Samba 3.2.0 still crashing
Gerald (Jerry) Carter
jerry at samba.org
Thu Sep 13 15:46:33 GMT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jeremy,
The memory corruption is still there.
# /opt/samba/sbin/smbd -V
Version 3.2.0pre1-SVN-build-25121
Just drill down in explorer and try to back up one
directory using <BACKSPACE> and "*poof*!"
backtrace attached.
jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFG6VtZIR7qMdg1EfYRAoIfAKCrfOf3ap5dt02lNBa/IDhB+PiYhgCfU/Af
oNd+82nDf96DYiWOYdRdR+s=
=txCa
-----END PGP SIGNATURE-----
-------------- next part --------------
GNU gdb 6.6-debian
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu"...
Using host libthread_db library "/lib/libthread_db.so.1".
Attaching to program: /opt/samba/sbin/smbd, process 26861
Reading symbols from /usr/lib/libldap_r.so.2...done.
Loaded symbols for /usr/lib/libldap_r.so.2
Reading symbols from /usr/lib/liblber.so.2...done.
Loaded symbols for /usr/lib/liblber.so.2
Reading symbols from /usr/lib/libgssapi_krb5.so.2...done.
Loaded symbols for /usr/lib/libgssapi_krb5.so.2
Reading symbols from /usr/lib/libkrb5.so.3...done.
Loaded symbols for /usr/lib/libkrb5.so.3
Reading symbols from /usr/lib/libk5crypto.so.3...done.
Loaded symbols for /usr/lib/libk5crypto.so.3
Reading symbols from /lib/libcom_err.so.2...done.
Loaded symbols for /lib/libcom_err.so.2
Reading symbols from /usr/lib/libkrb5support.so.0...done.
Loaded symbols for /usr/lib/libkrb5support.so.0
Reading symbols from /lib/libresolv.so.2...done.
Loaded symbols for /lib/libresolv.so.2
Reading symbols from /usr/lib/libcups.so.2...done.
Loaded symbols for /usr/lib/libcups.so.2
Reading symbols from /usr/lib/libgnutls.so.13...done.
Loaded symbols for /usr/lib/libgnutls.so.13
Reading symbols from /usr/lib/libz.so.1...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /lib/libpthread.so.0...done.
[Thread debugging using libthread_db enabled]
[New Thread 47909667590704 (LWP 26861)]
Loaded symbols for /lib/libpthread.so.0
Reading symbols from /lib/libm.so.6...done.
Loaded symbols for /lib/libm.so.6
Reading symbols from /lib/libcrypt.so.1...done.
Loaded symbols for /lib/libcrypt.so.1
Reading symbols from /lib/libpam.so.0...done.
Loaded symbols for /lib/libpam.so.0
Reading symbols from /lib/libacl.so.1...done.
Loaded symbols for /lib/libacl.so.1
Reading symbols from /lib/libattr.so.1...done.
Loaded symbols for /lib/libattr.so.1
Reading symbols from /lib/libnsl.so.1...done.
Loaded symbols for /lib/libnsl.so.1
Reading symbols from /lib/libdl.so.2...done.
Loaded symbols for /lib/libdl.so.2
Reading symbols from /lib/libpopt.so.0...done.
Loaded symbols for /lib/libpopt.so.0
Reading symbols from /lib/libc.so.6...done.
Loaded symbols for /lib/libc.so.6
Reading symbols from /usr/lib/libsasl2.so.2...done.
Loaded symbols for /usr/lib/libsasl2.so.2
Reading symbols from /usr/lib/libtasn1.so.3...done.
Loaded symbols for /usr/lib/libtasn1.so.3
Reading symbols from /usr/lib/libgcrypt.so.11...done.
Loaded symbols for /usr/lib/libgcrypt.so.11
Reading symbols from /usr/lib/libgpg-error.so.0...done.
Loaded symbols for /usr/lib/libgpg-error.so.0
Reading symbols from /lib/ld-linux-x86-64.so.2...done.
Loaded symbols for /lib64/ld-linux-x86-64.so.2
Reading symbols from /usr/lib/gconv/UTF-16.so...done.
Loaded symbols for /usr/lib/gconv/UTF-16.so
Reading symbols from /usr/lib/gconv/IBM850.so...done.
Loaded symbols for /usr/lib/gconv/IBM850.so
Reading symbols from /lib/libnss_files.so.2...done.
Loaded symbols for /lib/libnss_files.so.2
Reading symbols from /lib/libnss_compat.so.2...done.
