Hi, we want to use ldapsam:trusted=yes to improve performace as nss_ldap is killing our ldap server doing enumeration. once i enable it smbd dies silently... this is the last part of a ./smbd -d 10 -i NT user token: (NULL) UNIX token of user 0 Primary group is 0 and contains 0 supplementary groups smbldap_search: base => [ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filt er => [(&(objectClass=posixGroup)(|(memberUid=nobody) (gidNumber=65533)))], scope => [2] primary group of [nobody] not found pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 get_user_groups_from_local_sam failed attempting to free (and zero) a server_info structure attempting to free (and zero) a server_info structure /tmp/dan lines 520-538/538 (END) however i do have a group called nobody with gidNumber of 65533 and nobody as a memberUid, when i run the smbldap_search query i do get a result! my nobody user in ldap has a gidNumber of 65533 too! Help would be appreciated! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Daniel Wilson Systems Administrator IT & Communications Service University of Sunderland Unit1 Technology Park Chester Road Sunderland SR2 7PT Tel: 0191 515 2695 This e-mail contains information which is confidential and may be privileged and is for the exclusive use of the recipient. It is the responsibility of the recipient to ensure that this message and its attachments are virus free. Any views or opinions presented are solely those of the author and do not necessarily represent those of the University, unless otherwise specifically stated.
On Thu, Sep 29, 2005 at 09:55:29PM +0100, Daniel Wilson wrote:> Hi, > > we want to use ldapsam:trusted=yes to improve performace as nss_ldap > is killing our ldap server doing enumeration. > > once i enable it smbd dies silently... > > > this is the last part of a ./smbd -d 10 -i > > NT user token: (NULL) > UNIX token of user 0 > Primary group is 0 and contains 0 supplementary groups > smbldap_search: base => > [ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filt > er => [(&(objectClass=posixGroup)(|(memberUid=nobody) > (gidNumber=65533)))], scope > => [2] > primary group of [nobody] not found > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > get_user_groups_from_local_sam failed > attempting to free (and zero) a server_info structure > attempting to free (and zero) a server_info structure > /tmp/dan lines 520-538/538 (END) > > however i do have a group called nobody with gidNumber of 65533 and > nobody as a memberUid, when i run the smbldap_search query i do get a > result! > > my nobody user in ldap has a gidNumber of 65533 too! > > Help would be appreciated!Any chance of tracing it using strace ? That would tell us what was causing it to abort. Jeremy.
Hi! i did an bash# strace ./smbd -d 10 -i 2 >/tmp/smbd-strace.txt available at: http://www.sunderland.ac.uk/~ws0dwi/smbd-strace.txt ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Daniel Wilson Systems Administrator IT & Communications Service University of Sunderland Unit1 Technology Park Chester Road Sunderland SR2 7PT Tel: 0191 515 2695 This e-mail contains information which is confidential and may be privileged and is for the exclusive use of the recipient. It is the responsibility of the recipient to ensure that this message and its attachments are virus free. Any views or opinions presented are solely those of the author and do not necessarily represent those of the University, unless otherwise specifically stated. ----- Original Message ----- From: Jeremy Allison <jra@samba.org> Date: Thursday, September 29, 2005 9:50 pm Subject: Re: [samba] ldapsam:trusted = yes kills smbd> On Thu, Sep 29, 2005 at 09:55:29PM +0100, Daniel Wilson wrote: > > Hi, > > > > we want to use ldapsam:trusted=yes to improve performace as > nss_ldap > > is killing our ldap server doing enumeration. > > > > once i enable it smbd dies silently... > > > > > > this is the last part of a ./smbd -d 10 -i > > > > NT user token: (NULL) > > UNIX token of user 0 > > Primary group is 0 and contains 0 supplementary groups > > smbldap_search: base => > > [ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filt > > er => [(&(objectClass=posixGroup)(|(memberUid=nobody) > > (gidNumber=65533)))], scope > > => [2] > > primary group of [nobody] not found > > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > > get_user_groups_from_local_sam failed > > attempting to free (and zero) a server_info structure > > attempting to free (and zero) a server_info structure > > /tmp/dan lines 520-538/538 (END) > > > > however i do have a group called nobody with gidNumber of 65533 > and > > nobody as a memberUid, when i run the smbldap_search query i do > get a > > result! > > > > my nobody user in ldap has a gidNumber of 65533 too! > > > > Help would be appreciated! > > Any chance of tracing it using strace ? That would tell us > what was causing it to abort. > > Jeremy. >
ok done that and produces this: (which ends in "Cannot access memory at address 0x7fc0000000") .... .. [Thread debugging using libthread_db enabled] [New Thread 182909114432 (LWP 8451)] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 push_conn_ctx(0) : conn_ctx_stack_ndx = 0 setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 NT user token: (NULL) UNIX token of user 0 Primary group is 0 and contains 0 supplementary groups smbldap_search: base => [ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filter => [(& (objectClass=posixGroup)(|(memberUid=nobody)(gidNumber=65533)))], scope => [2] primary group of [nobody] not found pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 get_user_groups_from_local_sam failed attempting to free (and zero) a server_info structure attempting to free (and zero) a server_info structure [Switching to Thread 182909114432 (LWP 8451)] Breakpoint 2, 0x0000002a95c34e20 in exit () from /lib64/tls/libc.so.6 (gdb) bt #0 0x0000002a95c34e20 in exit () from /lib64/tls/libc.so.6 #1 0x0000002a95c21014 in __libc_start_main () from /lib64/tls/libc.so.6 #2 0x000000000043902a in _start () at start.S:113 #3 0x0000007fbffff318 in ?? () #4 0x0000000000000000 