madsmb:/usr/local/samba/sbin # gdb samba GNU gdb 6.6 Copyright (C) 2006 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type "show copying" to see the conditions. There is absolutely no warranty for GDB. Type "show warranty" for details. This GDB was configured as "i586-suse-linux"... Using host libthread_db library "/lib/libthread_db.so.1". (gdb) run -i -M single Starting program: /usr/local/samba/sbin/samba -i -M single [Thread debugging using libthread_db enabled] [New Thread -1211757792 (LWP 20880)] samba version 4.0.0alpha9-GIT-77e2403 started. Copyright Andrew Tridgell and the Samba Team 1992-2009 samba: using 'single' process model Program received signal SIGSEGV, Segmentation fault. [Switching to Thread -1211757792 (LWP 20880)] 0x084678eb in ldb_msg_find_element (msg=0x925f6e0, attr_name=0x8a3998e "objectClass") at lib/ldb/common/ldb_msg.c:52 52 if (ldb_attr_cmp(msg->elements[i].name, attr_name) == 0) { (gdb) bt full #0 0x084678eb in ldb_msg_find_element (msg=0x925f6e0, attr_name=0x8a3998e "objectClass") at lib/ldb/common/ldb_msg.c:52 i = 0 #1 0x0847a9cd in map_objectclass_generate_local (module=0x950de20, mem_ctx=0x8c9a3c0, local_attr=0x94c9638 "objectClass", remote=0x925f6e0) at lib/ldb/ldb_map/ldb_map.c:797 data = (const struct ldb_map_context *) 0x8fb2fe0 ldb = (struct ldb_context *) 0x8cf41a8 el = (struct ldb_message_element *) 0x8977df6 oc = (struct ldb_message_element *) 0x93f9e5c val = {data = 0x84797a9 "\205�u \213E\b\213\b\213E�\215\024\205", length = 144939406} i = 111 #2 0x08476d5a in ldb_msg_el_merge (module=0x950de20, local=0x8c9a3c0, remote=0x925f6e0, attr_name=0x94c9638 "objectClass") at lib/ldb/ldb_map/ldb_map_outbound.c:331 data = (const struct ldb_map_context *) 0x8fb2fe0 map = (const struct ldb_map_attribute *) 0x93f9e5c old = (struct ldb_message_element *) 0x6f el = (struct ldb_message_element *) 0x0 remote_name = 0x0 ldb = (struct ldb_context *) 0x8cf41a8 #3 0x0847706a in ldb_msg_merge_remote (ac=0x9505010, local=0x8c9a3c0, ---Type to continue, or q to quit--- remote=0x925f6e0) at lib/ldb/ldb_map/ldb_map_outbound.c:434 i = 0 ret = 144145910 attrs = (const char * const *) 0x9510c50 #4 0x08477141 in map_reply_remote (ac=0x9505010, ares=0x8c6a2c8) at lib/ldb/ldb_map/ldb_map_outbound.c:468 msg = (struct ldb_message *) 0x8c9a3c0 dn = (struct ldb_dn *) 0x8c6a240 ret = 153482976 #5 0x08478b94 in map_remote_search_callback (req=0x8fa31f8, ares=0x8c6a2c8) at lib/ldb/ldb_map/ldb_map_outbound.c:1223 ac = (struct map_context *) 0x9505010 ret = 153482928 #6 0x0846b1bf in ldb_module_send_entry (req=0x8fa31f8, msg=0x925f6e0, ctrls=0x0) at lib/ldb/common/ldb_modules.c:648 ares = (struct ldb_reply *) 0x8c6a2c8 #7 0x084c89cb in ps_callback (req=0x8fa2f60, ares=0x8c6a278) at lib/ldb/modules/paged_searches.c:173 ac = (struct ps_context *) 0x94c7c28 ret = 153482928 #8 0x0846b1bf in ldb_module_send_entry (req=0x8fa2f60, msg=0x925f6e0, ctrls=0x0) at lib/ldb/common/ldb_modules.c:648 ares = (struct ldb_reply *) 0x8c6a278 ---Type to continue, or q to quit--- #9 0x08488398 