Summary: | [PATCH] Sandbox everything outside of $ROOT | ||
---|---|---|---|
Product: | Portage Development | Reporter: | Donnie Berkholz (RETIRED) <dberkholz> |
Component: | Enhancement/Feature Requests | Assignee: | Portage team <dev-portage> |
Status: | CONFIRMED --- | ||
Severity: | normal | CC: | ansla80, basic, dschridde+gentoobugs, gentoobugzilla, pacho, sam |
Priority: | High | Keywords: | PATCH |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=152474 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 53269 | ||
Bug Blocks: | 137867 | ||
Attachments: | Messy sandbox implementation |
Description
Donnie Berkholz (RETIRED)
2006-06-28 12:09:59 UTC
hmm, good idea ... i always wondered if we could catch these misbehaving packages SO, any reason this hasn't been done yet? nope ... as noted in Bug 152474, we could just: ROOT=/some/funky/place and add sandbox deny to that So why don't you do it then? ;) Created attachment 193215 [details, diff]
Messy sandbox implementation
Untested. Messy. First portage patch ever. Can it get any worse? ;)
This bug is pretty stale, and it looks like no one really cares anymore. I had some time to poke around, so I did the best I could with the (perceived lack of) documentation on portage.
I don't expect you to seriously apply this. What I want to know is if I'm headed in the right direction. If someone could provide more detailed information on what exactly should be done, it might make patching portage a bit easier.
|