in ?? () #5 0x0000000000000004 in ?? () #6 0x0000007fbffff647 in ?? () #7 0x0000007fbffff666 in ?? () #8 0x0000007fbffff669 in ?? () #9 0x0000007fbffff66c in ?? () #10 0x0000000000000000 in ?? () #11 0x0000007fbffff66f in ?? () #12 0x0000007fbffff688 in ?? () #13 0x0000007fbffff6d2 in ?? () #14 0x0000007fbffff704 in ?? () #15 0x0000007fbffff714 in ?? () #16 0x0000007fbffff724 in ?? () #17 0x0000007fbffff74b in ?? () #18 0x0000007fbffff772 in ?? () #19 0x0000007fbffff782 in ?? () #20 0x0000007fbffff78d in ?? () #21 0x0000007fbffff799 in ?? () #22 0x0000007fbffff7a7 in ?? () ---Type <return> to continue, or q <return> to quit--- #23 0x0000007fbffff7b8 in ?? () #24 0x0000007fbffff7db in ?? () #25 0x0000007fbffff7f7 in ?? () #26 0x0000007fbffff80a in ?? () #27 0x0000007fbffff81d in ?? () #28 0x0000007fbffff827 in ?? () #29 0x0000007fbffff841 in ?? () #30 0x0000007fbffff852 in ?? () #31 0x0000007fbffffb13 in ?? () #32 0x0000007fbffffb33 in ?? () #33 0x0000007fbffffb43 in ?? () #34 0x0000007fbffffb4e in ?? () #35 0x0000007fbffffb59 in ?? () #36 0x0000007fbffffb67 in ?? () #37 0x0000007fbffffbff in ?? () #38 0x0000007fbffffc13 in ?? () #39 0x0000007fbffffc27 in ?? () #40 0x0000007fbffffc32 in ?? () #41 0x0000007fbffffc3e in ?? () #42 0x0000007fbffffc5f in ?? () #43 0x0000007fbffffc7d in ?? () #44 0x0000007fbffffc92 in ?? () #45 0x0000007fbffffcad in ?? () ---Type <return> to continue, or q <return> to quit--- #46 0x0000007fbffffccc in ?? () #47 0x0000007fbffffcd5 in ?? () #48 0x0000007fbffffd0d in ?? () #49 0x0000007fbffffd18 in ?? () #50 0x0000007fbffffd20 in ?? () #51 0x0000007fbffffd2d in ?? () #52 0x0000007fbffffd4b in ?? () #53 0x0000007fbffffd66 in ?? () #54 0x0000007fbffffd88 in ?? () #55 0x0000007fbffffda9 in ?? () #56 0x0000007fbffffdf1 in ?? () #57 0x0000007fbffffdfe in ?? () #58 0x0000007fbffffe19 in ?? () #59 0x0000007fbffffe24 in ?? () #60 0x0000007fbffffe30 in ?? () #61 0x0000007fbffffe80 in ?? () #62 0x0000007fbffffeb5 in ?? () #63 0x0000007fbffffedf in ?? () #64 0x0000007fbffffef4 in ?? () #65 0x0000007fbfffff0c in ?? () #66 0x0000007fbfffff37 in ?? () #67 0x0000007fbfffff80 in ?? () #68 0x0000007fbfffff9d in ?? () ---Type <return> to continue, or q <return> to quit--- #69 0x0000007fbfffffb2 in ?? () #70 0x0000007fbfffffbe in ?? () #71 0x0000000000000000 in ?? () #72 0x0000000000000010 in ?? () #73 0x00000000078bfbff in ?? () #74 0x0000000000000006 in ?? () #75 0x0000000000001000 in ?? () #76 0x0000000000000011 in ?? () #77 0x0000000000000064 in ?? () #78 0x0000000000000003 in ?? () #79 0x0000000000400040 in ?? () #80 0x0000000000000004 in ?? () #81 0x0000000000000038 in ?? () #82 0x0000000000000005 in ?? () #83 0x0000000000000009 in ?? () #84 0x0000000000000007 in ?? () #85 0x0000002a95556000 in ?? () #86 0x0000000000000008 in ?? () #87 0x0000000000000000 in ?? () #88 0x0000000000000009 in ?? () #89 0x0000000000439000 in ?? () #90 0x000000000000000b in ?? () #91 0x0000000000000000 in ?? () ---Type <return> to continue, or q <return> to quit--- #92 0x000000000000000c in ?? () #93 0x0000000000000000 in ?? () #94 0x000000000000000d in ?? () #95 0x0000000000000000 in ?? () #96 0x000000000000000e in ?? () #97 0x0000000000000000 in ?? () #98 0x0000000000000017 in ?? () #99 0x0000000000000000 in ?? () #100 0x000000000000000f in ?? () #101 0x0000007fbffff640 in ?? () #102 0x0000000000000000 in ?? () #103 0x0000000000000000 in ?? () #104 0x0000000000000000 in ?? () #105 0x2f0034365f363878 in ?? () #106 0x61636f6c2f727375 in ?? () #107 0x74732d696e752f6c in ?? () #108 0x6e6962732f666661 in ?? () #109 0x642d0064626d732f in ?? () #110 0x4c00692d00303100 in ?? () #111 0x2f3d59454b535345 in ?? () #112 0x7373656c2f637465 in ?? () #113 0x006e69622e79656b in ?? () #114 0x3d485441504e414d in ?? () ---Type <return> to continue, or q <return> to quit--- #115 0x6168732f7273752f in ?? () #116 0x2f3a6e616d2f6572 in ?? () #117 0x61636f6c2f727375 in ?? () #118 0x752f3a6e616d2f6c in ?? () #119 0x36523131582f7273 in ?? () #120 0x706f2f3a6e616d2f in ?? () #121 0x2f656d6f6e672f74 in ?? () #122 0x616d2f6572616873 in ?? () #123 0x49444f464e49006e in ?? () #124 0x6c2f7273752f3d52 in ?? () #125 0x666e692f6c61636f in ?? () #126 0x732f7273752f3a6f in ?? () #127 0x666e692f65726168 in ?? () #128 0x692f7273752f3a6f in ?? () #129 0x50544e4e006f666e in ?? () #130 0x6e3d524556524553 in ?? () #131 0x54534f4800737765 in ?? () #132 0x74656b3d454d414e in ?? () #133 0x59454b58006c6f77 in ?? () #134 0x752f3d42444d5953 in ?? () #135 0x36523131582f7273 in ?? () #136 0x3131582f62696c2f in ?? () #137 0x6d797379654b582f in ?? () ---Type <return> to continue, or q <return> to quit--- #138 0x454d4f4e47004244 in ?? () #139 0x2f3d485441505f32 in ?? () #140 0x61636f6c2f727375 in ?? () #141 0x672f74706f2f3a6c in ?? () #142 0x73752f3a656d6f6e in ?? () #143 0x3d4c4c4548530072 in ?? () #144 0x7361622f6e69622f in ?? () #145 0x783d4d5245540068 in ?? () #146 0x534f48006d726574 in ?? () #147 0x6c6f7774656b3d54 in ?? () #148 0x5a49535453494800 in ?? () #149 0x5000303030313d45 in ?? () #150 0x4552454c49464f52 in ?? () #151 0x00657572743d4441 in ?? () #152 0x45494c435f485353 in ?? () #153 0x322e3735313d544e in ?? () #154 0x39312e37322e3832 in ?? () #155 0x2030363937332034 in ?? () #156 0x454d4f4e47003232 in ?? () #157 0x2f3a3d485441505f in ?? () #158 0x6d6f6e672f74706f in ?? () #159 0x51007273752f3a65 in ?? () #160 0x73752f3d52494454 in ?? () ---Type <return> to continue, or q <return> to quit--- #161 0x74712f62696c2f72 in ?? () #162 0x54545f4853530033 in ?? () #163 0x702f7665642f3d59 in ?? () #164 0x45535500332f7374 in ?? () #165 0x4a00746f6f723d52 in ?? () #166 0x3d454d4f485f4552 in ?? () #167 0x62696c2f7273752f in ?? () #168 0x65726a2f6d766a2f in ?? () #169 0x4e5f46464f524700 in ?? () #170 0x65793d5247535f4f in ?? () #171 0x4c4f435f534c0073 in ?? () #172 0x303d6f6e3d53524f in ?? () #173 0x3a30303d69663a30 in ?? () #174 0x34333b31303d6964 in ?? () #175 0x333b30303d6e6c3a in ?? () #176 0x3b30343d69703a36 in ?? () #177 0x31303d6f733a3333 in ?? () #178 0x303d6f643a35333b in ?? () #179 0x3d64623a35333b31 in ?? () #180 0x31303b33333b3034 in ?? () #181 