| Yubico Forum https://forum.yubico.com/ |
|
| CentOS 7 Update breaks everything https://forum.yubico.com/viewtopic.php?f=23&t=2613 |
Page 1 of 1 |
| Author: | knobdy [ Tue Mar 28, 2017 12:49 am ] |
| Post subject: | CentOS 7 Update breaks everything |
I'm specifically having issues with the following messages in /var/log/secure Code: PAM unable to dlopen(/usr/lib64/security/pam_yubico.so): /lib64/libnssutil3.so: undefined symbol: PR_GetEnvSecure PAM adding faulty module: /usr/lib64/security/pam_yubico.so I've attempted to update pam_yubico in hopes that would fix the issue but I can't get past configure step since it refuses to recognize that I have all of the required libraries installed. The latest version included in the repo is what we were running prior to updating anything. |
|
| Author: | knobdy [ Tue Mar 28, 2017 7:04 pm ] |
| Post subject: | Re: CentOS 7 Update breaks everything |
Anyone? Anywhere? Thoughts on what to possibly downgrade? I could upgrade to the newest pam_yubico.so if someone has some thoughts on why configure isn't finding any of the libraries. |
|
| Author: | knobdy [ Tue Mar 28, 2017 8:48 pm ] |
| Post subject: | Re: CentOS 7 Update breaks everything |
Since I'm up against it I figured I'd just keep sharing here, this is the result of configure Code: configure: WARNING: libldap not found, will not be compiled (--without-ldap to disable ldap support)
checking for ld used by GCC... /usr/bin/ld -m elf_x86_64 checking if the linker (/usr/bin/ld -m elf_x86_64) is GNU ld... yes checking for shared library run path origin... done checking for libykclient... no configure: error: Libykclient v2.15+ required, see https://developers.yubico.com/yubico-c-client/ [root@host pam_yubico-2.24]# find /* | grep libykclient /usr/lib64/libykclient.so.3 /usr/lib64/libykclient.so.3.6.0 [root@host pam_yubico-2.24]# |
|
| Author: | mattlegitt [ Tue Mar 28, 2017 10:34 pm ] |
| Post subject: | Re: CentOS 7 Update breaks everything |
Hello knobdy, Have your tried the pam_yubico from epel repo? If not you can follow the instructions linked below to install yum install epel-release yum install pam_yubico https://developers.yubico.com/yubico-pam/ Best Regards, Matthew Yubico Support |
|
| Author: | knobdy [ Tue Mar 28, 2017 10:52 pm ] |
| Post subject: | Re: CentOS 7 Update breaks everything |
Finally THOUGHT I got all of the dependencies out of the way (that seem pretty ridiculous so far as what - NOT NEW - versions are required) and got to this point...now what? Code: Making install in .
make[1]: Entering directory `/tmp/pam_yubico-2.24' CC drop_privs.lo CC util.lo CCLD libpam_util.la CC pam_yubico.lo CCLD libpam_real.la CCLD pam_yubico.la CC ykpamcfg.o CCLD ykpamcfg ./.libs/libpam_util.a(util.o): In function `write_chalresp_state': /tmp/pam_yubico-2.24/util.c:420: undefined reference to `yk_hmac_sha1' collect2: error: ld returned 1 exit status make[1]: *** [ykpamcfg] Error 1 make[1]: Leaving directory `/tmp/pam_yubico-2.24' make: *** [install-recursive] Error 1 |
|
| Author: | mattlegitt [ Tue Mar 28, 2017 11:18 pm ] |
| Post subject: | Re: CentOS 7 Update breaks everything |
Hello knobdy, Since you are having issues manually trying to build this, I recommend opening an issue on our GitHub page. This will be reviewed more easily and quickly by our Developers. https://github.com/Yubico/yubico-pam/issues Best Regards, Matthew Yubico Support |
|
| Author: | knobdy [ Wed Mar 29, 2017 12:42 am ] |
| Post subject: | Re: CentOS 7 Update breaks everything |
mattlegitt wrote: Since you are having issues manually trying to build this, I recommend opening an issue on our GitHub page. This will be reviewed more easily and quickly by our Developers. https://github.com/Yubico/yubico-pam/issues Actually, finally figured out how to get the install done "easily". I've reverted back to the original working system. I've installed the latest version of pam_yubico. I've updated the system. Same errors: Code: Mar 28 18:37:24 host cw: PAM unable to dlopen(/usr/lib64/security/pam_yubico.so): /lib64/libnssutil3.so: undefined symbol: PR_GetEnvSecure Mar 28 18:37:24 host cw: PAM adding faulty module: /usr/lib64/security/pam_yubico.so I'll hop on GitHub just the same... |
|
| Author: | knobdy [ Wed Mar 29, 2017 4:39 pm ] |
| Post subject: | Re: CentOS 7 Update breaks everything |
mattlegitt wrote: Have your tried the pam_yubico from epel repo? If not you can follow the instructions linked below to install Best Regards, Matthew Yubico Support Matthew, Yes, that's what I'm using now - same issue, all versions I can find of the RPM. I reached out on GitHub and so far the best they can do is suggest ABI incompatibilities. I'm not sure how to troubleshoot those - and this is the only PAM module complaining. |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|