Date: Thu, 19 Mar 2009 19:01:47 +0300 From: Alexandr Sergeev <ales@ripn.net> To: FreeBSD-gnats-submit@FreeBSD.org Cc: alex_sergueev@mail.ru Subject: ports/132819: Failed loading pam_ldap.so from PAM (installed from security/pam_ldap, on FreeBSD 7.1-RELEASE amd64) Message-ID: <E1LkKgl-0000Dl-V5@argo.ripn.net> Resent-Message-ID: <200903191630.n2JGU1Go083870@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 132819 >Category: ports >Synopsis: Failed loading pam_ldap.so from PAM (installed from security/pam_ldap, on FreeBSD 7.1-RELEASE amd64) >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu Mar 19 16:30:01 UTC 2009 >Closed-Date: >Last-Modified: >Originator: Alexandr Sergeev <ales@ripn.net> >Release: FreeBSD 7.1-RELEASE amd64 >Organization: ripn.net >Environment: System: FreeBSD host 7.1-RELEASE FreeBSD 7.1-RELEASE #0: Tue Mar 10 16:28:38 MSK 2009 ales@host:/usr/obj/usr/src/sys/CUSTOM amd64 CPU: Intel(R) Xeon(R) CPU E5405 @ 2.00GHz (1995.01-MHz K8-class CPU) Origin = "GenuineIntel" Id = 0x10676 Stepping = 6 Features=0xbfebfbff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE> Features2=0xce33d<SSE3,RSVD2,MON,DS_CPL,VMX,TM2,SSSE3,CX16,xTPR,PDCM,DCA,<b19>> AMD Features=0x20000800<SYSCALL,LM> AMD Features2=0x1<LAHF> Cores per package: 4 usable memory = 8580599808 (8183 MB) avail memory = 8285360128 (7901 MB) Server type: IBM SystemX x3650 7979 2CPUs(8 cores) #pkg_info db41-4.1.25_4 The Berkeley DB package, revision 4.1 gettext-0.17_1 GNU gettext package gmake-3.81_3 GNU version of 'make' utility libiconv-1.11_1 A character set conversion library libtool-1.5.26 Generic shared library support script makedepend-1.0.1,1 A dependency generator for makefiles openldap-client-2.4.15_1 Open source LDAP client implementation openssl-0.9.8j_1 SSL and crypto library pam_ldap-1.8.4_1 A pam module for authenticating with LDAP pam_mkhomedir-0.1 Create HOME with a PAM module on demand perl-5.8.9_2 Practical Extraction and Report Language pkg-config-0.23_1 A utility to retrieve information about installed libraries portupgrade-2.4.6,2 FreeBSD ports/packages administration and management tool s postgresql-client-8.2.13 PostgreSQL database (client) ruby-1.8.7.72_1,1 An object-oriented interpreted scripting language ruby18-bdb-0.6.5 Ruby interface to Sleepycat's Berkeley DB revision 2 or lat xproto-7.0.15 X11 protocol headers >Description: Hi! We have a problem when loading pam_ldap.so unit. In auth.log the following error gets: Mar 19 17:58:15 host sshd[36442]: in openpam_load_module(): no /usr/local/lib/pam_ldap.so found Mar 19 17:58:15 host sshd[36442]: fatal: PAM: initialisation failed The path to the unit is specified correctly, the rights are sets correctly, the unit file type is right: # pwd /usr/local/lib ls -l | grep pam -r--r--r-- 1 root wheel 42584 Mar 18 11:44 pam_ldap.so lrwxr-xr-x 1 root wheel 18 Mar 17 18:17 pam_mkhomedir.so -> pam_mkhomedir.so.2 -r--r--r-- 1 root wheel 9056 Mar 17 18:17 pam_mkhomedir.so.2 # file pam_ldap.so pam_ldap.so: ELF 64-bit LSB shared object, x86-64, version 1 (FreeBSD), stripped However, pam_mkhomedir.so from the same directory boots normally. A fragment of /etc/pam.d/sshd: # auth auth sufficient pam_opie.so no_warn no_fake_prompts auth requisite pam_opieaccess.so no_warn allow_local auth sufficient pam_unix.so no_warn try_first_pass auth required /usr/local/lib/pam_ldap.so Change of parametres of call of the unit, condition type, does not influence result. The unit move to /usr/lib and instructions in pam.d/sshd without path also does not help . Units are installed from newest ports. On other machine with same hardware configuration, but 32bit FreeBSD (i386 kernel), pam_ldap works correctly. I will be very glad to hear your advices on problem elimination! Fast introduction of this service very important for us. Use of 32bit system not allowed, because it not detect over 4GB RAM. >How-To-Repeat: Try to use pam_ldap from PAM on FreeBSD 7.1-RELEASE amd64 with similar hardware configuration (Intel Xeon). >Fix: >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E1LkKgl-0000Dl-V5>