0x333b30343d64633a in ?? () #182 0x3d726f3a31303b33 in ?? () #183 0x78653a31333b3034 in ?? () ---Type <return> to continue, or q <return> to quit--- #184 0x2a3a32333b30303d in ?? () #185 0x3b30303d646d632e in ?? () #186 0x6578652e2a3a3233 in ?? () #187 0x2a3a32333b31303d in ?? () #188 0x3b31303d6d6f632e in ?? () #189 0x7461622e2a3a3233 in ?? () #190 0x2a3a32333b31303d in ?? () #191 0x3b31303d6d74622e in ?? () #192 0x6c6c642e2a3a3233 in ?? () #193 0x2a3a32333b31303d in ?? () #194 0x3b30303d7261742e in ?? () #195 0x7a62742e2a3a3133 in ?? () #196 0x2a3a31333b30303d in ?? () #197 0x3b30303d7a67742e in ?? () #198 0x6d70722e2a3a3133 in ?? () #199 0x2a3a31333b30303d in ?? () #200 0x3b30303d6265642e in ?? () #201 0x6a72612e2a3a3133 in ?? () #202 0x2a3a31333b30303d in ?? () #203 0x3b30303d7a61742e in ?? () #204 0x687a6c2e2a3a3133 in ?? () #205 0x2a3a31333b30303d in ?? () #206 0x3b30303d70697a2e in ?? () ---Type <return> to continue, or q <return> to quit--- #207 0x6f6f7a2e2a3a3133 in ?? () #208 0x2a3a31333b30303d in ?? () #209 0x31333b30303d7a2e in ?? () #210 0x3b30303d5a2e2a3a in ?? () #211 0x3d7a672e2a3a3133 in ?? () #212 0x2e2a3a31333b3030 in ?? () #213 0x333b30303d327a62 in ?? () #214 0x3d3262742e2a3a31 in ?? () #215 0x2e2a3a31333b3030 in ?? () #216 0x333b30303d327a74 in ?? () #217 0x327a62742e2a3a31 in ?? () #218 0x2a3a31333b30303d in ?? () #219 0x3b31303d6976612e in ?? () #220 0x706d622e2a3a3533 in ?? () #221 0x2a3a35333b31303d in ?? () #222 0x3b31303d696c662e in ?? () #223 0x6669672e2a3a3533 in ?? () #224 0x2a3a35333b31303d in ?? () #225 0x3b31303d67706a2e in ?? () #226 0x65706a2e2a3a3533 in ?? () #227 0x3a35333b31303d67 in ?? () #228 0x31303d676e6d2e2a in ?? () #229 0x6f6d2e2a3a35333b in ?? () ---Type <return> to continue, or q <return> to quit--- #230 0x3a35333b31303d76 in ?? () #231 0x31303d67706d2e2a in ?? () #232 0x63702e2a3a35333b in ?? () #233 0x3a35333b31303d78 in ?? () #234 0x31303d6d62702e2a in ?? () #235 0x67702e2a3a35333b in ?? () #236 0x3a35333b31303d6d in ?? () #237 0x31303d676e702e2a in ?? () #238 0x70702e2a3a35333b in ?? () #239 0x3a35333b31303d6d in ?? () #240 0x31303d6167742e2a in ?? () #241 0x69742e2a3a35333b in ?? () #242 0x3a35333b31303d66 in ?? () #243 0x31303d6d62782e2a in ?? () #244 0x70782e2a3a35333b in ?? () #245 0x3a35333b31303d6d in ?? () #246 0x3b31303d6c642e2a in ?? () #247 0x3d6c672e2a3a3533 in ?? () #248 0x2e2a3a35333b3130 in ?? () #249 0x3b30303d66666961 in ?? () #250 0x3d75612e2a3a3233 in ?? () #251 0x2e2a3a32333b3030 in ?? () #252 0x333b30303d64696d in ?? () ---Type <return> to continue, or q <return> to quit--- #253 0x3d33706d2e2a3a32 in ?? () #254 0x2e2a3a32333b3030 in ?? () #255 0x333b30303d67676f in ?? () #256 0x3d636f762e2a3a32 in ?? () #257 0x2e2a3a32333b3030 in ?? () #258 0x333b30303d766177 in ?? () #259 0x50534c4e58003a32 in ?? () #260 0x7273752f3d485441 in ?? () #261 0x6c2f36523131582f in ?? () #262 0x6e2f3131582f6269 in ?? () #263 0x5454534f4800736c in ?? () #264 0x5f3638783d455059 in ?? () #265 0x4d554c4f43003436 in ?? () #266 0x41500030383d534e in ?? () #267 0x7373656c3d524547 in ?? () #268 0x4d4f43494e494d00 in ?? () #269 0x50006e6f20632d3d in ?? () #270 0x6962732f3d485441 in ?? () #271 0x732f7273752f3a6e in ?? () #272 0x7273752f3a6e6962 in ?? () #273 0x732f6c61636f6c2f in ?? () #274 0x6f6f722f3a6e6962 in ?? () #275 0x752f3a6e69622f74 in ?? () ---Type <return> to continue, or q <return> to quit--- #276 0x6c61636f6c2f7273 in ?? () #277 0x73752f3a6e69622f in ?? () #278 0x752f3a6e69622f72 in ?? () #279 0x36523131582f7273 in ?? () #280 0x69622f3a6e69622f in ?? () #281 0x672f7273752f3a6e in ?? () #282 0x706f2f3a73656d61 in ?? () #283 0x2f656d6f6e672f74 in ?? () #284 0x74706f2f3a6e6962 in ?? () #285 0x69622f3365646b2f in ?? () #286 0x6c2f7273752f3a6e in ?? () #287 0x6a2f6d766a2f6269 in ?? () #288 0x4d006e69622f6572 in ?? () #289 0x7261762f3d4c4941 in ?? () #290 0x6f722f6c69616d2f in ?? () #291 0x454d4f4e4700746f in ?? () #292 0x74706f2f3d524944 in ?? () #293 0x4300656d6f6e672f in ?? () #294 0x365f3638783d5550 in ?? () #295 0x6e69622f3d5f0034 in ?? () #296 0x414a00687361622f in ?? () #297 0x49444e49425f4156 in ?? () #298 0x6c2f7273752f3d52 in ?? () ---Type <return> to continue, or q <return> to quit--- #299 0x6a2f6d766a2f6269 in ?? () #300 0x50006e69622f6572 in ?? () #301 0x2f7273752f3d4457 in ?? () #302 0x6e752f6c61636f6c in ?? () #303 0x2f66666174732d69 in ?? () #304 0x504e49006e696273 in ?? () #305 0x74652f3d43525455 in ?? () #306 0x727475706e692f63 in ?? () #307 0x485f4156414a0063 in ?? () #308 0x7273752f3d454d4f in ?? () #309 0x6d766a2f62696c2f in ?? () #310 0x5459500065726a2f in ?? () #311 0x54524154534e4f48 in ?? () #312 0x2f6374652f3d5055 in ?? () #313 0x74736e6f68747970 in ?? () #314 0x454e494c00747261 in ?? () #315 0x5845540034323d53 in ?? () #316 0x3a3d535455504e49 in ?? () #317 0x542e2f746f6f722f in ?? () #318 0x2f7273752f3a5865 in ?? () #319 0x6f642f6572616873 in ?? () #320 0x2f3a5865542e2f63 in ?? () #321 0x2f636f642f727375 in ?? () ---Type <return> to continue, or q <return> to quit--- #322 0x4d4f48005865542e in ?? () #323 0x00746f6f722f3d45 in ?? () #324 0x00313d4c564c4853 in ?? () #325 0x6c3d45505954534f in ?? () #326 0x53454c0078756e69 in ?? () #327 0x434e415644415f53 in ?? () #328 0x52504552505f4445 in ?? () #329 0x3d524f535345434f in ?? () #330 0x5352554358006f6e in ?? () #331 0x454d4548545f524f in ?? () #332 0x6c6174737972633d in ?? () #333 0x534c006574696877 in ?? () #334 0x534e4f4954504f5f in ?? () #335 0x2d204e2d20612d3d in ?? () #336 0x743d726f6c6f632d in ?? () #337 0x003020542d207974 in ?? () #338 0x414d574f444e4957 in ?? () #339 0x752f3d524547414e in ?? () #340 0x36523131582f7273 in ?? () #341 0x65646b2f6e69622f in ?? () #342 0x5441505f4b544700 in ?? () #343 0x6c2f7273752f3d48 in ?? () #344 0x62696c2f6c61636f in ?? () ---Type <return> to continue, or q <return> to quit--- #345 0x302e322d6b74672f in ?? () #346 0x6e672f74706f2f3a in ?? () #347 0x2f62696c2f656d6f in ?? () #348 0x3a302e322d6b7467 in ?? () #349 0x62696c2f7273752f in ?? () #350 0x302e322d6b74672f in ?? () #351 0x454d414e474f4c00 in ?? () #352 0x414d00746f6f723d in ?? () #353 0x783d455059544843 