Project

General

Profile

Bug #12407

Samba with LDAP will not start when rebooting. bind password gone!

Added by Herwarth Heitmann almost 5 years ago. Updated about 3 years ago.

Status:
Closed: User Config Issue
Priority:
No priority
Assignee:
John Hixson
Category:
OS
Target version:
Severity:
New
Reason for Closing:
Reason for Blocked:
Needs QA:
Yes
Needs Doc:
Yes
Needs Merging:
Yes
Needs Automation:
No
Support Suite Ticket:
n/a
Hardware Configuration:
ChangeLog Required:
No

Description

after upgrading to release 813 this bug appeared. cifs is running but not working. disable and enable the service won't work. it will not start.

/var/log/samba4/log.smbd
.
.
[2015/11/06 13:57:45.700992, 0] ../source3/passdb/pdb_ldap.c:6427(pdb_init_ldapsam_common)
pdb_init_ldapsam_common: Failed to retrieve LDAP password from secrets.tdb

the solution is to set the ldap bind password again with:
smbpasswd -W

but after a reboot this will be gone again.


Related issues

Related to FreeNAS - Bug #12173: pdb_init_ldapsam_common: Failed to retrieve LDAP password from secrets.tdbClosed: Cannot reproduce2015-11-02

History

#1 Updated by Vaibhav Chauhan almost 5 years ago

  • Category changed from 57 to 36
  • Target version set to 261

#2 Updated by Vaibhav Chauhan almost 5 years ago

can you please attach debug, by going into system > advanced > save debug.

#3 Updated by John Hixson almost 5 years ago

  • Status changed from Unscreened to 15

#4 Updated by Josh Paetzel almost 5 years ago

  • Related to Bug #12173: pdb_init_ldapsam_common: Failed to retrieve LDAP password from secrets.tdb added

#5 Updated by John Hixson almost 5 years ago

I am unable to reproduce this problem. Can you please attach a debug as previously requested?

#6 Updated by Herwarth Heitmann almost 5 years ago

  • File debug-freenas-20151117224819..tgz added

debug attached!

#7 Updated by Josh Paetzel almost 5 years ago

I see you are having iSCSI kernel panics as well.

#8 Updated by Herwarth Heitmann almost 5 years ago

kernel panics on iscsi? i only see strange winbind errors

#9 Updated by Josh Paetzel almost 5 years ago

Take a look in /data/crash

#10 Updated by Herwarth Heitmann almost 5 years ago

last entry 21-oct....
tar -xvzf textdump.tar.0.gz
cat panic.txt
invalid serialization value -2126893264

thats all... no iscsi errors.

