[ltp] T43 finger print reader problems

Alastair McKinley linux-thinkpad@linux-thinkpad.org
Tue, 06 Dec 2005 19:53:22 +0000 

Hi everyone,

I am having a problem with my fingerprint reader, I was hoping someone
could help!

I am using FC 4, bioapi-1.2.2, pam_bioapi-0.2.1 and the UPEK driver
TFMESS_BSP_LIN_1.0beta2.

I followed the instructions here:
http://www.thinkwiki.org/wiki/How_to_enable_the_fingerprint_reader

I had a few problems including the missing symbol rpl_malloc.  I removed
the term -Dmalloc=rpl_malloc from the pam_bioapi makefiles and added
-lpam to LIBS on advice of someone else.

Now when I type 'su' at the console, nothing special happens and the
normal password prompt appears.  However, when I hit return, the prompt
to swipe my fingerprint appears.  But in /var/log/messages, pam_unix has
already sent this message:

su(pam_unix)[5334]: authentication failure; logname= uid=500 euid=0
tty=pts/2 ruser=alastair rhost=  user=root

So even though my fingerprint is recognised, I cannot use it to
authenticate.

This is my /etc/pam.d/system-auth file, I havent edited common-auth:

#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/$ISA/pam_env.so
auth        sufficient    /lib/security/$ISA/pam_unix.so likeauth nullok
auth        required      /lib/security/$ISA/pam_deny.so

account     required      /lib/security/$ISA/pam_unix.so
account     sufficient    /lib/security/$ISA/pam_succeed_if.so uid < 100
quiet
account     required      /lib/security/$ISA/pam_permit.so

password    requisite     /lib/security/$ISA/pam_cracklib.so retry=3
password    sufficient    /lib/security/$ISA/pam_unix.so nullok
use_authtok md5 shadow
password    required      /lib/security/$ISA/pam_deny.so

session     required      /lib/security/$ISA/pam_limits.so
session     required      /lib/security/$ISA/pam_unix.so

# changes for fingerprint reader to work
auth       sufficient   pam_bioapi.so
{5550454b-2054-464d-2f45-535320425350} /etc/bioapi/pam/

password   sufficient   pam_bioapi.so
{5550454b-2054-464d-2f45-535320425350} /etc/bioapi/pam/

auth       required     pam_unix.so nullok_secure



Can anyone point me in the right direction?  

Thanks a lot!

Alastair