[Pkg-samba-maint] Bug#858590: Bug#858590: segmantation fault after upgrade to 2:4.2.14+dfsg-0+deb8u4

rolnas at gmail.com rolnas at gmail.com
Fri Mar 24 10:47:49 UTC 2017 

> Can you?
> - send the corresponding file in /var/log/samba/cores/?

Attached as core.bz2

> - install samba-dbg and post the stack trace here?

Attached as backtrace.txt

> - reproduce the crash without shadow_copy2?

After removing shadow_copy2 and related settings smbclient can connect 
and list files without problems.

Regards
-------------- next part --------------
A non-text attachment was scrubbed...
Name: core.bz2
Type: application/x-bzip
Size: 685139 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-samba-maint/attachments/20170324/577e5602/attachment-0001.bin>
-------------- next part --------------
root at server:/var/log/samba/cores/smbd# gdb /usr/sbin/smbd core
GNU gdb (Debian 7.7.1+dfsg-5) 7.7.1
Copyright (C) 2014 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
<http://www.gnu.org/software/gdb/documentation/>.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /usr/sbin/smbd...Reading symbols from /usr/lib/debug/.build-id/5a/a6bd33bc92773c8a5e999395265611f07c4c1d.debug...done.
done.
[New LWP 2239]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
Core was generated by `/usr/sbin/smbd -D'.
Program terminated with signal SIGABRT, Aborted.
#0  0x00007f3c8090b067 in raise () from /lib/x86_64-linux-gnu/libc.so.6
(gdb) bt
#0  0x00007f3c8090b067 in raise () from /lib/x86_64-linux-gnu/libc.so.6
#1  0x00007f3c8090c448 in abort () from /lib/x86_64-linux-gnu/libc.so.6
#2  0x00007f3c8227bc4a in dump_core () at ../source3/lib/dumpcore.c:337
#3  0x00007f3c822640db in smb_panic_s3 (why=<optimized out>) at ../source3/lib/util.c:811
#4  0x00007f3c83f1ee5f in smb_panic (why=why at entry=0x7f3c83f25eb2 "internal error") at ../lib/util/fault.c:166
#5  0x00007f3c83f1f07f in fault_report (sig=<optimized out>) at ../lib/util/fault.c:83
#6  sig_fault (sig=<optimized out>) at ../lib/util/fault.c:94
#7  <signal handler called>
#8  shadow_copy2_do_convert (mem_ctx=0x7f3c85b5e5f0, handle=handle at entry=0x7f3c85b61f70, name=name at entry=0x0, timestamp=timestamp at entry=22, snaproot_len=snaproot_len at entry=0x7ffec9ca2f58) at ../source3/modules/vfs_shadow_copy2.c:685
#9  0x00007f3c729f5c64 in shadow_copy2_connectpath (handle=0x7f3c85b61f70, fname=<optimized out>) at ../source3/modules/vfs_shadow_copy2.c:2176
#10 0x00007f3c83adf13d in check_reduced_name (conn=conn at entry=0x7f3c85b6b850, fname=fname at entry=0x7f3c83bcf719 ".") at ../source3/smbd/vfs.c:1251
#11 0x00007f3c83aca9cb in check_name (conn=conn at entry=0x7f3c85b6b850, name=name at entry=0x7f3c83bcf719 ".") at ../source3/smbd/filename.c:1225
#12 0x00007f3c83a80db3 in open_dir_safely (ctx=ctx at entry=0x0, conn=conn at entry=0x7f3c85b6b850, name=name at entry=0x7f3c85b5eed0 ".", wcard=wcard at entry=0x7f3c85b5ec70 "*", attr=attr at entry=22) at ../source3/smbd/dir.c:1646