in ?? () #354 0x75732d34365f3638 in ?? () #355 0x78756e696c2d6573 in ?? () #356 0x4d2d3d5353454c00 in ?? () #357 0x5f53564300492d20 in ?? () #358 0x006873733d485352 in ?? () #359 0x485441505f4b5447 in ?? () #360 0x2f7273752f3d3436 in ?? () #361 0x696c2f6c61636f6c in ?? () #362 0x2d6b74672f343662 in ?? () #363 0x74706f2f3a302e32 in ?? () #364 0x6c2f656d6f6e672f in ?? () #365 0x6b74672f34366269 in ?? () #366 0x73752f3a302e322d in ?? () #367 0x2f343662696c2f72 in ?? () ---Type <return> to continue, or q <return> to quit--- #368 0x00302e322d6b7467 in ?? () #369 0x4e4e4f435f485353 in ?? () #370 0x313d4e4f49544345 in ?? () #371 0x322e3832322e3735 in ?? () #372 0x3733203439312e37 in ?? () #373 0x2e37353120303639 in ?? () #374 0x342e38392e383232 in ?? () #375 0x4c43410032322032 in ?? () #376 0x414c465f4c41434f in ?? () #377 0x6f2f20492d3d5347 in ?? () #378 0x656d6f6e672f7470 in ?? () #379 0x612f65726168732f in ?? () #380 0x4c006c61636f6c63 in ?? () #381 0x3d45505954435f43 in ?? () #382 0x54552e42475f6e65 in ?? () #383 0x5353454c00382d46 in ?? () #384 0x73656c3d4e45504f in ?? () #385 0x68732e6e65706f73 in ?? () #386 0x5f474b5000732520 in ?? () #387 0x505f4749464e4f43 in ?? () #388 0x74706f2f3d485441 in ?? () #389 0x6c2f656d6f6e672f in ?? () #390 0x676b702f34366269 in ?? () ---Type <return> to continue, or q <return> to quit--- #391 0x49006769666e6f63 in ?? () #392 0x3d485441504f464e in ?? () #393 0x636f6c2f7273752f in ?? () #394 0x3a6f666e692f6c61 in ?? () #395 0x6168732f7273752f in ?? () #396 0x3a6f666e692f6572 in ?? () #397 0x666e692f7273752f in ?? () #398 0x672f74706f2f3a6f in ?? () #399 0x6168732f656d6f6e in ?? () #400 0x006f666e692f6572 in ?? () #401 0x534f4c435353454c in ?? () #402 0x6c637373656c3d45 in ?? () #403 0x252068732e65736f in ?? () #404 0x425f470073252073 in ?? () #405 0x49465f4e454b4f52 in ?? () #406 0x3d53454d414e454c in ?? () #407 0x54524f4c4f430031 in ?? () #408 0x414a00313d4d5245 in ?? () #409 0x3d544f4f525f4156 in ?? () #410 0x62696c2f7273752f in ?? () #411 0x65726a2f6d766a2f in ?? () #412 0x6f6c2f7273752f00 in ?? () #413 0x2d696e752f6c6163 in ?? () ---Type <return> to continue, or q <return> to quit--- #414 0x62732f6666617473 in ?? () #415 0x0064626d732f6e69 in ?? () #416 0x0000000000000000 in ?? () Cannot access memory at address 0x7fc0000000 Regards Dan ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Daniel Wilson Systems Administrator IT & Communications Service University of Sunderland Unit1 Technology Park Chester Road Sunderland SR2 7PT Tel: 0191 515 2695 This e-mail contains information which is confidential and may be privileged and is for the exclusive use of the recipient. It is the responsibility of the recipient to ensure that this message and its attachments are virus free. Any views or opinions presented are solely those of the author and do not necessarily represent those of the University, unless otherwise specifically stated. ----- Original Message ----- From: Jeremy Allison <jra@samba.org> Date: Thursday, September 29, 2005 10:10 pm Subject: Re: [samba] ldapsam:trusted = yes kills smbd> On Thu, Sep 29, 2005 at 10:08:14PM +0100, Daniel Wilson wrote: > > Hi! > > > > i did an bash# strace ./smbd -d 10 -i 2 >/tmp/smbd-strace.txt > > > > > > available at: > > > > http://www.sunderland.ac.uk/~ws0dwi/smbd-strace.txt > > Hmmm - this ends with exit_group(-1) which is a normal > exit. So it's not failing due to a core dump or signal, > it's terminating deliberately. > > Can you run under gdb : > > gdb --args ./smbd -d 10 -i > > then: > > b exit > run > > At the breakpoint type "bt" to see the call stack. > > Jeremy. >
Hi,
Compiled as:
bash# ./configure --prefix=/usr/local/uni-staff --with-ldapsam
no didnt know was unsafe with threads!!
out put from single step:
(gdb) b smbldap_search
Breakpoint 1 at 0x5daa33
(gdb) n
The program is not being run.
(gdb) run
Starting program: /usr/local/uni-staff/sbin/smbd -d 10 -i
get_current_groups: user is in 1 groups: 0
smbd version 3.0.14a started.
Copyright Andrew Tridgell and the Samba Team 1992-2004
uid=0 gid=0 euid=0 egid=0
Build environment:
Built by: root@ketwol
Built on: Thu Jun 30 16:17:25 BST 2005
Built using: gcc
Build host: Linux ketwol 2.6.8-24.14-smp #1 SMP Tue Mar 29
09:27:43 UTC 2005 x86_64 x86_64 x86_64 GNU/Linux
SRCDIR: /opt/samba-3.0.14a/source
BUILDDIR: /opt/samba-3.0.14a/source
Paths:
SBINDIR: /usr/local/uni-staff//sbin
BINDIR: /usr/local/uni-staff//bin
SWATDIR: /usr/local/uni-staff//swat
CONFIGFILE: /usr/local/uni-staff//lib/smb.conf
LOGFILEBASE: /usr/local/uni-staff//var
LMHOSTSFILE: /usr/local/uni-staff//lib/lmhosts
LIBDIR: /usr/local/uni-staff//lib
SHLIBEXT: so
LOCKDIR: /usr/local/uni-staff//var/locks
PIDDIR: /usr/local/uni-staff//var/locks
SMB_PASSWD_FILE: /usr/local/uni-staff//private/smbpasswd
PRIVATE_DIR: /usr/local/uni-staff//private
System Headers:
HAVE_SYS_CAPABILITY_H
HAVE_SYS_CDEFS_H
HAVE_SYS_FCNTL_H
HAVE_SYS_IOCTL_H
HAVE_SYS_IPC_H
HAVE_SYS_MMAN_H
HAVE_SYS_MOUNT_H
HAVE_SYS_PARAM_H
HAVE_SYS_QUOTA_H
HAVE_SYS_RESOURCE_H
HAVE_SYS_SELECT_H
HAVE_SYS_SHM_H
HAVE_SYS_SOCKET_H
HAVE_SYS_STATFS_H
HAVE_SYS_STATVFS_H
HAVE_SYS_STAT_H
HAVE_SYS_SYSCALL_H
HAVE_SYS_SYSLOG_H
HAVE_SYS_SYSMACROS_H
HAVE_SYS_TIME_H
HAVE_SYS_TYPES_H
HAVE_SYS_UNISTD_H
HAVE_SYS_VFS_H
HAVE_SYS_WAIT_H
HAVE_SYS_XATTR_H
Headers:
HAVE_ARPA_INET_H
HAVE_ASM_TYPES_H
HAVE_CTYPE_H
HAVE_DIRENT_H
HAVE_DLFCN_H
HAVE_EXECINFO_H
HAVE_FCNTL_H
HAVE_GLOB_H
HAVE_GRP_H
HAVE_INTTYPES_H
HAVE_LANGINFO_H
HAVE_LASTLOG_H
HAVE_LBER_H
HAVE_LDAP_H
HAVE_LIMITS_H
HAVE_LOCALE_H
HAVE_MEMORY_H
HAVE_MNTENT_H
HAVE_NETINET_IN_SYSTM_H
HAVE_NETINET_IP_H
HAVE_NETINET_TCP_H
HAVE_NET_IF_H
HAVE_NSS_H
HAVE_POLL_H
HAVE_RPCSVC_NIS_H
HAVE_RPCSVC_YPCLNT_H
HAVE_RPCSVC_YP_PROT_H
HAVE_RPC_RPC_H
HAVE_SHADOW_H
HAVE_STDARG_H
HAVE_STDINT_H
HAVE_STDLIB_H
HAVE_STRINGS_H
HAVE_STRING_H
HAVE_STROPTS_H
HAVE_SYSCALL_H
HAVE_SYSLOG_H
HAVE_TERMIOS_H
HAVE_TERMIO_H
HAVE_UNISTD_H
HAVE_UTIME_H
UTMP Options:
HAVE_GETUTMPX
HAVE_UTMPX_H
HAVE_UTMP_H
HAVE_UT_UT_ADDR
HAVE_UT_UT_EXIT
HAVE_UT_UT_HOST
HAVE_UT_UT_ID
HAVE_UT_UT_NAME
HAVE_UT_UT_PID
HAVE_UT_UT_TIME
HAVE_UT_UT_TYPE
HAVE_UT_UT_USER
PUTUTLINE_RETURNS_UTMP
WITH_UTMP
