[Samba] endless loop when searching ldap backend

Joerg Pulz Joerg.Pulz at frm2.tum.de
Mon Jan 31 14:50:08 GMT 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

since last week i noticed very strange smbd behaviour.

i have one samba PDC and three BDC's all connected to LDAP.
the PDC is the LDAP master and the BDC have their own replicated LDAP 
database.
since last week i notced that there are smbd processes on every DC which 
perform never-ending LDAP searches for 
"(&(objectClass=sambaDomain)(sambaDomainName=<MY_DOMAIN>))"
the slapd logfile told me that everytime an entry was returned.

later i saw that there are also never-ending searches for 
"(&(&(uid=<user>)(objectClass=sambaSamAccount))(objectClass=sambaSamAccount))"
in this case an entry is returned too.

i get a whole lofgfile from smbd conatining these lines:
[2005/01/31 15:25:35, 0] smbd/server.c:open_sockets_smbd(388)
   open_sockets_smbd: accept: Software caused connection abort

for every search request, smbd is opening a new LDAP connection, so i have 
now about 800 smbd -> LDAP connections on every DC as there are a lot of 
LDAP search request per second!!!

i have not seen this before samba-3.0.10. on friday i upgraded to 
samba-3.0.11pre2 but it did not help anything.
the latest release notes did not point to any change in the ldapsearch 
code.

is there a new virus that i have not found which causes samba to perform 
these LDAP searches or is this a serious bug?

thanks for any suggestions

Joerg

- -- 
The beginning is the most important part of the work.
 				-Plato
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (FreeBSD)

iD8DBQFB/kWjSPOsGF+KA+MRAhHAAJwKL1cYU5HcCgRqme34RvHHPFjD/QCfViw0
GfrHCrXnTRTKuu+1IDQX8LE=
=PwDv
-----END PGP SIGNATURE-----


More information about the samba mailing list