Created attachment 776765 [details] complete build log The recently stabilized net-misc/openssh-8.9_p1-r2 fails during configure: ./configure --prefix=/usr --build=x86_64-pc-linux-gnux32 --host=x86_64-pc-linux-gnux32 --mandir=/usr/share/man --infodir=/usr/share/info --datadir=/usr/share --sysconfdir=/etc --localstatedir=/var/lib --docdir=/usr/share/doc/openssh-8.9_p1-r2 --htmldir=/usr/share/doc/openssh-8.9_p1-r2/html --libdir=/usr/libx32 --with-ldflags=-Wl,-O1 -Wl,--as-needed --disable-strip --with-pid-dir=/run --sysconfdir=/etc/ssh --libexecdir=/usr/libx32/misc --datadir=/usr/share/openssh --with-privsep-path=/var/empty --with-privsep-user=sshd --without-audit --with-kerberos5=/usr --without-ldns --without-libedit --with-pam --with-pie --without-selinux --without-security-key-builtin --with-openssl --with-ssl-engine --with-hardening --with-sandbox=rlimit [...] checking if setrlimit(RLIMIT_NOFILE,{0,0}) works... yes checking if setrlimit RLIMIT_FSIZE works... yes configure: error: rlimit sandbox requires select to work with rlimit The previous net-misc/openssh-8.8_p1-r4 version installs without any problems. Portage 3.0.30 (python 3.9.12-final-0, default/linux/amd64/17.0/x32, gcc-11.2.1, glibc-2.34-r10, 5.4.191 x86_64) ================================================================= System uname: Linux-5.4.191-x86_64-Intel-R-_Core-TM-_i3-2120T_CPU_@_2.60GHz-with-glibc2.34 KiB Mem: 16125392 total, 15378636 free KiB Swap: 0 total, 0 free Timestamp of repository gentoo: Wed, 04 May 2022 00:45:01 +0000 sh dash 0.5.11.5 ld GNU ld (Gentoo 2.37_p1 p2) 2.37 ccache version 4.5.1 [enabled] app-misc/pax-utils: 1.3.3::gentoo app-shells/bash: 5.1_p16::gentoo dev-lang/perl: 5.34.0-r9::gentoo dev-lang/python: 3.9.12::gentoo, 3.10.3::gentoo dev-util/ccache: 4.5.1::gentoo dev-util/cmake: 3.22.2::gentoo dev-util/meson: 0.60.3::gentoo sys-apps/baselayout: 2.7-r3::gentoo sys-apps/openrc: 0.44.10::gentoo sys-apps/sandbox: 2.29::gentoo sys-devel/autoconf: 2.71-r1::gentoo sys-devel/automake: 1.16.5::gentoo sys-devel/binutils: 2.37_p1-r2::gentoo sys-devel/binutils-config: 5.4.1::gentoo sys-devel/gcc: 11.2.1_p20220115::gentoo sys-devel/gcc-config: 2.5-r1::gentoo sys-devel/libtool: 2.4.6-r6::gentoo sys-devel/make: 4.3::gentoo sys-kernel/linux-headers: 5.15-r3::gentoo (virtual/os-headers) sys-libs/glibc: 2.34-r10::gentoo Repositories: gentoo location: /srv/repos/gentoo sync-type: webrsync sync-uri: rsync://rsync.gentoo.org/gentoo-portage sync-user: portage priority: -1000 sync-webrsync-verify-signature: true gentoo-draconx location: /srv/repos/gentoo-draconx masters: gentoo gentoo-fixes location: /srv/repos/gentoo-fixes masters: gentoo ACCEPT_KEYWORDS="amd64" ACCEPT_LICENSE="@FREE" CBUILD="x86_64-pc-linux-gnux32" CFLAGS="-O2 -pipe -march=sandybridge -mno-aes" CHOST="x86_64-pc-linux-gnux32" CONFIG_PROTECT="/etc /usr/share/gnupg/qualified.txt" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/gconf /etc/gentoo-release /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo" CXXFLAGS="-O2 -pipe -march=sandybridge -mno-aes" DISTDIR="/srv/repos/gentoo/distfiles" EMERGE_DEFAULT_OPTS="-j2 --keep-going --dynamic-deps=n --autounmask-write=n --unordered-display --verbose-conflicts --binpkg-respect-use=y --with-bdeps-auto=n" ENV_UNSET="CARGO_HOME DBUS_SESSION_BUS_ADDRESS DISPLAY GOBIN GOPATH PERL5LIB PERL5OPT PERLPREFIX PERL_CORE PERL_MB_OPT PERL_MM_OPT XAUTHORITY XDG_CACHE_HOME XDG_CONFIG_HOME XDG_DATA_HOME XDG_RUNTIME_DIR" FCFLAGS="-O2 -pipe" FEATURES="assume-digests binpkg-docompress binpkg-dostrip binpkg-logs binpkg-multi-instance buildpkg-live ccache config-protect-if-modified distlocks ebuild-locks fixlafiles