==2256== Memcheck, a memory error detector for x86-linux.
==2256== Copyright (C) 2002-2005, and GNU GPL'd, by Julian Seward et al.
==2256== Using valgrind-2.4.0, a program supervision framework for x86-linux.
==2256== Copyright (C) 2000-2005, and GNU GPL'd, by Julian Seward et al.
==2256== Valgrind library directory: /usr/lib/valgrind
==2256== Command line
==2256==    /usr/local/samba/sbin/smbd
==2256==    -i
==2256==    -M
==2256==    single
==2256==    -d5
==2256== Startup, with flags:
==2256==    -v
==2256== Contents of /proc/version:
==2256==   Linux version 2.6.8-2-686 (horms@tabatha.lab.ultramonkey.org) (gcc version 3.3.5 (Debian 1:3.3.5-13)) #1 Tue Aug 16 13:22:48 UTC 2005
==2256== Reading syms from /usr/local/samba/sbin/smbd (0x8048000)
==2256== Reading syms from /lib/ld-2.3.2.so (0x1B8E4000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/ld-2.3.2.so...
==2256== ... CRC mismatch (computed E7117123 wanted 4ECF6D33)
==2256==    object doesn't have any debug info
==2256== Reading syms from /usr/lib/valgrind/stage2 (0xB0000000)
==2256== Reading syms from /lib/ld-2.3.2.so (0xB1000000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/ld-2.3.2.so...
==2256== ... CRC mismatch (computed E7117123 wanted 4ECF6D33)
==2256==    object doesn't have any debug info
==2256== Reading syms from /lib/tls/i686/cmov/libdl-2.3.2.so (0xB101D000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/tls/i686/cmov/libdl-2.3.2.so...
==2256== ... CRC mismatch (computed 08981FBF wanted 684375ED)
==2256==    object doesn't have any debug info
==2256== Reading syms from /lib/tls/i686/cmov/libc-2.3.2.so (0xB1020000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/tls/i686/cmov/libc-2.3.2.so...
==2256== ... CRC mismatch (computed 4651458D wanted 1C29A9A3)
==2256==    object doesn't have any debug info
==2256== Reading syms from /usr/lib/valgrind/vgskin_memcheck.so (0xB1256000)
==2256== Reading suppressions file: /usr/lib/valgrind/default.supp
==2256== 
==2256== Reading syms from /usr/lib/valgrind/vg_inject.so (0x1B8FE000)
==2256== Reading syms from /usr/lib/valgrind/vgpreload_memcheck.so (0x1B901000)
==2256== Reading syms from /lib/tls/i686/cmov/libdl-2.3.2.so (0x1B911000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/tls/i686/cmov/libdl-2.3.2.so...
==2256== ... CRC mismatch (computed 08981FBF wanted 684375ED)
==2256==    object doesn't have any debug info
==2256== Reading syms from /lib/tls/i686/cmov/libresolv-2.3.2.so (0x1B915000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/tls/i686/cmov/libresolv-2.3.2.so...
==2256== ... CRC mismatch (computed 93E1F228 wanted 83762F69)
==2256==    object doesn't have any debug info
==2256== Reading syms from /lib/tls/i686/cmov/libcrypt-2.3.2.so (0x1B928000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/tls/i686/cmov/libcrypt-2.3.2.so...
==2256== ... CRC mismatch (computed B2C24B89 wanted 06E40F5E)
==2256==    object doesn't have any debug info
==2256== Reading syms from /lib/tls/i686/cmov/libc-2.3.2.so (0x1B956000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /lib/tls/i686/cmov/libc-2.3.2.so...
==2256== ... CRC mismatch (computed 4651458D wanted 1C29A9A3)
==2256==    object doesn't have any debug info
==2256== TRANSLATE: 0x1B9C7DF0 redirected to 0x1B904510
==2256== TRANSLATE: 0x1B9C84E0 redirected to 0x1B904EE2
==2256== TRANSLATE: 0x1B9C8030 redirected to 0x1B904FA1
==2256== TRANSLATE: 0x1B9C7F70 redirected to 0x1B904A82
Initialising global parameters
lp_load: refreshing parameters from /usr/local/samba/etc/smb.conf
params.c:pm_process() - Processing configuration file "/usr/local/samba/etc/smb.conf"
Processing section "[globals]"
Processing section "[test]"
pm_process() returned Yes
adding hidden service IPC$
adding hidden service ADMIN$
smbd version 4.0.0tp2-SVN-build-13405 started.
