Got a buffer overflow from Winbind as soon as its started. Was working ok a few days ago. OS: OpenSuse 10.1 rpm -qi samba: Name : samba Relocations: (not relocatable) Version : 3.0.22 Vendor: SUSE LINUX Products GmbH, Nuernberg, Germany Release : 11 Build Date: Tue May 2 05:43:54 2006 Install Date: Thu Jun 8 06:31:12 2006 Build Host: saramber Group : Productivity/Networking/Samba Source RPM: samba-3.0.22-11.src.rpm Size : 8110077 License: GPL Signature : DSA/SHA1, Tue May 2 05:53:05 2006, Key ID a84edae89c800aca Log with debug level 10: 0000 major : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0001 minor : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0002 pkt_type : 0b [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0003 flags : 03 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0004 pack_type0: 10 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0005 pack_type1: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0006 pack_type2: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0007 pack_type3: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 frag_len : 0048 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a auth_len : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c call_id : 00000003 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_rb [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_bba [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0010 max_tsize: 10b8 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0012 max_rsize: 10b8 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0014 assoc_gid: 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0018 num_contexts: 01 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 001c context_id : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 001e num_transfer_syntaxes: 01 [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 00001f smb_io_rpc_iface [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000020 smb_io_uuid uuid [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0020 data : 12345778 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0024 data : 1234 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0026 data : abcd [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 0028 data : ef 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 002a data : 01 23 45 67 89 ab [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0030 version: 00000000 [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000034 smb_io_rpc_iface [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000034 smb_io_uuid uuid [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0034 data : 8a885d04 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0038 data : 1ceb [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 003a data : 11c9 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 003c data : 9f e8 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 003e data : 08 00 2b 10 48 60 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0044 version: 00000002 [2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:rpc_api_pipe(770) rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=154 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=8 smb_flg2=55297 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=10 smt_wct=16 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 72 (0x48) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 4280 (0x10B8) smb_vwv[ 4]= 0 (0x0) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 0 (0x0) smb_vwv[ 7]= 0 (0x0) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_vwv[10]= 82 (0x52) smb_vwv[11]= 72 (0x48) smb_vwv[12]= 82 (0x52) smb_vwv[13]= 2 (0x2) smb_vwv[14]= 38 (0x26) smb_vwv[15]=49165 (0xC00D) smb_bcc=87 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 00 5C 00 50 00 49 00 50 00 45 00 5C 00 00 00 05 .\.P.I.P .E.\.... [010] 00 0B 03 10 00 00 00 48 00 00 00 03 00 00 00 B8 .......H ........ [020] 10 B8 10 00 00 00 00 01 00 00 00 00 00 01 00 78 ........ .......x [030] 57 34 12 34 12 CD AB EF 00 01 23 45 67 89 AB 00 W4.4.... ..#Eg... [040] 00 00 00 04 5D 88 8A EB 1C C9 11 9F E8 08 00 2B ....]... .......+ [050] 10 48 60 02 00 00 00 .H`.... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 14 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340) client_sign_outgoing_message: sent SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] F3 66 B4 28 F6 06 46 F1 .f.(..F. [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74) store_sequence_for_reply: stored seq = 15 mid = 10 [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132) write_socket(3,158) [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135) write_socket(3,158) wrote 158 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87) get_sequence_for_reply: found seq = 15 mid = 10 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_start(537) cli_signing_trans_start: storing mid = 10, reply_seq_num = 15, send_seq_num = 14 data->send_seq_num = 16 [2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618) got smb length of 124 [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=124 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=55301 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=10 smt_wct=10 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 68 (0x44) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 56 (0x38) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 68 (0x44) smb_vwv[ 7]= 56 (0x38) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_bcc=69 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 48 05 00 0C 03 10 00 00 00 44 00 00 00 03 00 00 H....... .D...... [010] 00 B8 10 B8 10 94 5A 23 00 0C 00 5C 50 49 50 45 ......Z# ...