ipc-sandbox merge-sync multilib-strict network-sandbox news parallel-fetch pid-sandbox preserve-libs protect-owned qa-unresolved-soname-deps sandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch userpriv usersandbox usersync xattr" FFLAGS="-O2 -pipe" GENTOO_MIRRORS="http://distfiles.gentoo.org" INSTALL_MASK="/etc/portage/*postsync.d" LANG="en_CA.UTF-8" LDFLAGS="-Wl,-O1 -Wl,--as-needed" MAKEOPTS="-j4" PKGDIR="/var/cache/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --omit-dir-times --compress --force --whole-file --delete --stats --human-readable --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages --exclude=/.git" PORTAGE_TMPDIR="/var/tmp" SHELL="/bin/zsh" USE="acl amd64 bzip2 cli crypt dri fortran gdbm iconv idn ipv6 kerberos libglvnd libtirpc multilib ncurses nls nptl openmp pam pcre python readline seccomp split-usr ssl unicode xattr zlib" ABI_X86="x32" ADA_TARGET="gnat_2020" APACHE2_MODULES="authn_core authz_core socache_shmcb unixd actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache cgi cgid dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" CALLIGRA_FEATURES="karbon sheets words" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" CPU_FLAGS_X86="avx mmx mmxext pclmul popcnt sse sse2 sse3 sse4_1 sse4_2 ssse3" ELIBC="glibc" GPSD_PROTOCOLS="ashtech aivdm earthmate evermore fv18 garmin garmintxt gpsclock greis isync itrax mtk3301 nmea ntrip navcom oceanserver oldstyle oncore rtcm104v2 rtcm104v3 sirf skytraq superstar2 timing tsip tripmate tnt ublox ubx" INPUT_DEVICES="libinput" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LIBREOFFICE_EXTENSIONS="presenter-console presenter-minimizer" LUA_SINGLE_TARGET="lua5-1" LUA_TARGETS="lua5-1" OFFICE_IMPLEMENTATION="libreoffice" PHP_TARGETS="php7-4 php8-0" POSTGRES_TARGETS="postgres12 postgres13" PYTHON_SINGLE_TARGET="python3_9" PYTHON_TARGETS="python3_9" RUBY_TARGETS="ruby26 ruby27" USERLAND="GNU" VIDEO_CARDS="amdgpu fbdev intel nouveau radeon radeonsi vesa dummy v4l" XTABLES_ADDONS="quota2 psd pknock lscan length2 ipv4options ipset ipp2p iface geoip fuzzy condition tee tarpit sysrq proto steal rawnat logmark ipmark dhcpmac delude chaos account" Unset: ADDR2LINE, AR, ARFLAGS, AS, ASFLAGS, CC, CCLD, CONFIG_SHELL, CPP, CPPFLAGS, CTARGET, CXX, CXXFILT, ELFEDIT, EXTRA_ECONF, F77FLAGS, FC, GCOV, GPROF, LC_ALL, LD, LEX, LFLAGS, LIBTOOL, LINGUAS, MAKE, MAKEFLAGS, NM, OBJCOPY, OBJDUMP, PORTAGE_BINHOST, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS, RANLIB, READELF, RUSTFLAGS, SIZE, STRINGS, STRIP, YACC, YFLAGS
I feel like I saw someone report this 2 days ago or so but I haven't seen it since.
Please retest after removing this line from the ebuild: use amd64 && [[ ${ABI} == "x32" ]] && myconf+=( --with-sandbox=rlimit ) If that doesn't work, please change the line to: use amd64 && [[ ${ABI} == "x32" ]] && myconf+=( --with-sandbox=none )
Removing that line (introduced by bug #553748) allows successful build of net-misc/openssh-8.9_p1-r2 under X32. In bug #553748, comment #9 it is reported that seccomp sandbox should starting with openssh 5.7.
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=2d93fd3ddb707cc07c8a1545616c055ed59c9ddb commit 2d93fd3ddb707cc07c8a1545616c055ed59c9ddb Author: Mike Gilbert <floppym@gentoo.org> AuthorDate: 2022-05-10 17:25:35 +0000 Commit: Mike Gilbert <floppym@gentoo.org> CommitDate: 2022-05-10 17:26:26 +0000 net-misc/openssh: use seccomp sandbox on x32 Closes: https://bugs.gentoo.org/842624 Signed-off-by: Mike Gilbert <floppym@gentoo.org> net-misc/openssh/openssh-8.9_p1-r2.ebuild | 3 --- net-misc/openssh/openssh-9.0_p1.ebuild | 3 --- 2 files changed, 6 deletions(-)
