[Samba] more problems with rc1 + ADS: smbd sigsegv

Jeremy Allison jra at samba.org
Mon Aug 25 17:06:15 GMT 2003 

On Mon, Aug 25, 2003 at 09:57:19AM -0700, david williams wrote:
> #0  0xffffe002 in ?? ()
> #1  0x42028b93 in abort () from /lib/tls/libc.so.6
> #2  0x081cf298 in smb_panic (why=0x828ce7e "internal error") at 
> lib/util.c:1483
> #3  0x081bb8a1 in fault_report (sig=11) at lib/fault.c:41
> #4  0x081bb8f9 in sig_fault (sig=11) at lib/fault.c:61
> #5  <signal handler called>
> #6  0x4006e722 in krb5_free_ticket () from /usr/kerberos/lib/libkrb5.so.3
> #7  0x0822e9db in ads_verify_ticket (realm=0x82cffd8 "WIN.CS.UCR.EDU",
>      ticket=0xbfffe860, principal=0xbfffe85c, auth_data=0xbfffe830,
>      ap_rep=0xbfffe820,
>      session_key=0xbfffe7e0 " 
> #\023B\030B9\b\034\b\024\032\023B\0043+\b\234\030") at 
> libads/kerberos_verify.c:242
> #8  0x080acadd in reply_spnego_kerberos (conn=0x0, inbuf=0x404e1008 "",
>      outbuf=0x40502008 "", length=1296, bufsize=131072, secblob=0xbfffe8e0)
>      at smbd/sesssetup.c:167
> #9  0x080ad40e in reply_spnego_negotiate (conn=0x0, inbuf=0x404e1008 "",
>      outbuf=0x40502008 "", length=1296, bufsize=131072, blob1=
>        {data = 0x8393d58 
> "`\202\004\006\006+\006\001\005\005\002\202\0040\202\004\0310\027\006\t*\206H\202\022\001\002\002\006\n+\006\001\004\001\2027\002\002\n\202\004\207\004\202\004\203`\202\004\177\006\t*\206H\206\022\001\002\002\001", 
> length = 1210, free = 0x81cc5bc <free_data_blob>})
>      at smbd/sesssetup.c:390
> #10 0x080ad8cb in reply_sesssetup_and_X_spnego (conn=0x0, 
> inbuf=0x404e1008 "",
>      outbuf=0x40502008 "", length=1296, bufsize=131072) at 
> smbd/sesssetup.c:505
> #11 0x080adbc3 in reply_sesssetup_and_X (conn=0x0, inbuf=0x404e1008 "",
>      outbuf=0x40502008 "", length=1296, bufsize=131072) at 
> smbd/sesssetup.c:591
> #12 0x080d0e3b in switch_message (type=115, inbuf=0x404e1008 "",
>      outbuf=0x40502008 "", size=1296, bufsize=131072) at smbd/process.c:767
> #13 0x080d0ef2 in construct_reply (inbuf=0x404e1008 "", 
> outbuf=0x40502008 "",
>      size=1296, bufsize=131072) at smbd/process.c:797
> #14 0x080d125a in process_smb (inbuf=0x404e1008 "", outbuf=0x40502008 "")
>      at smbd/process.c:897
> #15 0x080d1fad in smbd_process () at smbd/process.c:1319
> #16 0x0823ace7 in main (argc=3, argv=0xbffff804) at smbd/server.c:887
> #17 0x420156a4 in __libc_start_main () from /lib/tls/libc.so.6

Thanks - Volker just fixed this in CVS - it'll be fixed in the
next RC.

Jeremy.

More information about the samba mailing list