Bug 14343 - vfs_full_audit panics when accessing Samba
Summary: vfs_full_audit panics when accessing Samba
Status: RESOLVED FIXED
Alias: None
Product: Samba 4.1 and newer
Classification: Unclassified
Component: VFS Modules (show other bugs)
Version: 4.12.1
Hardware: x64 Linux
: P5 normal (vote)
Target Milestone: ---
Assignee: Karolin Seeger
QA Contact: Samba QA Contact
URL:
Keywords:
: 14347 (view as bug list)
Depends on:
Blocks:
 
Reported: 2020-04-10 13:24 UTC by yannick
Modified: 2020-04-21 08:03 UTC (History)
2 users (show)

See Also:

Attachments
Panic fix patch (466 bytes, patch)
2020-04-10 13:24 UTC, yannick 		no flags Details
git-am fix for master. (4.46 KB, patch)
2020-04-10 21:24 UTC, Jeremy Allison 		no flags Details
git-am fix for master (4.46 KB, patch)
2020-04-10 23:26 UTC, Jeremy Allison 		no flags Details
git-am fix for 4.12.next. (4.67 KB, patch)
2020-04-15 17:17 UTC, Jeremy Allison 		vl: review+
Details
Show Obsolete (2) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description yannick 2020-04-10 13:24:06 UTC 
Created attachment 15903 [details]
Panic fix patch

While trying out Samba 4.12.1 on Debian Buster I seem to have found a bug in the full_audit VFS module. When trying to open the Samba server in my file browser (Gnome3's Files) it gave me an error and the following PANIC is thrown:

[2020/04/10 10:52:20.242346,  0] ../../source3/lib/util.c:830(smb_panic_s3)
  PANIC (pid 16323): vfs_full_audit.c: name table not in sync with vfs_op_type enums

While comparing the enum and array I found that "SMB_VFS_OP_FCNTL" was missing in the array. The following patch adds it to the array, after this the full_audit VFS module seems to work as expected:

--- ../temp/samba-4.12.1/source3/modules/vfs_full_audit.c	2020-02-28 09:59:35.000000000 +0100
+++ source3/modules/vfs_full_audit.c	2020-04-10 11:08:39.246639916 +0200
@@ -295,6 +295,7 @@
 	{ SMB_VFS_OP_FALLOCATE,"fallocate" },
 	{ SMB_VFS_OP_LOCK,	"lock" },
 	{ SMB_VFS_OP_KERNEL_FLOCK,	"kernel_flock" },
+	{ SMB_VFS_OP_FCNTL,	"fcntl"},
 	{ SMB_VFS_OP_LINUX_SETLEASE, "linux_setlease" },
 	{ SMB_VFS_OP_GETLOCK,	"getlock" },
 	{ SMB_VFS_OP_SYMLINKAT,	"symlinkat" },

How to reproduce:

- Get Samba 4.12.1 on Debian Buster, compile it
- In smb.conf under [global] add:

vfs objects = full_audit
full_audit:prefix = %u|%I|%m|%S
full_audit:success = mkdir rename unlink rmdir open pwrite
full_audit:failure = none
full_audit:facility = local7
full_audit:priority = NOTICE

- Start smbd.service
- Access a share

Actual results:

Not able to access the share

Expected results:

Get a directory listing of whatever share I'm accessing
Comment 1 Jeremy Allison 2020-04-10 20:22:51 UTC 
Good catch, thanks. Sorry for the problem. I'll get this into master and then back-ported to 4.12.next.
Comment 2 Jeremy Allison 2020-04-10 21:24:22 UTC 
Created attachment 15904 [details]
git-am fix for master.

OK, here's what I've got in gitlab-CI for this. It adds a test that should make sure we don't ever fail to add the values to the correct array again.
Comment 3 Jeremy Allison 2020-04-10 23:26:09 UTC 
Created attachment 15905 [details]
git-am fix for master

Fixed static declaration.
Comment 4 Jeremy Allison 2020-04-15 17:17:34 UTC 
Created attachment 15913 [details]
git-am fix for 4.12.next.

Cherry-picked and back-ported from master. Only needed in 4.12.next.
Comment 5 Andrew Bartlett 2020-04-15 20:44:42 UTC 
I like the use of the unit test to validate the arrays, nice work!
Comment 6 Jeremy Allison 2020-04-16 17:19:33 UTC 
*** Bug 14347 has been marked as a duplicate of this bug. ***
Comment 7 Karolin Seeger 2020-04-17 08:55:02 UTC 
Pushed to autobuild-v4-12-test.
Comment 8 Karolin Seeger 2020-04-21 08:03:01 UTC 
Pushed to v4-12-test.
Closing out bug report.

Thanks!