Samba4 beta 7 and beta 8 git, talloc and enctype errors
steve
steve at steve-ss.com
Wed Aug 29 00:05:17 MDT 2012
Hi
Single DC upgraded from a working beta 7 git to a beta 8 git crashes
with a talloc error
Error 1 talloc error
Here is the trace:
gdb --args samba -i -M single
GNU gdb (GDB) SUSE (7.4.50.20120603-2.1.2)
Copyright (C) 2012 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later
<http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law. Type "show copying"
and "show warranty" for details.
This GDB was configured as "i586-suse-linux".
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>...
Reading symbols from /usr/local/samba/sbin/samba...done.
(gdb) run
Starting program: /usr/local/samba/sbin/samba -i -M single
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/libthread_db.so.1".
samba version 4.0.0beta8-GIT-9e441c4 started.
Copyright Andrew Tridgell and the Samba Team 1992-2012
samba: using 'single' process model
Detaching after fork from child process 1743.
Detaching after fork from child process 1744.
Detaching after fork from child process 1745.
Bad talloc magic value - unknown value
PANIC: Bad talloc magic value - unknown value
Program received signal SIGABRT, Aborted.
0xb7fdc424 in __kernel_vsyscall ()
Missing separate debuginfos, use: zypper install
cyrus-sasl-crammd5-debuginfo-2.1.25-21.1.2.i586
cyrus-sasl-debuginfo-2.1.25-21.1.2.i586
cyrus-sasl-digestmd5-debuginfo-2.1.25-21.1.2.i586
cyrus-sasl-gssapi-debuginfo-2.1.25-21.1.2.i586
cyrus-sasl-plain-debuginfo-2.1.25-21.1.2.i586
glibc-debuginfo-2.15-22.6.4.i686 krb5-debuginfo-1.10.2-3.1.3.i586
libattr1-debuginfo-2.4.46-9.1.3.i586
libaudit1-debuginfo-2.1.3-2.1.6.i586
libcom_err2-debuginfo-1.42.4-2.1.2.i586
libdb-4_8-debuginfo-4.8.30-17.1.4.i586
libgmp10-debuginfo-5.0.5-3.3.3.i586 libhogweed2-debuginfo-2.4-8.1.2.i586
libkeyutils1-debuginfo-1.5.3-7.1.2.i586
libldap-2_4-2-debuginfo-2.4.31-2.1.3.i586
libnettle4-debuginfo-2.4-8.1.2.i586
libopenssl1_0_0-debuginfo-1.0.1c-2.1.3.i586
libpopt0-debuginfo-1.16-14.1.2.i586
libpython2_7-1_0-debuginfo-2.7.3-3.2.1.i586
libselinux1-debuginfo-2.0.91-19.1.15.i586
libtasn1-3-debuginfo-2.12-2.2.2.i586 pam-debuginfo-1.1.5-3.2.2.i586
zlib-debuginfo-1.2.7-2.1.2.i586
(gdb) bt full
#0 0xb7fdc424 in __kernel_vsyscall ()
No symbol table info available.
#1 0xb756131f in raise () from /lib/libc.so.6
No symbol table info available.
#2 0xb7562c03 in abort () from /lib/libc.so.6
No symbol table info available.
#3 0xb7e94e78 in smb_panic_default (
why=0xb7e691a0 "Bad talloc magic value - unknown value")
at ../lib/util/fault.c:149
__FUNCTION__ = "smb_panic_default"
#4 0xb7e94eb9 in smb_panic (
why=0xb7e691a0 "Bad talloc magic value - unknown value")
at ../lib/util/fault.c:162
No locals.
#5 0xb7e65c23 in talloc_abort (
reason=0xb7e691a0 "Bad talloc magic value - unknown value")
at ../lib/talloc/talloc.c:320
No locals.
#6 0xb7e65cf2 in talloc_abort_unknown_value () at
../lib/talloc/talloc.c:341
No locals.