Loaded symbols for /lib/libnss_compat.so.2
Reading symbols from /lib/libnss_nis.so.2...done.
Loaded symbols for /lib/libnss_nis.so.2
Reading symbols from /usr/lib/sasl2/libsasldb.so.2...done.
Loaded symbols for /usr/lib/sasl2/libsasldb.so.2
Reading symbols from /usr/lib/libdb-4.2.so...done.
Loaded symbols for /usr/lib/libdb-4.2.so
Reading symbols from /usr/lib/sasl2/libcrammd5.so.2...done.
Loaded symbols for /usr/lib/sasl2/libcrammd5.so.2
Reading symbols from /usr/lib/sasl2/libdigestmd5.so.2...done.
Loaded symbols for /usr/lib/sasl2/libdigestmd5.so.2
Reading symbols from /usr/lib/libcrypto.so.0.9.8...done.
Loaded symbols for /usr/lib/libcrypto.so.0.9.8
Reading symbols from /usr/lib/sasl2/libplain.so.2...done.
Loaded symbols for /usr/lib/sasl2/libplain.so.2
Reading symbols from /usr/lib/sasl2/libanonymous.so.2...done.
Loaded symbols for /usr/lib/sasl2/libanonymous.so.2
Reading symbols from /usr/lib/sasl2/liblogin.so.2...done.
Loaded symbols for /usr/lib/sasl2/liblogin.so.2
Reading symbols from /usr/lib/sasl2/libntlm.so.2...done.
Loaded symbols for /usr/lib/sasl2/libntlm.so.2
Reading symbols from /lib/libnss_dns.so.2...done.
Loaded symbols for /lib/libnss_dns.so.2
Reading symbols from /lib/libnss_ldap.so.2...done.
Loaded symbols for /lib/libnss_ldap.so.2
Reading symbols from /lib/libnss_lwidentity.so.2...done.
Loaded symbols for /lib/libnss_lwidentity.so.2
Reading symbols from /usr/centeris/lib64/libcentutils.so.1...done.
Loaded symbols for /usr/centeris/lib64/libcentutils.so.1
Reading symbols from /usr/centeris/lib64/libgpcommon.so.1...done.
Loaded symbols for /usr/centeris/lib64/libgpcommon.so.1
Reading symbols from /usr/centeris/lib64/libgpclient.so.1...done.
Loaded symbols for /usr/centeris/lib64/libgpclient.so.1
Reading symbols from /usr/centeris/lib64/libgpglib.so.1...done.
Loaded symbols for /usr/centeris/lib64/libgpglib.so.1
Reading symbols from /lib/libgcc_s.so.1...done.
Loaded symbols for /lib/libgcc_s.so.1
0x00002b92d603faf5 in waitpid () from /lib/libc.so.6
#8 0x00002b92d601266b in ?? () from /lib/libc.so.6
#0 0x00002b92d603faf5 in waitpid () from /lib/libc.so.6
No symbol table info available.
#1 0x00002b92d5fe6763 in ?? () from /lib/libc.so.6
No symbol table info available.
#2 0x0000000000730030 in smb_panic (why=0x9f2531 "internal error") at /home/drizzt/jerry/src-testing/samba-3-2-0/source/lib/util.c:1666
cmd = 0x2b92dc001500 "/bin/sleep 999999999"
result = 32767
__FUNCTION__ = "smb_panic"
#3 0x0000000000710ddc in fault_report (sig=6) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/lib/fault.c:46
counter = 1
__FUNCTION__ = "fault_report"
#4 0x0000000000710def in sig_fault (sig=6) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/lib/fault.c:69
No locals.
#5 <signal handler called>
No symbol table info available.
#6 0x00002b92d5fdacab in raise () from /lib/libc.so.6
No symbol table info available.
#7 0x00002b92d5fdc660 in abort () from /lib/libc.so.6
No symbol table info available.
#8 0x00002b92d601266b in ?? () from /lib/libc.so.6
No symbol table info available.
#9 0x00002b92d6019b23 in ?? () from /lib/libc.so.6
No symbol table info available.
#10 0x00002b92d601d26c in free () from /lib/libc.so.6
No symbol table info available.
#11 0x0000000000704fbf in _talloc_free (ptr=0xe066d0) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/lib/talloc/talloc.c:423
tc = (struct talloc_chunk *) 0xe06680
#12 0x0000000000705717 in talloc_free (ptr=0xe066d0) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/lib/talloc/talloc.c:759
No locals.
