openSUSE · lkocman · May 19, 2026 · May 20, 2026 · May 20, 2026 · dirkmueller
diff --git a/opensuse-migration-tool b/opensuse-migration-tool
@@ -63,18 +63,6 @@ for tool in "${REQUIRED_TOOLS[@]}"; do
     fi
 done
 
-if [[ -n "${DIALOGCMD:-}" ]] && command -v "$DIALOGCMD" >/dev/null 2>&1; then
-    DIALOGCMD=$(command -v "$DIALOGCMD")
-elif DIALOGCMD=$(command -v susedialog 2>/dev/null); then
-    :
-elif DIALOGCMD=$(command -v dialog 2>/dev/null); then
-    :
-else
-    echo "Neither susedialog nor dialog is installed."
-    echo "Please run: sudo zypper install susedialog"
-    exit 1
-fi
-
 # Ensure Bash version is 4.0+
 if ((BASH_VERSINFO[0] < 4)); then
     echo "This script requires Bash 4.0 or higher." >&2
@@ -191,13 +179,30 @@ function check_x86_64_v2_support() {
 # Elevated permissions check unless DRYRUN is set
 if [ -z "${DRYRUN:-}" ]; then
     if [ "$EUID" -ne 0 ]; then
-        exec sudo DIALOGCMD="$DIALOGCMD" "$0" "$@"
+        # Re-run with sudo in a clean environment.
+        # Keep only terminal-related vars needed by dialog.
+        exec sudo env -i \
+            PATH="/usr/sbin:/usr/bin:/sbin:/bin" \
+            TERM="${TERM:-linux}" \
+            COLORTERM="${COLORTERM:-}" \
+            "$0" "$@"
     fi
 
 	# Requires elevated permissions or test will always fail
 	test -w / || { echo "Please run the tool inside 'transactional-update shell' on Immutable systems."; exit 1; }
 fi
 
+# Resolve susedialog only after privilege handling.
+# This prevents using a value resolved in an unprivileged context in the elevated run.
+unset DIALOGCMD
+if DIALOGCMD=$(command -v susedialog 2>/dev/null); then
+    :
+else
+    echo "susedialog is required but not installed."
+    echo "Please run: sudo zypper install susedialog"
+    exit 1
+fi
+
 
 # System-specific options
 if [[ "$NAME" == "openSUSE Leap Micro" ]]; then