in ildb_callback (req=0x8fa2cc8) at lib/ldb/ldb_ildap/ldb_ildap.c:326 ldb = (struct ldb_context *) 0x8cf41a8 ac = (struct ildb_context *) 0x932c300 status = {v = 155195512} search = (struct ldap_SearchResEntry *) 0x923b568 msg = (struct ldap_message *) 0x923b560 controls = (struct ldb_control **) 0x0 ldbmsg = (struct ldb_message *) 0x925f6e0 referral = 0x897a0e4 "\211E�\213E�\203�\024[]�U\211�S\203�\024�A\032v�\201�TY\034" callback_failed = false request_done = false ret = 156494240 i = 0 #10 0x08489a54 in ldap_match_message (conn=0x9504c78, msg=0x8c49d90) at libcli/ldap/ldap_client.c:177 req = (struct ldap_request *) 0x8fa2cc8 i = 1 __FUNCTION__ = "ldap_match_message" #11 0x08489b8c in ldap_recv_handler (private_data=0x9504c78, blob= {data = 0x8c49d10 "01\002\001\016e\a\n\001", length = 51}) at libcli/ldap/ldap_client.c:209 ---Type to continue, or q to quit--- status = {v = 0} conn = (struct ldap_connection *) 0x9504c78 msg = (struct ldap_message *) 0x8c49d90 asn1 = (struct asn1_data *) 0x8c49c28 #12 0x086bd650 in packet_recv (pc=0x950acc0) at lib/stream/packet.c:414 npending = 71 status = {v = 0} nread = 51 blob = {data = 0x8c49d10 "01\002\001\016e\a\n\001", length = 51} recv_retry = false __FUNCTION__ = "packet_recv" #13 0x08489bfa in ldap_read_io_handler (private_data=0x9504c78, flags=1) at libcli/ldap/ldap_client.c:221 conn = (struct ldap_connection *) 0x9504c78 #14 0x08489c7c in ldap_io_handler (ev=0x8b5f058, fde=0x8f90aa0, flags=1, private_data=0x9504c78) at libcli/ldap/ldap_client.c:237 conn = (struct ldap_connection *) 0x9504c78 #15 0x0897e7b8 in epoll_event_loop (std_ev=0x8b5f0c8, tvalp=0xbf8fa984) at ../lib/tevent/tevent_standard.c:309 fde = (struct tevent_fd *) 0x8f90aa0 flags = 1 ret = 1 i = 0 ---Type to continue, or q to quit--- events = {{events = 1, data = {ptr = 0x8f90aa0, fd = 150538912, u32 = 150538912, u64 = 150538912}}} timeout = 25068 #16 0x0897ee19 in std_event_loop_once (ev=0x8b5f058, location=0x8a35285 "lib/ldb/common/ldb.c:477") at ../lib/tevent/tevent_standard.c:544 std_ev = (struct std_event_context *) 0x8b5f0c8 tval = {tv_sec = 25, tv_usec = 67116} #17 0x0897b13f in _tevent_loop_once (ev=0x8b5f058, location=0x8a35285 "lib/ldb/common/ldb.c:477") at ../lib/tevent/tevent.c:490 ret = 0 nesting_stack_ptr = (void *) 0x0 #18 0x0846238a in ldb_wait (handle=0x8fa3678, type=LDB_WAIT_ALL) at lib/ldb/common/ldb.c:477 ev = (struct tevent_context *) 0x8b5f058 ret = 0 #19 0x084637fe in ldb_search (ldb=0x8cf41a8, mem_ctx=0x8cf41a8, result=0xbf8faaa8, base=0x8b91308, scope=LDB_SCOPE_SUBTREE, attrs=0xbf8faaf4, exp_fmt=0x8a5ac0b "%s") at lib/ldb/common/ldb.c:1111 req = (struct ldb_request *) 0x8b91210 res = (struct ldb_result *) 0x902d3b8 expression = 0x945c0d8 "(objectclass=group)" ---Type to continue, or q to quit--- ap = 0xbf8faa8c "\b�\002\tN�\v��\b\020" ret = 0 #20 0x0852eac6 in gendb_search_v (ldb=0x8cf41a8, mem_ctx=0x8cf41a8, basedn=0x8b91308, msgs=0xbf8faaf8, attrs=0xbf8faaf4, format=0x8a3ba36 "(objectclass=group)", ap=0xbf8fab20 "��L\t��L\tX�\217�G\211\227\b��L") at ../lib/util/util_ldb.c:53 scope = LDB_SCOPE_SUBTREE res = (struct ldb_result *) 0x0 expr = 0x902bd08 "(objectclass=group)" ret = 146346712 __FUNCTION__ = "gendb_search_v" #21 0x084ff7fa in samdb_search_count (sam_ldb=0x8cf41a8, mem_ctx=0x8cf41a8, basedn=0x8b91308, format=0x8a3ba36 "(objectclass=group)") at dsdb/common/util.c:198 ap = 0xbf8fab20 "��L\t��L\tX�\217�G\211\227\b��L" res = (struct ldb_message **) 0x947fbb8 attrs = {0x0} ret = 80 #22 0x08486f25 in construct_primary_group_token (module=0x8f2de78, msg=0x94aca30) at dsdb/samdb/ldb_modules/operational.c:105 ldb = (struct ldb_context *) 0x8cf41a8 primary_group_token = 157023920 ---Type to continue, or q to quit--- #23 0x08487043 in operational_search_post_process (module=0x8f2de78, msg=0x94aca30, attrs=0x94f2860) at dsdb/samdb/ldb_modules/operational.c:169 ldb = (struct ldb_context *) 0x8cf41a8 i = 4 a = 0 #24 0x0848726e in operational_callback (req=0x932b620, ares=0x94af6c8) at dsdb/samdb/ldb_modules/operational.c:231 ac = (struct operational_context *) 0x94cd2d0 ret = 155896320 #25 0x0846b1bf in ldb_module_send_entry (req=0x932b620, msg=0x94aca30, ctrls=0x0) at lib/ldb/common/ldb_modules.c:648 ares = (struct ldb_reply *) 0x94af6c8 #26 0x084dabdb in extended_callback (req=0x94ac780, ares=0x8d85690) at dsdb/samdb/ldb_modules/extended_dn_out.c:395 ac = (struct extended_search_context *) 0x93ea0c8 control = (struct ldb_control *) 0x0 dereference_control = (struct dsdb_openldap_dereference_result_control *) 0x0 ret = 0 i = 1 j = 146012752 msg = (struct ldb_message *) 0x94aca30 p = (struct extended_dn_out_private *) 0x92264f0 ---Type to continue, or q to quit--- #27 0x0846b1bf in ldb_module_send_entry (req=0x94ac780, msg=0x94aca30, ctrls=0x0) at lib/ldb/common/ldb_modules.c:648 ares = (struct ldb_reply *) 0x8d85690 #28 0x084d233a in partition_req_callback (req=0x8e17480, ares=0x94336e8) at dsdb/samdb/ldb_modules/partition.c:195 ac = (struct partition_context *) 0x947a1c0 module = (struct ldb_module *) 0x0 nreq = (struct ldb_request *) 0x94aca30 ret = 146554792 #29 0x0846b1bf in ldb_module_send_entry (req=0x8e17480, msg=0x94aca30, ctrls=0x0) at lib/ldb/common/ldb_modules.c:648 ares = (struct ldb_reply *) 0x94336e8 #30 0x08478782 in map_return_entry (ac=0x9505010, ares=0x8d6d7a8) at lib/ldb/ldb_map/ldb_map_outbound.c:1088 el = (struct ldb_message_element *) 0x93fe9c8 attrs = (const char * const *) 0x953e758 ldb = (struct ldb_context *) 0x8cf41a8 i = 1 #31 0x08478c06 in map_remote_search_callback (req=0x8fa31f8, ares=0x8d6d7a8) at lib/ldb/ldb_map/ldb_map_outbound.c:1234 ac = (struct map_context *) 0x9505010 ret = 0 #32 0x0846b1bf in ldb_module_send_entry (req=0x8fa31f8, msg=0x8fa3678, ---Type to continue, or q to quit--- ctrls=0x0) at lib/ldb/common/ldb_modules.c:648 ares = (struct ldb_reply *) 0x8d6d7a8 #33 0x084c89cb in ps_callback (req=0x8fa2f60, ares=0x94f2be8) at lib/ldb/modules/paged_searches.c:173 ac = (struct ps_context *) 0x94c7c28 ret = 150615624 #34 0x0846b1bf in ldb_module_send_entry (req=0x8fa2f60, msg=0x8fa3678, ctrls=0x0) at