Oplock logic bugs in Samba 2.2.2

Jeremy Allison jra at samba.org
Fri Oct 26 17:10:02 GMT 2001 

On Fri, Oct 26, 2001 at 05:29:58PM -0400, acherry at pobox.com wrote:
> Jeremy Allison writes:
>  > 
>  > Getting more backtraces would be very useful here.
>  >
> 
> Got one!
> 
> (gdb) bt         
> #0  0xef5b927c in waitid () from /usr/lib/libc.so.1
> #1  0xef5d425c in _waitpid () from /usr/lib/libc.so.1
> #2  0xef5e8f50 in system () from /usr/lib/libc.so.1
> #3  0x10abcc in smb_panic (why=0x163ad8 "request_oplock_break: no fsp found for our own oplock\n") at lib/util.c:1053
> #4  0x123334 in request_oplock_break (share_entry=0x259068, dev=41186627, inode=496120) at smbd/oplock.c:930
> #5  0x5eb48 in open_mode_check (conn=0x28b788, fname=0xefffeee0 "apps_nt/netscape/users/eisuser/cache/~~2.tmp", 
>     dev=41186627, inode=496120, share_mode=131136, p_flags=0xefffedb4, p_oplock_request=0xefffee24, 
>     p_all_current_opens_are_level_II=0xefffedb0) at smbd/open.c:503
> #6  0x5f398 in open_file_shared (conn=0x28b788, fname=0xefffeee0 "apps_nt/netscape/users/eisuser/cache/~~2.tmp", 
>     psbuf=0xefffee48, share_mode=131136, ofun=1, mode=420, oplock_request=0, Access=0xefffee38, action=0xefffee3c)
>     at smbd/open.c:751
> #7  0x460f8 in reply_ntcreate_and_X (conn=0x28b788, inbuf=0x236f99 "", outbuf=0x2473e1 "", length=133, bufsize=61440)
>     at smbd/nttrans.c:809
> #8  0x69ad8 in switch_message (type=162, inbuf=0x236f99 "", outbuf=0x2473e1 "", size=133, bufsize=61440)
>     at smbd/process.c:756
> #9  0x69b64 in construct_reply (inbuf=0x236f99 "", outbuf=0x2473e1 "", size=133, bufsize=61440) at smbd/process.c:785
> #10 0x69e10 in process_smb (inbuf=0x236f99 "", outbuf=0x2473e1 "") at smbd/process.c:879
> #11 0x6a7fc in smbd_process () at smbd/process.c:1267
> #12 0x2ec20 in main (argc=0, argv=0xeffff58c) at smbd/server.c:811
> 
> FYI, I've still got gdb attached to the process, though I've switched
> the server back to 2.0.6 (the only 2.2.2 process remaining is the one
> I'm debugging).  I don't think this process has any fcntl locks on any
> files except the tdb files, so I'm going to keep the debugger attached
> to this process for as long as I can.  If you want any more specific
> data out of the debugger, I can provide it if it's still running when
> you ask.
> 
> For some reason I was never able to get core dumps out of the panics,
> even if I put a "ulimit -c unlimited" in the Samba startup script.  I
> ended up making a gdb run the panic action.
> 
> Now if only I can get the NT admins to do something about these users
> that end up with their Netscape cache on a network drive... :)

Do you have a debug level 10 log from this smbd ? That would be *really*
usefull.....

Can you send me whatever log file you have from this smbd ?

Can you give me details on the server system you're running (Solaris ?
Linux ? What version of the OS ?).

Thanks,

	Jeremy.

More information about the samba-technical mailing list