#11 Updated by Herwarth Heitmann almost 5 years ago

Nov 16 00:00:12 freenas nmbd4023: [2015/11/16 00:00:12.364684, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:00:12 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:01:23 freenas nmbd4023: [2015/11/16 00:01:23.168175, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:01:23 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:02:23 freenas nmbd4023: [2015/11/16 00:02:23.174212, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:02:23 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:03:15 freenas nmbd4023: [2015/11/16 00:03:15.497883, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:03:15 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.399655, 0] ../source3/passdb/secrets.c:366(fetch_ldap_pw)
Nov 16 00:03:23 freenas winbindd43331: fetch_ldap_pw: neither ldap secret retrieved!
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.399746, 0] ../source3/passdb/pdb_ldap.c:6427(pdb_init_ldapsam_common)
Nov 16 00:03:23 freenas winbindd43331: pdb_init_ldapsam_common: Failed to retrieve LDAP password from secrets.tdb
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.399768, 0] ../source3/passdb/pdb_interface.c:178(make_pdb_method_name)
Nov 16 00:03:23 freenas winbindd43331: pdb backend ldapsam:ldap://ldap.mngt.bh.helux.nl did not correctly init (error was NT_STATUS_NO_MEMORY)
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.399806, 0] ../source3/lib/util.c:785(smb_panic_s3)
Nov 16 00:03:23 freenas winbindd43331: PANIC (pid 43331): pdb_get_methods: failed to get pdb methods for backend ldapsam:ldap://ldap.mngt.bh.helux.nl
Nov 16 00:03:23 freenas winbindd43331:
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.400071, 0] ../source3/lib/util.c:896(log_stack_trace)
Nov 16 00:03:23 freenas winbindd43331: BACKTRACE: 20 stack frames:
Nov 16 00:03:23 freenas winbindd43331: #0 0x8055231ec <smb_panic_s3+111> at /usr/local/lib/libsmbconf.so.0
Nov 16 00:03:23 freenas winbindd43331: #1 0x800b7216f <smb_panic+40> at /usr/local/lib/libsamba-util.so.0
Nov 16 00:03:23 freenas winbindd43331: #2 0x80282998b <make_pdb_method_name+1349> at /usr/local/lib/libpdb.so.0
Nov 16 00:03:23 freenas winbindd43331: #3 0x80282be79 <pdb_capabilities+13> at /usr/local/lib/libpdb.so.0
Nov 16 00:03:23 freenas winbindd43331: #4 0x4c4c9e <_lsa_EnumTrustedDomainsEx+21> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #5 0x4cf256 <_lsa_LSARADTREPORTSECURITYEVENT+36934> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #6 0x433978 <make_internal_rpc_pipe_p+1461> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #7 0x433c03 <make_internal_rpc_pipe_p+2112> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #8 0x8025fd7a5 <dcerpc_binding_handle_raw_call_send+195> at /usr/local/lib/libdcerpc-binding.so.0
Nov 16 00:03:23 freenas winbindd43331: #9 0x8025fe0b7 <dcerpc_binding_handle_call_send+947> at /usr/local/lib/libdcerpc-binding.so.0
Nov 16 00:03:23 freenas winbindd43331: #10 0x8025fe4c7 <dcerpc_binding_handle_call+155> at /usr/local/lib/libdcerpc-binding.so.0
Nov 16 00:03:23 freenas winbindd43331: #11 0x8020c8f95 <dcerpc_lsa_EnumTrustedDomainsEx_r+63> at /usr/local/lib/samba/libdcerpc-samba.so
Nov 16 00:03:23 freenas winbindd43331: #12 0x8020c93c2 <dcerpc_lsa_EnumTrustedDomainsEx+119> at /usr/local/lib/samba/libdcerpc-samba.so
Nov 16 00:03:23 freenas winbindd43331: #13 0x46b93f <rpc_trusted_domains+138> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #14 0x4723ac <open_internal_samr_conn+2406> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #15 0x44f5ea <wcache_lookup_groupmem+3252> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #16 0x45d778 <winbindd_dual_list_trusted_domains+160> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #17 0x474db6 <wb_domain_request_recv+377> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #18 0x477828 <wb_child_domain+290> at /usr/local/sbin/winbindd
Nov 16 00:03:23 freenas winbindd43331: #19 0x8070818e3 <tevent_req_print+3603> at /usr/local/lib/libtevent.so.0
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.400274, 0] ../source3/lib/util.c:797(smb_panic_s3)
Nov 16 00:03:23 freenas winbindd43331: smb_panic(): calling panic action [/usr/local/libexec/samba/samba-backtrace]
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.747003, 0] ../source3/lib/util.c:805(smb_panic_s3)
Nov 16 00:03:23 freenas winbindd43331: smb_panic(): action returned status 0
Nov 16 00:03:23 freenas winbindd43331: [2015/11/16 00:03:23.747178, 0] ../source3/lib/dumpcore.c:317(dump_core)
Nov 16 00:03:23 freenas winbindd43331: dumping core in /var/db/system/cores
Nov 16 00:03:23 freenas winbindd43331:
Nov 16 00:03:23 freenas kernel: pid 43331 (winbindd), uid 0: exited on signal 6 (core dumped)