#7 0xb7e65d67 in talloc_chunk_from_ptr (ptr=0xb7f73ff4)
at ../lib/talloc/talloc.c:360
pp = 0xb7f73ff4 "(\016\001"
---Type <return> to continue, or q <return> to quit---
tc = 0xb7f73fc4
#8 0xb7e676ce in _talloc_free (ptr=0xb7f73ff4,
location=0xb7f70e9c "../auth/credentials/credentials_secrets.c:239")
at ../lib/talloc/talloc.c:1349
tc = 0x89318f8
#9 0xb7f6d8c4 in cli_credentials_set_machine_account (cred=0x8244d50,
lp_ctx=0x805bf78) at ../auth/credentials/credentials_secrets.c:239
dbuf = {dptr = 0xb7f73ff4 "(\016\001", dsize = 3221220872}
status = {v = 3221226021}
filter = 0x7 <Address 0x7 out of bounds>
error_string = 0xb7f6b5db
<cli_credentials_invalidate_ccache+118>
"\203\304\024[]\303U\211\345S\203\354$\350\023\277\377\377\201\303\a\212"
domain = 0x867b408 "ALTEA"
realm = 0x8e54380 "HH3.SITE"
secrets_tdb_password_more_recent = 8
secrets_tdb_lct = 0
secrets_tdb_password = 0x0
keystr = 0x0
keystr_upper = 0x0
secrets_tdb = 0x82e3d08 "/usr/local/samba/private/secrets.tdb"
db_ctx = 0x87ba0d0
__FUNCTION__ = "cli_credentials_set_machine_account"
#10 0xb67177b7 in wb_init_domain_send (mem_ctx=0x8c642f0,
service=0x8721440,
---Type <return> to continue, or q <return> to quit---
dom_info=0x843bde8) at ../source4/winbind/wb_init_domain.c:155
result = 0x82eb2d8
ctx = 0x0
state = 0x8d5f718
#11 0xb6719a3c in wb_sid2domain_recv_dom_info (ctx=0x82eb2d8)
at ../source4/winbind/wb_sid2domain.c:127
req = 0x897cfe0
state = 0x8c642f0
info = 0x843bde8
status = {v = 0}
#12 0xb7291219 in composite_trigger (ev=0x806ade8, te=0x8b94938, t=...,
ptr=0x82eb2d8) at ../source4/libcli/composite/composite.c:95
c = 0x82eb2d8
#13 0xb7e75c36 in tevent_common_loop_timer_delay (ev=0x806ade8)
at ../lib/tevent/tevent_timed.c:254
current_time = {tv_sec = 0, tv_usec = 0}
te = 0x8b94938
#14 0xb7e75431 in std_event_loop_once (ev=0x806ade8,
location=0x8056663 "../source4/smbd/server.c:486")
at ../lib/tevent/tevent_standard.c:560
std_ev = 0x806ae60
tval = {tv_sec = 2, tv_usec = 775400}
#15 0xb7e70544 in _tevent_loop_once (ev=0x806ade8,
---Type <return> to continue, or q <return> to quit---
location=0x8056663 "../source4/smbd/server.c:486")
at ../lib/tevent/tevent.c:507
ret = 0
nesting_stack_ptr = 0x0
#16 0xb7e7075f in tevent_common_loop_wait (ev=0x806ade8,
location=0x8056663 "../source4/smbd/server.c:486")
at ../lib/tevent/tevent.c:608
ret = 0
#17 0xb7e70811 in _tevent_loop_wait (ev=0x806ade8,
location=0x8056663 "../source4/smbd/server.c:486")
at ../lib/tevent/tevent.c:627
No locals.
