[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: redhat kerberos PAM

To: Brian May <bam@snoopy.apana.org.au>
Subject: Re: redhat kerberos PAM
From: Nicolas Williams <Nicolas.Williams@ubsw.com>
Date: Thu, 9 Nov 2000 10:44:11 -0500
Cc: heimdal-discuss@sics.se
In-Reply-To: <84r94lhgmv.fsf@snoopy.apana.org.au>; from bam@snoopy.apana.org.au on Thu, Nov 09, 2000 at 04:13:44PM +1100
Mail-Followup-To: Brian May <bam@snoopy.apana.org.au>,heimdal-discuss@sics.se
References: <4.2.2.20001103180059.00acae50@fritz.bluewave.com> <20001106185108.A1332@ola.fr.eu.org> <84em0mhtul.fsf@snoopy.apana.org.au> <84r94lhgmv.fsf@snoopy.apana.org.au>
Sender: owner-heimdal-discuss@sics.se

On Thu, Nov 09, 2000 at 04:13:44PM +1100, Brian May wrote:
> >>>>> "Brian" == Brian May <bam@snoopy.apana.org.au> writes:
> 
>     Joel> I've managed to make Franck Cusack's PAM module work with
>     Joel> heimdal with only a small patch. You can find the module on
>     Joel> http://www.fcusack.com/ and my patch on
>     Joel> http://ns1.logidee.com/~joko/heimdal/
> 
> I was playing around with this, but haven't been able to get it to work -
> the real killer was this:
> 
> Nov  9 12:17:00 snoopy sshd[32542]: PAM unable to dlopen(/lib/security/pam_krb5.so)
> Nov  9 12:17:00 snoopy sshd[32542]: PAM [dlerror: /usr/lib/libroken.so.9: undefined symbol: res_search]
> Nov  9 12:17:00 snoopy sshd[32542]: PAM adding faulty module: /lib/security/pam_krb5.so

Wellll, this seems to indicate that that pam_krb5.so was not linked
properly, as res_search() is a function from the DNS resolver and, on
your host, that seems not to be in libc.

> So, now I am attempting to solve all the warnings. One seems a real
> problem:
> 
> [902] [snoopy:bam] ~/source/notmine/pam-krb5-1.0/build >make pam_krb5_pass.o
> gcc -c -O2 -fPIC -Wall -I/opt/local/include pam_krb5_pass.c
> pam_krb5_pass.c: In function `pam_sm_chauthtok':
> pam_krb5_pass.c:72: warning: implicit declaration of function `error_message'
> pam_krb5_pass.c:131: warning: passing arg 5 of `krb5_get_init_creds_password' from incompatible pointer type
> 
> This is because it defined pam_prompter as:
> 
> krb5_error_code
> pam_prompter(krb5_context context, void *data, const char *name,
>              const char *banner, int num_prompts, krb5_prompt prompts[])

Cool! Hmmm, ok, I must take a look at this module now.

> Not sure where error_message is defined, no can I see any reference to
> res_search (this probably means I am missing a library).

Yes. On Solaris that would be libresolv.

> -- 
> Brian May <bam@snoopy.apana.org.au>


Nico
--

Follow-Ups:
- Re: redhat kerberos PAM
  - From: Brian May <bam@snoopy.apana.org.au>

References:
- redhat kerberos PAM
  - From: Alex Stepney <alex.stepney@bluewave.com>
- Re: redhat kerberos PAM
  - From: Joel Kociolek <joko@logidee.com>
- Re: redhat kerberos PAM
  - From: Brian May <bam@snoopy.apana.org.au>
- Re: redhat kerberos PAM
  - From: Brian May <bam@snoopy.apana.org.au>

Prev by Date: Re: redhat kerberos PAM
Next by Date: Re: libsl, libss, vs e2fs libss
Prev by thread: Re: redhat kerberos PAM
Next by thread: Re: redhat kerberos PAM
Index(es):
- Date
- Thread