Copyright Andrew Tridgell and the Samba Team 1992-2006
GENSEC backend 'krb5' registered
gensec subsystem fake_gssapi_krb5 is disabled
GENSEC backend 'schannel' registered
GENSEC backend 'spnego' registered
GENSEC backend 'gssapi_krb5' registered
GENSEC backend 'gssapi_krb5_sasl' registered
GENSEC backend 'ntlmssp' registered
Attempting to register registry backend w95
Successfully added registry backend 'w95'
Attempting to register registry backend ldb
Successfully added registry backend 'ldb'
Attempting to register registry backend nt4
Successfully added registry backend 'nt4'
Attempting to register registry backend dir
Successfully added registry backend 'dir'
Attempting to register registry backend rpc
Successfully added registry backend 'rpc'
NTPTR backend 'simple_ldb'
NTVFS backend 'simple' for type 0 registered
NTVFS backend 'cifs' for type 0 registered
NTVFS backend 'nbench' for type 0 registered
NTVFS backend 'unixuid' for type 0 registered
NTVFS backend 'unixuid' for type 1 registered
NTVFS backend 'unixuid' for type 2 registered
NTVFS backend 'default' for type 2 registered
NTVFS backend 'default' for type 1 registered
NTVFS backend 'default' for type 0 registered
NTVFS backend 'posix' for type 0 registered
PROCESS_MODEL 'standard' registered
PROCESS_MODEL 'single' registered
DCERPC endpoint server 'wkssvc' registered
DCERPC endpoint server 'samr' registered
DCERPC endpoint server 'drsuapi' registered
DCERPC endpoint server 'spoolss' registered
DCERPC endpoint server 'winreg' registered
DCERPC endpoint server 'epmapper' registered
DCERPC endpoint server 'srvsvc' registered
DCERPC endpoint server 'netlogon' registered
DCERPC endpoint server 'rpcecho' registered
DCERPC endpoint server 'unixinfo' registered
DCERPC endpoint server 'remote' registered
DCERPC endpoint server 'dssetup' registered
DCERPC endpoint server 'lsarpc' registered
AUTH backend 'winbind' registered
AUTH backend 'name_to_ntstatus' registered
AUTH backend 'fixed_challenge' registered
AUTH backend 'sam' registered
AUTH backend 'sam_ignoredomain' registered
AUTH backend 'unix' registered
AUTH backend 'anonymous' registered
smbd: using 'single' process model
==2256== TRANSLATE: 0x1B9CFE40 redirected to 0x1B905C80
dcesrv_interface_register: interface 'epmapper' registered on endpoint 'ncacn_np:[\pipe\epmapper]'
dcesrv_interface_register: interface 'epmapper' registered on endpoint 'ncacn_ip_tcp:[135]'
dcesrv_interface_register: interface 'epmapper' registered on endpoint 'ncalrpc:[EPMAPPER]'
dcesrv_interface_register: interface 'srvsvc' registered on endpoint 'ncacn_np:[\pipe\srvsvc]'
dcesrv_interface_register: interface 'srvsvc' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'srvsvc' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'wkssvc' registered on endpoint 'ncacn_np:[\pipe\wkssvc]'
dcesrv_interface_register: interface 'rpcecho' registered on endpoint 'ncacn_np:[\pipe\rpcecho]'
dcesrv_interface_register: interface 'rpcecho' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'rpcecho' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'samr' registered on endpoint 'ncacn_np:[\pipe\samr]'
dcesrv_interface_register: interface 'samr' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'samr' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'netlogon' registered on endpoint 'ncacn_np:[\pipe\netlogon]'
dcesrv_interface_register: interface 'netlogon' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'netlogon' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncacn_np:[\pipe\lsarpc]'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncacn_np:[\pipe\lsass]'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'spoolss' registered on endpoint 'ncacn_np:[\pipe\spoolss]'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncacn_np:[\pipe\lsass]'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncacn_np:[\pipe\protected_storage]'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'winreg' registered on endpoint 'ncacn_np:[\pipe\winreg]'
