Evolution fails to build with sandbox violation. Portage 2.3.8 (python 3.4.6-final-0, default/linux/amd64/13.0/desktop/gnome/systemd, gcc-6.4.0, glibc-2.25-r4, 4.12.5-gentoo-mbp13 x86_64) ================================================================= System Settings ================================================================= System uname: Linux-4.12.5-gentoo-mbp13-x86_64-Intel-R-_Core-TM-_i7-5557U_CPU_@_3.10GHz-with-gentoo-2.4.1 KiB Mem: 16377580 total, 11611884 free KiB Swap: 4194300 total, 4194300 free Head commit of repository gentoo: 7aef8f2d5e64dd0b00a16a81601fddc6f08e6cc4 sh bash 4.4_p12 ld GNU ld (Gentoo 2.28.1 p1.0) 2.28.1 app-shells/bash: 4.4_p12::gentoo dev-lang/perl: 5.24.2::gentoo dev-lang/python: 2.7.13::gentoo, 3.4.6::gentoo dev-util/cmake: 3.9.1::gentoo dev-util/pkgconfig: 0.29.2::gentoo sys-apps/baselayout: 2.4.1-r1::gentoo sys-apps/openrc: 0.29::gentoo sys-apps/sandbox: 2.10-r4::gentoo sys-devel/autoconf: 2.13::gentoo, 2.69-r4::gentoo sys-devel/automake: 1.11.6-r2::gentoo, 1.13.4-r1::gentoo, 1.15.1-r1::gentoo sys-devel/binutils: 2.28.1::gentoo sys-devel/gcc: 6.4.0::gentoo sys-devel/gcc-config: 1.8-r1::gentoo sys-devel/libtool: 2.4.6-r4::gentoo sys-devel/make: 4.2.1-r1::gentoo sys-kernel/linux-headers: 4.10::gentoo (virtual/os-headers) sys-libs/glibc: 2.25-r4::gentoo Repositories: gentoo location: /usr/portage sync-type: git sync-uri: https://github.com/gentoo/gentoo.git priority: -1000 ACCEPT_KEYWORDS="amd64 ~amd64" ACCEPT_LICENSE="* -@EULA" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-march=native -O2 -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/gnupg/qualified.txt" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/chromium/policies/managed/chrome-gnome-shell.json /etc/dconf /etc/env.d /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/opt/chrome/policies/managed/chrome-gnome-shell.json /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo" CXXFLAGS="-march=native -O2 -pipe" DISTDIR="/usr/portage/distfiles" EMERGE_DEFAULT_OPTS="--ask-enter-invalid --jobs 2 --load-average 3.6" FCFLAGS="-O2 -pipe" FEATURES="assume-digests binpkg-logs candy cgroup clean-logs collision-protect config-protect-if-modified distlocks ebuild-locks fixlafiles merge-sync multilib-strict news parallel-fetch preserve-libs protect-owned sandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch userpriv usersandbox usersync xattr" FFLAGS="-O2 -pipe" GENTOO_MIRRORS="http://gentoo.mirrors.easynews.com/linux/gentoo" LANG="en_US.utf8" LDFLAGS="-Wl,-O1 -Wl,--as-needed" MAKEOPTS="-j4" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --omit-dir-times --compress --force --whole-file --delete --stats --human-readable --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages --exclude=/.git" PORTAGE_TMPDIR="/var/tmp" USE="X a52 aac acl acpi alsa amd64 bash-completion berkdb bluetooth branding bzip2 cairo cdda cdr cli colord cracklib crypt cups cxx dbus djvu dri dts dvd dvdr eds egl emboss encode evo exif fam firefox flac fortran gdbm gif glamor gnome gnome-keyring gnome-online-accounts gpm gstreamer gtk iconv icu idn introspection ios ipv6 jpeg lcms ldap libnotify libsecret mad mng modules mp3 mp4 mpeg multilib nautilus ncurses networkmanager nls nptl ogg opengl openmp pam pango pcre pdf png policykit ppds pulseaudio qt3support readline sdl seccomp session spell ssl startup-notification svg systemd tcpd tiff tracker truetype udev udisks unicode upower urandom usb v4l vaapi vim-syntax vorbis wayland wxwidgets x264 xattr xcb xinerama xml xv xvid zeroconf zlib" ABI_X86="64" ALSA_CARDS="hda-intel" APACHE2_MODULES="authn_core authz_core socache_shmcb unixd actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache cgi cgid dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" CALLIGRA_FEATURES="kexi words flow plan sheets stage tables krita karbon braindump author" CAMERAS="ptp2 fuji" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" CPU_FLAGS_X86="aes avx avx2 fma3 mmx mmxext pclmul popcnt sse sse2 sse3 sse4_1 sse4_2 ssse3" ELIBC="glibc" GPSD_PROTOCOLS="ashtech aivdm earthmate evermore fv18 garmin garmintxt gpsclock isync itrax mtk3301 nmea ntrip navcom oceanserver oldstyle oncore rtcm104v2 rtcm104v3 sirf skytraq superstar2 timing tsip tripmate tnt ublox ubx" GRUB_PLATFORMS="efi-64" INPUT_DEVICES="libinput" KERNEL="linux" L10N="en ru" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LIBREOFFICE_EXTENSIONS="presenter-console presenter-minimizer" LINGUAS="en ru" OFFICE_IMPLEMENTATION="libreoffice" PHP_TARGETS="php5-6" POSTGRES_TARGETS="postgres9_5" PYTHON_SINGLE_TARGET="python3_4" PYTHON_TARGETS="python2_7 python3_4" RUBY_TARGETS="ruby22" USERLAND="GNU" VIDEO_CARDS="intel i965" XTABLES_ADDONS="quota2 psd pknock lscan length2 ipv4options ipset ipp2p iface geoip fuzzy condition tee tarpit sysrq steal rawnat logmark ipmark dhcpmac delude chaos account" Unset: CC, CPPFLAGS, CTARGET, CXX, INSTALL_MASK, LC_ALL, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