HAVE_* Defines:
HAVE_ASPRINTF
HAVE_ASPRINTF_DECL
HAVE_ATEXIT
HAVE_BACKTRACE_SYMBOLS
HAVE_BER_SCANF
HAVE_C99_VSNPRINTF
HAVE_CHMOD
HAVE_CHOWN
HAVE_CHROOT
HAVE_COMPILER_WILL_OPTIMIZE_OUT_FNS
HAVE_CONNECT
HAVE_CREAT64
HAVE_CRYPT
HAVE_DEVICE_MAJOR_FN
HAVE_DEVICE_MINOR_FN
HAVE_DIRENT_D_OFF
HAVE_DLCLOSE
HAVE_DLERROR
HAVE_DLOPEN
HAVE_DLSYM
HAVE_DUP2
HAVE_ENDMNTENT
HAVE_ENDNETGRENT
HAVE_ERRNO_DECL
HAVE_EXECL
HAVE_EXPLICIT_LARGEFILE_SUPPORT
HAVE_FCHMOD
HAVE_FCHOWN
HAVE_FCNTL_LOCK
HAVE_FCVT
HAVE_FGETXATTR
HAVE_FLISTXATTR
HAVE_FOPEN64
HAVE_FREMOVEXATTR
HAVE_FSEEKO64
HAVE_FSETXATTR
HAVE_FSTAT
HAVE_FSTAT64
HAVE_FSYNC
HAVE_FTELLO64
HAVE_FTRUNCATE
HAVE_FTRUNCATE64
HAVE_FTRUNCATE_EXTEND
HAVE_FUNCTION_MACRO
HAVE_GETCWD
HAVE_GETDIRENTRIES
HAVE_GETGRENT
HAVE_GETGRNAM
HAVE_GETMNTENT
HAVE_GETNETGRENT
HAVE_GETRLIMIT
HAVE_GETSPNAM
HAVE_GETTIMEOFDAY_TZ
HAVE_GETXATTR
HAVE_GLOB
HAVE_GRANTPT
HAVE_ICONV
HAVE_IFACE_IFCONF
HAVE_IMMEDIATE_STRUCTURES
HAVE_INITGROUPS
HAVE_INNETGR
HAVE_KERNEL_CHANGE_NOTIFY
HAVE_KERNEL_OPLOCKS_LINUX
HAVE_KERNEL_SHARE_MODES
HAVE_LDAP
HAVE_LDAP_DOMAIN2HOSTLIST
HAVE_LDAP_INIT
HAVE_LDAP_INITIALIZE
HAVE_LDAP_SET_REBIND_PROC
HAVE_LGETXATTR
HAVE_LIBLBER
HAVE_LIBLDAP
HAVE_LINK
HAVE_LISTXATTR
HAVE_LLISTXATTR
HAVE_LLSEEK
HAVE_LONGLONG
HAVE_LREMOVEXATTR
HAVE_LSEEK64
HAVE_LSETXATTR
HAVE_LSTAT64
HAVE_MAKEDEV
HAVE_MEMMOVE
HAVE_MEMSET
HAVE_MKNOD
HAVE_MKTIME
HAVE_MMAP
HAVE_NANOSLEEP
HAVE_NATIVE_ICONV
HAVE_NL_LANGINFO
HAVE_NO_ACLS
HAVE_OPEN64
HAVE_PATHCONF
HAVE_PIPE
HAVE_POLL
HAVE_PREAD
HAVE_PREAD64
HAVE_PUTUTLINE
HAVE_PUTUTXLINE
HAVE_PWRITE
HAVE_PWRITE64
HAVE_RAND
HAVE_RANDOM
HAVE_READDIR64
HAVE_READLINK
HAVE_REALPATH
HAVE_REMOVEXATTR
HAVE_RENAME
HAVE_ROOT
HAVE_SECURE_MKSTEMP
HAVE_SELECT
HAVE_SENDFILE64
HAVE_SETBUFFER
HAVE_SETENV
HAVE_SETGROUPS
HAVE_SETLINEBUF
HAVE_SETLOCALE
HAVE_SETMNTENT
HAVE_SETNETGRENT
HAVE_SETPGID
HAVE_SETRESGID
HAVE_SETRESGID_DECL
HAVE_SETRESUID
HAVE_SETRESUID_DECL
HAVE_SETSID
HAVE_SETXATTR
HAVE_SHMGET
HAVE_SIGACTION
HAVE_SIGBLOCK
HAVE_SIGPROCMASK
HAVE_SIGSET
HAVE_SIG_ATOMIC_T_TYPE
HAVE_SNPRINTF
HAVE_SNPRINTF_DECL
HAVE_SOCKLEN_T_TYPE
HAVE_SRAND
HAVE_SRANDOM
HAVE_STAT64
HAVE_STAT_ST_BLKSIZE
HAVE_STAT_ST_BLOCKS
HAVE_STRCASECMP
HAVE_STRCHR
HAVE_STRDUP
HAVE_STRERROR
HAVE_STRFTIME
HAVE_STRNDUP
HAVE_STRNLEN
HAVE_STRPBRK
HAVE_STRTOUL
HAVE_STRUCT_DIRENT64
HAVE_STRUCT_FLOCK64
HAVE_STRUCT_STAT_ST_RDEV
HAVE_ST_RDEV
HAVE_SYMLINK
HAVE_SYSCALL
HAVE_SYSCONF
HAVE_SYSLOG
HAVE_TIMEGM
HAVE_UNIXSOCKET
HAVE_UPDWTMP
HAVE_UPDWTMPX
HAVE_USLEEP
HAVE_UTIMBUF
HAVE_UTIME
HAVE_UTIMES
HAVE_VASPRINTF
HAVE_VASPRINTF_DECL
HAVE_VA_COPY
HAVE_VOLATILE
HAVE_VSNPRINTF
HAVE_VSNPRINTF_DECL
HAVE_VSYSLOG
HAVE_WAITPID
HAVE_YP_GET_DEFAULT_DOMAIN
HAVE___CLOSE
HAVE___DUP2
HAVE___FCNTL
HAVE___FORK
HAVE___FSTAT
HAVE___FXSTAT
HAVE___LSEEK
HAVE___LSTAT
HAVE___LXSTAT
HAVE___OPEN
HAVE___OPEN64
HAVE___PREAD64
HAVE___PWRITE64
HAVE___READ
HAVE___STAT
HAVE___WRITE
HAVE___XSTAT
--with Options:
WITH_LDAP_SAMCONFIG
WITH_SENDFILE
WITH_UTMP
WITH_WINBIND
Build Options:
BROKEN_NISPLUS_INCLUDE_FILES
COMPILER_SUPPORTS_LL
DEFAULT_DISPLAY_CHARSET
DEFAULT_DOS_CHARSET
DEFAULT_UNIX_CHARSET
LDAP_SET_REBIND_PROC_ARGS
LINUX
LINUX_SENDFILE_API
PACKAGE_BUGREPORT
PACKAGE_NAME
PACKAGE_STRING
PACKAGE_TARNAME
PACKAGE_VERSION
REALPATH_TAKES_NULL
REPLACE_GETPASS
RETSIGTYPE
SEEKDIR_RETURNS_VOID
SIZEOF_INO_T
SIZEOF_INT
SIZEOF_LONG
SIZEOF_OFF_T
SIZEOF_SHORT
STAT_STATVFS64
STAT_ST_BLOCKSIZE
STDC_HEADERS
STRING_STATIC_MODULES
SYSCONF_SC_NGROUPS_MAX
TIME_WITH_SYS_TIME
USE_SETRESUID
WITH_LDAP_SAMCONFIG
WITH_SENDFILE
WITH_WINBIND
_FILE_OFFSET_BITS
_GNU_SOURCE
_LARGEFILE64_SOURCE
_POSIX_C_SOURCE
_POSIX_SOURCE
charset_CP437_init
charset_CP850_init
offset_t
static_init_auth
static_init_charset
static_init_idmap
static_init_pdb
static_init_rpc
static_init_vfs
vfs_audit_init
vfs_cap_init
vfs_default_quota_init
vfs_expand_msdfs_init
vfs_extd_audit_init
vfs_fake_perms_init
vfs_full_audit_init
vfs_netatalk_init
vfs_readonly_init
vfs_recycle_init
vfs_shadow_copy_init
Type sizes:
sizeof(char): 1
sizeof(int): 4
sizeof(long): 8
sizeof(uint8): 1
sizeof(uint16): 2
sizeof(uint32): 4
sizeof(short): 2
sizeof(void*): 8
Builtin modules:
pdb_ldap pdb_smbpasswd pdb_tdbsam pdb_guest rpc_lsa rpc_reg
rpc_lsa_ds rpc_wks rpc_net rpc_dfs rpc_srv rpc_spoolss rpc_samr
idmap_ldap idmap_tdb auth_rhosts auth_sam auth_unix auth_winbind
auth_server auth_domain auth_builtin
lp_load: refreshing parameters
Initialising global parameters
params.c:pm_process() - Processing configuration file "/usr/local/uni-
staff//lib/smb.conf"
Processing section "[global]"
doing parameter netbios name = ketwol
handle_netbios_name: set global_myname to: KETWOL
doing parameter workgroup = uni-staff
doing parameter enable privileges = yes
doing parameter passdb backend = ldapsam:ldap://vila.sunderland.ac.uk
doing parameter ldap delete dn = no
doing parameter ldap suffix = dc=sunderland,dc=ac,dc=uk
doing parameter ldap machine suffix = ou=uos,ou=domains,ou=network
doing parameter ldap group suffix = ou=groups,ou=filestore
doing parameter ldap admin dn = "cn=Directory Manager"
doing parameter ldap ssl = on
doing parameter ldap passwd sync = yes
doing parameter idmap backend = ldap:ldap://vila.sunderland.ac.uk
doing parameter ldap idmap suffix =
ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk
doing parameter os level = 33
doing parameter log level = 2
doing parameter preferred master = yes
doing parameter domain master = yes
doing parameter local master = yes
doing parameter security = user
doing parameter domain logons = yes
doing parameter logon home doing parameter logon path doing parameter username
map = /mnt/netlogon/usermap
doing parameter interfaces = eth0
doing parameter bind interfaces only = Yes
doing parameter ldapsam:trusted = yes
Processing section "[netlogon]"
add_a_service: Creating snum = 0 for netlogon
doing parameter comment = netlogon share
doing parameter path = /mnt/netlogon
doing parameter read only = yes
pm_process() returned Yes
lp_servicenumber: couldn't find homes
add_a_service: Creating snum = 1 for IPC$
adding IPC service
add_a_service: Creating snum = 2 for ADMIN$
adding IPC service
set_server_role: role = ROLE_DOMAIN_PDC