\PIPE [020] 5C 6C 73 61 73 73 00 00 01 01 00 00 00 00 00 00 \lsass.. ........ [030] 00 04 5D 88 8A EB 1C C9 11 9F E8 08 00 2B 10 48 ..]..... .....+.H [040] 60 02 00 00 00 `.... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 15 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416) client_check_incoming_message: seq 15: got good SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 4B D2 3F 5F E4 4B 70 4D K.?_.KpM [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=124 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=55301 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=10 smt_wct=10 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 68 (0x44) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 56 (0x38) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 68 (0x44) smb_vwv[ 7]= 56 (0x38) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_bcc=69 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 48 05 00 0C 03 10 00 00 00 44 00 00 00 03 00 00 H....... .D...... [010] 00 B8 10 B8 10 94 5A 23 00 0C 00 5C 50 49 50 45 ......Z# ...\PIPE [020] 5C 6C 73 61 73 73 00 00 01 01 00 00 00 00 00 00 \lsass.. ........ [030] 00 04 5D 88 8A EB 1C C9 11 9F E8 08 00 2B 10 48 ..]..... .....+.H [040] 60 02 00 00 00 `.... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_stop(556) cli_signing_trans_stop: freeing mid = 10, reply_seq_num = 15, send_seq_num = 14 data->send_seq_num = 16 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_rpc_hdr rpc_hdr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0000 major : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0001 minor : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0002 pkt_type : 0c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0003 flags : 03 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0004 pack_type0: 10 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0005 pack_type1: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0006 pack_type2: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0007 pack_type3: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 frag_len : 0044 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a auth_len : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c call_id : 00000003 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(843) rpc_api_pipe: got PDU len of 68 at offset 0 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(894) rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d returned 68 bytes. [2006/06/28 11:51:53, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d bind request returned ok. [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_rpc_hdr hdr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0000 major : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0001 minor : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0002 pkt_type : 0c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0003 flags : 03 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0004 pack_type0: 10 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0005 pack_type1: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0006 pack_type2: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0007 pack_type3: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 frag_len : 0044 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a auth_len : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c call_id : 00000003 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_ba [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_bba [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0010 max_tsize: 10b8 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0012 max_rsize: 10b8 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0014 assoc_gid: 00235a94 [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000018 smb_io_rpc_addr_str [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0018 len: 000c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 001a str: \PIPE\lsass. [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000026 smb_io_rpc_results [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0028 num_results: 01 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 002c result : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 002e reason : 0000 [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000030 smb_io_rpc_iface [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000030 smb_io_uuid uuid [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0030 data : 8a885d04 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0034 data : 1ceb [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0036 data : 11c9 