Created attachment 489886 [details] build log, last 1550 lines with sandbox summary
I had the same issue using the same all Gentoo~unstable versions. I managed a workaround to install evolution by downgrading: --- =dev-util/cmake-3.8.2 ~sys-apps/sandbox-2.10-r3 =sys-apps/portage-2.3.6 =app-portage/gentoolkit-0.3.3 --- I am not sure in the moment if I had to downgrade sanbox further ... The bug is about some evil combination of cmake with sandbox version.
Wrong! Above statement of me is wrong! I didn't remember correctly, I have now looked up ebuild log: My workaround was done by copying some directory trees from the previously readyed image: /tmp/portage/mail-client/evolution-3.24.5/work/image into /usr/share/evolution /usr/lib/evolution /usr/share/icons That was the my workaround for the sandbox access violations! I saw "copy_if_different" in the fail log and done the copying ... Not has to do with any cmake,sandbox,portage versions: I have tested now again.
appeared recently at the tinderbox image 20170821-080639_mail-client_evolution-3.24.5
Created attachment 489954 [details] emerge-info.txt
Created attachment 489956 [details] emerge-history.txt
Created attachment 489958 [details] etc.portage.tbz2
Created attachment 489960 [details] logs.tbz2
Created attachment 489962 [details] mail-client:evolution-3.24.5:20170821-054436.log.bz2
Created attachment 489964 [details] sandbox-8219.log
I'm seeing this as well. For me, downgrading sys-apps/sandbox 2.10-r4 to 2.10-r3 allowed me to install mail-client/evolution-3.24.5
(In reply to Austin English from comment #11) > I'm seeing this as well. For me, downgrading sys-apps/sandbox 2.10-r4 to > 2.10-r3 allowed me to install mail-client/evolution-3.24.5 well, not for me. downgraded sandbox to 2.10-r3 and still getting violations. I absolutely have no experience with cmake, but it seems replacing $_destdir with $ENV{$DESTDIR} did the trick for me. I'm absolutely not sure if It's the correct way, not including patches. here is edited code from cmake/modules/IconCache.cmake macro(process_icons DESTDIR _fileslistvar _install_codevar) foreach(srcfile IN LISTS ${_fileslistvar}) split_icon_components(${srcfile} theme context size iconfile) install(FILES ${srcfile} DESTINATION $ENV${DESTDIR}/icons/${theme}/${size}/${context} RENAME ${iconfile} ) set(${_install_codevar} "${${_install_codevar}} COMMAND ${CMAKE_COMMAND} -E copy_if_different \"${CMAKE_CURRENT_SOURCE_DIR}/${srcfile}\" \"$ENV${DESTDIR}/icons/${theme}/${size}/${context}/${iconfile}\"" ) endforeach(srcfile) endmacro(process_icons) macro(add_icon_cache_files DESTDIR _fileslistvar) set(_install_code) foreach(_filesvar ${_fileslistvar} ${ARGN}) process_icons("$ENV${DESTDIR}" ${_filesvar} _install_code) endforeach(_filesvar)
(In reply to Georgy Yakovlev from comment #12) disregard this, icons are broken with this...
@Georgy, did you try my workaround: From a failed image directory to copy by hand some /usr/share/icons /usr/lib/evolution directories !? And then just to again emerge evolution ? The emerge process recognizes the files don't belong to any known package and just fully installs evolution. This would konfirm that the failure just is a wrong policy of the sandbox ... Also: you could try an evolution emerge using the masked newer sandbox-2.11-r5 version.
After trying to upgrade and downgrade sandbox failed, I was able to work around this by running: # FEATURES="-sandbox -usersandbox" emerge -av mail-client/evolution On my desktop system, there were reports of file collisions, however on my laptop no file collisions were reported. Subsequently running: # emerge -av mail-client/evolution : confirmed evolution was installed, and rebuilt successfully without error.
the issue appears to be that the macro wants to write to the live filesystem in the install phase but I don't know enough about cmake or the way we "fix" things with the eclass in Gentoo to figure out how to fix it.