lib/ldb/common/ldb_modules.c:648 ares = (struct ldb_reply *) 0x94f2be8 #35 0x08488398 in ildb_callback (req=0x8fa2cc8) at lib/ldb/ldb_ildap/ldb_ildap.c:326 ldb = (struct ldb_context *) 0x8cf41a8 ac = (struct ildb_context *) 0x932c300 status = {v = 156494192} search = (struct ldap_SearchResEntry *) 0x923b568 msg = (struct ldap_message *) 0x923b560 controls = (struct ldb_control **) 0x0 ldbmsg = (struct ldb_message *) 0x8fa3678 referral = 0x897a0e4 "\211E�\213E�\203�\024[]�U\211�S\203�\024�A\032v�\201�TY\034" callback_failed = false request_done = false ret = 0 ---Type to continue, or q to quit--- i = 0 #36 0x08489a54 in ldap_match_message (conn=0x9504c78, msg=0x923b560) at libcli/ldap/ldap_client.c:177 req = (struct ldap_request *) 0x8fa2cc8 i = 0 __FUNCTION__ = "ldap_match_message" #37 0x08489b8c in ldap_recv_handler (private_data=0x9504c78, blob= {data = 0x923b2b0 "0\201\207\002\001\016d\201\201\004(cn=Chattgroup,ou=Group,dc=mesainc,dc=com0U0&\004\vobjectClass1\027\004\003top\004\005group\004\tsamba4Top0+\004\tobjectSid1\036\004\034\001\005", length = 138}) at libcli/ldap/ldap_client.c:209 status = {v = 0} conn = (struct ldap_connection *) 0x9504c78 msg = (struct ldap_message *) 0x923b560 asn1 = (struct asn1_data *) 0x9535ce8 #38 0x086bd650 in packet_recv (pc=0x950acc0) at lib/stream/packet.c:414 npending = 158 status = {v = 0} nread = 138 blob = { data = 0x923b2b0 "0\201\207\002\001\016d\201\201\004(cn=Chattgroup,ou=Group,dc=mesainc,dc=com0U0&\004\vobjectClass1\027\004\003top\004\005group\004\tsamba4Top0+\004\tobjectSid1\036\004\034\001\005", length = 138} ---Type to continue, or q to quit--- recv_retry = false __FUNCTION__ = "packet_recv" #39 0x08489bfa in ldap_read_io_handler (private_data=0x9504c78, flags=1) at libcli/ldap/ldap_client.c:221 conn = (struct ldap_connection *) 0x9504c78 #40 0x08489c7c in ldap_io_handler (ev=0x8b5f058, fde=0x8f90aa0, flags=1, private_data=0x9504c78) at libcli/ldap/ldap_client.c:237 conn = (struct ldap_connection *) 0x9504c78 #41 0x0897e7b8 in epoll_event_loop (std_ev=0x8b5f0c8, tvalp=0xbf8fb174) at ../lib/tevent/tevent_standard.c:309 fde = (struct tevent_fd *) 0x8f90aa0 flags = 1 ret = 1 i = 0 events = {{events = 1, data = {ptr = 0x8f90aa0, fd = 150538912, u32 = 150538912, u64 = 150538912}}} timeout = 25068 #42 0x0897ee19 in std_event_loop_once (ev=0x8b5f058, location=0x8a35285 "lib/ldb/common/ldb.c:477") at ../lib/tevent/tevent_standard.c:544 std_ev = (struct std_event_context *) 0x8b5f0c8 tval = {tv_sec = 25, tv_usec = 67736} #43 0x0897b13f in _tevent_loop_once (ev=0x8b5f058, ---Type to continue, or q to quit--- location=0x8a35285 "lib/ldb/common/ldb.c:477") at ../lib/tevent/tevent.c:490 ret = 0 nesting_stack_ptr = (void *) 0x0 #44 0x0846238a in ldb_wait (handle=0x93ff860, type=LDB_WAIT_ALL) at lib/ldb/common/ldb.c:477 ev = (struct tevent_context *) 0x8b5f058 ret = 0 #45 0x083d8914 in ldapsrv_SearchRequest (call=0x9477890) at ldap_server/ldap_backend.c:399 req = (struct ldap_SearchRequest *) 0x953d8e0 ent = (struct ldap_SearchResEntry *) 0xb7cca44e done = (struct ldap_Result *) 0x50 ent_r = (struct ldapsrv_reply *) 0xa done_r = (struct ldapsrv_reply *) 0xb7cc9ee4 local_ctx = (TALLOC_CTX *) 0x932c538 samdb = (struct ldb_context *) 0x8cf41a8 basedn = (struct ldb_dn *) 0x94f2808 res = (struct ldb_result *) 0x94ac5c0 lreq = (struct ldb_request *) 0x8fa36b8 search_control = (struct ldb_control *) 0xb7d8e140 search_options = (struct ldb_search_options_control *) 0x8fa3268 extended_dn_control = (struct ldb_control *) 0x0 ---Type to continue, or q to quit--- extended_dn_decoded = (struct ldb_extended_dn_control *) 0x0 scope = LDB_SCOPE_BASE attrs = (const char **) 0x94f2860 scope_str = 0x8a1f7ec "BASE" errstr = 0x0 success_limit = 0 result = -1 ldb_ret = 0 i = 1 j = -1081101608 extended_type = 1 __FUNCTION__ = "ldapsrv_SearchRequest" #46 0x083dac49 in ldapsrv_do_call (call=0x9477890) at ldap_server/ldap_backend.c:911 i = 0 msg = (struct ldap_message *) 0x953d8d8 __FUNCTION__ = "ldapsrv_do_call" #47 0x083d60a9 in ldapsrv_process_message (conn=0x944ed38, msg=0x953d8d8) at ldap_server/ldap_server.c:91 call = (struct ldapsrv_call *) 0x9477890 status = {v = 146012752} blob = {data = 0x8d6d778 "�{L\t\230��\b", length = 155512120} __FUNCTION__ = "ldapsrv_process_message" ---Type to continue, or q to quit--- #48 0x083d643a in ldapsrv_decode (private_data=0x944ed38, blob= {data = 0x0, length = 0}) at ldap_server/ldap_server.c:166 status = {v = 0} conn = (struct ldapsrv_connection *) 0x944ed38 asn1 = (struct asn1_data *) 0x8d6d7a8 msg = (struct ldap_message *) 0x953d8d8 #49 0x086bd650 in packet_recv (pc=0x8e77fd8) at lib/stream/packet.c:414 npending = 131 status = {v = 0} nread = 111 blob = {data = 0x8fa2c60 "\016", length = 111} recv_retry = false __FUNCTION__ = "packet_recv" #50 0x083d6533 in ldapsrv_recv (c=0x9521dd8, flags=1) at ldap_server/ldap_server.c:201 conn = (struct ldapsrv_connection *) 0x944ed38 #51 0x080e2d8c in stream_io_handler (conn=0x9521dd8, flags=) at smbd/service_stream.c:94 No locals. #52 0x0897e7b8 in epoll_event_loop (std_ev=0x8b5f0c8, tvalp=0xbf8fb5e4) at ../lib/tevent/tevent_standard.c:309 fde = (struct tevent_fd *) 0x8d77bc0 flags = 1 ---Type to continue, or q to quit--- ret = 1 i = 0 events = {{events = 1, data = {ptr = 0x8d77bc0, fd = 148339648, u32 = 148339648, u64 = 148339648}}} timeout = 25069 #53 0x0897ee19 in std_event_loop_once (ev=0x8b5f058, location=0x898a157 "smbd/server.c:375") at ../lib/tevent/tevent_standard.c:544 std_ev = (struct std_event_context *) 0x8b5f0c8 tval = {tv_sec = 25, tv_usec = 68287} #54 0x0897b13f in _tevent_loop_once (ev=0x8b5f058, location=0x898a157 "smbd/server.c:375") at ../lib/tevent/tevent.c:490 ret = 0 nesting_stack_ptr = (void *) 0x0 #55 0x0897b360 in tevent_common_loop_wait (ev=0x8b5f058, location=0x898a157 "smbd/server.c:375") at ../lib/tevent/tevent.c:591 ret = 0 #56 0x0897b41e in _tevent_loop_wait (ev=0x8b5f058, location=0x898a157 "smbd/server.c:375") at ../lib/tevent/tevent.c:610 No locals. #57 0x080db955 in main (argc=4, argv=0x4) at smbd/server.c:375 No locals.