authdaemond: dlerror: /lib/security/pam_foreground.so: undefined symbol: pam_set_data

libpam-foreground.so is not compiled with the right options (it needs glibc.so and libpam.so but it's not linked against them).

It works most of the time because glibc.so and libpam.so are loaded at run time by something else, but not in your case or not in the right order.

I'm guessing you're using courier, I don't so I'm not sure but as a workaround:
you can grep for pam_foreground.so in /etc/pam.d/ and comment it.

If there's only one in /etc/pam.d/common-session don't remove it! In this case you need to replace the line
@include common-session
in /etc/pam.d/imap and maybe others with
session required pam_unix.so
Anyway in my understanding for no interactive session pam_foreground does nothing.

> But I'm not even sure what the letters mean on the left or what I'm
> looking for. I think that they are functions, but that's all I really
U undefined in this file, ie need another library.
T defined.

Hi didier,

I've got the same problem on a fresh installed server (6.10-amd64) with courier-imap-ssl;
I followed your hint (I have only one occurrence of pam_foreground.so in /etc/common-session) but nothing changed....anyway everything seems working fine even if authdaemond keeps on returning that error message when users connect to their own imap mailbox.

Small patch for this bug made on feisty

Small patch for this bug made on feisty

Same problem here on Gutsy with courier-imap-ssl.

May 27 01:05:27 ix authdaemond: PAM unable to dlopen(/lib/security/pam_foreground.so)
May 27 01:05:27 ix authdaemond: PAM [dlerror: /lib/security/pam_foreground.so: undefined symbol: pam_set_data]
May 27 01:05:27 ix authdaemond: PAM adding faulty module: /lib/security/pam_foreground.so

Patch provided by Bohdan fixed it.

Thanks for this patch! I've applied it and the build is happening now.

I'm also having same problem. But being kind of newbe to linux i was wondering how to apply this path ??

Attached is the final debdiff. For instructions on using this, please see:

https://wiki.ubuntu.com/UbuntuPackagingGuide/BuildFromDebdiff

Kees, could you release me the whole deb-package as I don't have Feisty on my local system anymore and don't like to start compiling on my productive system?!

Cheers,
Thomas

Or does anyone else have a built package?!

Feisty is 2 releases behind current, so this is unlikely to make SRU. Developer attention is focused on Intrepid now. If you need your own package built, please see the "BuildFromDebdiff" link above.

So does that mean you don't have a package?!

Correct. It was fixed in Gutsy and forward.

Hi everyone and thanks for support. I use to get good informations on Launchpad.net on several issues, however, in few times, I was in the position that I got clear informations about the issue but sadly it didn't help me solve it. It would be very helpful if someone could guide me on applying the patch provided above. I wasn't able to follow the guide on BuildFromDebdiff page (Kees' suggestion) and I'll be very happy if someone could bring some light here, as I'm not the only one in this situation - I've seen threads on ubuntuforums and other forums.

Kees, if you're still around, in your .debdiff file I see paths /tmp/pvr04DowCb/libpam-foreground-0.3/debian/control and /tmp/7r5OcF8D3r/libpam-foreground-0.3/debian/control. Using the guide on BuildFromDebdiff page, I have no clue how to get directories such pvr04DowCb or 7r5OcF8D3r, to which your patch refers to. This is what I do:
- download your patch (wget http://launchpadlibrarian.net/7755823/Makefile.patch)
- download the source file (apt-get source libpam-foreground)
- extract the tar.gz source file (tar -xvf libpam-foreground_0.3.tar.gz)
- enter extracted directory (cd libpam-foreground-0.3)
- run the command "patch -p1 < ../libpam-foreground_0.3-0ubuntu1.debdiff"
Whenever I try to apply the patch, I get the following:

can't find file to patch at input line 4
Perhaps you used the wrong -p or --strip option?
The text leading up to this was:
--------------------------
|diff -Nru /tmp/pvr04DowCb/libpam-foreground-0.3/Makefile /tmp/7r5OcF8D3r/libpam-foreground-0.3/Makefile
|--- /tmp/pvr04DowCb/libpam-foreground-0.3/Makefile 2006-05-11 03:41:51.000000000 -0700
|+++ /tmp/7r5OcF8D3r/libpam-foreground-0.3/Makefile 2007-06-21 13:05:32.000000000 -0700
--------------------------
File to patch:

Please tell me if I'm doing smth wrong. It would be great if someone could advise me.

Hi,

On Sun, Jan 04, 2009 at 12:12:26AM -0000, digitalage wrote:
> can't find file to patch at input line 4
> Perhaps you used the wrong -p or --strip option?

The command you ran had, I think, "-p1" in it. Try increasing this number
until the patch applies (I suspect you'll probably need -p3).

--
Kees Cook
Ubuntu Security Team

Thanks Kees, your tip allowed me to apply the patch with parameter "-p4". For other readers, I'll post the procedure exactly the way it worked for me, as in my previous post I missed something. So, here is the procedure:

- download your file (wget http://launchpadlibrarian.net/8187075/libpam-foreground_0.3-0ubuntu1.debdiff), save it to /tmp
- download the patch (wget http://launchpadlibrarian.net/7755823/Makefile.patch), save it to /tmp, (I'm not sure it's really necessary, but it's it was there)
- download the source file (apt-get source libpam-foreground), save it to /tmp
- extract the tar.gz source file (tar -xvf libpam-foreground_0.3.tar.gz)
- enter extracted directory (cd libpam-foreground-0.3)
- run the command "patch -p1 < ../libpam-foreground_0.3-0ubuntu1.debdiff"

If this command does not work for you, try other options as Kees suggested above.

However, I was pissed off of this message in log and I deactivated somehow (I guess in /etc/pam.d), but I don't remember how so I cannot make the change back and verify whether this patch removed the error in log or no. I can only say I was able to run the fix and check it other time if i'll run into this issue (at least I know how to do it).