[Pkg-utopia-maintainers] Bug#1042981: Multiarch pitfall: polkitd fails to start if not installed in native architecture
Bertram Felgenhauer
int-e at gmx.de
Thu Aug 3 17:34:14 BST 2023
Package: polkitd
Version: 123-1
Severity: normal
File: /usr/lib/polkit-1/polkitd
Dear Maintainer,
for reasons lost in time I had polkitd:i386 installed on an x86_64 host.
After the update to 123-1, polkitd stopped working with errors like
[ 2080.436059] audit: type=1326 audit(1691077090.861:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4252 comm="polkitd" exe="/usr/lib/polkit-1/polkitd" sig=31 arch=40000003 syscall=45 compat=1 ip=0xf7f51887 code=0x0
This is due to the addition of system call filtering in the polkit
systemd unit:
SystemCallArchitectures=native # (which is not i386)
SystemCallFilter=@system-service
The solution is to install polkitd in its native version.
Can this be fixed by strengthening dependencies?
(Say, tie the architecture to that of systemd...)
Cheers,
Bertram
-- System Information:
Debian Release: trixie/sid
APT prefers unstable-debug
APT policy: (500, 'unstable-debug'), (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 6.3.0-1-amd64 (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=C, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages polkitd depends on:
ii adduser 3.137
ii dbus [default-dbus-system-bus] 1.14.8-1
ii libc6 2.36-9
ii libduktape207 2.7.0-2
ii libexpat1 2.5.0-2
ii libglib2.0-0 2.76.4-4
ii libpam-systemd [logind] 254-1
ii libpam0g 1.5.2-6
ii libpolkit-agent-1-0 123-1
ii libpolkit-gobject-1-0 123-1
ii libsystemd0 254-1
ii systemd [systemd-sysusers] 254-1
ii xml-core 0.18+nmu1
polkitd recommends no packages.
Versions of packages polkitd suggests:
pn polkitd-pkla <none>
Versions of packages polkitd is related to:
pn elogind <none>
pn libpam-elogind <none>
ii libpam-systemd 254-1
ii systemd 254-1
-- no debconf information
More information about the Pkg-utopia-maintainers
mailing list