dcesrv_interface_register: interface 'winreg' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'winreg' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncacn_np:[\pipe\lsarpc]'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncacn_np:[\pipe\lsass]'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncalrpc:'
added interface ip=192.168.19.133 nmask=255.255.255.0
added interface ip=192.168.1.1 nmask=255.255.255.0
==2256== TRANSLATE: 0x1B9CE5E0 redirected to 0x1B9057B0
gendb_search_v: cn=Primary Domains (&(flatname=SAMBA4TEST)(objectclass=primaryDomain)) -> 1
Registered SAMBA4HOST<00> with 192.168.1.1 on interface 192.168.1.255
Registered SAMBA4HOST<00> with 192.168.19.133 on interface 192.168.19.255
Registered SAMBA4HOST<03> with 192.168.1.1 on interface 192.168.1.255
Registered SAMBA4HOST<03> with 192.168.19.133 on interface 192.168.19.255
Registered SAMBA4HOST<20> with 192.168.1.1 on interface 192.168.1.255
Registered SAMBA4HOST<20> with 192.168.19.133 on interface 192.168.19.255
Registered SAMBA4TEST<1b> with 192.168.1.1 on interface 192.168.1.255
Registered SAMBA4TEST<1c> with 192.168.1.1 on interface 192.168.1.255
Registered SAMBA4TEST<1b> with 192.168.19.133 on interface 192.168.19.255
Registered SAMBA4TEST<1c> with 192.168.19.133 on interface 192.168.19.255
Registered SAMBA4TEST<00> with 192.168.1.1 on interface 192.168.1.255
Registered SAMBA4TEST<00> with 192.168.19.133 on interface 192.168.19.255
gendb_search_v: cn=Primary Domains (&(flatname=SAMBA4TEST)(objectclass=primaryDomain)) -> 1
ldb_request dn= filter=(objectclass=*)
Starting GENSEC mechanism spnego
Starting GENSEC submechanism gssapi_krb5
gensec_gssapi: NO credentials were delegated
GSSAPI Connection will be cryptographicly sealed
account_name: Administrator []
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\F4\01\00\00 -> 1
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\01\02\00\00 -> 1
gendb_search_v: NULL objectSid=\01\01\00\00\00\00\00\01\00\00\00\00 -> 1
gendb_search_v: NULL objectSid=\01\01\00\00\00\00\00\05\02\00\00\00 -> 1
gendb_search_v: NULL objectSid=\01\01\00\00\00\00\00\05\0B\00\00\00 -> 1
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\00\02\00\00 -> 1
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\07\02\00\00 -> 1
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\08\02\00\00 -> 1
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\06\02\00\00 -> 1
gendb_search_v: NULL objectSid=\01\02\00\00\00\00\00\05\20\00\00\00\20\02\00\00 -> 1
smbsrv_accept
Shutdown SMB signing
switch message SMBnegprot (task_id 45)
Requested protocol [PC NETWORK PROGRAM 1.0]
Requested protocol [LANMAN1.0]
Requested protocol [Windows for Workgroups 3.1a]
Requested protocol [LM1.2X002]
Requested protocol [LANMAN2.1]
Requested protocol [NT LM 0.12]
gendb_search_v: cn=Primary Domains (&(flatname=SAMBA4TEST)(objectclass=primaryDomain)) -> 1
Starting GENSEC mechanism spnego
Starting GENSEC submechanism gssapi_krb5
using SPNEGO
Selected protocol NT LM 0.12
negprot index=5
ldb_request dn= filter=(objectClass=*)
switch message SMBsesssetupX (task_id 45)
Starting GENSEC mechanism spnego
Starting GENSEC submechanism gssapi_krb5
gensec_gssapi: credentials were delegated
GSSAPI Connection will have no cryptographicly protection
account_name: WIN2003EE-TEST1$ [WIN2003EE-TEST1$]
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\EA\03\00\00 -> 1
gendb_search_v: NULL objectSid=\01\05\00\00\00\00\00\05\15\00\00\00[-\8C\19\FF\9E\CA.I\EE\CF\9B\01\02\00\00 -> 1
gendb_search_v: NULL objectSid=\01\01\00\00\00\00\00\01\00\00\00\00 -> 1
gendb_search_v: NULL objectSid=\01\01\00\00\00\00\00\05\02\00\00\00 -> 1
gendb_search_v: NULL objectSid=\01\01\00\00\00\00\00\05\0B\00\00\00 -> 1
SMB signing enabled!
