virtme-ng: hide additional sudo settings

Try to keep sudo settings as simple as possible and rely only on our custom /etc/sudoers. This can help to prevent potential permissions errors while using sudo inside a virtme-ng guest. Signed-off-by: Andrea Righi <[email protected]>
arighi · Feb 22, 2024 · e0d48fc · e0d48fc
1 parent ef88452
commit e0d48fc
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 1 deletion.
diff --git a/virtme/guest/virtme-init b/virtme/guest/virtme-init
@@ -97,6 +97,9 @@ fi
 # Additional rw dirs required by snapd (if present)
 [ -e /var/lib/snapd/cookie ] && mount -t tmpfs tmpfs /var/lib/snapd/cookie &
 
+# Hide additional sudo settings
+[ -e /var/lib/sudo ] && mount -t tmpfs tmpfs /var/lib/sudo &
+
 # Fix up /etc a little bit
 touch /tmp/fstab
 mount --bind /tmp/fstab /etc/fstab
@@ -212,6 +215,9 @@ ip link set dev lo up
 
 # Setup sudoers
 real_sudoers=/etc/sudoers
+if [ ! -e ${real_sudoers} ]; then
+    touch ${real_sudoers}
+fi
 tmpfile="`mktemp --tmpdir=/tmp`"
 echo "Defaults secure_path=\"/usr/sbin:/usr/bin:/sbin:/bin\"" > $tmpfile
 echo "root ALL = (ALL) NOPASSWD: ALL" >> $tmpfile

diff --git a/virtme_ng_init b/virtme_ng_init