From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id D1B6315800D for ; Sat, 31 Dec 2022 14:53:29 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 12F15E0843; Sat, 31 Dec 2022 14:53:29 +0000 (UTC) Received: from smtp.gentoo.org (woodpecker.gentoo.org [140.211.166.183]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id EB3B4E0843 for ; Sat, 31 Dec 2022 14:53:28 +0000 (UTC) Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id DB00A335C0B for ; Sat, 31 Dec 2022 14:53:27 +0000 (UTC) Received: from localhost.localdomain (localhost [IPv6:::1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id 434AD6F2 for ; Sat, 31 Dec 2022 14:53:26 +0000 (UTC) From: "Sam James" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Sam James" Message-ID: <1672498400.45c610a03a0686bb89dbea1f45018aa1cd034612.sam@gentoo> Subject: [gentoo-commits] repo/gentoo:master commit in: profiles/base/ X-VCS-Repository: repo/gentoo X-VCS-Files: profiles/base/package.use.mask X-VCS-Directories: profiles/base/ X-VCS-Committer: sam X-VCS-Committer-Name: Sam James X-VCS-Revision: 45c610a03a0686bb89dbea1f45018aa1cd034612 X-VCS-Branch: master Date: Sat, 31 Dec 2022 14:53:26 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply X-Archives-Salt: 426a9672-b7bc-4757-ba0e-ea77a921a36e X-Archives-Hash: 78ab5d3ee362df52f9b803d6056caab5 commit: 45c610a03a0686bb89dbea1f45018aa1cd034612 Author: Sam James gentoo org> AuthorDate: Sat Dec 31 14:52:18 2022 +0000 Commit: Sam James gentoo org> CommitDate: Sat Dec 31 14:53:20 2022 +0000 URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=45c610a0 profiles/base: mask sys-apps/pax-utils[seccomp] As noted in mask message, this is far too risky for new libcs/newer versions of libc/sandbox changes and it leads to Portage generating invalid metadata. Portage does warn on it right now though, at least. Bug: https://bugs.gentoo.org/815877 Signed-off-by: Sam James gentoo.org> profiles/base/package.use.mask | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/profiles/base/package.use.mask b/profiles/base/package.use.mask index 26983de4b5a7..9bc955e09478 100644 --- a/profiles/base/package.use.mask +++ b/profiles/base/package.use.mask @@ -6,6 +6,11 @@ # This file is only for generic masks. For arch-specific masks (i.e. # mask everywhere, unmask on arch/*) use arch/base. +# Sam James (2022-12-31) +# seccomp cannot be disabled via a runtime toggle which introduces substantial +# fragility to Portage which relies on pax-utils' scanelf heavily. bug #815877. +app-misc/pax-utils seccomp + # Sam James (2022-12-29) # Needs yet-unpackaged libxmlpp-5.0, bug #888898 www-client/elinks javascript