Bug 8152 - smbd crash in release_ip()
smbd crash in release_ip()
Status: CLOSED FIXED
Product: Samba 3.6
Classification: Unclassified
Component: Clustering
3.6.0rc1
All All
: P5 normal
: ---
Assigned To: Karolin Seeger
Samba QA Contact
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2011-05-19 16:11 UTC by Christian Ambach
Modified: 2011-05-20 19:14 UTC (History)
0 users

See Also:


Attachments
proposed patch (1.54 KB, patch)
2011-05-19 16:18 UTC, Christian Ambach
vl: review+
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Christian Ambach 2011-05-19 16:11:36 UTC
When smbd receives a RELEASE_IP message from ctdbd, it crashes with sig11:

#5  sig_fault (sig=11) at lib/fault.c:76
#6  <signal handler called>
#7  0x00007f51ff4b9158 in release_ip (ip=0x7f520189418c "10.0.100.133", priv=<value optimized out>) at smbd/process.c:2354
#8  0x00007f51ff742f35 in ctdb_handle_message (buf=0x7f5201894160 "@", length=64, private_data=<value optimized out>) at lib/ctdbd_conn.c:613
#9  0x00007f51ff741c61 in packet_handler (ctx=0x7f52018732f0, full_req=<value optimized out>, callback=0x7f51ff742dc0 <ctdb_handle_message>,
    priv=0x7f52018983b0, status=0x7fff16f04300) at lib/packet.c:167
#10 0x00007f51ff742d0c in ctdbd_socket_handler (event_ctx=<value optimized out>, event=<value optimized out>, flags=<value optimized out>,
    private_data=<value optimized out>) at lib/ctdbd_conn.c:684


(gdb) frame 7
#7  0x00007f51ff4b9158 in release_ip (ip=0x7f520189418c "10.0.100.133", priv=<value optimized out>) at smbd/process.c:2354
2354            if (strncmp("::ffff:", addr, 7) == 0) {
(gdb) up
#8  0x00007f51ff742f35 in ctdb_handle_message (buf=0x7f5201894160 "@", length=64, private_data=<value optimized out>) at lib/ctdbd_conn.c:613
613                    conn->release_ip_handler((const char *)msg->data,
(gdb)
#9  0x00007f51ff741c61 in packet_handler (ctx=0x7f52018732f0, full_req=<value optimized out>, callback=0x7f51ff742dc0 <ctdb_handle_message>,
    priv=0x7f52018983b0, status=0x7fff16f04300) at lib/packet.c:167
167            *status = callback(buf, length, priv);
Comment 1 Christian Ambach 2011-05-19 16:18:04 UTC
Created attachment 6456 [details]
proposed patch
Comment 2 Christian Ambach 2011-05-19 16:31:30 UTC
Hi Karo,

re-assigning to you for consideration of the patch for 3.6.
Comment 3 Christian Ambach 2011-05-19 19:25:51 UTC
commit of patch in master is 642c6ba2b9c581bacfcb9a6cb4c5c95d446263ce
Comment 4 Karolin Seeger 2011-05-20 19:14:00 UTC
(In reply to comment #3)
> commit of patch in master is 642c6ba2b9c581bacfcb9a6cb4c5c95d446263ce

Pushed to v3-6-test.
Closing out bug report.

Thanks!