Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 598992 - sys-apps/systemd-232 RestrictAddressFamilies fails on x86
Summary: sys-apps/systemd-232 RestrictAddressFamilies fails on x86
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: x86 Linux
: Normal normal (vote)
Assignee: Gentoo systemd Team
Depends on:
Blocks: CVE-2016-7795, CVE-2016-7796
  Show dependency tree
Reported: 2016-11-05 13:00 UTC by Nils Holland
Modified: 2017-04-20 12:39 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Nils Holland 2016-11-05 13:00:30 UTC
sys-apps/systemd-232 just landed on my ~x86 system and with it, my system would no longer boot. After a few hours of trial and error, I found the problem, and indeed it already seems to be known upstream, see:

Bottom line: There's an issue on 32 bit i386 with systemd-232 that would require you to edit all unit files in /usr/lib/systemd/system which contain "RestrictAddressFamilies=" and comment these lines in order to get a bootable system.

Since I believe a non-bootable system is a rather serious issue, even on ~, and since one might need a few hours to actually figure out what's wrong (like I did), I'd suggest that we might probably do good by masking systemd-232 on ~x86 for the time being.

If we don't go that route, this bug report will probably at least point other ~x86 Gentoo users in the right direction if they stumble upon the same problem. :-)
Comment 2 Nils Holland 2016-11-09 20:19:01 UTC
Just adding some more background information:

It seems that the fix will have to be made in libc.

Also, according to, the problem is also present on s390, but I don't think anything needs to be masked for that arch, as I can't find (~)s390 among the KEYWORDS in any of the existing systemd ebuilds.
Comment 3 Pacho Ramos gentoo-dev 2017-02-07 15:46:17 UTC
In upstream report I see they point to this backports:
Comment 4 Pacho Ramos gentoo-dev 2017-04-20 12:39:38 UTC
this should be fixed finally in 233