#18 0x080527cc in binary_smbd_main (binary_name=0x8055eb7 "samba", argc=4,
argv=0xbffff274) at ../source4/smbd/server.c:486
opt_daemon = false
opt_interactive = true
opt = -1
pc = 0x805b008
static_init = {0xb7ee242c <server_service_auth_init>,
0xb7ee5050 <server_service_echo_init>, 0x0}
shared_init = 0x807c418
event_ctx = 0x806ade8
stdin_event_flags = 1
---Type <return> to continue, or q <return> to quit---
status = {v = 0}
model = 0x805b9f0 "single"
max_runtime = 0
long_options = {{longName = 0x0, shortName = 0 '\000', argInfo
= 4,
arg = 0xb76e5180 <poptHelpOptions>, val = 0,
descrip = 0x805607b "Help options:", argDescrip = 0x0}, {
longName = 0x8056089 "daemon", shortName = 68 'D', argInfo
= 0,
arg = 0x0, val = 1000,
descrip = 0x8056090 "Become a daemon (default)",
argDescrip = 0x0}, {longName = 0x80560aa "interactive",
shortName = 105 'i', argInfo = 0, arg = 0x0, val = 1001,
descrip = 0x80560b8 "Run interactive (not a daemon)",
argDescrip = 0x0}, {longName = 0x80560d7 "model",
shortName = 77 'M', argInfo = 1, arg = 0x0, val = 1002,
descrip = 0x80560dd "Select process model",
argDescrip = 0x80560f2 "MODEL"}, {
longName = 0x80560f8 "maximum-runtime", shortName = 0 '\000',
argInfo = 2, arg = 0xbffff16c, val = 0,
descrip = 0x8056108 "set maximum runtime of the server
process, till autotermination", argDescrip = 0x8056148 "seconds"}, {
longName = 0x8056150 "show-build", shortName = 98 'b',
argInfo = 0, arg = 0x0, val = 1003,
descrip = 0x805615b "show build info", argDescrip = 0x0}, {
---Type <return> to continue, or q <return> to quit---
longName = 0x0, shortName = 0 '\000', argInfo = 4,
arg = 0x805a3c0 <popt_common_samba4>, val = 0,
descrip = 0x805616b "Common samba options:", argDescrip =
0x0}, {
longName = 0x0, shortName = 0 '\000', argInfo = 4,
arg = 0x805a4c0 <popt_common_version4>, val = 0,
descrip = 0x805616b "Common samba options:", argDescrip =
0x0}, {
longName = 0x0, shortName = 0 '\000', argInfo = 0, arg = 0x0,
val = 0, descrip = 0x0, argDescrip = 0x0}}
__FUNCTION__ = "binary_smbd_main"
#19 0x0805281f in main (argc=4, argv=0xbffff274)
at ../source4/smbd/server.c:497
No locals.
(gdb)
Error 2, spn enctype and authentication error
On a new install of beta 7 updated to a beta 8 git
Error a: Creating an spn for nfs creates only one key:
hh30:/home/steve # samba-tool spn delete nfs/hh30.hh3.site
hh30:/home/steve # rm /etc/krb5.keytab
hh30:/home/steve # samba-tool spn add nfs/hh30.hh3.site nfs-user
hh30:/home/steve # samba-tool domain exportkeytab /etc/krb5.keytab
--principal=nfs/hh30.hh3.site
hh30:/home/steve # klist -ke /etc/krb5.keytab
Keytab name: FILE:/etc/krb5.keytab
KVNO Principal
----
--------------------------------------------------------------------------
1 nfs/hh30.hh3.site at HH3.SITE (des-cbc-crc)
Previous versions created the arcfour key as well as the other des key.
Error b:
If there is no nfs key in the keytab, a user can login and authenticate
fine with arcfour-hmac. If the nfs des key _is_ present , Samba4 looks
in the keytab for nfs (why?), sees that there is no arcfour key and
refuses to allow the login.
This is on the DC, _not_ a client with an exported nfs directory.
Any help gratefully recieved.
Cheers,
Steve
More information about the samba-technical
mailing list