Bug 6539 - Crash in unixuid_setup_security()
Crash in unixuid_setup_security()
Product: Samba 4.0
Classification: Unclassified
Component: File services
Other Linux
: P3 normal
: ---
Assigned To: Andrew Bartlett
Matthias Dieter Wallnöfer
Depends on:
Blocks: 6600
  Show dependency treegraph
Reported: 2009-07-08 04:54 UTC by Volker Lendecke
Modified: 2009-10-03 09:34 UTC (History)
1 user (show)

See Also:

failed attempt to join a domain (69.84 KB, application/octet-stream)
2009-07-08 04:55 UTC, Volker Lendecke
no flags Details
Capture leading to the Samba4 crash (89.81 KB, application/octet-stream)
2009-07-08 04:56 UTC, Volker Lendecke
no flags Details
valgrind log of the whole session (45.43 KB, application/x-bzip)
2009-07-08 04:57 UTC, Volker Lendecke
no flags Details
smb.conf (334 bytes, text/plain)
2009-07-08 04:58 UTC, Volker Lendecke
no flags Details
bt full (5.75 KB, text/plain)
2009-07-08 10:40 UTC, Volker Lendecke
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description Volker Lendecke 2009-07-08 04:54:33 UTC
Attached find two sniffs: One is the failed attempt to join a Samba domain with NTLM LDAP sealing, the other one is the attempt to store the resulting sniff (join.cap) on \\\netlogon\join.cap. Unfortunately, during this attempt Samba4 crashed. Also find a valgrind log of the crash attached.

Comment 1 Volker Lendecke 2009-07-08 04:55:18 UTC
Created attachment 4402 [details]
failed attempt to join a domain
Comment 2 Volker Lendecke 2009-07-08 04:56:04 UTC
Created attachment 4403 [details]
Capture leading to the Samba4 crash
Comment 3 Volker Lendecke 2009-07-08 04:57:06 UTC
Created attachment 4404 [details]
valgrind log of the whole session
Comment 4 Volker Lendecke 2009-07-08 04:58:43 UTC
Created attachment 4405 [details]
Comment 5 Matthias Dieter Wallnöfer 2009-07-08 08:07:22 UTC
So is this fixed with the commit (57afa1edebe38ea48be5fc074a8284c762e35e17) from metze and you (Volker)?
Comment 6 Volker Lendecke 2009-07-08 09:02:14 UTC
No. 57afa1edebe38ea4 fixes the failure that is obvious in https://bugzilla.samba.org/attachment.cgi?id=4402. It does not fix the crash I wanted to point out with this bug report. If needed, I can file another bug report without the mentioning of the join failure at all.

Comment 7 Matthias Dieter Wallnöfer 2009-07-08 09:51:16 UTC
Comment on attachment 4402 [details]
failed attempt to join a domain

Ok, so this is solved.
Comment 8 Volker Lendecke 2009-07-08 09:53:51 UTC
Ok, do I have to open up a new bug report? I thought that the *complete* sniff might be useful, that's why I uploaded everything which unfortunately ended up in two capture files. If you need something different, please tell me.


Comment 9 Matthias Dieter Wallnöfer 2009-07-08 10:04:09 UTC
Comment on attachment 4402 [details]
failed attempt to join a domain

Ah, so I got it wrong. But is it also possible to get a full stacktrace of the crash (in gdb)? Sometimes it helps faster than the network captures.
Comment 10 Volker Lendecke 2009-07-08 10:40:44 UTC
Created attachment 4406 [details]
bt full

priv = (struct unixuid_private *) 0x0

That's the problem. That one is dereferenced in line 249 of vfs_unixuid.c.

Comment 11 Andrew Bartlett 2009-07-08 18:04:25 UTC
Thanks Volker.  This looks like a fairly simple case of 'don't tear down what you have not set up'.  The connect failed (because it could not find Samba4's winbindd at line ntvfs_unixuid.c:306), and the only question I have remaining to look into is where to fix it.

Thanks for the report!
Comment 12 Volker Lendecke 2009-07-09 02:04:06 UTC
Just to make sure: The crash happened with the short "server services" parameter commented out. So this was the default etc/smb.conf that had fell out of provision.

Comment 13 Matthias Dieter Wallnöfer 2009-10-03 09:23:05 UTC
This crash should be fixed by a patch of abartlet.
Comment 14 Volker Lendecke 2009-10-03 09:26:38 UTC
Which one?

Comment 15 Matthias Dieter Wallnöfer 2009-10-03 09:34:14 UTC