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 0038 data : 9f e8 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 003a data : 08 00 2b 10 48 60 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0040 version: 00000002 [2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:check_bind_response(1701) check_bind_response: accepted! [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:cli_rpc_pipe_open_noauth(2253) cli_rpc_pipe_open_noauth: opened pipe \lsarpc to machine ARBASSRV01 and bound anonymously. [2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_lsa_sec_qos(142) init_lsa_sec_qos [2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_q_open_pol2(325) init_q_open_pol2: attr:0 da:33554432 [2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_lsa_obj_attr(193) init_lsa_obj_attr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 lsa_io_q_open_pol2 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0000 ptr : 00000001 [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000004 smb_io_unistr2 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0004 uni_max_len: 0000000d [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0008 offset : 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c uni_str_len: 0000000d [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904) 0010 buffer : \.\.A.R.B.A.S.S.R.V.0.1... [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 00002a lsa_io_obj_attr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 002c len : 00000018 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0030 ptr_root_dir: 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0034 ptr_obj_name: 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0038 attributes : 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 003c ptr_sec_desc: 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0040 ptr_sec_qos : 00000001 [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000044 lsa_io_obj_qos sec_qos [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0044 len : 0000000c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0048 sec_imp_level : 0002 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 004a sec_ctxt_mode : 01 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 004b effective_only: 00 [2006/06/28 11:51:53, 3] rpc_parse/parse_lsa.c:lsa_io_sec_qos(181) lsa_io_sec_qos: length c does not match size 8 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 004c des_access: 02000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_rpc_hdr hdr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0000 major : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0001 minor : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0002 pkt_type : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0003 flags : 03 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0004 pack_type0: 10 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0005 pack_type1: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0006 pack_type2: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0007 pack_type3: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 frag_len : 0068 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a auth_len : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c call_id : 00000004 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_req hdr_req [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0010 alloc_hint: 00000050 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0014 context_id: 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0016 opnum : 002c [2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:rpc_api_pipe(770) rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=186 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=8 smb_flg2=55297 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=11 smt_wct=16 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 104 (0x68) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 4280 (0x10B8) smb_vwv[ 4]= 0 (0x0) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 0 (0x0) smb_vwv[ 7]= 0 (0x0) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_vwv[10]= 82 (0x52) smb_vwv[11]= 104 (0x68) smb_vwv[12]= 82 (0x52) smb_vwv[13]= 2 (0x2) smb_vwv[14]= 38 (0x26) smb_vwv[15]=49165 (0xC00D) smb_bcc=119 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 00 5C 00 50 00 49 00 50 00 45 00 5C 00 00 00 05 .\.P.I.P .E.\.... [010] 00 00 03 10 00 00 00 68 00 00 00 04 00 00 00 50 .......h .......P [020] 00 00 00 00 00 2C 00 01 00 00 00 0D 00 00 00 00 .....,.. ........ [030] 00 00 00 0D 00 00 00 5C 00 5C 00 41 00 52 00 42 .......\ .\.A.R.B [040] 00 41 00 53 00 53 00 52 00 56 00 30 00 31 00 00 .A.S.S.R .V.0.1.. [050] 00 00 00 18 00 00 00 00 00 00 00 00 00 00 00 00 ........ ........ [060] 00 00 00 00 00 00 00 01 00 00 00 0C 00 00 00 02 ........ ........ [070] 00 01 00 00 00 00 02 ....... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 16 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340) client_sign_outgoing_message: sent SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 44 4E 4F AF 07 C2 41 85 DNO...A. [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74) store_sequence_for_reply: stored seq = 17 mid = 11 [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132) write_socket(3,190) [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135) write_socket(3,190) wrote 190 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87) get_sequence_for_reply: found seq = 17 mid = 11 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_start(537) cli_signing_trans_start: storing mid = 11, reply_seq_num = 17, send_seq_num = 16 data->send_seq_num = 18 [2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618) got smb length of 104 [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=104 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=55301 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=11 smt_wct=10 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 48 (0x30) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 56 (0x38) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 48 (0x30) smb_vwv[ 7]= 56 (0x38) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_bcc=49 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 68 05 00 02 03 10 00 00 00 30 00 00 00 04 00 00 h....... .0...... [010] 00 18 00 00 00 00 00 00 00 00 00 00 00 03 D6 92 ........ ........ [020] 98 2C BB 45 45 BA 3D CB 70 E9 A1 69 DD 00 00 00 .,.EE.=. p..i.... [030] 00 . [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 17 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416) client_check_incoming_message: seq 17: got good SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] C2 FE 77 6A E1 ED 65 8F ..wj..e. [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=104 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=55301 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=11 smt_wct=10 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 48 (0x30) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 56 (0x38) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 48 (0x30) smb_vwv[ 7]= 56 (0x38) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_bcc=49 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 68 05 00 02 03 10 00 00 00 30 00 00 00 04 00 00 h....... .0...... [010] 00 18 00 00 00 00 00 00 00 00 00 00 00 03 D6 92 ........ ........ [020] 98 2C BB 45 45 BA 3D CB 70 E9 A1 69 DD 00 00 00 .,.EE.=. p..i.... [030] 00 . [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_stop(556) cli_signing_trans_stop: freeing mid = 11, reply_seq_num = 17, send_seq_num = 16 data->send_seq_num = 18 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_rpc_hdr rpc_hdr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0000 major : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0001 minor : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0002 pkt_type : 02 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0003 flags : 03 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0004 pack_type0: 10 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0005 pack_type1: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0006 pack_type2: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0007 pack_type3: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 frag_len : 0030 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a auth_len : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c call_id : 00000004 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_resp rpc_hdr_resp [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0010 alloc_hint: 00000018 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0014 context_id: 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0016 cancel_ct : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0017 reserved : 00 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:cli_pipe_validate_current_pdu(577) cli_pipe_validate_current_pdu: got pdu len 48, data_len 24, ss_len 0 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(843) rpc_api_pipe: got PDU len of 48 at offset 0 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(894) rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d returned 48 bytes. [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 lsa_io_r_open_pol2 [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_pol_hnd [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0000 data1: 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0004 data2: 9892d603 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 data3: bb2c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a data4: 4545 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 000c data5: ba 3d cb 70 e9 a1 69 dd [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_ntstatus(762) 0014 status: NT_STATUS_OK [2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_q_query2(2231) init_q_query2 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 lsa_io_q_query_info2 [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_pol_hnd pol [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0000 data1: 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0004 data2: 9892d603 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 data3: bb2c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a data4: 4545 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 