| Summary: | [Future EAPI] Posix file-based capabilities support - Function for setting caps | ||
|---|---|---|---|
| Product: | Gentoo Hosted Projects | Reporter: | Constanze Hausner (RETIRED) <constanze> |
| Component: | PMS/EAPI | Assignee: | PMS/EAPI <pms> |
| Status: | CONFIRMED --- | ||
| Severity: | enhancement | CC: | base-system, esigra, mgorny, sam, tsmksubc |
| Priority: | Normal | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | http://archives.gentoo.org/gentoo-dev/msg_18c1565bed3e0d797ad7943d227cb77f.xml | ||
| See Also: | https://bugs.gentoo.org/show_bug.cgi?id=467766 | ||
| Whiteboard: | |||
| Package list: | Runtime testing required: | --- | |
| Bug Depends on: | |||
| Bug Blocks: | 174380 | ||
|
Description
Constanze Hausner (RETIRED)
2011-04-22 14:46:25 UTC
I agree we should do this. I think it wouldn't be *that hard* to implement but it might be too late to include it in EAPI 7. One thing worth noting is that we may need to account for two separate problems: a. filesystem used for build not supporting capabilities, b. filesystem used for merge not supporting capabilities. One does not imply the other. In other words, the function might succeed when building package but the capabilities would be lost on install. The opposite is also possible -- not being able to set caps while building but being able to set it post-install. All that considered, I think it is important to have well-defined fallback here. In particular, the PM *must* be able to deal with missing capabilities after build with capabilities succeeded (and when using binpkg built with caps). For extra points, being able to 'remember' capabilities when filesystem can't store them during build would also be useful. I'm not sure if 'mode' is the only thing fallback needs to be concerned about. In some cases ownership may also be relevant. We should research existing uses of fcaps.eclass for this, I guess. (CC-ing fcaps.eclass maintainers) |
