User:Cronolio/build/sandbox

Sandbox is a library (and helper utility) to run programs in a "sandboxed" environment. This is used as a QA measure to try and prevent applications from modifying files they should not.

Sandbox have systemwide config file which is declaring minimal settings and  file which is preloading  library for each shell or make process and add to SANDBOX_WRITE variable portage related directories.

direct usage example

For example we want to sandbox some application which will trying to write into root directory.

To allow application to write into root directory required to add root path into SANDBOX_WRITE variable.

Do not forget to remove foo directory.

portage and sandbox

During the src_unpack, src_compile, src_test and src_install phases, ebuild.sh operates inside a sandbox
 * (what user is used on which phases)

if emerge runed by root user