Public bug reported:
When booting a system with dracut using rooturl to fetch a rootfs
tarball (i.e. "root=tar:http"), the resulting root filesystem retains
the `nosuid` mount flag. This breaks any `setuid` binaries in the booted
OS, causing critical utilities like sudo to fail with:
```
sudo: sudo must be owned by uid 0 and have the setuid bit set
```
Example boot with dracut implementation:
```
ubuntu@ubuntu:~$ mount | grep -E "\s/\s"
tmpfs on / type tmpfs
(rw,nosuid,nodev,size=1212592k,nr_inodes=819200,mode=755,inode64)
```
Example boot with initramfs-tools implementation:
```
ubuntu@ubuntu:~$ mount | grep -E "\s/\s"
root_url on / type tmpfs (rw,relatime,inode64)
```
** Affects: cloud-initramfs-tools (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2146342
Title:
cloud-initramfs-rooturl: Root filesystem mounted with `nosuid` in
dracut port, breaking `setuid` binaries like `sudo`
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cloud-initramfs-tools/+bug/2146342/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