check_signed_incoming_message: BAD SIG (seq: 0): wanted SMB signature of
[000] 99 02 92 50 CB 4D 21 63                           ...P.M!c 
check_signed_incoming_message: BAD SIG (seq: 0): got SMB signature of
[000] 42 53 52 53 50 59 4C 20                           BSRSPYL  
signing_good: signing negotiated but not required and peer
isn't sending correct signatures. Turning off.
Shutdown SMB signing
Client did not send a valid signature on SPNEGO session setup - ignored, expect good next time
SMB signing enabled!
sign_outgoing_message: SENT SIG (seq: 1): sent SMB signature of
[000] 50 AF 01 2C F7 1B 6A 6E                           P..,..jn 
[000] 88 68 59 FB 27 DD 4B EA                           .hY.'.K. 
Seen valid packet, so turning signing on
Seen valid packet, so marking signing as 'seen valid'
switch message SMBtconX (task_id 45)
==2256== Reading syms from /usr/lib/gconv/UTF-16.so (0x1B90B000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /usr/lib/gconv/UTF-16.so...
==2256== ... CRC mismatch (computed 615ECEAA wanted DB8C50B6)
==2256==    object doesn't have any debug info
==2256== Reading syms from /usr/lib/gconv/IBM850.so (0x1BDCB000)
==2256==    object doesn't have a symbol table
==2256== Reading debug info from /usr/lib/gconv/IBM850.so...
==2256== ... CRC mismatch (computed 7FF69DC9 wanted A5788962)
==2256==    object doesn't have any debug info
dcesrv_interface_register: interface 'epmapper' registered on endpoint 'ncacn_np:[\pipe\epmapper]'
dcesrv_interface_register: interface 'epmapper' registered on endpoint 'ncacn_ip_tcp:[135]'
dcesrv_interface_register: interface 'epmapper' registered on endpoint 'ncalrpc:[EPMAPPER]'
dcesrv_interface_register: interface 'srvsvc' registered on endpoint 'ncacn_np:[\pipe\srvsvc]'
dcesrv_interface_register: interface 'srvsvc' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'srvsvc' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'wkssvc' registered on endpoint 'ncacn_np:[\pipe\wkssvc]'
dcesrv_interface_register: interface 'rpcecho' registered on endpoint 'ncacn_np:[\pipe\rpcecho]'
dcesrv_interface_register: interface 'rpcecho' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'rpcecho' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'samr' registered on endpoint 'ncacn_np:[\pipe\samr]'
dcesrv_interface_register: interface 'samr' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'samr' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'netlogon' registered on endpoint 'ncacn_np:[\pipe\netlogon]'
dcesrv_interface_register: interface 'netlogon' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'netlogon' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncacn_np:[\pipe\lsarpc]'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncacn_np:[\pipe\lsass]'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'lsarpc' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'spoolss' registered on endpoint 'ncacn_np:[\pipe\spoolss]'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncacn_np:[\pipe\lsass]'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncacn_np:[\pipe\protected_storage]'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'drsuapi' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'winreg' registered on endpoint 'ncacn_np:[\pipe\winreg]'