(In reply to Gilles Dartiguelongue from comment #16) > the issue appears to be that the macro wants to write to the live filesystem > in the install phase but I don't know enough about cmake or the way we "fix" > things with the eclass in Gentoo to figure out how to fix it. The whole idea is broken. Trying to regenerate GTK icon caches from build systems is an asinine idea, and only the guy who prefers CMake over Meson for GNOME stuff can think otherwise. KDE has solved this issue in a better way (i.e., it just doesn't try to play with the cache). I suggest nixing all the cache crap.
Autotools gnome modules did the cache update stuff as well. But only if DESTDIR is unset.
*** Bug 629862 has been marked as a duplicate of this bug. ***
*** Bug 629868 has been marked as a duplicate of this bug. ***
Created attachment 496634 [details, diff] fix the violations apply after sed
This should fix the problem temporary... https://bugzilla.gnome.org/show_bug.cgi?id=781645 this exist...
He fixed it
(In reply to Sobhan Mohammadpour from comment #23) > He fixed it I can confirm that https://git.gnome.org/browse/evolution/commit/?id=a9f72bd18c fixes evolution's sandbox issue. There are also commits for evolution-data-server, evolution-ews, and evolution-mapi that may be needed.
*** Bug 633526 has been marked as a duplicate of this bug. ***
*** Bug 636686 has been marked as a duplicate of this bug. ***
Ping? May I commit this patch?
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=08dbc54232da55b967d06e2d3bd19e6782b4ff6a commit 08dbc54232da55b967d06e2d3bd19e6782b4ff6a Author: Mart Raudsepp <leio@gentoo.org> AuthorDate: 2018-01-08 12:03:04 +0000 Commit: Mart Raudsepp <leio@gentoo.org> CommitDate: 2018-01-08 12:57:07 +0000 mail-client/evolution: bump to 3.24.6, fix fresh install sandbox violation, libical3 compat Bump, patch to honor DESTDIR and not update caches when set (might cause sandbox violation for us and be generally wrong), patches for libical:0/3 compatibility. As one more instance of libical3 problematic direct is_utc usage would have remained with just cherry-picked compat patch, the libical compat patch contains a different change as well, which removes that code, as is done in 3.26 (details in patch headers). Closes: https://bugs.gentoo.org/628460 Package-Manager: Portage-2.3.19, Repoman-2.3.6 mail-client/evolution/Manifest | 1 + mail-client/evolution/evolution-3.24.6.ebuild | 161 +++++++++++++ .../evolution/files/3.24.6-DESTDIR-honoring.patch | 53 +++++ .../evolution/files/3.24.6-libical3-compat.patch | 265 +++++++++++++++++++++ 4 files changed, 480 insertions(+) Additionally, it has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=02a7d7bfd2ae6022b1e7590a7ae873c3b3f95933 commit 02a7d7bfd2ae6022b1e7590a7ae873c3b3f95933 Author: Mart Raudsepp <leio@gentoo.org> AuthorDate: 2018-01-08 12:34:57 +0000 Commit: Mart Raudsepp <leio@gentoo.org> CommitDate: 2018-01-08 12:57:14 +0000 gnome-extra/evolution-ews: bump to 3.24.6, fresh install fix, libical3 compat Bump, patch to honor DESTDIR and not update caches when set (might cause sandbox violation for us and is generally wrong), patches for libical:0/3 compatibility. Bug: https://bugs.gentoo.org/628460 Closes: https://bugs.gentoo.org/639126 Package-Manager: Portage-2.3.19, Repoman-2.3.6 gnome-extra/evolution-ews/Manifest | 1 + .../evolution-ews/evolution-ews-3.24.6.ebuild | 66 ++++++++++++++++++++++ .../files/3.24.6-DESTDIR-honoring.patch | 33 +++++++++++ .../files/3.24.6-libical3-compat.patch | 44 +++++++++++++++ 4 files changed, 144 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7e605439425d9d382896c8224064691e8cf6760b commit 7e605439425d9d382896c8224064691e8cf6760b Author: Mart Raudsepp <leio@gentoo.org> AuthorDate: 2018-01-08 11:13:40 +0000 Commit: Mart Raudsepp <leio@gentoo.org> CommitDate: 2018-01-08 12:57:00 +0000 gnome-extra/evolution-data-server: bump to 3.24.7, fresh install fix, libical3 compat Bump, patch to honor DESTDIR and not update caches when set (might cause sandbox violation for us and be generally wrong), patches for libical:0/3 compatibility. Bug: https://bugs.gentoo.org/628460 Package-Manager: Portage-2.3.19, Repoman-2.3.6 gnome-extra/evolution-data-server/Manifest | 1 + .../evolution-data-server-3.24.7.ebuild | 152 +++++++++++++++++++++ .../files/3.24.7-DESTDIR-honoring.patch | 31 +++++ .../files/3.24.7-libical3-compat.patch | 146 ++++++++++++++++++++ 4 files changed, 330 insertions(+)}