Attempting to register new charset UCS-2LE
Registered charset UCS-2LE
Attempting to register new charset UTF-16LE
Registered charset UTF-16LE
Attempting to register new charset UCS-2BE
Registered charset UCS-2BE
Attempting to register new charset UTF-16BE
Registered charset UTF-16BE
Attempting to register new charset UTF8
Registered charset UTF8
Attempting to register new charset UTF-8
Registered charset UTF-8
Attempting to register new charset ASCII
Registered charset ASCII
Attempting to register new charset 646
Registered charset 646
Attempting to register new charset ISO-8859-1
Registered charset ISO-8859-1
Attempting to register new charset UCS2-HEX
Registered charset UCS2-HEX
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
lp_servicenumber: couldn't find printers
reloading printcap cache
reload status: ok
reloading printcap cache
reload status: ok
lp_servicenumber: couldn't find printers
lp_servicenumber: couldn't find printers
lp_file_list_changed()
file /usr/local/uni-staff//lib/smb.conf -> /usr/local/uni-
staff//lib/smb.conf last mod_time: Thu Sep 29 22:23:01 2005
added interface ip=157.228.98.42 bcast=157.228.255.255
nmask=255.255.0.0
Netbios name list:-
my_netbios_names[0]="KETWOL"
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
NT user token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
Trying to load: ldapsam:ldap://vila.sunderland.ac.uk
Attempting to register passdb backend ldapsam
Successfully added passdb backend 'ldapsam'
Attempting to register passdb backend ldapsam_compat
Successfully added passdb backend 'ldapsam_compat'
Attempting to register passdb backend NDS_ldapsam
Successfully added passdb backend 'NDS_ldapsam'
Attempting to register passdb backend NDS_ldapsam_compat
Successfully added passdb backend 'NDS_ldapsam_compat'
Attempting to register passdb backend smbpasswd
Successfully added passdb backend 'smbpasswd'
Attempting to register passdb backend tdbsam
Successfully added passdb backend 'tdbsam'
Attempting to register passdb backend guest
Successfully added passdb backend 'guest'
Attempting to find an passdb backend to match
ldapsam:ldap://vila.sunderland.ac.uk (ldapsam)
Found pdb backend ldapsam
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=UNI-STAFF))]
Breakpoint 1, 0x00000000005daa33 in smbldap_search ()
(gdb)
(gdb)
(gdb) n
Single stepping until exit from function smbldap_search,
which has no line number information.
smbldap_search: base => [dc=sunderland,dc=ac,dc=uk], filter => [(&
(objectClass=sambaDomain)(sambaDomainName=UNI-STAFF))], scope => [2]
The connection to the LDAP server was closed
smbldap_open_connection: ldap://vila.sunderland.ac.uk
smbldap_open_connection: connection opened
ldap_connect_system: Binding to ldap server
ldap://vila.sunderland.ac.uk as "cn=Directory Manager"
ldap_connect_system: succesful connection to the LDAP server
ldap_connect_system: LDAP server does not support paged results
The LDAP server is succesfully connected
0x00000000005db1b7 in smbldap_search_suffix ()
(gdb) n
Single stepping until exit from function smbldap_search_suffix,
which has no line number information.
0x00000000005dbbdb in smbldap_search_domain_info ()
(gdb) n
Single stepping until exit from function smbldap_search_domain_info,
which has no line number information.
0x000000000055b097 in pdb_init_ldapsam ()
(gdb) n
Single stepping until exit from function pdb_init_ldapsam,
which has no line number information.
0x000000000054fa91 in make_pdb_methods_name ()
(gdb) n
Single stepping until exit from function make_pdb_methods_name,
which has no line number information.
pdb backend ldapsam:ldap://vila.sunderland.ac.uk has a valid init
0x000000000054ff14 in make_pdb_context_list ()
(gdb) n
Single stepping until exit from function make_pdb_context_list,
which has no line number information.
Attempting to find an passdb backend to match guest (guest)
Found pdb backend guest
pdb backend guest has a valid init
0x00000000005501b2 in pdb_get_static_context ()
(gdb) n
Single stepping until exit from function pdb_get_static_context,
which has no line number information.
0x00000000005502f5 in pdb_getsampwsid ()
(gdb) n
Single stepping until exit from function pdb_getsampwsid,
which has no line number information.
Breakpoint 1, 0x00000000005daa33 in smbldap_search ()
(gdb) n
Single stepping until exit from function smbldap_search,
which has no line number information.
smbldap_search: base => [dc=sunderland,dc=ac,dc=uk], filter => [(&
(sambaSID=S-1-5-21-82148923-2461359520-1342846908-501)
(objectclass=sambaSamAccount))], scope => [2]
0x00000000005db1b7 in smbldap_search_suffix ()
(gdb) n
Single stepping until exit from function smbldap_search_suffix,
which has no line number information.
0x0000000000553db8 in ldapsam_search_suffix_by_sid ()
(gdb) n
Single stepping until exit from function ldapsam_search_suffix_by_sid,
which has no line number information.
0x00000000005569c6 in ldapsam_get_ldap_user_by_sid ()
(gdb) n
Single stepping until exit from function ldapsam_get_ldap_user_by_sid,
which has no line number information.
0x0000000000556a73 in ldapsam_getsampwsid ()
(gdb) n
Single stepping until exit from function ldapsam_getsampwsid,
which has no line number information.
ldapsam_getsampwsid: Unable to locate SID [S-1-5-21-82148923-
2461359520-1342846908-501] count=0
0x000000000054e9a7 in context_getsampwsid ()
(gdb) n
Single stepping until exit from function context_getsampwsid,
which has no line number information.
pdb_set_username: setting username nobody, was
pdb_set_full_name: setting full name nobody, was
pdb_set_domain: setting domain UNI-STAFF, was
pdb_set_user_sid: setting user sid S-1-5-21-82148923-2461359520-
1342846908-501
pdb_set_user_sid_from_rid:
setting user sid S-1-5-21-82148923-2461359520-1342846908-501
from rid 501
pdb_set_group_sid: setting group sid S-1-5-21-82148923-2461359520-
1342846908-514
pdb_set_group_sid_from_rid:
setting group sid S-1-5-21-82148923-2461359520-1342846908-514
from rid 514
0x0000000000550345 in pdb_getsampwsid ()
(gdb) n
Single stepping until exit from function pdb_getsampwsid,
which has no line number information.