dcesrv_interface_register: interface 'winreg' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'winreg' registered on endpoint 'ncalrpc:'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncacn_np:[\pipe\lsarpc]'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncacn_np:[\pipe\lsass]'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncacn_ip_tcp:'
dcesrv_interface_register: interface 'dssetup' registered on endpoint 'ncalrpc:'
sign_outgoing_message: SENT SIG (seq: 3): sent SMB signature of
[000] 6D 00 17 F0 5E 22 B8 39                           m...^".9 
ldb_request dn=DC=samba4test,DC=localdomain filter=(objectClass=*)
ldb_request dn= filter=(objectClass=*)
==2256== Invalid read of size 1
==2256==    at 0x1B9057F8: strlen (mac_replace_strmem.c:189)
==2256==    by 0x8294689: ldb_msg_add_string (ldb_msg.c:210)
==2256==    by 0x84732EF: rootdse_add_dynamic (rootdse.c:76)
==2256==    by 0x847354F: rootdse_search_bytree (rootdse.c:146)
==2256==    by 0x8473677: rootdse_request (rootdse.c:180)
==2256==    by 0x8290E42: ldb_request (ldb.c:274)
==2256==    by 0x82C7819: ldapsrv_SearchRequest (ldap_backend.c:229)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==  Address 0x1BD56028 is 48 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256== 
==2256== Invalid read of size 1
==2256==    at 0x1B905801: strlen (mac_replace_strmem.c:189)
==2256==    by 0x8294689: ldb_msg_add_string (ldb_msg.c:210)
==2256==    by 0x84732EF: rootdse_add_dynamic (rootdse.c:76)
==2256==    by 0x847354F: rootdse_search_bytree (rootdse.c:146)
==2256==    by 0x8473677: rootdse_request (rootdse.c:180)
==2256==    by 0x8290E42: ldb_request (ldb.c:274)
==2256==    by 0x82C7819: ldapsrv_SearchRequest (ldap_backend.c:229)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==  Address 0x1BD56029 is 49 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256== 
==2256== Invalid read of size 4
==2256==    at 0x80ABDCD: talloc_chunk_from_ptr (talloc.c:119)
==2256==    by 0x80ACB41: talloc_steal (talloc.c:672)
==2256==    by 0x82C7BF1: ldapsrv_SearchRequest (ldap_backend.c:261)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==    by 0x82C6338: ldapsrv_recv (ldap_server.c:257)
==2256==    by 0x8474805: stream_io_handler (service_stream.c:93)
==2256==    by 0x820538E: std_event_loop_select (events_standard.c:563)
==2256==    by 0x820547B: std_event_loop_once (events_standard.c:602)
==2256==  Address 0x1BD56018 is 32 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256== 
==2256== Invalid read of size 4
==2256==    at 0x80ABDE2: talloc_chunk_from_ptr (talloc.c:122)
==2256==    by 0x80ACB41: talloc_steal (talloc.c:672)
==2256==    by 0x82C7BF1: ldapsrv_SearchRequest (ldap_backend.c:261)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==    by 0x82C6338: ldapsrv_recv (ldap_server.c:257)
==2256==    by 0x8474805: stream_io_handler (service_stream.c:93)
==2256==    by 0x820538E: std_event_loop_select (events_standard.c:563)
==2256==    by 0x820547B: std_event_loop_once (events_standard.c:602)
==2256==  Address 0x1BD56018 is 32 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
INTERNAL ERROR: Signal 6 in pid 2256 (4.0.0tp2-SVN-build-13405)
Please read the file BUGS.txt in the distribution
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
PANIC: internal error
BACKTRACE: 24 stack frames:
 #0 /usr/local/samba/sbin/smbd [0x80f879f]
 #1 /usr/local/samba/sbin/smbd [0x80f8a60]
 #2 /usr/local/samba/sbin/smbd [0x80f8b9b]
