reassign -1 man-db retite -1 man: seccomp filter breaks groff on armel/mipsel/hppa/powerpc
Hi, On Sat, Nov 21, 2020 at 07:06:02PM +0200, Tzafrir Cohen wrote: > Hi, > On abel in a armel chroot the issue is reproduced by running: > man -Thtml > even on an empty man page. > > Right now you can try: > > $ schroot -r -c session:tzafrir-dahdi-tools -- man -Thtml ~tzafrir/test.8 > >/dev/null > pre-grohtml: fatal error: cannot create temporary file: File exists > man: command exited with status 1: /usr/lib/man-db/zsoelim | > /usr/lib/man-db/manconv -f UTF-8:ISO-8859-1 -t UTF-8//IGNORE | preconv -e > UTF-8 | tbl | groff -mandoc -Thtml > > Not reproduced in a armhf chroot there or in a qemu armel chroot on my > laptop. When running this with MAN_DISABLE_SECCOMP=1, the issue goes away, so it's caused by the seccomp filter man is setting up when running groff. I guess some system call must be (slightly) different on some of the architectures, and it's not allowed by the filter. So it seems this is a bug in man-db. Also, note that during package builds, the seccomp filter could be disabled using the env variable, as the build doesn't contain untrusted input. However, that would only be a workaround for the actual issue. This bug was originally filed as serious, because it caused an FTBFS. As there is a workaround for that, I wonder if it should be downgraded. Colin, what do you think? Obviously, it would be nice to have a fix for bullseye. Cheers, Ivo