#13 0x000000000051763e in stat_cache_add (full_orig_name=0xe07110 "iTunes/iTunes Music/Clannad/An DiÌ\201olaim",
translated_path=0xe06590 "iTunes/iTunes Music/Clannad/An DiÌ\201olaim", case_sensitive=0)
at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/statcache.c:155
translated_path_length = 40
data_val = {dptr = 0xe06590 "iTunes/iTunes Music/Clannad/An DiÌ\201olaim", dsize = 41}
original_path = 0xe066d0 "ITUNES/ITUNES MUSIC/CLANNAD/AN DIÌ\201OLAIM"
original_path_length = 40
sc_size = 1024
saved_char = 0 '\0'
ctx = (TALLOC_CTX *) 0xe06c80
__FUNCTION__ = "stat_cache_add"
#14 0x0000000000505ae9 in unix_convert (conn=0xdfb320, orig_path=0xe07110 "iTunes/iTunes Music/Clannad/An DiÌ\201olaim",
allow_wcard_last_component=0, pp_conv_path=0x7fffd781dbd0, pp_saved_last_component=0x0, pst=0x7fffd781dad0)
at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/filename.c:261
p = 0x0
st = {st_dev = 2051, st_ino = 10616838, st_nlink = 2, st_mode = 16877, st_uid = 100000, st_gid = 100000, pad0 = 0, st_rdev = 0,
st_size = 0, st_blksize = 4096, st_blocks = 8, st_atim = {tv_sec = 1181268314, tv_nsec = 0}, st_mtim = {tv_sec = 1129574214, tv_nsec = 0},
st_ctim = {tv_sec = 1178807365, tv_nsec = 0}, __unused = {0, 0, 0}}
start = 0xe065ac "An DiÌ\201olaim"
end = 0x7fffd781d8e0 "\002"
dirpath = 0xe01280 "iTunes/iTunes Music/Clannad"
name = 0xe06590 "iTunes/iTunes Music/Clannad/An DiÌ\201olaim"
component_was_mangled = 0
name_has_wildcard = 0
result = {v = 3615611184}
ctx = (TALLOC_CTX *) 0xe06c80
__FUNCTION__ = "unix_convert"
#15 0x00000000004f3551 in call_trans2qfilepathinfo (conn=0xdfb320, req=0xe07070, tran_call=5, pparams=0xe06e60, total_params=88,
ppdata=0xe06e70, total_data=0, max_data_bytes=40) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/trans2.c:3620
status = {v = 0}
params = 0xdf5fd0 "ì\003"
pdata = 0x0
dstart = 0x1a005285aa <Address 0x1a005285aa out of bounds>
dend = 0x7fffd781dc10 " Ü\201×ÿ\177"
info_level = 1004
mode = 0
nlink = 14707904
file_size = 0
allocation_size = 0
data_size = 0
param_size = 2
sbuf = {st_dev = 0, st_ino = 0, st_nlink = 0, st_mode = 0, st_uid = 0, st_gid = 0, pad0 = 0, st_rdev = 0, st_size = 0,
st_blksize = 0, st_blocks = 0, st_atim = {tv_sec = 0, tv_nsec = 0}, st_mtim = {tv_sec = 0, tv_nsec = 0}, st_ctim = {tv_sec = 0,
tv_nsec = 0}, __unused = {0, 0, 0}}
dos_fname = 0x0
fname = 0x0
fullpathname = 0x7fffd781dca0 "\200ß\201×ÿ\177"
base_name = 0x540f51 "H\211EèH\203}è"
p = 0xe0807c "*"
pos = 0
delete_pending = 0
len = 7358253
create_time = 7559254
mtime = 140736808999952
atime = 384
create_time_ts = {tv_sec = 140736808999920, tv_nsec = 7360447}
mtime_ts = {tv_sec = 14709008, tv_nsec = 14709008}
atime_ts = {tv_sec = 14709008, tv_nsec = 14709008}
fsp = (files_struct *) 0x0
fileid = {devid = 14709008, inode = 111676507518}
ea_list = (struct ea_list *) 0x0
access_mask = 1180063
lock_data = 0x0
ctx = (TALLOC_CTX *) 0xe06c80
__FUNCTION__ = "call_trans2qfilepathinfo"
#16 0x00000000004ffb35 in handle_trans2 (conn=0xdfb320, req=0xe07070, state=0xe06d10)
at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/trans2.c:7018
__FUNCTION__ = "handle_trans2"
#17 0x0000000000500aab in reply_trans2 (conn=0xdfb320, req=0xe07070) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/trans2.c:7252
dsoff = 0
dscnt = 0
psoff = 68
pscnt = 88
tran_call = 5
size = 160
state = (struct trans_state *) 0xe06d10
