[SCM] Samba Shared Repository - branch master updated - release-4-0-0alpha8-1371-gc298e66

Andrew Tridgell tridge at samba.org
Thu Sep 3 22:42:00 MDT 2009 

The branch, master has been updated
       via  c298e660bd28140125f2ac6b47dff6d7c01e82ae (commit)
       via  5842aa1ffdedd192d2616a6593bc8d8464dde3cd (commit)
       via  27b19eb9f61dec1c60d9c6abcf1fb2e12541f62a (commit)
      from  b35c627b92c0585f4fa3a1d92385a908f0e0cd5b (commit)

http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master


- Log -----------------------------------------------------------------
commit c298e660bd28140125f2ac6b47dff6d7c01e82ae
Author: Andrew Tridgell <tridge at samba.org>
Date:   Fri Sep 4 13:59:44 2009 +1000

    ldb: ensure we cancel a ldb transaction
    
    When we fail a ldbadd or ldbedit we should cancel the transaction to
    prevent ldb giving a warning about having a open transaction in the
    ldb destructor

commit 5842aa1ffdedd192d2616a6593bc8d8464dde3cd
Author: Andrew Tridgell <tridge at samba.org>
Date:   Fri Sep 4 13:58:17 2009 +1000

    s4: fixed a missing NULL termination in a attribute list passed to ldb_search

commit 27b19eb9f61dec1c60d9c6abcf1fb2e12541f62a
Author: Andrew Tridgell <tridge at samba.org>
Date:   Fri Sep 4 13:56:46 2009 +1000

    report the location of the original talloc_free on double free
    
    When we get a double free abort from talloc it is often hard to work
    out where the first free came from. This patch takes advantage of the
    fact that _talloc_free() now takes a location the free was called from
    to allow the double free abort code to print the location of the first
    free that conflicts.

-----------------------------------------------------------------------

Summary of changes:
 lib/talloc/talloc.c             |   29 ++++++++++++++++++-----------
 source4/dsdb/common/util.c      |    2 +-
 source4/lib/ldb/tools/ldbadd.c  |   10 +++++++---
 source4/lib/ldb/tools/ldbedit.c |    2 ++
 4 files changed, 28 insertions(+), 15 deletions(-)


Changeset truncated at 500 lines:

diff --git a/lib/talloc/talloc.c b/lib/talloc/talloc.c
index 0133b44..2709741 100644
--- a/lib/talloc/talloc.c
+++ b/lib/talloc/talloc.c
@@ -235,6 +235,7 @@ static inline struct talloc_chunk *talloc_chunk_from_ptr(const void *ptr)
 		}
 
 		if (tc->flags & TALLOC_FLAG_FREE) {
+			talloc_log("talloc: double free error - first free may be at %s\n", tc->name);
 			talloc_abort_double_free();
 			return NULL;
 		} else {
@@ -558,7 +559,7 @@ static void *_talloc_steal_internal(const void *new_ctx, const void *ptr);
 /* 
    internal talloc_free call
 */
-static inline int _talloc_free_internal(void *ptr)
+static inline int _talloc_free_internal(void *ptr, const char *location)
 {
 	struct talloc_chunk *tc;
 
@@ -578,9 +579,9 @@ static inline int _talloc_free_internal(void *ptr)
 		 * pointer.
 		 */
 		is_child = talloc_is_parent(tc->refs, ptr);
-		_talloc_free_internal(tc->refs);
+		_talloc_free_internal(tc->refs, location);
 		if (is_child) {
-			return _talloc_free_internal(ptr);
+			return _talloc_free_internal(ptr, location);
 		}
 		return -1;
 	}
@@ -627,7 +628,7 @@ static inline int _talloc_free_internal(void *ptr)
 			struct talloc_chunk *p = talloc_parent_chunk(tc->child->refs);
 			if (p) new_parent = TC_PTR_FROM_CHUNK(p);
 		}
-		if (unlikely(_talloc_free_internal(child) == -1)) {
+		if (unlikely(_talloc_free_internal(child, location) == -1)) {
 			if (new_parent == null_context) {
 				struct talloc_chunk *p = talloc_parent_chunk(ptr);
 				if (p) new_parent = TC_PTR_FROM_CHUNK(p);
@@ -638,6 +639,12 @@ static inline int _talloc_free_internal(void *ptr)
 
 	tc->flags |= TALLOC_FLAG_FREE;
 
+	/* we mark the freed memory with where we called the free
+	 * from. This means on a double free error we can report where
+	 * the first free came from 
+	 */	 
+	tc->name = location;
+
 	if (tc->flags & (TALLOC_FLAG_POOL|TALLOC_FLAG_POOLMEM)) {
 		struct talloc_chunk *pool;
 		unsigned int *pool_object_count;
@@ -777,7 +784,7 @@ void *talloc_reparent(const void *old_parent, const void *new_parent, const void
 			if (_talloc_steal_internal(new_parent, h) != h) {
 				return NULL;
 			}
-			return (void *)ptr;
+			return discard_const_p(void, ptr);
 		}
 	}	
 