0x00000000005b5306 in make_new_server_info_guest ()
(gdb) n
Single stepping until exit from function make_new_server_info_guest,
which has no line number information.
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[Thread debugging using libthread_db enabled]
[New Thread 182909114432 (LWP 8489)]
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
NT user token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[Switching to Thread 182909114432 (LWP 8489)]
Breakpoint 1, 0x00000000005daa33 in smbldap_search ()
(gdb) n
Single stepping until exit from function smbldap_search,
which has no line number information.
smbldap_search: base =>
[ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filter => [(&
(objectClass=posixGroup)(|(memberUid=nobody)(gidNumber=65533)))],
scope => [2]
0x0000000000559503 in ldapsam_enum_group_memberships ()
(gdb) n
Single stepping until exit from function
ldapsam_enum_group_memberships,
which has no line number information.
primary group of [nobody] not found
0x000000000054f349 in context_enum_group_memberships ()
(gdb) n
Single stepping until exit from function
context_enum_group_memberships,
which has no line number information.
0x00000000005507e4 in pdb_enum_group_memberships ()
(gdb) n
Single stepping until exit from function pdb_enum_group_memberships,
which has no line number information.
0x00000000005b4b5d in get_user_groups ()
(gdb) n
Single stepping until exit from function get_user_groups,
which has no line number information.
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
0x00000000005b4e96 in add_user_groups ()
(gdb) n
Single stepping until exit from function add_user_groups,
which has no line number information.
get_user_groups_from_local_sam failed
attempting to free (and zero) a server_info structure
0x00000000005b514f in make_server_info_sam ()
(gdb) n
Single stepping until exit from function make_server_info_sam,
which has no line number information.
attempting to free (and zero) a server_info structure
0x00000000005b5328 in make_new_server_info_guest ()
(gdb) n
Single stepping until exit from function make_new_server_info_guest,
which has no line number information.
0x00000000005b547d in init_guest_info ()
(gdb) n
Single stepping until exit from function init_guest_info,
which has no line number information.
0x00000000005dd880 in main ()
(gdb) n
Single stepping until exit from function main,
which has no line number information.
0x0000002a95c2100d in __libc_start_main () from /lib64/tls/libc.so.6
(gdb) n
Single stepping until exit from function __libc_start_main,
which has no line number information.
Program exited with code 0377.
(gdb) n
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Daniel Wilson
Systems Administrator
IT & Communications Service
University of Sunderland
Unit1 Technology Park
Chester Road
Sunderland
SR2 7PT
Tel: 0191 515 2695
This e-mail contains information which is confidential and may be
privileged and is for the exclusive use of the recipient.
It is the responsibility of the recipient to ensure that this message
and its attachments are virus free.
Any views or opinions presented are solely those of the author and do
not necessarily represent those of the University, unless otherwise
specifically
stated.
----- Original Message -----
From: Jeremy Allison <jra@samba.org>
Date: Thursday, September 29, 2005 10:25 pm
Subject: Re: [samba] ldapsam:trusted = yes kills smbd
> On Thu, Sep 29, 2005 at 10:25:11PM +0100, Daniel Wilson wrote:
> > ok done that and produces this: (which ends in "Cannot access
> memory
> > at address 0x7fc0000000")
> > ....
> > ..
> >
> > [Thread debugging using libthread_db enabled]
> > [New Thread 182909114432 (LWP 8451)]
> > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
> > push_conn_ctx(0) : conn_ctx_stack_ndx = 0
> > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> > NT user token: (NULL)
> > UNIX token of user 0
> > Primary group is 0 and contains 0 supplementary groups
> > smbldap_search: base =>
> > [ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filter =>
[(&
> >
> (objectClass=posixGroup)(|(memberUid=nobody)(gidNumber=65533)))],
> > scope => [2]
> > primary group of [nobody] not found
> > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
> > get_user_groups_from_local_sam failed
> > attempting to free (and zero) a server_info structure
> > attempting to free (and zero) a server_info structure
> > [Switching to Thread 182909114432 (LWP 8451)]
>
> Ah - this isn't useful I'm afraid, but there is something
> interesting here - why is smbd using threads ? You do know
> it's not thread safe...
>
> I'm afraid you'll need to set a breakpoint on smbldap_search
> and then single step until the thing exits to see what it's
> doing. How are you building smbd - it shouldn't be linked to
> pthreads.
>
> Jeremy.
>
ok i have now changed the sambaSID on the user nobody to be <gloabl- sam-sid>-501 it now finds the user nobody but still says it can't find the primary group: for the user nobody, here are my ldap entries: # nobody, People, Staff, Itacs, sunderland.ac.uk dn: uid=nobody,ou=People,ou=Staff,ou=Itacs,dc=sunderland,dc=ac,dc=uk sambaSID: S-1-5-21-82148923-2461359520-1342846908-501 cn: nobody uid: nobody gidNumber: 65533 sambaPrimaryGroupSID: S-1-0-0 (which i understand is nobody on windows) description: UNI-STAFF samba guest domain account gecos: UNI-STAFF samba guest domain account loginShell: /bin/false sambaAcctFlags: [NU ] sambaPwdMustChange: 2147483647 sambaPwdCanChange: 0 sambaKickoffTime: 2147483647 sambaLogoffTime: 2147483647 sambaLogonTime: 0 sambaPwdLastSet: 0 homeDirectory: /dev/null uidNumber: 999 objectClass: inetOrgPerson objectClass: sambaSAMAccount objectClass: posixAccount objectClass: shadowAccount objectClass: organizationalPerson objectClass: top objectClass: person sn: nobody no my nobody group is: # nobody, groups, Filestore, sunderland.ac.uk dn: cn=nobody,ou=groups,ou=Filestore,dc=sunderland,dc=ac,dc=uk sambaGroupType: 2 description: Domain Unix group displayName: nobody sambaSID: S-1-0-0 cn: nobody gidNumber: 65533 memberUid: nobody objectClass: posixGroup objectClass: top objectClass: sambaGroupMapping here is the output: Attempting to find an passdb backend to match guest (guest) Found pdb backend guest pdb backend guest has a valid init smbldap_search: base => [dc=sunderland,dc=ac,dc=uk], filter => [(& (sambaSID=S-1-5-21-82148923-2461359520-1342846908-501) (objectclass=sambaSamAccount))], scope => [2] init_sam_from_ldap: Entry found for user: nobody pdb_set_username: setting username nobody, was pdb_set_domain: setting domain UNI-STAFF, was pdb_set_nt_username: setting nt username nobody, was pdb_set_user_sid_from_string: setting user sid S-1-5-21-82148923- 2461359520-1342846908-501 pdb_set_user_sid: setting user sid S-1-5-21-82148923-2461359520- 1342846908-501 pdb_set_group_sid_from_string: setting group sid S-1-0-0 pdb_set_group_sid: setting group sid S-1-0-0 smbldap_get_single_attribute: [displayName] = [<does not exist>] pdb_set_full_name: setting full name nobody, was smbldap_get_single_attribute: [sambaHomeDrive] = [<does not exist>] pdb_set_dir_drive: setting dir drive , was NULL smbldap_get_single_attribute: [sambaHomePath] = [<does not exist>] pdb_set_homedir: setting home dir , was smbldap_get_single_attribute: [sambaLogonScript] = [<does not exist>] pdb_set_logon_script: setting logon script , was smbldap_get_single_attribute: [sambaProfilePath] = [<does not exist>] pdb_set_profile_path: setting profile path , was smbldap_get_single_attribute: [sambaUserWorkstations] = [<does not exist>] smbldap_get_single_attribute: [sambaMungedDial] = [<does not exist>] grant_privilege: S-1-1-0 original privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 new privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 grant_privilege: S-1-5-32-544 original privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 new privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 grant_privilege: S-1-5-32-548 original privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 new privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 grant_privilege: S-1-5-32-549 original privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 new privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 grant_privilege: S-1-5-32-550 original privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 new privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 grant_privilege: S-1-5-32-551 original privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 new privilege mask: SE_PRIV 0x0 0x0 0x0 0x0 account_policy_get: password history:0 smbldap_get_single_attribute: [sambaBadPasswordCount] = [<does not exist>] smbldap_get_single_attribute: [sambaBadPasswordTime] = [<does not exist>] smbldap_get_single_attribute: [sambaLogonHours] = [<does not