[Samba] [samba4] crash of winbind after "ls -l /usr/local/samba/var/locks/sysvol"
Andrew Bartlett
abartlet at samba.org
Fri Apr 26 15:59:00 MDT 2013
On Fri, 2013-04-26 at 19:47 +0200, samba at nisx.de wrote:
> Hi,
>
> same problem here:
We need to know where that free is coming from, can you add
--num-callers=64?
eg
valgrind --num-callers=64 samba -i -M single > out 2>&1
> root at leela:~# valgrind samba -i -M single > out 2>&1
> root at leela:~# cat out
> ==4450== Memcheck, a memory error detector
> ==4450== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
> ==4450== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
> ==4450== Command: samba -i -M single
> ==4450==
> samba version 4.0.5 started.
> Copyright Andrew Tridgell and the Samba Team 1992-2012
> samba: using 'single' process model
> /opt/samba/sbin/smbd: sh: Zeile 0: test: Zu viele Argumente.
> /opt/samba/sbin/smbd: sh: Zeile 0: test: Zu viele Argumente.
> ==4450== Invalid read of size 8
> ==4450== at 0xA20F1A0: krb5_cc_store_cred (cache.c:684)
> ==4450== by 0xA22487A: krb5_get_credentials_with_flags (get_cred.c:1207)
> ==4450== by 0xA2248C5: krb5_get_credentials (get_cred.c:1220)
> ==4450== by 0x956E1B7: gsskrb5_get_creds (init_sec_context.c:246)
> ==4450== by 0x956E73D: init_auth (init_sec_context.c:455)
> ==4450== by 0x956F52F: _gsskrb5_init_sec_context (init_sec_context.c:942)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== Address 0x26a8ac50 is 0 bytes inside a block of size 24 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA20F182: krb5_cc_close (cache.c:666)
> ==4450== by 0x957E52E: _gsskrb5_release_cred (release_cred.c:65)
> ==4450== by 0x9586895: gss_release_cred (gss_release_cred.c:65)
> ==4450== by 0x5492B63: free_gssapi_creds (credentials_krb5.c:443)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 8
> ==4450== at 0xA236D90: mcc_store_cred (mcache.c:239)
> ==4450== by 0xA20F1BB: krb5_cc_store_cred (cache.c:684)
> ==4450== by 0xA22487A: krb5_get_credentials_with_flags (get_cred.c:1207)
> ==4450== by 0xA2248C5: krb5_get_credentials (get_cred.c:1220)
> ==4450== by 0x956E1B7: gsskrb5_get_creds (init_sec_context.c:246)
> ==4450== by 0x956E73D: init_auth (init_sec_context.c:455)
> ==4450== by 0x956F52F: _gsskrb5_init_sec_context (init_sec_context.c:942)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== Address 0x26a8ac60 is 16 bytes inside a block of size 24 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA20F182: krb5_cc_close (cache.c:666)
> ==4450== by 0x957E52E: _gsskrb5_release_cred (release_cred.c:65)
> ==4450== by 0x9586895: gss_release_cred (gss_release_cred.c:65)
> ==4450== by 0x5492B63: free_gssapi_creds (credentials_krb5.c:443)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 4
> ==4450== at 0xA236D9C: mcc_store_cred (mcache.c:243)
> ==4450== by 0xA20F1BB: krb5_cc_store_cred (cache.c:684)
> ==4450== by 0xA22487A: krb5_get_credentials_with_flags (get_cred.c:1207)
> ==4450== by 0xA2248C5: krb5_get_credentials (get_cred.c:1220)
> ==4450== by 0x956E1B7: gsskrb5_get_creds (init_sec_context.c:246)
> ==4450== by 0x956E73D: init_auth (init_sec_context.c:455)
> ==4450== by 0x956F52F: _gsskrb5_init_sec_context (init_sec_context.c:942)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== Address 0x24f01e1c is 12 bytes inside a block of size 56 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA21DF11: krb5_data_free (data.c:66)
> ==4450== by 0xA236C3C: mcc_close (mcache.c:189)
> ==4450== by 0xA20F173: krb5_cc_close (cache.c:665)
> ==4450== by 0xA20F143: krb5_cc_destroy (cache.c:647)
> ==4450== by 0x5491FA6: free_mccache (credentials_krb5.c:127)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450==
> ==4450== Invalid read of size 8
> ==4450== at 0xA20F2C6: krb5_cc_get_principal (cache.c:748)
> ==4450== by 0x956E3FA: do_delegation (init_sec_context.c:328)
