AIX Open Source

 View Only

Upgrade SUDO problems

By Per-Ola Hassle posted Tue June 09, 2020 12:57 AM

  
Hi
After upgrade of SUDO i get this problem? Somebody that face this problem and have solutions ?

sudo: error in /etc/sudo.conf, line 0 while loading plugin "sudoers_policy"
sudo: unable to load /opt/freeware/libexec/sudo/sudoers.so: 0509-022 Cannot load module /opt/freeware/lib/libldap.a(libldap-2.4.so.2).
0509-150 Dependent module /opt/freeware/lib/libssl.a(libssl.so) could not be loaded.
0509-152 Member libssl.so is not found in archive
0509-022 Cannot load module /opt/freeware/libexec/sudo/sudoers.so.
0509-150 Dependent module /opt/freeware/lib/libldap.a(libldap-2.4.so.2) could not be loaded.
sudo: fatal error, unable to load plugins

upgrade from sudo-1.6.8p12 to sudo-1.8.28-1.aix6.1.ppc.rpm
Regards
Per
4 comments
119 views

Permalink

Comments

Tue October 06, 2020 11:43 AM

Hello Shaik

Please see Edward's response with suggestions, in previous comments on this page. Also, as explained on June 24, It is best to ask these questions on the discussion thread, since blogs are not always reviewed for questions.  Additionally, the discussion answers can be marked as "Best Answer"

When you have questions, you can simply "Post New Message"

TIPS:  Cheers!

    Tue October 06, 2020 08:23 AM

    ​Hi,

    I am getting below error while doing sudo.  Could you please suggest, how to recover this issue.


    $ sudo su -
    sudo: error in /etc/sudo.conf, line 0 while loading plugin "sudoers_policy"
    sudo: unable to load /opt/freeware/libexec/sudo/sudoers.so:     0509-022 Cannot load module /opt/freeware/libexec/sudo/sudoers.so.
            0509-150   Dependent module libldap.a(libldap-2.4.so.2) could not be loaded.
            0509-022 Cannot load module libldap.a(libldap-2.4.so.2).
            0509-026 System error: A file or directory in the path name does not exist.
            0509-022 Cannot load module /opt/freeware/libexec/sudo/sudoers.so.
            0509-150   Dependent module /opt/freeware/libexec/sudo/sudoers.so could not be loaded.
    sudo: fatal error, unable to load plugins
    $


    Thanks,
    Shaik

    Wed June 24, 2020 11:29 AM

    Hi Per-Ola
    FYI - It may be best to ask these questions on the discussion thread, since blogs are not always reviewed for questions.  Additionally, the answers can be marked as "Best Answer"

    When you have questions, you can simply "Post New Message"
    https://community.ibm.com/community/user/power/communities/community-home/digestviewer?communitykey=10c1d831-47ee-4d92-a138-b03f7896f7c9&tab=digestviewer

    Tue June 16, 2020 03:52 PM

    Some useful commands to troubleshoot this are:

    rpm -qf /opt/freeware/lib/libssl.a
    lslpp -w /opt/freeware/lib/libssl.a
    lslpp -l openssl.base

    lslpp -fc | grep -e libssl | sort -t: -k3
    lslpp -w /usr/lib/libssl.a

    rpm -qf /opt/freeware/lib/libldap.a
    rpm -qa | grep -i -e ldap | sort

    rpm -q --whatrequires openldap
    rpm -q --whatrequires libssh2

    rpm -qla | grep libssl | sort -u
    rpm -qla | grep libssl | sort -u | xargs rpm -qf | sort -u

    rpm -qi nss


    env | grep -e '^LIBPATH=' # LIBPATH should not be set for AIX toolbox

    ldd /usr/bin/sudo # as root
    dump -Tv /usr/bin/sudo # as root

    You may need install
    openldap-2.4.48-1 (RPM package)

    You may also need to install a newer OpenSSH and OpenSSL installp packages (Not the old or third-party RPM packages)
    then run: updtvpkg

    Yum is good at making sure you have the latest versions of packages and their dependencies.