[Bug 289645] D51719 breaks things

bugzilla-noreply Sat, 20 Sep 2025 12:10:12 -0700

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=289645


            Bug ID: 289645
           Summary: D51719 breaks things
           Product: Base System
           Version: CURRENT
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: kern
          Assignee: [email protected]
          Reporter: [email protected]

Since D51719 (commit 246d7e9fc23928be22db38220f5439f5cdee5264) a lot of my
jails are now failing as services are no longer able to set or get auids.

This also prevents changing user contexts, even just from root to toor.

```
root@hulk:~ # id
uid=0(root) gid=0(wheel) groups=0(wheel),5(operator)
root@hulk:~ # su -l toor
su: Permission denied
root@hulk:~ # tail /var/log/auth.log /var/log/messages
==> /var/log/auth.log <==
Sep 16 11:26:56 hulk su[34105]: getauid: Operation not permitted
Sep 16 11:28:48 hulk su[37744]: getauid: Operation not permitted
Sep 16 11:29:48 hulk login[39549]: login on pts/2 as root
Sep 16 11:29:51 hulk su[39614]: getauid: Operation not permitted
Sep 16 11:44:58 hulk su[94608]: getauid: Operation not permitted
Sep 16 11:55:01 hulk su[29349]: getauid: Operation not permitted
Sep 16 11:55:02 hulk su[29373]: getauid: Operation not permitted
Sep 16 11:55:23 hulk login[30080]: login on pts/2 as root
Sep 16 11:55:33 hulk su[30310]: getauid: Operation not permitted
Sep 16 11:55:36 hulk su[30372]: getauid: Operation not permitted

==> /var/log/messages <==
Sep 16 11:44:58 hulk su[94608]: getauid: Operation not permitted
Sep 16 11:44:59 hulk root[94619]: /usr/local/etc/rc.d/mysql-server: WARNING:
failed to start mysql
Sep 16 11:48:54 hulk syslogd: exiting on signal 15
Sep 16 11:54:59 hulk syslogd: kernel boot file is /boot/kernel/kernel
Sep 16 11:55:01 hulk su[29349]: getauid: Operation not permitted
Sep 16 11:55:01 hulk root[29353]: /etc/rc: WARNING: failed to start mysql
Sep 16 11:55:02 hulk su[29373]: getauid: Operation not permitted
Sep 16 11:55:02 hulk root[29382]: /etc/rc: WARNING: failed to start redis
Sep 16 11:55:33 hulk su[30310]: getauid: Operation not permitted
Sep 16 11:55:36 hulk su[30372]: getauid: Operation not permitted
```

And when attempting to start databases/mariadb1011-server:
```
+ umask
+ _m=0022
+ 
+ eval $' limits -C daemon  su -m mysql -c \'sh -c " /usr/sbin/daemon  -c -f
/usr/local/bin/mariadbd-safe --defaults-extra-file=/usr/local/etc/mysql/my.cnf
--user=mysql --datadir=/var/db/mysql --pid-file=/var/run/mysql/mysqld.pid  "\''
+ limits -C daemon su -m mysql -c 'sh -c " /usr/sbin/daemon  -c -f
/usr/local/bin/mariadbd-safe --defaults-extra-file=/usr/local/etc/mysql/my.cnf
--user=mysql --datadir=/var/db/mysql --pid-file=/var/run/mysql/mysqld.pid  "'
su: Permission denied
```

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 289645] D51719 breaks things

Reply via email to