Summary: | dev-java/oracle-jdk-bin does not preserve xattr pax-marks in src_install() | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Jason Zaman <perfinion> |
Component: | [OLD] Java | Assignee: | Java team <java> |
Status: | RESOLVED FIXED | ||
Severity: | normal | Keywords: | PATCH |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=517626 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 516158 | ||
Attachments: | oracle-jdk-bin-1.7.0.65.ebuild.patch |
Description
Jason Zaman
2014-06-28 10:19:33 UTC
This is now done in: oracle-{jdk,jre}-bin-1.7.0.65 oracle-{jdk,jre}-bin-1.8.0.11 Thanks for the report. Hi, Sorry to be a bother, this works for PaX but it has issues with SELinux :( It looks like cp --preserve=xattr copies all xattrs including: security.selinux. The problem is that this xattr is protected (actually all security.* are) and the copy fails. It looks like for bin/* doins should be used. The am attaching a patch to 1.7.0.65 works for me. -- Jason Created attachment 381176 [details, diff]
oracle-jdk-bin-1.7.0.65.ebuild.patch
This uses dobin instead of cp --preserve=xattr since cp touches the SELinux xattrs too which is disallowed.
Solved it in a silighly different way. Updated in place and added a dependensy on the corresponding selinux policy. Thanks. |