Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 909758

Summary: sys-libs/glibc-2.37-r3[vanilla] fails to compile because of sandbox violation
Product: Gentoo Linux Reporter: Agostino Sarubbo <ago>
Component: Current packagesAssignee: Gentoo Toolchain Maintainers <toolchain>
Status: CONFIRMED ---    
Severity: normal    
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Attachments: build.log
sandbox.log
emerge --info

Description Agostino Sarubbo gentoo-dev 2023-07-06 08:16:52 UTC 
vanilla build of glibc fails with sandbox violation because it wants to create /etc/ld.so.cache~

 * ACCESS DENIED:  open_wr:       /etc/ld.so.cache~
/var/tmp/portage/sys-libs/glibc-2.37-r3/work/build-x86-x86_64-pc-linux-gnu-nptl/elf/ldconfig: Can't create temporary cache file /etc/ld.so.cache~: Operation not permitted


[ebuild   R    ] sys-libs/glibc-2.37-r3:2.2::gentoo  USE="multiarch (multilib) stack-realign (static-libs) vanilla* -audit -caps (-cet) -compile-locales (-crypt) (-custom-cflags) -doc -gd -hash-sysv-compat -headers-only -multilib-bootstrap -nscd -perl -profile (-selinux) -ssp -suid -systemd -systemtap -test" 0 KiB


I can't attach the log right now, but I will especially if you can't reproduce.
Comment 1 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-07-06 08:18:17 UTC 
Please do provide the full log (build.log + sandbox.log). and emerge --info. I can't easily check right now and it's unclear to me which phase this is happening in.
Comment 2 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-07-06 08:19:38 UTC 
(In particular, the sandbox version might matter here too.)
Comment 3 Agostino Sarubbo gentoo-dev 2023-07-06 08:26:46 UTC 
Created attachment 865184 [details]
build.log
Comment 4 Agostino Sarubbo gentoo-dev 2023-07-06 08:27:01 UTC 
Created attachment 865185 [details]
sandbox.log
Comment 5 Agostino Sarubbo gentoo-dev 2023-07-06 08:27:53 UTC 
Created attachment 865186 [details]
emerge --info
Comment 6 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-07-06 08:28:39 UTC 
https://gitweb.gentoo.org/proj/toolchain/glibc-patches.git/tree/9999/0001-Disable-ldconfig-during-install.patch

On the one hand, USE=vanilla is doing exactly what you wanted, but perhaps a bit too literally. The patch should probably be included despite USE=vanilla.
Comment 7 Agostino Sarubbo gentoo-dev 2023-07-06 08:34:03 UTC 
(In reply to Sam James from comment #6)
> https://gitweb.gentoo.org/proj/toolchain/glibc-patches.git/tree/9999/0001-
> Disable-ldconfig-during-install.patch
> 
> On the one hand, USE=vanilla is doing exactly what you wanted, but perhaps a
> bit too literally. The patch should probably be included despite USE=vanilla.

I agree