[Samba] 转发: 回复: segfault when tdb_mutex_unlock

chin housin sharingfun520 at outlook.com
Thu Jul 25 04:13:36 UTC 2024 


________________________________
发件人: chin housin <sharingfun520 at outlook.com>
发送时间: 2024年7月25日 11:58
收件人: 1119542281 at qq.com <1119542281 at qq.com>
主题: 回复: [Samba] 回复: segfault when tdb_mutex_unlock

Thanks for your help.Although the situation was relieved with 'idmap config DOMAIN backend =rid' on samba-4.19.3, the issue occures after three days running.I promise that I restarted winbind,smbd after changing smb.conf.NS.com used by DNS and NS2 set by Domain Controller.A fact is that if winbind coredumped with such issue,just restart winbind will coredumped again soon.Restart along with smbd will make it run for more hours.Sometimes such issue is harmless if winbind or smbd restarted as soon as possiable,and file transfers won't be interrupted.Another thing I noticed that ,before problem occured,gencache.tdb's modified time changed frequently with no new user login,which is usually only changed when the user is logged in.


smb.conf:
[global]
   realm = NS.com
   security = ads
   server string = ""
   getwd cache = no
   workgroup = NS2
   log file = /var/log/samba/log.%m
   max log size = 50
   cache directory = /dev/shm/samba
   state directory = /var/lib/samba
   lock directory = /dev/shm/samba
   idmap config * :range = 100000-200000
   idmap config * : backend = tdb2
   idmap config NS2 :range = 1000000-2000000
   idmap config NS2 : backend = rid

   winbind separator = /
   winbind use default domain = true
   winbind offline logon = false
   winbind enum users = yes
   winbind enum groups = yes
   passdb backend = tdbsam
   nt acl support = yes
   lanman auth = yes
   ntlm auth = yes
   wide links = no
   disable spoolss = yes
   template shell = /bin/bash
   private dir = /var/lib/samba/private
   rpc_server:netlogon = disabled
   server min protocol = NT1
   client min protocol = NT1
   winbind max clients = 2000
[share1]
   comment = ""
   path = /f1
   read only = no
   writable = yes
   browseable = yes
   oplocks = yes
   store dos attributes = yes
   map acl inherit = yes
   vfs objects = acl_xattr
   access based share enum = yes
   valid users = NS2/user1,
   write list = NS2/user1,
   create mask = 0777
   directory mask = 0777

Best wish!
housin
________________________________
发件人: samba <samba-bounces at lists.samba.org> 代表 Rowland Penny via samba <samba at lists.samba.org>
发送时间: 2024年7月22日 17:02
收件人: samba at lists.samba.org <samba at lists.samba.org>
抄送: Rowland Penny <rpenny at samba.org>
主题: Re: [Samba] 回复: segfault when tdb_mutex_unlock

On Mon, 22 Jul 2024 03:00:07 +0000
chin housin via samba <samba at lists.samba.org> wrote:

> Thank you very much.However, update to samba-4.19.3 doesn't handle
> the issue. The winbind coredump with  Segmentation Fault  the same as
> smbd in samba-4.12.15.First time it coredumped after  5 h running
> with "idmap config DOMAIN backend=tdb".Then I changed to "idmap
> config DOMAIN backend=ad","idmap config DOMAIN schema mode = rfc2307"
> and restart smb,winbind.It crashed again after 2 h running.I only
> have 5 domain user and gencache.tdb map_size is 61440 Byte.
>

Just like not using 'tdb2' with the default domain '*', you cannot use
'tdb' with the 'NS' domain and you can only use the 'ad' idmap backend
if you have uidNumber & gidNumber attributes in AD.

Based on the smb.conf you posted earlier, can you please try this
version, but please read it first:

[global]
   workgroup = NS
   realm = NS.COM
   security = ads
   server string = ""

   winbind separator = /
   winbind use default domain = true
   winbind max clients = 2000

   # BIG NOTE:
   # This is highly likely to change your user & group IDs
   # This is because you were not using idmap correctly.
   #
   idmap config * : backend = tdb
   idmap config * : range = 3000-7999
   # IF YOU HAVE UIDNUMBER & GIDNUMBER ATTRIBUTES
   # IN AD, COMMENT THE NEXT LINE AND UNCOMMENT THE
   # THREE LINES AFTER IT.
   idmap config NS : backend  = rid
   #idmap config NS : backend  = ad
   #idmap config NS : schema_mode = rfc2307
   #idmap config NS : unix_nss_info = yes
   idmap config NS : range = 1000000-2000000
   template shell = /bin/bash

   vfs objects = acl_xattr
   map acl inherit = Yes

   # Comment the following 4 lines to act as a print server
   printcap name = /dev/null
   load printers = no
   disable spoolss = yes
   printing = bsd

   log file = /var/log/samba/log.%m
   max log size = 50

   cache directory = /dev/shm/samba
   state directory = /var/lib/samba
   lock directory = /dev/shm/samba
   private dir = /var/lib/samba/private

   get quota command = /quota_get.sh %U %G %d
   root preexec = /quota.sh %u %g %d %I

   # The next 4 lines are required for SMBv1,
   # DO YOU REALLY NEED SMBv1 ????
   server min protocol = NT1
   client min protocol = NT1
   lanman auth = yes
   ntlm auth = yes

Rowland

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list