diff options
| author | Khem Raj <raj.khem@gmail.com> | 2021-04-30 14:52:51 -0700 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-08-12 06:26:15 +0100 |
| commit | ad454e026632604fd344147639e0b69ee10f11b7 (patch) | |
| tree | c8dd131239fc25bffa081c119ed34c57557b5300 /meta/recipes-core/glibc/glibc/faccessat2-perm.patch | |
| parent | 77ce05bd36cf71db9a2cc5b0ebffde7bd11c20f3 (diff) | |
| download | poky-ad454e026632604fd344147639e0b69ee10f11b7.tar.gz | |
glibc: Upgrade to 2.34 release
bump localedef to get __attr_access_none and __attr_access definitions
replace /bin/bash instead of @BASH@ in ldd as @BASH@ has been substituted with /bin/bash now
package libc_malloc_debug.so.0
Detailed changelog [1]
[1] https://sourceware.org/pipermail/libc-alpha/2021-August/129718.html
(From OE-Core rev: af4e1306a78cf8c508dd911f02c103af81bc1af5)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-core/glibc/glibc/faccessat2-perm.patch')
| -rw-r--r-- | meta/recipes-core/glibc/glibc/faccessat2-perm.patch | 31 |
1 files changed, 0 insertions, 31 deletions
diff --git a/meta/recipes-core/glibc/glibc/faccessat2-perm.patch b/meta/recipes-core/glibc/glibc/faccessat2-perm.patch deleted file mode 100644 index 2ee7110ca1..0000000000 --- a/meta/recipes-core/glibc/glibc/faccessat2-perm.patch +++ /dev/null | |||
| @@ -1,31 +0,0 @@ | |||
| 1 | Older seccomp-based filters used in container frameworks will block faccessat2 | ||
| 2 | calls as it's a relatively new syscall. This isn't a big problem with | ||
| 3 | glibc <2.33 but 2.33 will call faccessat2 itself, get EPERM, and thenn be confused | ||
| 4 | about what to do as EPERM isn't an expected error code. | ||
| 5 | |||
| 6 | This manifests itself as mysterious errors, for example a kernel failing to link. | ||
| 7 | |||
| 8 | The root cause of bad seccomp filters is mostly fixed (systemd 247, Docker 20.10.0) | ||
| 9 | but we can't expect everyone to upgrade, so add a workaound (originally from | ||
| 10 | Red Hat) to handle EPERM like ENOSYS and fallback to faccessat(). | ||
| 11 | |||
| 12 | Upstream-Status: Inappropriate | ||
| 13 | Signed-off-by: Ross Burton <ross.burton@arm.com> | ||
| 14 | |||
| 15 | diff --git a/sysdeps/unix/sysv/linux/faccessat.c b/sysdeps/unix/sysv/linux/faccessat.c | ||
| 16 | index 56cb6dcc8b4d58d3..5de75032bbc93a2c 100644 | ||
| 17 | --- a/sysdeps/unix/sysv/linux/faccessat.c | ||
| 18 | +++ b/sysdeps/unix/sysv/linux/faccessat.c | ||
| 19 | @@ -34,7 +34,11 @@ faccessat (int fd, const char *file, int mode, int flag) | ||
| 20 | #if __ASSUME_FACCESSAT2 | ||
| 21 | return ret; | ||
| 22 | #else | ||
| 23 | - if (ret == 0 || errno != ENOSYS) | ||
| 24 | + /* Fedora-specific workaround: | ||
| 25 | + As a workround for a broken systemd-nspawn that returns | ||
| 26 | + EPERM when a syscall is not allowed instead of ENOSYS | ||
| 27 | + we must check for EPERM here and fall back to faccessat. */ | ||
| 28 | + if (ret == 0 || !(errno == ENOSYS || errno == EPERM)) | ||
| 29 | return ret; | ||
| 30 | |||
| 31 | if (flag & ~(AT_SYMLINK_NOFOLLOW | AT_EACCESS)) | ||