RPC-SAMBA3-SHARESEC failures on Sparc and IRIX Samba4 bug?

Volker Lendecke Volker.Lendecke at SerNet.DE
Fri Aug 25 21:06:41 GMT 2006


Hi!

Right now RPC-SAMBA3-SHARESEC fails on Sparc and IRIX. I
traced it down on host "sunx" to something quite weird.

The share_set_security call from the torture test sends a
SID containing 0xffffffff as a sub-auth:

  000014 sec_io_acl dacl
      0014 revision: 0002
      0018 num_aces : 00000001
      00001c sec_io_ace ace_list[00]: 
          001c type : 00
          001d flags: 00
          000020 sec_io_access info 
              0020 mask: 000001ff
          000024 smb_io_dom_sid trustee  
              0024 sid_rev_num: 01
              0025 num_auths  : 05
              0026 id_auth[0] : 00
              0027 id_auth[1] : 00
              0028 id_auth[2] : 00
              0029 id_auth[3] : 00
              002a id_auth[4] : 00
              002b id_auth[5] : 05
              002c sub_auths : 00000015 ffffffff ffffffff 3cbebabe 000004b6 

The RID is correct, but the domain part of that SID is
completely broken. I don't think this is a Samba3 parsing
problem, the lower-level dump of the trans2 call contains

  [0C0] 00 2C 00 01 00 00 00 00  00 24 00 FF 01 00 00 01 .,...... .$......
  [0D0] 05 00 00 00 00 00 05 15  00 00 00 FF FF FF FF FF ........ ........
  [0E0] FF FF FF BE BA BE 3C B6  04 00 00 0C 00 02 00 00 ......<. ........
  [0F0] 00 00 00 ... 

which looks like part of the SID.

Does anybody have an idea? The smbtorture revision is 17737.

Thanks,

Volker
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba-technical/attachments/20060825/4b0628a1/attachment.bin


More information about the samba-technical mailing list