000c data5: ba 3d cb 70 e9 a1 69 dd [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0014 info_class: 000c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_rpc_hdr hdr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0000 major : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0001 minor : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0002 pkt_type : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0003 flags : 03 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0004 pack_type0: 10 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0005 pack_type1: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0006 pack_type2: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0007 pack_type3: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 frag_len : 002e [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a auth_len : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c call_id : 00000005 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_req hdr_req [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0010 alloc_hint: 00000016 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0014 context_id: 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0016 opnum : 002e [2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:rpc_api_pipe(770) rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=128 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=8 smb_flg2=55297 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=12 smt_wct=16 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 46 (0x2E) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 4280 (0x10B8) smb_vwv[ 4]= 0 (0x0) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 0 (0x0) smb_vwv[ 7]= 0 (0x0) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_vwv[10]= 82 (0x52) smb_vwv[11]= 46 (0x2E) smb_vwv[12]= 82 (0x52) smb_vwv[13]= 2 (0x2) smb_vwv[14]= 38 (0x26) smb_vwv[15]=49165 (0xC00D) smb_bcc=61 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 00 5C 00 50 00 49 00 50 00 45 00 5C 00 00 00 05 .\.P.I.P .E.\.... [010] 00 00 03 10 00 00 00 2E 00 00 00 05 00 00 00 16 ........ ........ [020] 00 00 00 00 00 2E 00 00 00 00 00 03 D6 92 98 2C ........ ......., [030] BB 45 45 BA 3D CB 70 E9 A1 69 DD 0C 00 .EE.=.p. .i... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 18 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340) client_sign_outgoing_message: sent SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 76 4E 8A 82 31 8C 41 07 vN..1.A. [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74) store_sequence_for_reply: stored seq = 19 mid = 12 [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132) write_socket(3,132) [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135) write_socket(3,132) wrote 132 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87) get_sequence_for_reply: found seq = 19 mid = 12 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_start(537) cli_signing_trans_start: storing mid = 12, reply_seq_num = 19, send_seq_num = 18 data->send_seq_num = 20 [2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618) got smb length of 260 [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=260 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=55301 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=12 smt_wct=10 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 204 (0xCC) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 56 (0x38) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 204 (0xCC) smb_vwv[ 7]= 56 (0x38) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_bcc=205 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 2E 05 00 02 03 10 00 00 00 CC 00 00 00 05 00 00 ........ ........ [010] 00 B4 00 00 00 00 00 00 00 A0 9D 51 0D 0C 00 00 ........ ...Q.... [020] 00 0C 00 0E 00 70 67 26 01 16 00 18 00 78 C1 DF .....pg& .....x.. [030] 0B 16 00 18 00 28 62 78 01 C4 65 85 9F 32 BA 83 .....(bx ..e..2.. [040] 49 89 E2 3B 2C BC 78 41 1B 28 FE AD 0B 07 00 00 I..;,.xA .(...... [050] 00 00 00 00 00 06 00 00 00 45 00 53 00 41 00 42 ........ .E.S.A.B [060] 00 53 00 41 00 0C 00 00 00 00 00 00 00 0B 00 00 .S.A.... ........ [070] 00 73 00 61 00 2E 00 65 00 73 00 61 00 62 00 2E .s.a...e .s.a.b.. [080] 00 6F 00 72 00 67 00 00 00 0C 00 00 00 00 00 00 .o.r.g.. ........ [090] 00 0B 00 00 00 73 00 61 00 2E 00 65 00 73 00 61 .....s.a ...e.s.a [0A0] 00 62 00 2E 00 6F 00 72 00 67 00 00 00 04 00 00 .b...o.r .g...... [0B0] 00 01 04 00 00 00 00 00 05 15 00 00 00 E5 DC AC ........ ........ [0C0] A1 FF E1 BB 42 A4 9D DD 4A 00 00 00 00 ....B... J.... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 19 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416) client_check_incoming_message: seq 19: got good SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] F8 7B A4 45 93 7B 32 D9 .{.E.{2. [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=260 smb_com=0x25 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=55301 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=12 smt_wct=10 smb_vwv[ 0]= 0 (0x0) smb_vwv[ 1]= 204 (0xCC) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 56 (0x38) smb_vwv[ 5]= 0 (0x0) smb_vwv[ 6]= 204 (0xCC) smb_vwv[ 7]= 56 (0x38) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_bcc=205 [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 2E 05 00 02 03 10 00 00 00 CC 00 00 00 05 00 00 ........ ........ [010] 00 B4 00 00 00 00 00 00 00 A0 9D 51 0D 0C 00 00 ........ ...Q.... [020] 00 0C 00 0E 00 70 67 26 01 16 00 18 00 78 C1 DF .....pg& .....x.. [030] 0B 16 00 18 00 28 62 78 01 C4 65 85 9F 32 BA 83 .....(bx ..e..2.. [040] 49 89 E2 3B 2C BC 78 41 1B 28 FE AD 0B 07 00 00 I..;,.xA .(...... [050] 00 00 00 00 00 06 00 00 00 45 00 53 00 41 00 42 ........ .E.S.A.B [060] 00 53 00 41 00 0C 00 00 00 00 00 00 00 0B 00 00 .S.A.... ........ [070] 00 73 00 61 00 2E 00 65 00 73 00 61 00 62 00 2E .s.a...e .s.a.b.. [080] 00 6F 00 72 00 67 00 00 00 0C 00 00 00 00 00 00 .o.r.g.. ........ [090] 00 0B 00 00 00 73 00 61 00 2E 00 65 00 73 00 61 .....s.a ...e.s.a [0A0] 00 62 00 2E 00 6F 00 72 00 67 00 00 00 04 00 00 .b...o.r .g...... [0B0] 00 01 04 00 00 00 00 00 05 15 00 00 00 E5 DC AC ........ ........ [0C0] A1 FF E1 BB 42 A4 9D DD 4A 00 00 00 00 ....B... J.... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_stop(556) cli_signing_trans_stop: freeing mid = 12, reply_seq_num = 19, send_seq_num = 18 data->send_seq_num = 20 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 smb_io_rpc_hdr rpc_hdr [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0000 major : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0001 minor : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0002 pkt_type : 02 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0003 flags : 03 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0004 pack_type0: 10 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0005 pack_type1: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0006 pack_type2: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0007 pack_type3: 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 frag_len : 00cc [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a auth_len : 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c call_id : 00000005 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_rpc_hdr_resp rpc_hdr_resp [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0010 alloc_hint: 000000b4 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0014 context_id: 0000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0016 cancel_ct : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0017 reserved : 00 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:cli_pipe_validate_current_pdu(577) cli_pipe_validate_current_pdu: got pdu len 204, data_len 180, ss_len 0 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(843) rpc_api_pipe: got PDU len of 204 at offset 0 [2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(894) rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d returned 360 bytes. [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84) 000000 lsa_io_r_query_info2 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0000 ptr: 0d519da0 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0004 info_class: 000c [2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84) 000006 lsa_io_dns_dom_info info12 [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000008 smb_io_unihdr nb_name [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0008 uni_str_len: 000c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 000a uni_max_len: 000e [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 000c buffer : 01266770 [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000010 smb_io_unihdr dns_name [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0010 uni_str_len: 0016 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0012 uni_max_len: 0018 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0014 buffer : 0bdfc178 [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000018 smb_io_unihdr forest [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0018 uni_str_len: 0016 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 001a uni_max_len: 0018 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 001c buffer : 01786228 [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000020 smb_io_uuid dom_guid [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0020 data : 9f8565c4 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0024 data : ba32 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674) 0026 data : 4983 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 0028 data : 89 e2 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819) 002a data : 3b 2c bc 78 41 1b [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0030 dom_sid: 0badfe28 [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000034 smb_io_unistr2 nb_name [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0034 uni_max_len: 00000007 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0038 offset : 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 003c uni_str_len: 00000006 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904) 0040 buffer : E.S.A.B.S.A. [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 00004c smb_io_unistr2 dns_name [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 004c