Feb 23 13:11:57 filur06 smbd_audit[83759]: Freed frame ../../source3/smbd/process.c:3708, expected ../../source3/modules/nfs4_acls.c:996. Feb 23 13:11:57 filur06 smbd_audit[83759]: [2021/02/23 13:11:57.745342, 0] ../../lib/util/talloc_stack.c:102(talloc_pop) Feb 23 13:11:57 filur06 smbd_audit[83759]: Freed frame ../../source3/smbd/process.c:3708, expected ../../source3/modules/nfs4_acls.c:996. Feb 23 13:11:58 filur06 smbd_audit[83759]: [2021/02/23 13:11:58.383847, 0] ../../lib/util/talloc_stack.c:102(talloc_pop) Feb 23 13:11:58 filur06 smbd_audit[83759]: Freed frame ../../source3/smbd/process.c:3708, expected ../../source3/modules/nfs4_acls.c:996. Feb 23 13:11:58 filur06 smbd_audit[83759]: [2021/02/23 13:11:58.409805, 0] ../../lib/util/talloc_stack.c:102(talloc_pop) Feb 23 13:11:58 filur06 smbd_audit[83759]: Freed frame ../../source3/smbd/process.c:3708, expected ../../source3/modules/nfs4_acls.c:996. Feb 23 14:21:35 filur06 smbd_audit[6170]: [2021/02/23 14:21:35.404096, 0] ../../source3/modules/vfs_full_audit.c:576(init_bitmap) Looking at the code in source3/modules/nfs4_acls.c then there seems to be a missing TALLOC_FREE(frame) just before return NT_STATUS_OK at line 1011: if (security_descriptor_with_ms_nfs(psd)) { return NT_STATUS_OK; } (unless there's some magic I'm not seeing)
Created attachment 16468 [details] Silly patch to fix the missing TALLOC_FREE()
Same in 4.14rc3 (around line 1000) btw.
MR: https://gitlab.com/samba-team/samba/-/merge_requests/1809
This bug was referenced in samba master: 3d91fe071a29e2e0c54a10ba081a46cb5c324585
Created attachment 16473 [details] git-am fix for 4.14.next, 4.13.next, 4.12.next. Cherry-picked from master.
Re-assigning to Karolin for inclusion in 4.14.next, 4.13.next, 4.12.next.
(In reply to Jeremy Allison from comment #6) Pushed to autobuild-v4-{14,13,12}-test.
This bug was referenced in samba v4-13-test: 0eb58c2d68b68e63a603bb4a3fdced5c3cae4a68
This bug was referenced in samba v4-14-test: 1fb83efd7d580de547da774fa5edb6eb72622d54
This bug was referenced in samba v4-12-test: 1c37606163ee964584e946e36a1d1c8efb1606e3
This bug was referenced in samba v4-13-stable (Release samba-4.13.5): 0eb58c2d68b68e63a603bb4a3fdced5c3cae4a68
This bug was referenced in samba v4-14-stable (Release samba-4.14.0): 1fb83efd7d580de547da774fa5edb6eb72622d54
This bug was referenced in samba v4-12-stable (Release samba-4.12.12): 1c37606163ee964584e946e36a1d1c8efb1606e3