 #3 /usr/local/samba/sbin/smbd [0x80f8be0]
 #4 /lib/tls/i686/cmov/libc.so.6 [0x1b97ea68]
 #5 /lib/tls/i686/cmov/libc.so.6(abort+0x1d2) [0x1b980002]
 #6 /usr/local/samba/sbin/smbd [0x80abdf1]
 #7 /usr/local/samba/sbin/smbd [0x80acb42]
 #8 /usr/local/samba/sbin/smbd [0x82c7bf2]
 #9 /usr/local/samba/sbin/smbd [0x82c9576]
 #10 /usr/local/samba/sbin/smbd [0x82c5d53]
 #11 /usr/local/samba/sbin/smbd [0x82c6174]
 #12 /usr/local/samba/sbin/smbd [0x82c6245]
 #13 /usr/local/samba/sbin/smbd [0x84bf36e]
 #14 /usr/local/samba/sbin/smbd [0x82c6339]
 #15 /usr/local/samba/sbin/smbd [0x8474806]
 #16 /usr/local/samba/sbin/smbd [0x820538f]
 #17 /usr/local/samba/sbin/smbd [0x820547c]
 #18 /usr/local/samba/sbin/smbd [0x82054df]
 #19 /usr/local/samba/sbin/smbd [0x8204990]
 #20 /usr/local/samba/sbin/smbd [0x8056b2c]
 #21 /usr/local/samba/sbin/smbd [0x8056b93]
 #22 /lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xf0) [0x1b96b970]
 #23 /usr/local/samba/sbin/smbd [0x80561c1]
==2256== 
==2256== Process terminating with default action of signal 6 (SIGABRT)
==2256==    at 0x1B8E4C02: (within /lib/ld-2.3.2.so)
==2256==    by 0x1B980001: abort (in /lib/tls/i686/cmov/libc-2.3.2.so)
==2256==    by 0x80F8A73: smb_panic (fault.c:138)
==2256==    by 0x80F8B9A: fault_report (fault.c:155)
==2256==    by 0x80F8BDF: sig_fault (fault.c:170)
==2256==    by 0x1B97EA67: (within /lib/tls/i686/cmov/libc-2.3.2.so)
==2256==    by 0x1B980001: abort (in /lib/tls/i686/cmov/libc-2.3.2.so)
==2256==    by 0x80ABDF0: talloc_chunk_from_ptr (talloc.c:123)
==2256==    by 0x80ACB41: talloc_steal (talloc.c:672)
==2256==    by 0x82C7BF1: ldapsrv_SearchRequest (ldap_backend.c:261)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256== discard syms at 0x1BDCB000-0x1BDCE000 in /usr/lib/gconv/IBM850.so due to munmap()
==2256== discard syms at 0x1B90B000-0x1B90E000 in /usr/lib/gconv/UTF-16.so due to munmap()
==2256== 
==2256== ERROR SUMMARY: 95 errors from 4 contexts (suppressed: 21 from 1)
==2256== 
==2256== 1 errors in context 1 of 4:
==2256== Invalid read of size 4
==2256==    at 0x80ABDE2: talloc_chunk_from_ptr (talloc.c:122)
==2256==    by 0x80ACB41: talloc_steal (talloc.c:672)
==2256==    by 0x82C7BF1: ldapsrv_SearchRequest (ldap_backend.c:261)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==    by 0x82C6338: ldapsrv_recv (ldap_server.c:257)
==2256==    by 0x8474805: stream_io_handler (service_stream.c:93)
==2256==    by 0x820538E: std_event_loop_select (events_standard.c:563)
==2256==    by 0x820547B: std_event_loop_once (events_standard.c:602)
==2256==  Address 0x1BD56018 is 32 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256== 
==2256== 1 errors in context 2 of 4:
==2256== Invalid read of size 4
==2256==    at 0x80ABDCD: talloc_chunk_from_ptr (talloc.c:119)
==2256==    by 0x80ACB41: talloc_steal (talloc.c:672)
==2256==    by 0x82C7BF1: ldapsrv_SearchRequest (ldap_backend.c:261)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==    by 0x82C6338: ldapsrv_recv (ldap_server.c:257)
==2256==    by 0x8474805: stream_io_handler (service_stream.c:93)
==2256==    by 0x820538E: std_event_loop_select (events_standard.c:563)
==2256==    by 0x820547B: std_event_loop_once (events_standard.c:602)
==2256==  Address 0x1BD56018 is 32 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256== 
==2256== 4 errors in context 3 of 4:
==2256== Invalid read of size 1