@@ -811,7 +818,7 @@ static inline int talloc_unreference(const void *context, const void *ptr)
 		return -1;
 	}
 
-	return _talloc_free_internal(h);
+	return _talloc_free_internal(h, __location__);
 }
 
 /*
@@ -848,7 +855,7 @@ int talloc_unlink(const void *context, void *ptr)
 	tc_p = talloc_chunk_from_ptr(ptr);
 
 	if (tc_p->refs == NULL) {
-		return _talloc_free_internal(ptr);
+		return _talloc_free_internal(ptr, __location__);
 	}
 
 	new_p = talloc_parent_chunk(tc_p->refs);
@@ -915,7 +922,7 @@ void *talloc_named(const void *context, size_t size, const char *fmt, ...)
 	va_end(ap);
 
 	if (unlikely(name == NULL)) {
-		_talloc_free_internal(ptr);
+		_talloc_free_internal(ptr, __location__);
 		return NULL;
 	}
 
@@ -1013,7 +1020,7 @@ void *talloc_init(const char *fmt, ...)
 	va_end(ap);
 
 	if (unlikely(name == NULL)) {
-		_talloc_free_internal(ptr);
+		_talloc_free_internal(ptr, __location__);
 		return NULL;
 	}
 
@@ -1123,7 +1130,7 @@ int _talloc_free(void *ptr, const char *location)
 		return -1;
 	}
 	
-	return _talloc_free_internal(ptr);
+	return _talloc_free_internal(ptr, location);
 }
 
 
@@ -1237,7 +1244,7 @@ void *_talloc_realloc(const void *context, void *ptr, size_t size, const char *n
 void *_talloc_move(const void *new_ctx, const void *_pptr)
 {
 	const void **pptr = discard_const_p(const void *,_pptr);
-	void *ret = talloc_steal(new_ctx, (void *)*pptr);
+	void *ret = talloc_steal(new_ctx, discard_const_p(void, *pptr));
 	(*pptr) = NULL;
 	return ret;
 }
diff --git a/source4/dsdb/common/util.c b/source4/dsdb/common/util.c
index 0ffec8a..5834282 100644
--- a/source4/dsdb/common/util.c
+++ b/source4/dsdb/common/util.c
@@ -2128,7 +2128,7 @@ int dsdb_find_guid_by_dn(struct ldb_context *ldb,
 {
 	int ret;
 	struct ldb_result *res;
-	const char *attrs[] = { "objectGUID" };
+	const char *attrs[] = { "objectGUID", NULL };
 	TALLOC_CTX *tmp_ctx = talloc_new(ldb);
 
 	ret = ldb_search(ldb, tmp_ctx, &res, dn, LDB_SCOPE_BASE, attrs, NULL);
diff --git a/source4/lib/ldb/tools/ldbadd.c b/source4/lib/ldb/tools/ldbadd.c
index 086540d..f022486 100644
--- a/source4/lib/ldb/tools/ldbadd.c
+++ b/source4/lib/ldb/tools/ldbadd.c
@@ -109,9 +109,13 @@ int main(int argc, const char **argv)
 		}
 	}
 
-	if (count != 0 && ldb_transaction_commit(ldb) != 0) {
-		printf("Failed to commit transaction: %s\n", ldb_errstring(ldb));
-		exit(1);
+	if (count != 0) {
+		if (ldb_transaction_commit(ldb) != 0) {
+			printf("Failed to commit transaction: %s\n", ldb_errstring(ldb));
+			exit(1);
+		}
+	} else {
+		ldb_transaction_cancel(ldb);
 	}
 
 	talloc_free(ldb);
diff --git a/source4/lib/ldb/tools/ldbedit.c b/source4/lib/ldb/tools/ldbedit.c
index 9653eab..ecadf0f 100644
--- a/source4/lib/ldb/tools/ldbedit.c
+++ b/source4/lib/ldb/tools/ldbedit.c
@@ -128,6 +128,7 @@ static int merge_edits(struct ldb_context *ldb,
 				fprintf(stderr, "failed to add %s - %s\n",
 					ldb_dn_get_linearized(msgs2[i]->dn),
 					ldb_errstring(ldb));
+				ldb_transaction_cancel(ldb);
 				return -1;
 			}
 			adds++;
@@ -149,6 +150,7 @@ static int merge_edits(struct ldb_context *ldb,
 				fprintf(stderr, "failed to delete %s - %s\n",
 					ldb_dn_get_linearized(msgs1[i]->dn),
 					ldb_errstring(ldb));
+				ldb_transaction_cancel(ldb);
 				return -1;
 			}
 			deletes++;


-- 
Samba Shared Repository

More information about the samba-cvs mailing list