[Pkg-utopia-maintainers] Bug#1042981: Multiarch pitfall: polkitd fails to start if not installed in native architecture

Bertram Felgenhauer int-e at gmx.de
Thu Aug 3 17:34:14 BST 2023 

Package: polkitd
Version: 123-1
Severity: normal
File: /usr/lib/polkit-1/polkitd

Dear Maintainer,

for reasons lost in time I had polkitd:i386 installed on an x86_64 host.

After the update to 123-1, polkitd stopped working with errors like

  [ 2080.436059] audit: type=1326 audit(1691077090.861:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4252 comm="polkitd" exe="/usr/lib/polkit-1/polkitd" sig=31 arch=40000003 syscall=45 compat=1 ip=0xf7f51887 code=0x0

This is due to the addition of system call filtering in the polkit
systemd unit:

  SystemCallArchitectures=native      # (which is not i386)
  SystemCallFilter=@system-service

The solution is to install polkitd in its native version.

Can this be fixed by strengthening dependencies?
(Say, tie the architecture to that of systemd...)

Cheers,

Bertram

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.3.0-1-amd64 (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=C, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages polkitd depends on:
ii  adduser                         3.137
ii  dbus [default-dbus-system-bus]  1.14.8-1
ii  libc6                           2.36-9
ii  libduktape207                   2.7.0-2
ii  libexpat1                       2.5.0-2
ii  libglib2.0-0                    2.76.4-4
ii  libpam-systemd [logind]         254-1
ii  libpam0g                        1.5.2-6
ii  libpolkit-agent-1-0             123-1
ii  libpolkit-gobject-1-0           123-1
ii  libsystemd0                     254-1
ii  systemd [systemd-sysusers]      254-1
ii  xml-core                        0.18+nmu1

polkitd recommends no packages.

Versions of packages polkitd suggests:
pn  polkitd-pkla  <none>

Versions of packages polkitd is related to:
pn  elogind         <none>
pn  libpam-elogind  <none>
ii  libpam-systemd  254-1
ii  systemd         254-1

-- no debconf information

More information about the Pkg-utopia-maintainers mailing list