exist>] Opening cache file at /usr/local/uni-staff//var/locks/login_cache.tdb Looking up login cache for user nobody No cache entry found No cache entry, bad count = 0, bad time = 0 pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 push_conn_ctx(0) : conn_ctx_stack_ndx = 0 setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 NT user token: (NULL) UNIX token of user 0 Primary group is 0 and contains 0 supplementary groups smbldap_search: base => [ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filter => [(& (objectClass=posixGroup)(|(memberUid=nobody)(gidNumber=65533)))], scope => [2] primary group of [nobody] not found pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 get_user_groups_from_local_sam failed attempting to free (and zero) a server_info structure attempting to free (and zero) a server_info structure its now 23:10 localtime, would love to get this fixed for the start of business day tomorrow! :) Cheers ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Daniel Wilson Systems Administrator IT & Communications Service University of Sunderland Unit1 Technology Park Chester Road Sunderland SR2 7PT Tel: 0191 515 2695 This e-mail contains information which is confidential and may be privileged and is for the exclusive use of the recipient. It is the responsibility of the recipient to ensure that this message and its attachments are virus free. Any views or opinions presented are solely those of the author and do not necessarily represent those of the University, unless otherwise specifically stated. ----- Original Message ----- From: Jeremy Allison <jra@samba.org> Date: Thursday, September 29, 2005 10:44 pm Subject: Re: [samba] ldapsam:trusted = yes kills smbd> On Thu, Sep 29, 2005 at 10:43:26PM +0100, Daniel Wilson wrote: > > Successfully added passdb backend 'guest' > > Attempting to find an passdb backend to match > > ldapsam:ldap://vila.sunderland.ac.uk (ldapsam) > > Found pdb backend ldapsam > > Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=UNI- > STAFF))]> > > Breakpoint 1, 0x00000000005daa33 in smbldap_search () > > (gdb) > > (gdb) > > (gdb) n > > Single stepping until exit from function smbldap_search, > > which has no line number information. > > smbldap_search: base => [dc=sunderland,dc=ac,dc=uk], filter => [(& > > (objectClass=sambaDomain)(sambaDomainName=UNI-STAFF))], scope =>[2]> > The connection to the LDAP server was closed > > smbldap_open_connection: ldap://vila.sunderland.ac.uk > > smbldap_open_connection: connection opened > > ldap_connect_system: Binding to ldap server > > ldap://vila.sunderland.ac.uk as "cn=Directory Manager" > > ldap_connect_system: succesful connection to the LDAP server > > ldap_connect_system: LDAP server does not support paged results > > (gdb) n > > Single stepping until exit from function pdb_getsampwsid, > > which has no line number information. > > 0x00000000005b5306 in make_new_server_info_guest () > > (gdb) n > > Single stepping until exit from functionmake_new_server_info_guest,> > which has no line number information. > > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > > [Thread debugging using libthread_db enabled] > > [New Thread 182909114432 (LWP 8489)] > > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > > NT user token: (NULL) > > UNIX token of user 0 > > Primary group is 0 and contains 0 supplementary groups > > [Switching to Thread 182909114432 (LWP 8489)] > > > > Breakpoint 1, 0x00000000005daa33 in smbldap_search () > > (gdb) n > > Single stepping until exit from function smbldap_search, > > which has no line number information. > > smbldap_search: base => > > [ou=groups,ou=filestore,dc=sunderland,dc=ac,dc=uk], filter => [(& > > > (objectClass=posixGroup)(|(memberUid=nobody)(gidNumber=65533)))], > > scope => [2] > > 0x0000000000559503 in ldapsam_enum_group_memberships () > > (gdb) n > > Single stepping until exit from function > > Single stepping until exit from functionmake_new_server_info_guest,> > which has no line number information. > > 0x00000000005b547d in init_guest_info () > > (gdb) n > > Single stepping until exit from function init_guest_info, > > which has no line number information. > > 0x00000000005dd880 in main () > > (gdb) n > > Single stepping until exit from function main, > > which has no line number information. > > Ok, you're exiting from main() here : > > if (!init_guest_info()) > return -1; > > which is an immediate termination. You seem to be connecting > to the LDAP server but it's failing to look up a guest user > when looking there. > > This : > > if (!pdb_getsampwsid(sampass, &guest_sid)) { > unbecome_root(); > return NT_STATUS_NO_SUCH_USER; > } > > is failing - it's looking for a user with sid : > > <global-sam-sid>-0x000001F5 > > where global-sam-sid is the domain sid of your domain. > Looks like you don't have this user set up on your ldap > server. > > Jeremy. > >
ok cool i have changed the sambaPrimaryGroupSid: S-1-1-0 on uid=nobody and changed sambaSID: S-1-1-0 on group nobody and it now starts yeh!! :) but now if i remove ldap from /etc/nsswitch.conf passwd: file group: file i cant login to the domain: [2005/09/29 23:27:54, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/09/29 23:27:54, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: ws0dwi [2005/09/29 23:27:54, 1] auth/auth_util.c:make_server_info_sam(840) User ws0dwi in passdb, but getpwnam() fails! [2005/09/29 23:27:54, 0] auth/auth_sam.c:check_sam_security(324) check_sam_security: make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER' [2005/09/29 23:27:54, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [ws0dwi] -> [ws0dwi] FAILED with error NT_STATUS_NO_SUCH_USER is this me being ignorant, or do i still need ldap in the nsswitch.conf file? thought the idea was that ldapsam:trusted = yes ment we didnt need to have ldap in nsswitch.conf so nss_ldap wouldnt enumerate all the users? regards ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Daniel Wilson Systems Administrator IT & Communications Service University of Sunderland Unit1 Technology Park Chester Road Sunderland SR2 7PT Tel: 0191 515 2695 This e-mail contains information which is confidential and may be privileged and is for the exclusive use of the recipient. It is the responsibility of the recipient to ensure that this message and its attachments are virus free. Any views or opinions presented are solely those of the author and do not necessarily represent those of the University, unless otherwise specifically stated. ----- Original Message ----- From: Jeremy Allison <jra@samba.org> Date: Thursday, September 29, 2005 11:13 pm Subject: Re: [samba] ldapsam:trusted = yes kills smbd> On Thu, Sep 29, 2005 at 11:16:03PM +0100, Daniel Wilson wrote: > > > > ok i have now changed the sambaSID on the user nobody to be > <gloabl- > > sam-sid>-501 > > > > it now finds the user nobody but still says it can't find the > primary > > group: > > for the user nobody, here are my ldap entries: > > > > # nobody, People, Staff, Itacs, sunderland.ac.uk > > dn:uid=nobody,ou=People,ou=Staff,ou=Itacs,dc=sunderland,dc=ac,dc=uk> > sambaSID: S-1-5-21-82148923-2461359520-1342846908-501 > > cn: nobody > > uid: nobody > > gidNumber: 65533 > > sambaPrimaryGroupSID: S-1-0-0 (which i understand is nobody on > windows) > No, that sid S-1-0-0 is wrong I think. Look here for details : > > http://linux-ntfs.sourceforge.net/ntfs/concepts/sid.html >
ok so do i still need ldap in the nsswitch.conf file then? or do i still need it but samba wont use nss_ldap to do getpwdent() etc..? ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Daniel Wilson Systems Administrator IT & Communications Service University of Sunderland Unit1 Technology Park Chester Road Sunderland SR2 7PT Tel: 0191 515 2695 This e-mail contains information which is confidential and may be privileged and is for the exclusive use of the recipient. It is the responsibility of the recipient to ensure that this message and its attachments are virus free. Any views or opinions presented are solely those of the author and do not necessarily represent those of the University, unless otherwise specifically stated. ----- Original Message ----- From: paul k?lle <paul@subsignal.org> Date: Friday, September 30, 2005 0:38 am Subject: [Samba] Re: ldapsam:trusted = yes kills smbd> Jeremy Allison wrote: > > > Ah, no - smbd is still calling the system getpwnam and others > > so I think you're still going to need ldap in nsswitch.conf. > I'd say the manpage (smb.conf) is a bit misleading then: > > [...] If these assumptions are met,ldapsam:trusted=yes can be > activatedand Samba can completely bypass the NSS system to queryuser> information. Optimized LDAP queries can speed up domain logon and > administration tasks a lot.[...] > > grz > Paul > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba >