Bugzilla – Bug 998
Segmentation fault when invoked inside systemd-nspawn container
Last modified: 2021-09-21 10:12:55 MDT
Created attachment 559 [details] debug build stacktrace and strace In a fresh Arch Linux nspawn container, calling `sudo --login -u builduser /bin/true` (/bin/true or anything else) as root results in a segmentation fault. /etc/sudoers.d/test contains the following, added with visudo: builduser ALL = NOPASSWD: /usr/bin/pacman It works fine if one of following actions is taken: - `resolve [!UNAVAIL=return]` is removed from the hosts line in /etc/nsswitch.conf. - `builduser ALL = NOPASSWD: /usr/bin/pacman` is added to /etc/sudoers instead of a drop-in file. - Not specifying `--login`. sssd is not installed and the host uses systemd-resolved. Stackstrace and strace attached. -- sudo -l: User builduser may run the following commands on archroot: (root) NOPASSWD: /usr/bin/pacman sudo -V: Sudo version 1.9.8p1 Sudoers policy plugin version 1.9.8p1 Sudoers file grammar version 48 Sudoers I/O plugin version 1.9.8p1 Sudoers audit plugin version 1.9.8p1
Thank you for your detailed report. This is now fixed by https://www.sudo.ws/repos/sudo/rev/4b297f2ead15 The fix will be part of sudo 1.9.8p2
Fixed in sudo 1.9.8p2 which is available now.