result = {v = 0}
__FUNCTION__ = "reply_trans2"
#18 0x0000000000528e27 in switch_message (type=50 '2', req=0xe07070, size=160)
at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/process.c:1111
flags = 9
session_tag = 101
conn = (connection_struct *) 0xdfb320
last_session_tag = 101
__FUNCTION__ = "switch_message"
#19 0x0000000000528eb2 in construct_reply (inbuf=0xe07620 "", size=160)
at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/process.c:1132
type = 50 '2'
req = (struct smb_request *) 0xe07070
#20 0x000000000052914c in process_smb (inbuf=0xe07620 "", nread=160) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/process.c:1191
msg_type = 0
trans_num = 260
__FUNCTION__ = "process_smb"
buf = "\203\000\000\001\201"
#21 0x000000000052a29d in smbd_process () at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/process.c:1670
select_timeout = 60000
num_echos = 0
frame = (TALLOC_CTX *) 0xe06c80
inbuf = 0xe07620 ""
inbuf_len = 160
last_timeout_processing_time = 1189697491
num_smbs = 60
#22 0x0000000000985406 in main (argc=1, argv=0x7fffd781e5b8) at /home/drizzt/jerry/src-testing/samba-3-2-0/source/smbd/server.c:1194
opt = -1
pc = (poptContext) 0xd2dc80
print_build_options = 0
long_options = {{longName = 0x0, shortName = 0 '\0', argInfo = 4, arg = 0x2b92d5fa93c0, val = 0, descrip = 0xa94873 "Help options:",
argDescrip = 0x0}, {longName = 0xa94881 "daemon", shortName = 68 'D', argInfo = 7, arg = 0xd2af6c, val = 1,
descrip = 0xa94888 "Become a daemon (default)", argDescrip = 0x0}, {longName = 0xa948a2 "interactive", shortName = 105 'i', argInfo = 7,
arg = 0xd2af68, val = 1, descrip = 0xa948b0 "Run interactive (not a daemon)", argDescrip = 0x0}, {longName = 0xa948cf "foreground",
shortName = 70 'F', argInfo = 7, arg = 0xd1ecb0, val = 0, descrip = 0xa948e0 "Run daemon in foreground (for daemontools, etc.)",
argDescrip = 0x0}, {longName = 0xa94911 "no-process-group", shortName = 0 '\0', argInfo = 7, arg = 0xd2af64, val = 1,
descrip = 0xa94928 "Don't create a new process group", argDescrip = 0x0}, {longName = 0xa94949 "log-stdout", shortName = 83 'S',
argInfo = 7, arg = 0xd2af60, val = 1, descrip = 0xa94954 "Log to stdout", argDescrip = 0x0}, {longName = 0xa94962 "build-options",
shortName = 98 'b', argInfo = 0, arg = 0x0, val = 98, descrip = 0xa94970 "Print build options", argDescrip = 0x0}, {
longName = 0xa94984 "port", shortName = 112 'p', argInfo = 1, arg = 0xd2af58, val = 0,
descrip = 0xa94989 "Listen on the specified ports", argDescrip = 0x0}, {longName = 0xa949a7 "profiling-level", shortName = 80 'P',
argInfo = 1, arg = 0xd2af50, val = 0, descrip = 0xa949b7 "Set profiling level", argDescrip = 0xa949cb "PROFILE_LEVEL"}, {longName = 0x0,
shortName = 0 '\0', argInfo = 4, arg = 0xd1e060, val = 0, descrip = 0xa949d9 "Common samba options:", argDescrip = 0x0}, {
longName = 0x0, shortName = 0 '\0', argInfo = 4, arg = 0xd070a0, val = 0, descrip = 0xa949f0 "Build-time configuration overrides:",
argDescrip = 0x0}, {longName = 0x0, shortName = 0 '\0', argInfo = 0, arg = 0x0, val = 0, descrip = 0x0, argDescrip = 0x0}}
is_daemon = 1
interactive = 0
Fork = 1
no_process_group = 0
log_stdout = 0
ports = 0x0
profile_level = 0x0
__FUNCTION__ = "main"
The program is running. Quit anyway (and detach it)? (y or n) [answered Y; input not from terminal]
More information about the samba-technical
mailing list