[Touch-packages] [Bug 1992025] Re: When sudo does not require a password, it alters stty as though it is reading a password
As this needs SRUing presumably, as it's broken in kinetic, this needs a description of the impact. What does it mean that the state changed, how does it impact the user? Is this something security team wants to address, should foundations address this? ** Also affects: sudo (Ubuntu Jammy) Importance: Undecided Status: New ** Changed in: sudo (Ubuntu) Status: Confirmed => Triaged ** Changed in: sudo (Ubuntu Jammy) Status: New => Confirmed ** Changed in: sudo (Ubuntu Jammy) Importance: Undecided => Medium ** Changed in: sudo (Ubuntu) Importance: Undecided => Medium ** Also affects: sudo (Ubuntu Kinetic) Importance: Medium Status: Triaged -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to sudo in Ubuntu. https://bugs.launchpad.net/bugs/1992025 Title: When sudo does not require a password, it alters stty as though it is reading a password Status in sudo package in Ubuntu: Triaged Status in sudo source package in Jammy: Confirmed Status in sudo source package in Kinetic: Triaged Bug description: Summary: Executing a sudo (that does not require a password) in a /bin/bash script leaves the terminal as though it is reading a password (-echo, -icrnl, -ixon, -opost, -isig, -icanon, -iexten) To recreate the problem: (See attached log) In a fresh install of 22.04.1 (desktop, minimal, do not load updates, no update done beyond iso data, running under Virtualbox on a Mac), I set up a new user that can run "sudo sleep" without a password. In a Terminal, I demonstrate this, running "stty -a" before and after the "sudo sleep". Then I create a bash script with those same commands. When that script is run, the stty after the "sudo sleep" shows that the state of the terminal has been altered (-echo, etc.) The log starts immediately after the reboot after installing 22.04.1. I decline to do the update when it is offered. (The bug appears even if I do the update on 22.04.1, but I decline the update to make sure this is repeatable.) Basically, the steps are Create user "testuser" Add a file to /etc/sudoers.d that gives testuser sudo privs, with no password required for sleep. (nor for "grep", but I dropped the use of grep in the demo) su - testuser Interactively, in the terminal, I show that "sudo sleep 30 &" does not mess with the terminal settings. I create a /bin/bash script that includes the same commands (stty -a; sudo sleep 10 &; sleep 3; stty -a) I execute the script, which alters the terminal settings.(Quite visible on the Terminal; not as easily visible in the log file.) I expect the second "stty -a" to be the same as the first. I originally saw the bug in 20.04.5 (repeatable but on someone else's computer) for "sudo tcpdump" but wasn't able to reproduce it in a fresh install. ProblemType: Bug DistroRelease: Ubuntu 22.04 Package: sudo 1.9.9-1ubuntu2 ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53 Uname: Linux 5.15.0-48-generic x86_64 ApportVersion: 2.20.11-0ubuntu82.1 Architecture: amd64 CasperMD5CheckResult: pass CurrentDesktop: ubuntu:GNOME Date: Thu Oct 6 10:40:03 2022 InstallationDate: Installed on 2022-10-06 (0 days ago) InstallationMedia: Ubuntu 22.04.1 LTS "Jammy Jellyfish" - Release amd64 (20220809.1) ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: sudo UpgradeStatus: No upgrade log present (probably fresh install) VisudoCheck: Error: command ['pkexec', '/usr/sbin/visudo', '-c'] failed with exit code 1: /etc/sudoers.d/testuser: bad permissions, should be mode 0440 /etc/sudoers: parsed OK /etc/sudoers.d/README: parsed OK modified.conffile..etc.sudoers: [inaccessible: [Errno 13] Permission denied: '/etc/sudoers'] modified.conffile..etc.sudoers.d.README: [inaccessible: [Errno 13] Permission denied: '/etc/sudoers.d/README'] To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1992025/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1992025] Re: When sudo does not require a password, it alters stty as though it is reading a password
I wasn't able to reproduce on 20.04 LTS.
I was able to reproduce on 22.04 LTS.
This little script should work out of the box:
$ cat /tmp/sudo-stty
#!/bin/bash
sudo ls
mkdir /tmp/stty
for i in `seq -w 1 999`; do stty -a > /tmp/stty/before.${i}; sudo sleep
1 & stty -a > /tmp/stty/after.${i} 2>&1 ; done
Your terminal won't echo anything you type afterwards if it happens, so it's
not exactly subtle :) but with all those outputs saved aside, you can check:
md5sum /tmp/stty/* | sort
to see where exactly the race is lost on your own system.
(reset(1) will restore the terminal to something useful, but clears the
output when you run it.)
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to sudo in Ubuntu.
https://bugs.launchpad.net/bugs/1992025
Title:
When sudo does not require a password, it alters stty as though it is
reading a password
Status in sudo package in Ubuntu:
Confirmed
Bug description:
Summary:
Executing a sudo (that does not require a password) in a /bin/bash script
leaves the terminal as though it is reading a password (-echo, -icrnl, -ixon,
-opost, -isig, -icanon, -iexten)
To recreate the problem: (See attached log)
In a fresh install of 22.04.1 (desktop, minimal, do not load updates,
no update done beyond iso data, running under Virtualbox on a Mac), I
set up a new user that can run "sudo sleep" without a password. In a
Terminal, I demonstrate this, running "stty -a" before and after the
"sudo sleep". Then I create a bash script with those same commands.