#13 0x00007f3c83a81a25 in OpenDir (mem_ctx=mem_ctx at entry=0x0, conn=conn at entry=0x7f3c85b6b850, name=name at entry=0x7f3c85b5eed0 ".", mask=mask at entry=0x7f3c85b5ec70 "*", attr=attr at entry=22) at ../source3/smbd/dir.c:1683
#14 0x00007f3c83a8255c in dptr_create (conn=0x7f3c85b6b850, req=<optimized out>, fsp=<optimized out>, path=0x7f3c85b5eed0 ".", old_handle=<optimized out>, expect_close=<optimized out>, spid=22474, wcard=0x7f3c85b5ec70 "*", wcard_has_wild=true, attr=22,
    dptr_ret=0x7ffec9ca31a8) at ../source3/smbd/dir.c:513
#15 0x00007f3c83ab902f in call_trans2findfirst (conn=0x7f3c85b6b850, req=0x7f3c85b5e710, pparams=0xc1c0ffc0fcc00000, total_params=69631, ppdata=0x7f3c85b644d0, total_data=0, max_data_bytes=65535) at ../source3/smbd/trans2.c:2699
#16 0x00007f3c83ac3114 in handle_trans2 (conn=0x7f3c85b6b850, req=0x7f3c85b5e710, state=0x7f3c85b64460) at ../source3/smbd/trans2.c:8982
#17 0x00007f3c83ac60ec in reply_trans2 (req=0x7f3c85b5e710) at ../source3/smbd/trans2.c:9268
#18 0x00007f3c83aed753 in switch_message (type=<optimized out>, req=0x7f3c85b5e710) at ../source3/smbd/process.c:1648
#19 0x00007f3c83aef4f2 in construct_reply (deferred_pcd=<optimized out>, encrypted=<optimized out>, seqnum=<optimized out>, unread_bytes=<optimized out>, size=<optimized out>, inbuf=0x0, xconn=<optimized out>) at ../source3/smbd/process.c:1684
#20 process_smb (xconn=0x7f3c85b5c0a0, inbuf=0x7f3c85b5e788 "", nread=92, unread_bytes=0, seqnum=65472, encrypted=false, deferred_pcd=0x0) at ../source3/smbd/process.c:1930
#21 0x00007f3c83af0c2d in smbd_server_connection_read_handler (xconn=0x7f3c85b5c0a0, fd=38) at ../source3/smbd/process.c:2529
#22 0x00007f3c822843a1 in run_events_poll (ev=0x7f3c85b32f60, pollrtn=<optimized out>, pfds=0x7f3c85b4a8c0, num_pfds=4) at ../source3/lib/events.c:257
#23 0x00007f3c82284617 in s3_event_loop_once (ev=0x7f3c85b32f60, location=<optimized out>) at ../source3/lib/events.c:326
#24 0x00007f3c80c8543d in _tevent_loop_once () from /usr/lib/x86_64-linux-gnu/libtevent.so.0
#25 0x00007f3c80c855db in tevent_common_loop_wait () from /usr/lib/x86_64-linux-gnu/libtevent.so.0
#26 0x00007f3c83af1f88 in smbd_process (ev_ctx=0x7f3c85b32f60, msg_ctx=0x7f3c85b33fe0, sock_fd=38, interactive=false) at ../source3/smbd/process.c:3997
#27 0x00007f3c8457bdd0 in smbd_accept_connection (ev=0x7f3c85b32f60, fde=<optimized out>, flags=<optimized out>, private_data=<optimized out>) at ../source3/smbd/server.c:627
#28 0x00007f3c822843a1 in run_events_poll (ev=0x7f3c85b32f60, pollrtn=<optimized out>, pfds=0x7f3c85b4a8c0, num_pfds=6) at ../source3/lib/events.c:257
#29 0x00007f3c82284617 in s3_event_loop_once (ev=0x7f3c85b32f60, location=<optimized out>) at ../source3/lib/events.c:326
#30 0x00007f3c80c8543d in _tevent_loop_once () from /usr/lib/x86_64-linux-gnu/libtevent.so.0
#31 0x00007f3c80c855db in tevent_common_loop_wait () from /usr/lib/x86_64-linux-gnu/libtevent.so.0
#32 0x00007f3c845785e5 in smbd_parent_loop (parent=<optimized out>, ev_ctx=<optimized out>) at ../source3/smbd/server.c:985
#33 main (argc=-2079129216, argv=0x7f3c85b33db0) at ../source3/smbd/server.c:1626

More information about the Pkg-samba-maint mailing list