> ==4450== by 0x956EA54: init_auth_restart (init_sec_context.c:571)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== Address 0x26a8ac50 is 0 bytes inside a block of size 24 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA20F182: krb5_cc_close (cache.c:666)
> ==4450== by 0x957E52E: _gsskrb5_release_cred (release_cred.c:65)
> ==4450== by 0x9586895: gss_release_cred (gss_release_cred.c:65)
> ==4450== by 0x5492B63: free_gssapi_creds (credentials_krb5.c:443)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 8
> ==4450== at 0xA236F18: mcc_get_principal (mcache.c:270)
> ==4450== by 0xA20F2E1: krb5_cc_get_principal (cache.c:748)
> ==4450== by 0x956E3FA: do_delegation (init_sec_context.c:328)
> ==4450== by 0x956EA54: init_auth_restart (init_sec_context.c:571)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== Address 0x26a8ac60 is 16 bytes inside a block of size 24 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA20F182: krb5_cc_close (cache.c:666)
> ==4450== by 0x957E52E: _gsskrb5_release_cred (release_cred.c:65)
> ==4450== by 0x9586895: gss_release_cred (gss_release_cred.c:65)
> ==4450== by 0x5492B63: free_gssapi_creds (credentials_krb5.c:443)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 4
> ==4450== at 0xA236F24: mcc_get_principal (mcache.c:272)
> ==4450== by 0xA20F2E1: krb5_cc_get_principal (cache.c:748)
> ==4450== by 0x956E3FA: do_delegation (init_sec_context.c:328)
> ==4450== by 0x956EA54: init_auth_restart (init_sec_context.c:571)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== Address 0x24f01e1c is 12 bytes inside a block of size 56 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA21DF11: krb5_data_free (data.c:66)
> ==4450== by 0xA236C3C: mcc_close (mcache.c:189)
> ==4450== by 0xA20F173: krb5_cc_close (cache.c:665)
> ==4450== by 0xA20F143: krb5_cc_destroy (cache.c:647)
> ==4450== by 0x5491FA6: free_mccache (credentials_krb5.c:127)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450==
> ==4450== Invalid read of size 4
> ==4450== at 0x956EB26: init_auth_restart (init_sec_context.c:606)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== by 0x76F9AF5: dcerpc_pipe_auth_send (dcerpc_util.c:621)
> ==4450== by 0x770022E: dcerpc_secondary_auth_connection_bind (dcerpc_secondary.c:299)
> ==4450== Address 0x25afc648 is 8 bytes inside a block of size 64 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x957E5FA: _gsskrb5_release_cred (release_cred.c:73)
> ==4450== by 0x9586895: gss_release_cred (gss_release_cred.c:65)
> ==4450== by 0x5492B63: free_gssapi_creds (credentials_krb5.c:443)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450==
> ==4450== Invalid write of size 4
> ==4450== at 0x956EB59: init_auth_restart (init_sec_context.c:613)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== by 0x76F9AF5: dcerpc_pipe_auth_send (dcerpc_util.c:621)
> ==4450== by 0x770022E: dcerpc_secondary_auth_connection_bind (dcerpc_secondary.c:299)
> ==4450== Address 0x24d8ab5c is 108 bytes inside a block of size 224 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 8
> ==4450== at 0xA20F2C6: krb5_cc_get_principal (cache.c:748)
> ==4450== by 0xA20FE05: build_conf_principals (cache.c:1226)
> ==4450== by 0xA21011A: krb5_cc_get_config (cache.c:1347)
> ==4450== by 0x956EC06: init_auth_restart (init_sec_context.c:628)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== Address 0x26a8ac50 is 0 bytes inside a block of size 24 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA20F182: krb5_cc_close (cache.c:666)
> ==4450== by 0x957E52E: _gsskrb5_release_cred (release_cred.c:65)
> ==4450== by 0x9586895: gss_release_cred (gss_release_cred.c:65)
> ==4450== by 0x5492B63: free_gssapi_creds (credentials_krb5.c:443)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 8
> ==4450== at 0xA236F18: mcc_get_principal (mcache.c:270)
> ==4450== by 0xA20F2E1: krb5_cc_get_principal (cache.c:748)
> ==4450== by 0xA20FE05: build_conf_principals (cache.c:1226)
