Wl,-O1 -Wl,--as-needed -Wl,--no-add-needed -Wl,--as-needed -Wl,--no-undefined -Wl,-z,relro,-z,now Module -Wl,-O1 -Wl,--as-needed -Wl,--no-add-needed -Wl,--as-needed -Wl,-z,relro,-z,now Shared -Wl,-O1 -Wl,--as-needed -- Configuring done -- Generating done -- Build files have been written to: /var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/work/keepassxc-2.3.4_build >>> Source configured. * --------------------------- ACCESS VIOLATION SUMMARY --------------------------- * LOG FILE: "/var/log/sandbox/sandbox-4.log" * VERSION 1.0 FORMAT: F - Function called FORMAT: S - Access Status FORMAT: P - Path as passed to function FORMAT: A - Absolute Path (not canonical) FORMAT: R - Canonical Path FORMAT: C - Command Line F: mkdir S: deny P: /usr/lib/llvm/7/share/man/cat1 A: /usr/lib/llvm/7/share/man/cat1 R: /usr/lib64/llvm/7/share/man/cat1 C: mandb -q F: open_wr S: deny P: /usr/lib/llvm/7/share/man/238 A: /usr/lib/llvm/7/share/man/238 R: /usr/lib64/llvm/7/share/man/238 C: mandb -q F: unlink S: deny P: /usr/lib/llvm/7/share/man/238 A: /usr/lib/llvm/7/share/man/238 R: /usr/lib64/llvm/7/share/man/238 C: mandb -q * -------------------------------------------------------------------------------- >>> Failed to emerge app-admin/keepassxc-2.3.4-r1, Log file: >>> '/var/portage/tmp/portage/app-admin/keepassxc-2.3.4-r1/temp/build.log'
*** This bug has been marked as a duplicate of bug 675478 ***
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1940f4b7f0d20a8bd73448e5a652e64fe7e0a100 commit 1940f4b7f0d20a8bd73448e5a652e64fe7e0a100 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2019-03-08 13:55:42 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2019-03-08 13:56:05 +0000 app-admin/keepassxc: Don't call mandb Closes: https://bugs.gentoo.org/679766 Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> .../files/keepassxc-dont_call_mandb.patch | 25 ++++++++++++++++++++++ app-admin/keepassxc/keepassxc-2.3.3.ebuild | 3 ++- app-admin/keepassxc/keepassxc-2.3.4-r1.ebuild | 1 + app-admin/keepassxc/keepassxc-2.4.0_beta2.ebuild | 4 ++++ 4 files changed, 32 insertions(+), 1 deletion(-)
*** Bug 679798 has been marked as a duplicate of this bug. ***