==2256==    at 0x1B9057F8: strlen (mac_replace_strmem.c:189)
==2256==    by 0x8294689: ldb_msg_add_string (ldb_msg.c:210)
==2256==    by 0x84732EF: rootdse_add_dynamic (rootdse.c:76)
==2256==    by 0x847354F: rootdse_search_bytree (rootdse.c:146)
==2256==    by 0x8473677: rootdse_request (rootdse.c:180)
==2256==    by 0x8290E42: ldb_request (ldb.c:274)
==2256==    by 0x82C7819: ldapsrv_SearchRequest (ldap_backend.c:229)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==  Address 0x1BD56028 is 48 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256== 
==2256== 89 errors in context 4 of 4:
==2256== Invalid read of size 1
==2256==    at 0x1B905801: strlen (mac_replace_strmem.c:189)
==2256==    by 0x8294689: ldb_msg_add_string (ldb_msg.c:210)
==2256==    by 0x84732EF: rootdse_add_dynamic (rootdse.c:76)
==2256==    by 0x847354F: rootdse_search_bytree (rootdse.c:146)
==2256==    by 0x8473677: rootdse_request (rootdse.c:180)
==2256==    by 0x8290E42: ldb_request (ldb.c:274)
==2256==    by 0x82C7819: ldapsrv_SearchRequest (ldap_backend.c:229)
==2256==    by 0x82C9575: ldapsrv_do_call (ldap_backend.c:730)
==2256==    by 0x82C5D52: ldapsrv_process_message (ldap_server.c:85)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
==2256==    by 0x82C6244: ldapsrv_decode (ldap_server.c:221)
==2256==    by 0x84BF36D: packet_recv (packet.c:375)
==2256==  Address 0x1BD56029 is 49 bytes inside a block of size 71 free'd
==2256==    at 0x1B904B04: free (vg_replace_malloc.c:152)
==2256==    by 0x80AC983: talloc_free (talloc.c:579)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x80AC743: talloc_free_children (talloc.c:512)
==2256==    by 0x80AC880: talloc_free (talloc.c:565)
==2256==    by 0x82C5F6C: ldapsrv_process_message (ldap_server.c:134)
==2256==    by 0x82C6173: ldapsrv_decode_wrapped (ldap_server.c:199)
--2256-- 
--2256-- supp:   21 Ugly strchr error in /lib/ld-2.3.2.so
==2256== 
==2256== IN SUMMARY: 95 errors from 4 contexts (suppressed: 21 from 1)
==2256== 
==2256== malloc/free: in use at exit: 298833 bytes in 2146 blocks.
==2256== malloc/free: 15257 allocs, 13111 frees, 1918776 bytes allocated.
==2256== 
==2256== searching for pointers to 2146 not-freed blocks.
==2256== checked 640256 bytes.
==2256== 
==2256== LEAK SUMMARY:
==2256==    definitely lost: 1513 bytes in 16 blocks.
==2256==      possibly lost: 159 bytes in 1 blocks.
==2256==    still reachable: 297161 bytes in 2129 blocks.
==2256==         suppressed: 0 bytes in 0 blocks.
==2256== Use --leak-check=full to see details of leaked memory.
--2256--     TT/TC: 0 tc sectors discarded.
--2256--            23864 tt_fast misses.
--2256-- translate: new     17967 (363101 -> 5441267; ratio 149:10)
--2256--            discard 174 (2726 -> 38468; ratio 141:10).
--2256-- chainings: 13933 chainings, 0 unchainings.
--2256--  dispatch: 5168213 jumps (bb entries); of them 850419 (16%) unchained.
--2256--            104/53004 major/minor sched events.
--2256-- reg-alloc: 4530 t-req-spill, 956709+27260 orig+spill uis,
--2256--            101336 total-reg-rank
--2256--    sanity: 105 cheap, 5 expensive checks.
--2256--    ccalls: 122532 C calls, 52% saves+restores avoided (375980 bytes)
--2256--            159362 args, avg 0.88 setup instrs each (35764 bytes)
--2256--            0% clear the stack (367176 bytes)
--2256--            44498 retvals, 32% of reg-reg movs avoided (28082 bytes)