sudo after upgrade
Jan Palus
atler at pld-linux.org
Mon Feb 8 15:16:27 CET 2021
On 08.02.2021 14:46, Jan Palus wrote:
> On 02.02.2021 20:45, Andrzej Zawadzki wrote:
> > Hi,
> >
> > I've just upgrade to newest test and after restart I'm not at wheel
> > group anymore....
> >
> > id zawada
> > uid=1000(zawada) gid=1000(users) grupy=1000(users)
> >
> > but:
> >
> > cat /etc/group|grep zawada
> > wheel::10:root,zawada
> >
> > Bug or feature?
>
> Encountered it on one machine as well... You have outdated
> /etc/nsswitch.conf most likely with entry that breaks group membership
> completely:
>
> initgroups: [SUCCESS=continue] files
There supposed to be "db" before [SUCCESS=continue] but it was stripped by us
glibc.spec:
sed -e 's#\([ \t]\)db\([ \t]\)#\1#g' nss/nsswitch.conf > $RPM_BUILD_ROOT%{_sysconfdir}/nsswitch.conf
hence if I understand it correctly: if db succeeded skip files, otherwise do files. Apparently
glibc 2.33 changed semantics of such broken entry and files are not
processed at all resulting in heavily crippled system (but hey, root
works fine ;) ).
Note that above sed is no longer necessary since at least glibc 2.31
which dropped "db" in default config:
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=4b7c74179c8928d971d370e1137d202f891a4cf5;hp=a289ea09ea843ced6e5277c2f2e63c357bc7f9a3
More information about the pld-devel-en
mailing list