> ==4450== by 0xA21011A: krb5_cc_get_config (cache.c:1347)
> ==4450== by 0x956EC06: init_auth_restart (init_sec_context.c:628)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== Address 0x26a8ac60 is 16 bytes inside a block of size 24 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA20F182: krb5_cc_close (cache.c:666)
> ==4450== by 0x957E52E: _gsskrb5_release_cred (release_cred.c:65)
> ==4450== by 0x9586895: gss_release_cred (gss_release_cred.c:65)
> ==4450== by 0x5492B63: free_gssapi_creds (credentials_krb5.c:443)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 4
> ==4450== at 0xA236F24: mcc_get_principal (mcache.c:272)
> ==4450== by 0xA20F2E1: krb5_cc_get_principal (cache.c:748)
> ==4450== by 0xA20FE05: build_conf_principals (cache.c:1226)
> ==4450== by 0xA21011A: krb5_cc_get_config (cache.c:1347)
> ==4450== by 0x956EC06: init_auth_restart (init_sec_context.c:628)
> ==4450== by 0x956F588: _gsskrb5_init_sec_context (init_sec_context.c:959)
> ==4450== by 0x9587E86: gss_init_sec_context (gss_init_sec_context.c:187)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== Address 0x24f01e1c is 12 bytes inside a block of size 56 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0xA21DF11: krb5_data_free (data.c:66)
> ==4450== by 0xA236C3C: mcc_close (mcache.c:189)
> ==4450== by 0xA20F173: krb5_cc_close (cache.c:665)
> ==4450== by 0xA20F143: krb5_cc_destroy (cache.c:647)
> ==4450== by 0x5491FA6: free_mccache (credentials_krb5.c:127)
> ==4450== by 0x67A0BA8: _talloc_free_internal (talloc.c:831)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450==
> ==4450== Invalid write of size 8
> ==4450== at 0x9587EE7: gss_init_sec_context (gss_init_sec_context.c:208)
> ==4450== by 0x613BB29: gensec_gssapi_update (gensec_gssapi.c:464)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== by 0x76F9AF5: dcerpc_pipe_auth_send (dcerpc_util.c:621)
> ==4450== by 0x770022E: dcerpc_secondary_auth_connection_bind (dcerpc_secondary.c:299)
> ==4450== by 0xB8002CC: composite_done (composite.c:143)
> ==4450== by 0x76FFF87: continue_pipe_open (dcerpc_secondary.c:191)
> ==4450== Address 0x24d8ab40 is 80 bytes inside a block of size 224 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid write of size 8
> ==4450== at 0x613BB3E: gensec_gssapi_update (gensec_gssapi.c:478)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== by 0x76F9AF5: dcerpc_pipe_auth_send (dcerpc_util.c:621)
> ==4450== by 0x770022E: dcerpc_secondary_auth_connection_bind (dcerpc_secondary.c:299)
> ==4450== by 0xB8002CC: composite_done (composite.c:143)
> ==4450== by 0x76FFF87: continue_pipe_open (dcerpc_secondary.c:191)
> ==4450== by 0x76FFE10: continue_open_smb (dcerpc_secondary.c:140)
> ==4450== Address 0x24d8ab78 is 136 bytes inside a block of size 224 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 4
> ==4450== at 0x613BC67: gensec_gssapi_update (gensec_gssapi.c:516)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== by 0x76F9AF5: dcerpc_pipe_auth_send (dcerpc_util.c:621)
> ==4450== by 0x770022E: dcerpc_secondary_auth_connection_bind (dcerpc_secondary.c:299)
> ==4450== by 0xB8002CC: composite_done (composite.c:143)
> ==4450== by 0x76FFF87: continue_pipe_open (dcerpc_secondary.c:191)
> ==4450== by 0x76FFE10: continue_open_smb (dcerpc_secondary.c:140)
> ==4450== Address 0x24d8abb8 is 200 bytes inside a block of size 224 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid write of size 4
> ==4450== at 0x613BC71: gensec_gssapi_update (gensec_gssapi.c:516)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== by 0x76F9AF5: dcerpc_pipe_auth_send (dcerpc_util.c:621)
> ==4450== by 0x770022E: dcerpc_secondary_auth_connection_bind (dcerpc_secondary.c:299)
> ==4450== by 0xB8002CC: composite_done (composite.c:143)
> ==4450== by 0x76FFF87: continue_pipe_open (dcerpc_secondary.c:191)
