Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 750513 Details for
Bug 823203
sys-devel/gcc-config : Check writability in env.d instead of EROOT
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
0001-Check-writability-in-env.d-instead-of-EROOT.patch
0001-Check-writability-in-env.d-instead-of-EROOT.patch (text/plain), 1.36 KB, created by
Jason Zaman
on 2021-11-12 00:50:44 UTC
(
hide
)
Description:
0001-Check-writability-in-env.d-instead-of-EROOT.patch
Filename:
MIME Type:
Creator:
Jason Zaman
Created:
2021-11-12 00:50:44 UTC
Size:
1.36 KB
patch
obsolete
>From 46edef06c5ce963368bac19c08ad4aacf5f45d0c Mon Sep 17 00:00:00 2001 >From: Jason Zaman <perfinion@gentoo.org> >Date: Thu, 11 Nov 2021 16:34:04 -0800 >Subject: [PATCH] Check writability in env.d instead of EROOT > >SELinux blocks access to / so gcc-config fails even tho the required >dirs are writable. Adding SELinux rules to allow writing to / is pretty >undesirable. The best is to check for writability in the actual dirs >that gcc-config needs to write. > >It should be sufficient to check only one dir instead of every dir, >since the check for only EROOT has been sufficient in the past. > >avc: denied { write } for pid=17173 comm="gcc-config" name="/" dev="zfs" ino=34 scontext=staff_u:sysadm_r:gcc_config_t:s0-s0:c0.c1023 tcontext=system_u:object_r:root_t:s0 tclass=dir > >Signed-off-by: Jason Zaman <perfinion@gentoo.org> >--- > gcc-config | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > >diff --git a/gcc-config b/gcc-config >index 6b2a1a7..70bb388 100755 >--- a/gcc-config >+++ b/gcc-config >@@ -668,7 +668,7 @@ switch_profile() { > > # Make sure we have write access to the dirs. Do not require `root` > # so that we work with prefix/cross/etc... setups that run as user. >- [[ ! -w ${EROOT} ]] && die "need write access to ${EROOT}" >+ [[ ! -w ${ENV_D} ]] && die "need write access to ${ENV_D}" > > if is_cross_compiler ; then > ebegin "Switching cross-compiler to ${CC_COMP}" >-- >2.32.0 >
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 823203
: 750513