2017-04-30 20:42 UTC

View Issue Details Jump to Notes ]
IDProjectCategoryView StatusLast Update
0009974CentOS-7openldappublic2017-04-20 10:39
Platformx86_64OSCentosOS Version7.2
Product Version 
Target VersionFixed in Version 
Summary0009974: Unable to ssh/sudo after downgrade openldap from 2.4.40-8.el7 to 2.4.39-6.el7
DescriptionI updated our Centos 7.1 EC2 instance using yum update -y
After this I started puppet, and it reverted openldap to older version.
As a result I can't ssh/sudo on this instance. I can't check if it allow console login.
Steps To Reproduce# yum update -y openldap
# yum downgrade localinstall /home/centos/openldap-2.4.39-6.el7.x86_64.rpm
$ sudo su -
sudo: unable to dlopen /usr/libexec/sudoers.so: (null)
sudo: fatal error, unable to load plugins
Additional Information$ ldd /usr/libexec/sudoers.so
ldd: warning: you do not have execution permission for `/usr/libexec/sudoers.so'
        linux-vdso.so.1 => (0x00007ffcd6bd6000)
        libaudit.so.1 => /lib64/libaudit.so.1 (0x00007f4e545e6000)
        libpam.so.0 => /lib64/libpam.so.0 (0x00007f4e543d7000)
        libldap-2.4.so.2 => not found
        liblber-2.4.so.2 => not found
        libdl.so.2 => /lib64/libdl.so.2 (0x00007f4e541d2000)
        libz.so.1 => /lib64/libz.so.1 (0x00007f4e53fbb000)
        libc.so.6 => /lib64/libc.so.6 (0x00007f4e53bfa000)
        /lib64/ld-linux-x86-64.so.2 (0x00007f4e54a65000)
# ls -la /lib64/libldap*
lrwxrwxrwx 1 root root 21 Dec 21 13:56 /lib64/libldap-2.4.so.2 -> libldap-2.4.so.2.10.3
-rwxr-xr-x 1 root root 340168 Mar 6 2015 /lib64/libldap-2.4.so.2.10.2
lrwxrwxrwx 1 root root 23 Dec 21 13:56 /lib64/libldap_r-2.4.so.2 -> libldap_r-2.4.so.2.10.3
-rwxr-xr-x 1 root root 369520 Mar 6 2015 /lib64/libldap_r-2.4.so.2.10.2
[root@ip-172-30-1-231 ~]# ls -la /lib64/liblber*
lrwxrwxrwx 1 root root 21 Dec 21 13:56 /lib64/liblber-2.4.so.2 -> liblber-2.4.so.2.10.3
-rwxr-xr-x 1 root root 62800 Mar 6 2015 /lib64/liblber-2.4.so.2.10.2

symlinks pointing no new version, that don't exist anymore
TagsNo tags attached.
Attached Files




insmaheshw (reporter)

I am able to reproduce this issue when downgrade the openldap package from 2.4.40-8.el7 to 2.4.39-6.el7.

It is happening because some packages are dependent on openldap package and when we upgrade or downgrade the openldap package, we should also upgrade or downgrade its dependent packages. But here using "yum update openldap -y" command we are upgrading openldap and its dependent packages and using "yum downgrade localinstall /home/centos/openldap-2.4.39-6.el7.x86_64.rpm" we are only downgrading openldap package. So, we are facing this issue.

You can resolve this issue using below steps:

1. rpm -ev openldap --nodeps
2. wget http://vault.centos.org/7.1.1503/os/x86_64/Packages/openldap-2.4.39-6.el7.x86_64.rpm
3. rpm -ivh openldap-2.4.39-6.el7.x86_64.rpm

-Issue History
Date Modified Username Field Change
2015-12-21 14:04 skryzhny New Issue
2017-04-20 10:39 insmaheshw Note Added: 0029109
+Issue History