> ==4450== by 0x76FFE10: continue_open_smb (dcerpc_secondary.c:140)
> ==4450== Address 0x24d8abb8 is 200 bytes inside a block of size 224 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 4
> ==4450== at 0x67A0033: talloc_chunk_from_ptr (talloc.c:349)
> ==4450== by 0x67A0368: __talloc (talloc.c:556)
> ==4450== by 0x67A074A: _talloc_named_const (talloc.c:676)
> ==4450== by 0x67A2F14: _talloc_memdup (talloc.c:1910)
> ==4450== by 0x635FED0: data_blob_talloc_named (data_blob.c:52)
> ==4450== by 0x613BF81: gensec_gssapi_update (gensec_gssapi.c:550)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== Address 0x24c354a0 is 64 bytes inside a block of size 184 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 4
> ==4450== at 0x67A004D: talloc_chunk_from_ptr (talloc.c:355)
> ==4450== by 0x67A0368: __talloc (talloc.c:556)
> ==4450== by 0x67A074A: _talloc_named_const (talloc.c:676)
> ==4450== by 0x67A2F14: _talloc_memdup (talloc.c:1910)
> ==4450== by 0x635FED0: data_blob_talloc_named (data_blob.c:52)
> ==4450== by 0x613BF81: gensec_gssapi_update (gensec_gssapi.c:550)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== Address 0x24c354a0 is 64 bytes inside a block of size 184 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> ==4450== Invalid read of size 8
> ==4450== at 0x67A005B: talloc_chunk_from_ptr (talloc.c:356)
> ==4450== by 0x67A0368: __talloc (talloc.c:556)
> ==4450== by 0x67A074A: _talloc_named_const (talloc.c:676)
> ==4450== by 0x67A2F14: _talloc_memdup (talloc.c:1910)
> ==4450== by 0x635FED0: data_blob_talloc_named (data_blob.c:52)
> ==4450== by 0x613BF81: gensec_gssapi_update (gensec_gssapi.c:550)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x6132E90: gensec_spnego_create_negTokenInit (spnego.c:644)
> ==4450== by 0x6133891: gensec_spnego_update (spnego.c:842)
> ==4450== by 0x6134DB1: gensec_spnego_update_wrapper (spnego.c:1311)
> ==4450== by 0x61354B5: gensec_update (gensec.c:220)
> ==4450== by 0x76F715E: dcerpc_bind_auth_send (dcerpc_auth.c:372)
> ==4450== Address 0x24c35490 is 48 bytes inside a block of size 184 free'd
> ==4450== at 0x4C2A82E: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> ==4450== by 0x67A0E9A: _talloc_free_internal (talloc.c:878)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450== by 0x67A1BFF: _talloc_free_children_internal (talloc.c:1256)
> ==4450== by 0x67A0D4B: _talloc_free_internal (talloc.c:851)
> ==4450==
> talloc: access after free error - first free may be at ../source4/smbd/service_stream.c:82
> Bad talloc magic value - access after free
> smb_panic(): calling panic action [/usr/bin/screen -d -m /etc/nolteinfosysteme/tsamba4restart.cron]
> smb_panic(): action returned status 0
> PANIC: Bad talloc magic value - access after free
> ==4450==
> ==4450== HEAP SUMMARY:
> ==4450== in use at exit: 6,774,152 bytes in 59,826 blocks
> ==4450== total heap usage: 3,298,796 allocs, 3,238,970 frees, 483,059,421 bytes allocated
> ==4450==
> ==4450== LEAK SUMMARY:
> ==4450== definitely lost: 184 bytes in 3 blocks
> ==4450== indirectly lost: 2,222 bytes in 42 blocks
> ==4450== possibly lost: 135,341 bytes in 1,214 blocks
> ==4450== still reachable: 6,636,405 bytes in 58,567 blocks
> ==4450== suppressed: 0 bytes in 0 blocks
> ==4450== Rerun with --leak-check=full to see details of leaked memory
> ==4450==
> ==4450== For counts of detected and suppressed errors, rerun with: -v
> ==4450== ERROR SUMMARY: 18 errors from 18 contexts (suppressed: 2 from 2)
>
>
> Mit freundlichen Grüßen
> Thomas Nolte
> --
> Nolte Infosysteme, Im Sikfeld 8, 38304 Wolfenbuettel
> Tel 05331-946210, Fax 05331-946211, Handy 0170-5508198
>
> Computer, Netzwerk, Kommunikation www.nisx.de
>
> -----Ursprüngliche Nachricht-----
> [...]
> Can you try that again with:
>
> valgrind samba -i -M single > out 2>&1
>
> [...]
>
>
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
More information about the samba
mailing list