Bug 8830 - SIGSEGV when password expire warning (Jenkins/libpam4j)
SIGSEGV when password expire warning (Jenkins/libpam4j)
Product: Samba 3.4
Classification: Unclassified
Component: Winbind
All Linux
: P5 normal
: ---
Assigned To: Michael Adam
Samba QA Contact
Depends on:
  Show dependency treegraph
Reported: 2012-03-28 11:47 UTC by Thomas K
Modified: 2012-06-26 19:22 UTC (History)
0 users

See Also:

Java dump file (106.08 KB, application/octet-stream)
2012-03-28 11:47 UTC, Thomas K
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas K 2012-03-28 11:47:12 UTC
Created attachment 7409 [details]
Java dump file

We are facing SIGSEGV in Jenkins when authentication users via pam_winbind and one user is getting close to pwd expiration time (12 days in this case). No problem with other users. We changed warn_password_expire to 1 pam_winbind.conf and well, now this user (now 11 days to expire) works fine. So it seems to be related to pwd expiration.

I will add Java dump file including stack information.

System info:
OS:SUSE Linux Enterprise Server 10 (x86_64)

uname:Linux #1 SMP Thu Mar 17 11:45:06 UTC 2011 x86_64
libc:glibc 2.4 NPTL 2.4 

rpm -qa | grep samba
Comment 1 Volker Lendecke 2012-03-30 08:25:28 UTC
That java dump file is not really very useful. It does not show where in pam_winbind the crash happens. Is it possible to reproduce that issue without java around and with debug symbols enabled?
Comment 2 Thomas K 2012-03-30 09:09:40 UTC
Dear Volker,

thx for your comment. I don't have symbols here for pam_winbind.so. Building version samba-winbind-3.4.3-1.17.2 from repository is not possible (controlled environment, huge German government organization).I could image to build a Java repro based on libpam4j (by look-aside in jenkins source code) and deliver this repro, but testing agains AD is pretty difficult here in this environment.

I can understand if this is too much work at your side.


Comment 3 Thomas Hood 2012-06-26 19:22:52 UTC
Running samba4 4.0.0~alpha18.dfsg1-4ubuntu2 as domain controller under Ubuntu 12.04, every time a user tries to log in when her password has expired a segfault occurs.  Here's a backtrace.  Please let me know if this has been fixed in later releases --- I didn't see anything relevant in release notes --- or let me know what additional information you might need to help find the bug.

  sam_account_ok: Account for user 'foo@BAR' password must change!.
*** glibc detected *** samba: free(): invalid pointer: 0x00000000011432d0 ***
======= Backtrace: =========