Bug 1214198 - In 6.4 kernel, secomp will return wrong errno, leading sudo/useradd... don't work in systemd-nspawn
Summary: In 6.4 kernel, secomp will return wrong errno, leading sudo/useradd... don't ...
Status: RESOLVED FIXED
Alias: None
Product: openSUSE Tumbleweed
Classification: openSUSE
Component: Kernel (show other bugs)
Version: Current
Hardware: RISC-V openSUSE Tumbleweed
: P5 - None : Major (vote)
Target Milestone: ---
Assignee: openSUSE Kernel Bugs
QA Contact: E-mail List
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-08-11 15:31 UTC by Coelacanthus
Modified: 2023-08-21 06:58 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Coelacanthus 2023-08-11 15:31:53 UTC 
After update kernel to 6.4.x, we found sudo, groupmod, groupadd, usermod, useradd don't work in systemd-nspawn like this:

$ sudo ls
sudo: PAM account management error: Function not implemented

After checked, we found seccomp return wrong errno for netlink syscall. systemd-nspawn set it to EAFNOSUPPORT, but it return ENOSYS.
It can be fixed by this patch.
https://lore.kernel.org/linux-riscv/20230801141607.435192-1-CoelacanthusHex@gmail.com/
Comment 1 Andreas Schwab 2023-08-21 06:58:30 UTC 
Fixed in 6.5-rc7.