From owner-freebsd-ports@FreeBSD.ORG Mon Feb 25 22:25:35 2013 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 6B3F9211; Mon, 25 Feb 2013 22:25:35 +0000 (UTC) (envelope-from kpaasial@gmail.com) Received: from mail-wg0-f47.google.com (mail-wg0-f47.google.com [74.125.82.47]) by mx1.freebsd.org (Postfix) with ESMTP id D2ACCB62; Mon, 25 Feb 2013 22:25:34 +0000 (UTC) Received: by mail-wg0-f47.google.com with SMTP id dr13so2797811wgb.26 for ; Mon, 25 Feb 2013 14:25:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:cc:content-type; bh=kyqs8q8iRuKfCjgnJEI0eWr1DI0FvMdBJJu96qeb5UM=; b=RXdzCMNM88EnsrsYmbKVOC5NuBrIUj5ttOMGvZVWEV0Y3Q1OIrTDJeu59lq3K+gv1V 7XwAKUzcPphJ3BHbwJAwl8kOKbc5W4F9MOfZsM54OoqJeLwDIePRfO8bCMpJhHZ1CtAa 6Tr82QUiz2e1i+wBEluH/WvNVl4LzLNZPrE8uEatHLNdqiLLzk2lEQf4QQJ3u9OyEHfA FL/rWplYqVMoXfVmPPKdGvAMJR4ITjs9aVBJaupYgD2jRZcSkJvhMGHvYKZ0/ZaX5Hq4 KKn8i+iQZITih4mTCzlqzJD3I0inklDiffgX13Tn44h8s3m9Op9R7wjeDwumye8NTjG2 bQdQ== MIME-Version: 1.0 X-Received: by 10.180.73.238 with SMTP id o14mr15182641wiv.32.1361831128580; Mon, 25 Feb 2013 14:25:28 -0800 (PST) Received: by 10.216.120.193 with HTTP; Mon, 25 Feb 2013 14:25:28 -0800 (PST) In-Reply-To: <6C2D19D2-A599-4B6A-89CC-D32DF685926F@lassitu.de> References: <7A12B6B7-BE3F-4E0A-99C5-61348CA7E028@lassitu.de> <6C2D19D2-A599-4B6A-89CC-D32DF685926F@lassitu.de> Date: Tue, 26 Feb 2013 00:25:28 +0200 Message-ID: Subject: Re: pam_ssh_agent_auth: ENOENT From: Kimmo Paasiala To: Stefan Bethke Content-Type: text/plain; charset=UTF-8 Cc: freebsd-ports@freebsd.org, miwi@freebsd.org X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Feb 2013 22:25:35 -0000 On Mon, Feb 25, 2013 at 7:50 PM, Stefan Bethke wrote: > > Am 20.02.2013 um 16:34 schrieb Kimmo Paasiala : > >> On Wed, Feb 6, 2013 at 12:28 AM, Stefan Bethke wrote: >>> >>>> I can confirm that with the new port version on a two day old current, the module doesn't work: >>>> $ uname -a >>>> FreeBSD freebsd-current.lassitu.de 10.0-CURRENT FreeBSD 10.0-CURRENT #0 r246283: Sun Feb 3 16:55:16 CET 2013 root@freebsd-current.lassitu.de:/usr/obj/usr/src/sys/GENERIC amd64 >>>> $ pkg info|grep pam >>>> pam_ssh_agent_auth-0.9.4 PAM module which permits authentication via ssh-agent >>>> $ sudo ls >>>> sudo: unable to initialize PAM: No error: 0 >>>> >>>> If I downgrade to the previous port version (and apply Kimmo's patch), it's working properly. >>> >>> >>> Here's a slightly different error message on 9-stable: >>> $ uname -a >>> FreeBSD diesel.lassitu.de 9.1-STABLE FreeBSD 9.1-STABLE #7 r245996: Sun Jan 27 22:36:05 CET 2013 root@diesel.lassitu.de:/usr/obj/usr/src/sys/DIESEL amd64 >>> stb@diesel:~$ sudo ls >>> sudo: unable to initialize PAM: No such file or directory >> >> Latest version pam_ssh_agent_auth-0.9.4_1 seems to finally work >> without any extra patches when built on a 9.1-RELEASE system. > > Hhm, with a 9.1-stable from this morning, I'm still getting ENOENT. Can you spot anything different in my setup? > > > My /usr/local/etc/pam.d/sudo looks like this: > # > # PAM configuration for the "sudo" service > # > > # auth > auth sufficient /usr/local/lib/pam_ssh_agent_auth.so file=~/.ssh/authorized_keys > auth include system > > # account > account include system > > # session > # XXX: pam_lastlog (used in system) causes users to appear as though > # they are no longer logged in in system logs. > session required pam_permit.so > > # password > password include system > > /var/log/messages reports: > Feb 25 17:41:01 lokschuppen sudo: in openpam_load_module(): no /usr/local/lib/pam_ssh_agent_auth found > Feb 25 17:41:01 lokschuppen sudo: stb : unable to initialize PAM : No such file or directory ; TTY=pts/0 ; PWD=/root/eisenboot ; USER=root ; COMMAND=/bin/ls > # ls -l /usr/local/lib/pam_ssh_agent_auth.so > -rwxr-xr-x 1 root wheel 100194 Feb 25 08:48 /usr/local/lib/pam_ssh_agent_auth.so* > # pkg_info|grep pam_ssh > pam_ssh_agent_auth-0.9.4_1 PAM module which permits authentication via ssh-agent > # ldd /usr/local/lib/pam_ssh_agent_auth.so > /usr/local/lib/pam_ssh_agent_auth.so: > libcrypto.so.6 => /lib/libcrypto.so.6 (0x801214000) > libutil.so.9 => /lib/libutil.so.9 (0x8015bc000) > libpam.so.5 => /usr/lib/libpam.so.5 (0x8017cf000) > libcrypt.so.5 => /lib/libcrypt.so.5 (0x8019d7000) > libc.so.7 => /lib/libc.so.7 (0x80081b000) > > What other reasons could PAM have to report ENOENT? > > This is the same configuration that used to work with the earlier version. > > > Stefan > > -- > Stefan Bethke Fon +49 151 14070811 > > > Looks like the port is still broken if compiled on a 9-STABLE system with new vis(3) functions included. Compiling it on a 9.1-RELEASE system produces a working package. I use devel/poudriere-devel for compiling packages and I didn't test the port by compiling it manually. -Kimmo