When that script is run, the stty after the "sudo sleep" shows that
the state of the terminal has been altered (-echo, etc.)
The log starts immediately after the reboot after installing 22.04.1.
I decline to do the update when it is offered. (The bug appears even
if I do the update on 22.04.1, but I decline the update to make sure
this is repeatable.)
Basically, the steps are
Create user "testuser"
Add a file to /etc/sudoers.d that gives testuser sudo privs, with no
password required for sleep. (nor for "grep", but I dropped the use of grep in
the demo)
su - testuser
Interactively, in the terminal, I show that "sudo sleep 30 &" does not
mess with the terminal settings.
I create a /bin/bash script that includes the same commands (stty -a; sudo
sleep 10 &; sleep 3; stty -a)
I execute the script, which alters the terminal settings.(Quite visible on
the Terminal; not as easily visible in the log file.)
I expect the second "stty -a" to be the same as the first.
I originally saw the bug in 20.04.5 (repeatable but on someone else's
computer) for "sudo tcpdump" but wasn't able to reproduce it in a
fresh install.
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: sudo 1.9.9-1ubuntu2
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: pass
CurrentDesktop: ubuntu:GNOME
Date: Thu Oct 6 10:40:03 2022
InstallationDate: Installed on 2022-10-06 (0 days ago)
InstallationMedia: Ubuntu 22.04.1 LTS "Jammy Jellyfish" - Release amd64
(20220809.1)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: sudo
UpgradeStatus: No upgrade log present (probably fresh install)
VisudoCheck:
Error: command ['pkexec', '/usr/sbin/visudo', '-c'] failed with exit code 1:
/etc/sudoers.d/testuser: bad permissions, should be mode 0440
/etc/sudoers: parsed OK
/etc/sudoers.d/README: parsed OK
modified.conffile..etc.sudoers: [inaccessible: [Errno 13] Permission denied:
'/etc/sudoers']
modified.conffile..etc.sudoers.d.README: [inaccessible: [Errno 13] Permission
denied: '/etc/sudoers.d/README']
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1992025/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1992025] Re: When sudo does not require a password, it alters stty as though it is reading a password
** Changed in: sudo (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to sudo in Ubuntu. https://bugs.launchpad.net/bugs/1992025 Title: When sudo does not require a password, it alters stty as though it is reading a password Status in sudo package in Ubuntu: Confirmed Bug description: Summary: Executing a sudo (that does not require a password) in a /bin/bash script leaves the terminal as though it is reading a password (-echo, -icrnl, -ixon, -opost, -isig, -icanon, -iexten) To recreate the problem: (See attached log) In a fresh install of 22.04.1 (desktop, minimal, do not load updates, no update done beyond iso data, running under Virtualbox on a Mac), I set up a new user that can run "sudo sleep" without a password. In a Terminal, I demonstrate this, running "stty -a" before and after the "sudo sleep". Then I create a bash script with those same commands. When that script is run, the stty after the "sudo sleep" shows that the state of the terminal has been altered (-echo, etc.) The log starts immediately after the reboot after installing 22.04.1. I decline to do the update when it is offered. (The bug appears even if I do the update on 22.04.1, but I decline the update to make sure this is repeatable.) Basically, the steps are Create user "testuser" Add a file to /etc/sudoers.d that gives testuser sudo privs, with no password required for sleep. (nor for "grep", but I dropped the use of grep in the demo) su - testuser Interactively, in the terminal, I show that "sudo sleep 30 &" does not mess with the terminal settings. I create a /bin/bash script that includes the same commands (stty -a; sudo sleep 10 &; sleep 3; stty -a) I execute the script, which alters the terminal settings.(Quite visible on the Terminal; not as easily visible in the log file.) I expect the second "stty -a" to be the same as the first. I originally saw the bug in 20.04.5 (repeatable but on someone else's computer) for "sudo tcpdump" but wasn't able to reproduce it in a fresh install. ProblemType: Bug DistroRelease: Ubuntu 22.04 Package: sudo 1.9.9-1ubuntu2 ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53 Uname: Linux 5.15.0-48-generic x86_64 ApportVersion: 2.20.11-0ubuntu82.1 Architecture: amd64 CasperMD5CheckResult: pass CurrentDesktop: ubuntu:GNOME Date: Thu Oct 6 10:40:03 2022 InstallationDate: Installed on 2022-10-06 (0 days ago) InstallationMedia: Ubuntu 22.04.1 LTS "Jammy Jellyfish" - Release amd64 (20220809.1) ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: sudo UpgradeStatus: No upgrade log present (probably fresh install) VisudoCheck: Error: command ['pkexec', '/usr/sbin/visudo', '-c'] failed with exit code 1: /etc/sudoers.d/testuser: bad permissions, should be mode 0440 /etc/sudoers: parsed OK /etc/sudoers.d/README: parsed OK modified.conffile..etc.sudoers: [inaccessible: [Errno 13] Permission denied: '/etc/sudoers'] modified.conffile..etc.sudoers.d.README: [inaccessible: [Errno 13] Permission denied: '/etc/sudoers.d/README'] To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1992025/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
