Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 909758 - sys-libs/glibc-2.37-r3[vanilla] fails to compile because of sandbox violation
Summary: sys-libs/glibc-2.37-r3[vanilla] fails to compile because of sandbox violation
Status: CONFIRMED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal
Assignee: Gentoo Toolchain Maintainers
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-07-06 08:16 UTC by Agostino Sarubbo
Modified: 2023-07-06 08:34 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Attachments
build.log (build.log.xz,458.28 KB, application/x-xz)
2023-07-06 08:26 UTC, Agostino Sarubbo
Details
sandbox.log (sandbox.log,693 bytes, text/x-log)
2023-07-06 08:27 UTC, Agostino Sarubbo
Details
emerge --info (file_909758.txt,5.81 KB, text/plain)
2023-07-06 08:27 UTC, Agostino Sarubbo
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2023-07-06 08:16:52 UTC
vanilla build of glibc fails with sandbox violation because it wants to create /etc/ld.so.cache~

 * ACCESS DENIED:  open_wr:       /etc/ld.so.cache~
/var/tmp/portage/sys-libs/glibc-2.37-r3/work/build-x86-x86_64-pc-linux-gnu-nptl/elf/ldconfig: Can't create temporary cache file /etc/ld.so.cache~: Operation not permitted


[ebuild   R    ] sys-libs/glibc-2.37-r3:2.2::gentoo  USE="multiarch (multilib) stack-realign (static-libs) vanilla* -audit -caps (-cet) -compile-locales (-crypt) (-custom-cflags) -doc -gd -hash-sysv-compat -headers-only -multilib-bootstrap -nscd -perl -profile (-selinux) -ssp -suid -systemd -systemtap -test" 0 KiB


I can't attach the log right now, but I will especially if you can't reproduce.
Comment 1 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-07-06 08:18:17 UTC
Please do provide the full log (build.log + sandbox.log). and emerge --info. I can't easily check right now and it's unclear to me which phase this is happening in.
Comment 2 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-07-06 08:19:38 UTC
(In particular, the sandbox version might matter here too.)
Comment 3 Agostino Sarubbo gentoo-dev 2023-07-06 08:26:46 UTC
Created attachment 865184 [details]
build.log
Comment 4 Agostino Sarubbo gentoo-dev 2023-07-06 08:27:01 UTC
Created attachment 865185 [details]
sandbox.log
Comment 5 Agostino Sarubbo gentoo-dev 2023-07-06 08:27:53 UTC
Created attachment 865186 [details]
emerge --info
Comment 6 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-07-06 08:28:39 UTC
https://gitweb.gentoo.org/proj/toolchain/glibc-patches.git/tree/9999/0001-Disable-ldconfig-during-install.patch

On the one hand, USE=vanilla is doing exactly what you wanted, but perhaps a bit too literally. The patch should probably be included despite USE=vanilla.
Comment 7 Agostino Sarubbo gentoo-dev 2023-07-06 08:34:03 UTC
(In reply to Sam James from comment #6)
> https://gitweb.gentoo.org/proj/toolchain/glibc-patches.git/tree/9999/0001-
> Disable-ldconfig-during-install.patch
> 
> On the one hand, USE=vanilla is doing exactly what you wanted, but perhaps a
> bit too literally. The patch should probably be included despite USE=vanilla.

I agree