[sudo-users] pam_ssh_agent_auth segfault
Todd C. Miller
Todd.Miller at courtesan.com
Wed Sep 21 10:12:15 EDT 2011
Well, that's both good and bad news. The change from RTLD_LOCAL
to RTLD_GLOBAL was needed for pam modules that require symbols from
libpam.
In this case it looks like there is a namespace clash with the
"verbose" symbol in the sudoers parser and a function called verbose
in pam_ssh_agent_auth.so and ld.so chooses the wrong one. I had
hoped that libtool's export file would prevent this kind of problem
but apparently it doesn't (at least on FreeBSD). There will be a
workaround in the next release candidate of sudo 1.8.3.
- todd
More information about the sudo-users
mailing list