uni_max_len: 0000000c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0050 offset : 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0054 uni_str_len: 0000000b [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904) 0058 buffer : s.a...e.s.a.b...o.r.g. [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 00006e smb_io_unistr2 forest [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0070 uni_max_len: 0000000c [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0074 offset : 00000000 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0078 uni_str_len: 0000000b [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904) 007c buffer : s.a...e.s.a.b...o.r.g. [2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84) 000092 smb_io_dom_sid2 dom_sid [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703) 0094 num_auths: 00000004 [2006/06/28 11:51:53, 8] rpc_parse/parse_prs.c:prs_debug(84) 000098 smb_io_dom_sid sid [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0098 sid_rev_num: 01 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 0099 num_auths : 04 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 009a id_auth[0] : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 009b id_auth[1] : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 009c id_auth[2] : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 009d id_auth[3] : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 009e id_auth[4] : 00 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614) 009f id_auth[5] : 05 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32s(959) 00a0 sub_auths : 00000015 a1acdce5 42bbe1ff 4add9da4 [2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_ntstatus(762) 00b0 status: NT_STATUS_OK [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 20 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340) client_sign_outgoing_message: sent SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 1A A2 45 9E 34 15 E5 D0 ..E.4... [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74) store_sequence_for_reply: stored seq = 21 mid = 13 [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132) write_socket(3,45) [2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135) write_socket(3,45) wrote 45 [2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618) got smb length of 35 [2006/06/28 11:51:53, 5] lib/util.c:show_msg(454) [2006/06/28 11:51:53, 5] lib/util.c:show_msg(464) size=35 smb_com=0x4 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=55301 smb_tid=20484 smb_pid=11598 smb_uid=38912 smb_mid=13 smt_wct=0 smb_bcc=0 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87) get_sequence_for_reply: found seq = 21 mid = 13 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270) simple_packet_signature: sequence number 21 [2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416) client_check_incoming_message: seq 21: got good SMB signature of [2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058) [000] 85 F3 DD EF DE 8F AF 12 ........ [2006/06/28 11:51:53, 10] libsmb/clientgen.c:cli_rpc_pipe_close(383) cli_rpc_pipe_close: closed pipe \lsarpc to machine ARBASSRV01 [2006/06/28 11:51:53, 5] nsswitch/winbindd_cache.c:get_cache(123) get_cache: Setting ADS methods for domain ESABSA *** buffer overflow detected ***: /usr/sbin/winbindd terminated ======= Backtrace: ========= /lib/libc.so.6(__chk_fail+0x41)[0xb7d9db31] /lib/libc.so.6[0xb7d9d533] /lib/libc.so.6(__snprintf_chk+0x37)[0xb7d9d417] /usr/sbin/winbindd[0x8004163a] /usr/sbin/winbindd(tdb_traverse+0xf0)[0x800cdc90] /usr/sbin/winbindd(wcache_flush_cache+0xc0)[0x8003e220] /usr/sbin/winbindd[0x8003e43b] /usr/sbin/winbindd[0x80042eff] /usr/sbin/winbindd[0x80058dc5] /usr/sbin/winbindd(run_events+0x6d)[0x800d15fd] /usr/sbin/winbindd[0x80057f90] /usr/sbin/winbindd(init_child_connection+0x2a3)[0x8003c463] /usr/sbin/winbindd(async_domain_request+0xb6)[0x800597e6] /usr/sbin/winbindd(rescan_trusted_domains+0x110)[0x8003cc60] /usr/sbin/winbindd(main+0x66d)[0x80032bfd] /lib/libc.so.6(__libc_start_main+0xdc)[0xb7ce387c] /usr/sbin/winbindd[0x80031541] ======= Memory map: ======== 80000000-801f0000 r-xp 00000000 03:01 130495 /usr/sbin/winbindd 801f0000-801fb000 rw-p 001ef000 03:01 130495 /usr/sbin/winbindd 801fb000-802e6000 rw-p 801fb000 00:00 0 [heap] b78ce000-b78d8000 r-xp 00000000 03:01 26936 /lib/libgcc_s.so.1 b78d8000-b78d9000 rw-p 00009000 03:01 26936 /lib/libgcc_s.so.1 b78ec000-b7af8000 rw-s 00000000 03:01 147159 /var/lib/samba/winbindd_cache.tdb b7af8000-b7afc000 rw-s 00000000 03:01 147152 /var/lib/samba/netsamlogon_cache.tdb b7afc000-b7afe000 rw-s 00000000 03:01 147146 /var/lib/samba/winbindd_idmap.tdb b7afe000-b7b00000 rw-s 00000000 03:01 146888 /var/lib/samba/gencache.tdb b7b00000-b7b02000 rw-s 00000000 03:01 147030 /etc/samba/secrets.tdb b7b02000-b7b12000 r--s 00000000 03:01 89996 /usr/lib/samba/valid.dat b7b12000-b7b32000 r--s 00000000 03:01 89994 /usr/lib/samba/lowcase.dat b7b32000-b7b52000 r--s 00000000 03:01 89995 /usr/lib/samba/upcase.dat b7b52000-b7b54000 rw-p b7b52000 00:00 0 b7b54000-b7c63000 r-xp 00000000 03:01 43293 /usr/lib/libcrypto.so.0.9.8 b7c63000-b7c77000 rw-p 0010f000 03:01 43293 /usr/lib/libcrypto.so.0.9.8 b7c77000-b7c7a000 rw-p b7c77000 00:00 0 b7c7a000-b7cb3000 r-xp 00000000 03:01 43294 /usr/lib/libssl.so.0.9.8 b7cb3000-b7cb7000 rw-p 00038000 03:01 43294 /usr/lib/libssl.so.0.9.8 b7cb7000-b7cb8000 rw-p b7cb7000 00:00 0 b7cb8000-b7ccd000 r-xp 00000000 03:01 33114 /usr/lib/libsasl2.so.2.0.21 b7ccd000-b7cce000 rw-p 00014000 03:01 33114 /usr/lib/libsasl2.so.2.0.21 b7cce000-b7de7000 r-xp 00000000 03:01 15328 /lib/libc-2.4.so b7de7000-b7de9000 r--p 00118000 03:01 15328 /lib/libc-2.4.so b7de9000-b7deb000 rw-p 0011a000 03:01 15328 /lib/libc-2.4.so b7deb000-b7dee000 rw-p b7deb000 00:00 0 b7dee000-b7def000 r-xp 00000000 03:01 26944 /lib/libnscd.so.1.0.0 b7def000-b7df0000 rw-p 00000000 03:01 26944 /lib/libnscd.so.1.0.0 b7df0000-b7dfb000 r-xp 00000000 03:01 47118 /usr/lib/liblber-2.3.so.0.2.7 b7dfb000-b7dfc000 rw-p 0000a000 03:01 47118 /usr/lib/liblber-2.3.so.0.2.7 b7dfc000-b7e31000 r-xp 00000000 03:01 47120 /usr/lib/libldap-2.3.so.0.2.7 b7e31000-b7e32000 rw-p 00035000 03:01 47120 /usr/lib/libldap-2.3.so.0.2.7 b7e32000-b7e33000 rw-p b7e32000 00:00 0 b7e33000-b7e35000 r-xp 00000000 03:01 28507 /lib/libcom_err.so.2.1 b7e35000-b7e36000 rw-p 00001000 03:01 28507 /lib/libcom_err.so.2.1 b7e36000-b7e38000 r-xp 00000000 03:01 34693 /usr/lib/libkrb5support.so.0.0 b7e38000-b7e39000 rw-p 00002000 03:01 34693 /usr/lib/libkrb5support.so.0.0 b7e39000-b7e5b000 r-xp 00000000 03:01 34681 /usr/lib/libk5crypto.so.3.0 b7e5b000-b7e5c000 rw-p 00022000 03:01 34681 /usr/lib/libk5crypto.so.3.0 b7e5c000-b7ec4000 r-xp 00000000 03:01 34691 /usr/lib/libkrb5.so.3.2 b7ec4000-b7ec6000 rw-p 00068000 03:01 34691 /usr/lib/libkrb5.so.3.2 b7ec6000-b7edc000 r-xp 00000000 03:01 34677 /usr/lib/libgssapi_krb5.so.2.2 b7edc000-b7edd000 rw-p 00015000 03:01 34677 /usr/lib/libgssapi_krb5.so.2.2 b7edd000-b7ee4000 r-xp 00000000 03:01 27244 /usr/lib/libpopt.so.0.0.0 b7ee4000-b7ee5000 rw-p 00006000 03:01 27244 /usr/lib/libpopt.so.0.0.0 b7ee5000-b7ee6000 rw-p b7ee5000 00:00 0 b7ee6000-b7ee8000 r-xp 00000000 03:01 15334 /lib/libdl-2.4.so b7ee8000-b7eea000 rw-p 00001000 03:01 15334 /lib/libdl-2.4.so b7eea000-b7efb000 r-xp 00000000 03:01 15339 /lib/libnsl-2.4.so b7efb000-b7efd000 rw-p 00010000 03:01 15339 /lib/libnsl-2.4.so b7efd000-b7eff000 rw-p b7efd000 00:00 0 b7eff000-b7f0e000 r-xp 00000000 03:01 15356 /lib/libresolv-2.4.so b7f0e000-b7f10000 rw-p 0000e000 03:01 15356 /lib/libresolv-2.4.so b7f10000-b7f12000 rw-p b7f10000 00:00 0 b7f12000-b7f1b000 r-xp 00000000 03:01 15332 /lib/libcrypt-2.4.so b7f1b000-b7f1e000 rw-p 00008000 03:01 15332 /lib/libcrypt-2.4.so b7f1e000-b7f45000 rw-p b7f1e000 00:00 0 b7f45000-b7f49000 rw-s 00000000 03:01 147151 /var/lib/samba/messages.tdb b7f49000-b7f4b000 r-xp 00000000 03:01 23522 /usr/lib/gconv/IBM850.so b7f4b000-b7f4d000 rw-p 00001000 03:01 23522 /usr/lib/gconv/IBM850.so b7f4d000-b7f4f000 r-xp 00000000 03:01 23622 /usr/lib/gconv/UTF-16.so b7f4f000-b7f51000 rw-p 00001000 03:01 23622 /usr/lib/gconv/UTF-16.so b7f51000-b7f58000 r--s 00000000 03:01 23627 /usr/lib/gconv/gconv-modules.cache b7f58000-b7f59000 rw-p b7f58000 00:00 0 b7f59000-b7f73000 r-xp 00000000 03:01 15321 /lib/ld-2.4.so b7f73000-b7f75000 rw-p 00019000 03:01 15321 /lib/ld-2.4.so bfa6a000-bfa80000 rw-p bfa6a000 00:00 0 [stack] ffffe000-fffff000 ---p 00000000 00:00 0 [vdso] [2006/06/28 11:51:53, 0] lib/fault.c:fault_report(36) =============================================================== [2006/06/28 11:51:53, 0] lib/fault.c:fault_report(37) INTERNAL ERROR: Signal 6 in pid 11598 (3.0.22-11-SUSE-CODE10) Please read the Trouble-Shooting section of the Samba3-HOWTO [2006/06/28 11:51:53, 0] lib/fault.c:fault_report(39) From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2006/06/28 11:51:53, 0] lib/fault.c:fault_report(40) =============================================================== [2006/06/28 11:51:53, 0] lib/util.c:smb_panic2(1554) PANIC: internal error [2006/06/28 11:51:53, 0] lib/util.c:smb_panic2(1562) BACKTRACE: 23 stack frames: #0 /usr/sbin/winbindd(smb_panic2+0x8a) [0x800b699a] #1 /usr/sbin/winbindd(smb_panic+0x19) [0x800b6bf9] #2 /usr/sbin/winbindd [0x800a0f52] #3 [0xffffe420] #4 /lib/libc.so.6(abort+0x103) [0xb7cf7ea3] #5 /lib/libc.so.6 [0xb7d2bf8b] #6 /lib/libc.so.6(__chk_fail+0x41) [0xb7d9db31] #7 /lib/libc.so.6 [0xb7d9d533] #8 /lib/libc.so.6(__snprintf_chk+0x37) [0xb7d9d417] #9 /usr/sbin/winbindd [0x8004163a] #10 /usr/sbin/winbindd(tdb_traverse+0xf0) [0x800cdc90] #11 /usr/sbin/winbindd(wcache_flush_cache+0xc0) [0x8003e220] #12 /usr/sbin/winbindd [0x8003e43b] #13 /usr/sbin/winbindd [0x80042eff] #14 /usr/sbin/winbindd [0x80058dc5] #15 /usr/sbin/winbindd(run_events+0x6d) [0x800d15fd] #16 /usr/sbin/winbindd [0x80057f90] #17 /usr/sbin/winbindd(init_child_connection+0x2a3) [0x8003c463] #18 /usr/sbin/winbindd(async_domain_request+0xb6) [0x800597e6] #19 /usr/sbin/winbindd(rescan_trusted_domains+0x110) [0x8003cc60] #20 /usr/sbin/winbindd(main+0x66d) [0x80032bfd] #21 /lib/libc.so.6(__libc_start_main+0xdc) [0xb7ce387c] #22 /usr/sbin/winbindd [0x80031541]
This has been fixed in subversion (http://websvn.samba.org/cgi-bin/viewcvs.cgi?rev=15632&view=rev) and is fixed in all packages available from ftp.suse.com/pub/projects/samba.