[Bug 1857036] Re: `sudo --login --user USERNAME` throws `setrlimit(RLIMIT_CORE): Operation not permitted` error when run inside a container.
Łukasz Zemczak
1857036 at bugs.launchpad.net
Tue Jul 21 14:41:51 UTC 2020
Hello Thomas, or anyone else affected,
Accepted sudo into focal-proposed. The package will build now and be
available at https://launchpad.net/ubuntu/+source/sudo/1.8.31-1ubuntu1.1
in a few hours, and then in the -proposed repository.
Please help us by testing this new package. See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how
to enable and use -proposed. Your feedback will aid us getting this
update out to other Ubuntu users.
If this package fixes the bug for you, please add a comment to this bug,
mentioning the version of the package you tested, what testing has been
performed on the package and change the tag from verification-needed-
focal to verification-done-focal. If it does not fix the bug for you,
please add a comment stating that, and change the tag to verification-
failed-focal. In either case, without details of your testing we will
not be able to proceed.
Further information regarding the verification process can be found at
https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in
advance for helping!
N.B. The updated package will be released to -updates after the bug(s)
fixed by this package have been verified and the package has been in
-proposed for a minimum of 7 days.
** Description changed:
[Impact]
Logging in as a sudo user in a Ubuntu Focal Linux container displays a
warning:
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
The warning is entirely unnecessary - the container is trying to adjust
RLIMIT_CORE, but this isn't allowed inside a container anyway.
While this is "just" a warning, logging into a container as sudo is a
very common practice, so this warning risks creating confusion for LTS
users.
[Test Case]
$ lxc launch ubuntu:20.04/amd64 sudo-sru-lp1857036-test
$ lxc shell sudo-sru-lp1857036-test
# sudo --login --user ubuntu
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
$ logout
- Install the PPA
- # apt-add-repository -yus ppa:bryce/sudo-sru-lp1857036-setrlimit-in-lxc
+ Enable -proposed and update
# apt-get install sudo
# sudo --login --user ubuntu
$
[Regression Potential]
As this only affects printing of a couple warnings, the only behavioral
change is in stderr output.
[Discussion]
This changes a couple warnings into equivalent debug printfs, which
brings the sudo behavior in-line with the behavior in groovy, bionic,
etc. and should cause no troubles.
This patch originates from upstream, and is already in groovy's sudo
package (which thus can be seen not to exhibit the issue).
The upstream patch includes some new debug prints which should be
harmless but are unnecessary to the fix so they've been removed.
[Original Report]
When using `sudo --login --user USERNAME` with Ubuntu Focal currently, it will correctly operate but it will also throw the following error before continuing with the logon process (which completes successfully except for the stated error):
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
A full run of this was tested in a Focal LXD container after dropping to
a root shell to reproduce (arstotzka is the host system, focal-test is
the test container):
teward at arstotzka:~$ lxc shell focal-test
root at focal-test:~# sudo --login --user ubuntu
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
ubuntu at focal-test:~$
This appears to be similar to this issue identified on RedHat's tracker:
https://bugzilla.redhat.com/show_bug.cgi?id=1773148
ProblemType: Bug
DistroRelease: Ubuntu 20.04
Package: sudo 1.8.29-1ubuntu1
ProcVersionSignature: Ubuntu 4.15.0-72.81-generic 4.15.18
Uname: Linux 4.15.0-72-generic x86_64
ApportVersion: 2.20.11-0ubuntu14
Architecture: amd64
Date: Thu Dec 19 17:16:31 2019
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: sudo
UpgradeStatus: No upgrade log present (probably fresh install)
VisudoCheck:
/etc/sudoers: parsed OK
/etc/sudoers.d/90-cloud-init-users: parsed OK
/etc/sudoers.d/README: parsed OK
** Tags added: verification-needed verification-needed-focal
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to sudo in Ubuntu.
https://bugs.launchpad.net/bugs/1857036
Title:
`sudo --login --user USERNAME` throws `setrlimit(RLIMIT_CORE):
Operation not permitted` error when run inside a container.
Status in sudo package in Ubuntu:
Fix Released
Status in sudo source package in Focal:
Fix Committed
Status in sudo source package in Groovy:
Fix Released
Bug description:
[Impact]
Logging in as a sudo user in a Ubuntu Focal Linux container displays a
warning:
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
The warning is entirely unnecessary - the container is trying to adjust
RLIMIT_CORE, but this isn't allowed inside a container anyway.
While this is "just" a warning, logging into a container as sudo is a
very common practice, so this warning risks creating confusion for LTS
users.
[Test Case]
$ lxc launch ubuntu:20.04/amd64 sudo-sru-lp1857036-test
$ lxc shell sudo-sru-lp1857036-test
# sudo --login --user ubuntu
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
$ logout
Enable -proposed and update
# apt-get install sudo
# sudo --login --user ubuntu
$
[Regression Potential]
As this only affects printing of a couple warnings, the only behavioral
change is in stderr output.
[Discussion]
This changes a couple warnings into equivalent debug printfs, which
brings the sudo behavior in-line with the behavior in groovy, bionic,
etc. and should cause no troubles.
This patch originates from upstream, and is already in groovy's sudo
package (which thus can be seen not to exhibit the issue).
The upstream patch includes some new debug prints which should be
harmless but are unnecessary to the fix so they've been removed.
[Original Report]
When using `sudo --login --user USERNAME` with Ubuntu Focal currently, it will correctly operate but it will also throw the following error before continuing with the logon process (which completes successfully except for the stated error):
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
A full run of this was tested in a Focal LXD container after dropping
to a root shell to reproduce (arstotzka is the host system, focal-test
is the test container):
teward at arstotzka:~$ lxc shell focal-test
root at focal-test:~# sudo --login --user ubuntu
sudo: setrlimit(RLIMIT_CORE): Operation not permitted
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
ubuntu at focal-test:~$
This appears to be similar to this issue identified on RedHat's
tracker: https://bugzilla.redhat.com/show_bug.cgi?id=1773148
ProblemType: Bug
DistroRelease: Ubuntu 20.04
Package: sudo 1.8.29-1ubuntu1
ProcVersionSignature: Ubuntu 4.15.0-72.81-generic 4.15.18
Uname: Linux 4.15.0-72-generic x86_64
ApportVersion: 2.20.11-0ubuntu14
Architecture: amd64
Date: Thu Dec 19 17:16:31 2019
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
LANG=C.UTF-8
SHELL=/bin/bash
SourcePackage: sudo
UpgradeStatus: No upgrade log present (probably fresh install)
VisudoCheck:
/etc/sudoers: parsed OK
/etc/sudoers.d/90-cloud-init-users: parsed OK
/etc/sudoers.d/README: parsed OK
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1857036/+subscriptions
More information about the foundations-bugs
mailing list