Bug#706474: [Pkg-openssl-devel] Bug#706474: libssl1.0.0: saslauthd fails with PAM unable to dlopen(pam_mysql.so)
All I did was upgrade to the latest packages. I'm using : deb http://ftp.uk.debian.org/debian wheezy main contrib non-free deb http://ftp.uk.debian.org/debian wheezy-updates main contrib non-free deb http://security.debian.orgwheezy/updates main non-free #apt-get update apt-get upgrade .. Preparing to replace libssl1.0.0:i386 1.0.1c-4 (using .../libssl1.0.0_1.0.1e-2_i386.deb) ... SASL auth now fails : PAM unable to dlopen(pam_mysql.so): /usr/lib/i386-linux-gnu/i686/cmov/libcrypto.so.1.0.0: version `OPENSSL_1.0.1d' not found (required by /usr/lib/i386-linux-gnu/i686/cmov/libssl.so.1.0.0) # strings libcrypto.so.1.0.0 | grep OPENSSL_1 OPENSSL_1.0.0 OPENSSL_1.0.1 OPENSSL_1.0.1d # strings libssl.so.1.0.0 | grep OPENSSL_1 OPENSSL_1.0.0 OPENSSL_1.0.1 OPENSSL_1.0.1d # dpkg -i ~/libssl1.0.0_1.0.1c-4_i386.deb dpkg: warning: downgrading libssl1.0.0:i386 from 1.0.1e-2 to 1.0.1c-4 SASL auth now works # strings libcrypto.so.1.0.0 | grep OPENSSL_1 OPENSSL_1.0.0 OPENSSL_1.0.1 # strings libssl.so.1.0.0 | grep OPENSSL_1 OPENSSL_1.0.0 OPENSSL_1.0.1 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#706474: [Pkg-openssl-devel] Bug#706474: libssl1.0.0: saslauthd fails with PAM unable to dlopen(pam_mysql.so)
On Wed, May 01, 2013 at 12:16:55PM +0100, Simon Hobson wrote: All I did was upgrade to the latest packages. I'm using : deb http://ftp.uk.debian.org/debian wheezy main contrib non-free deb http://ftp.uk.debian.org/debian wheezy-updates main contrib non-free deb http://security.debian.orgwheezy/updates main non-free #apt-get update apt-get upgrade .. Preparing to replace libssl1.0.0:i386 1.0.1c-4 (using .../libssl1.0.0_1.0.1e-2_i386.deb) ... SASL auth now fails : PAM unable to dlopen(pam_mysql.so): /usr/lib/i386-linux-gnu/i686/cmov/libcrypto.so.1.0.0: version `OPENSSL_1.0.1d' not found (required by /usr/lib/i386-linux-gnu/i686/cmov/libssl.so.1.0.0) Can you try restarting saslauthd? My best guess is that it's linked in an other way to libcrypto.so.1.0.0 and still has the old copy open, but that it doesn't have libssl.so.1.0.0 in it's address space yet. Kurt -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#706474: [Pkg-openssl-devel] Bug#706474: libssl1.0.0: saslauthd fails with PAM unable to dlopen(pam_mysql.so)
Can you try restarting saslauthd? I'm pretty certain I'd done that before while testing various things out. I've rebooted the machine and now it works. My best guess is that it's linked in an other way to libcrypto.so.1.0.0 ... That would seem to be a logical explanation. Anyway, it's working now, sorry for taking up your time. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#706474: [Pkg-openssl-devel] Bug#706474: libssl1.0.0: saslauthd fails with PAM unable to dlopen(pam_mysql.so)
On Tue, Apr 30, 2013 at 04:24:03PM +0100, Simon Hobson wrote: Package: libssl1.0.0 Version: 1.0.1e-2 Severity: important Dear Maintainer, With version 1.0.1e-2 installed, authentication fails. Postfix is configured to use PAM to authenticate users against a MySQL database with libsasl2-2, libsasl2-modules (both version 2.1.25.dfsg1-6), and courier-authdaemon, courier-authlib, courier-authlib-mysql (all version 0.63.0-6+b1). Downgrading to version 1.0.1c-4 resolves the issue. The following is logged in auth.log when debugging turned up : saslauthd[2652]: PAM unable to dlopen(pam_mysql.so): /usr/lib/i386-linux-gnu/i686/cmov/libcrypto.so.1.0.0: version `OPENSSL_1.0.1d' not found (required by /usr/lib/i386-linux-gnu/i686/cmov/libssl.so.1.0.0) saslauthd[2652]: PAM adding faulty module: pam_mysql.so saslauthd[2652]: DEBUG: auth_pam: pam_authenticate failed: Module is unknown saslauthd[2652]: do_auth : auth failure: [user=*] [service=smtp] [realm=*] [mech=pam] [reason=PAM auth error] Version OPENSSL_1.0.1d is in the file /usr/lib/i386-linux-gnu/i686/cmov/libcrypto.so.1.0.0 here. I have no idea what you did, but libcrypto.so.1.0.0 and libssl.so.1.0.0 come from the same package, and they should either both have that version or should both not have that version. Kurt -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