#12 Updated by Herwarth Heitmann almost 5 years ago

ov 16 00:03:23 freenas kernel: pid 43331 (winbindd), uid 0: exited on signal 6 (core dumped)
Nov 16 00:03:33 freenas nmbd4023: [2015/11/16 00:03:33.552138, 0] ../source3/nmbd/nmbd_packets.c:759(queue_query_name)
Nov 16 00:03:33 freenas nmbd4023: queue_query_name: interface 0 has NULL IP address !
Nov 16 00:03:33 freenas nmbd4023: [2015/11/16 00:03:33.552234, 0] ../source3/nmbd/nmbd_become_dmb.c:294(become_domain_master_browser_bcast)
Nov 16 00:03:33 freenas nmbd4023: become_domain_master_browser_bcast:
Nov 16 00:03:33 freenas nmbd4023: Attempting to become domain master browser on workgroup HELUX on subnet 172.16.3.3
Nov 16 00:03:33 freenas nmbd4023: [2015/11/16 00:03:33.552273, 0] ../source3/nmbd/nmbd_become_dmb.c:307(become_domain_master_browser_bcast)
Nov 16 00:03:33 freenas nmbd4023: become_domain_master_browser_bcast: querying subnet 172.16.3.3 for domain master browser on workgroup HELUX
Nov 16 00:03:33 freenas nmbd4023: [2015/11/16 00:03:33.552296, 0] ../source3/nmbd/nmbd_packets.c:759(queue_query_name)
Nov 16 00:03:33 freenas nmbd4023: queue_query_name: interface 0 has NULL IP address !
Nov 16 00:03:33 freenas nmbd4023: [2015/11/16 00:03:33.552850, 0] ../source3/nmbd/nmbd_become_dmb.c:237(become_domain_master_query_success)
Nov 16 00:03:33 freenas nmbd4023: become_domain_master_query_success:
Nov 16 00:03:33 freenas nmbd4023: There is already a domain master browser at IP 172.16.3.37 for workgroup HELUX registered on subnet 172.16.3.3.
Nov 16 00:04:31 freenas nmbd4023: [2015/11/16 00:04:31.841191, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:04:31 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:05:31 freenas nmbd4023: [2015/11/16 00:05:31.847201, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:05:31 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:06:30 freenas nmbd4023: [2015/11/16 00:06:30.885831, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:06:30 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:06:30 freenas nmbd4023: [2015/11/16 00:06:30.885917, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:06:30 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:07:48 freenas nmbd4023: [2015/11/16 00:07:48.543208, 0] ../source3/nmbd/nmbd_packets.c:1174(process_lanman_packet)
Nov 16 00:07:48 freenas nmbd4023: process_lanman_packet: Discarding datagram from IP 172.16.3.3. Source name FREENAS<00> is one of our names !
Nov 16 00:08:23 freenas winbindd44475: [2015/11/16 00:08:23.400689, 0] ../source3/passdb/secrets.c:366(fetch_ldap_pw)
Nov 16 00:08:23 freenas winbindd44475: fetch_ldap_pw: neither ldap secret retrieved!
Nov 16 00:08:23 freenas winbindd44475: [2015/11/16 00:08:23.400784, 0] ../source3/passdb/pdb_ldap.c:6427(pdb_init_ldapsam_common)
Nov 16 00:08:23 freenas winbindd44475: pdb_init_ldapsam_common: Failed to retrieve LDAP password from secrets.tdb
Nov 16 00:08:23 freenas winbindd44475: [2015/11/16 00:08:23.400809, 0] ../source3/passdb/pdb_interface.c:178(make_pdb_method_name)
Nov 16 00:08:23 freenas winbindd44475: pdb backend ldapsam:ldap://ldap.mngt.bh.helux.nl did not correctly init (error was NT_STATUS_NO_MEMORY)
Nov 16 00:08:23 freenas winbindd44475: [2015/11/16 00:08:23.400848, 0] ../source3/lib/util.c:785(smb_panic_s3)
Nov 16 00:08:23 freenas winbindd44475: PANIC (pid 44475): pdb_get_methods: failed to get pdb methods for backend ldapsam:ldap://ldap.mngt.bh.helux.nl
Nov 16 00:08:23 freenas winbindd44475:
Nov 16 00:08:23 freenas winbindd44475: [2015/11/16 00:08:23.401121, 0] ../source3/lib/util.c:896(log_stack_trace)
Nov 16 00:08:23 freenas winbindd44475: BACKTRACE: 20 stack frames:
Nov 16 00:08:23 freenas winbindd44475: #0 0x8055231ec <smb_panic_s3+111> at /usr/local/lib/libsmbconf.so.0
Nov 16 00:08:23 freenas winbindd44475: #1 0x800b7216f <smb_panic+40> at /usr/local/lib/libsamba-util.so.0
Nov 16 00:08:23 freenas winbindd44475: #2 0x80282998b <make_pdb_method_name+1349> at /usr/local/lib/libpdb.so.0
Nov 16 00:08:23 freenas winbindd44475: #3 0x80282be79 <pdb_capabilities+13> at /usr/local/lib/libpdb.so.0
Nov 16 00:08:23 freenas winbindd44475: #4 0x4c4c9e <_lsa_EnumTrustedDomainsEx+21> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #5 0x4cf256 <_lsa_LSARADTREPORTSECURITYEVENT+36934> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #6 0x433978 <make_internal_rpc_pipe_p+1461> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #7 0x433c03 <make_internal_rpc_pipe_p+2112> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #8 0x8025fd7a5 <dcerpc_binding_handle_raw_call_send+195> at /usr/local/lib/libdcerpc-binding.so.0
Nov 16 00:08:23 freenas winbindd44475: #9 0x8025fe0b7 <dcerpc_binding_handle_call_send+947> at /usr/local/lib/libdcerpc-binding.so.0
Nov 16 00:08:23 freenas winbindd44475: #10 0x8025fe4c7 <dcerpc_binding_handle_call+155> at /usr/local/lib/libdcerpc-binding.so.0
Nov 16 00:08:23 freenas winbindd44475: #11 0x8020c8f95 <dcerpc_lsa_EnumTrustedDomainsEx_r+63> at /usr/local/lib/samba/libdcerpc-samba.so
Nov 16 00:08:23 freenas winbindd44475: #12 0x8020c93c2 <dcerpc_lsa_EnumTrustedDomainsEx+119> at /usr/local/lib/samba/libdcerpc-samba.so
Nov 16 00:08:23 freenas winbindd44475: #13 0x46b93f <rpc_trusted_domains+138> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #14 0x4723ac <open_internal_samr_conn+2406> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #15 0x44f5ea <wcache_lookup_groupmem+3252> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #16 0x45d778 <winbindd_dual_list_trusted_domains+160> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #17 0x474db6 <wb_domain_request_recv+377> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #18 0x477828 <wb_child_domain+290> at /usr/local/sbin/winbindd
Nov 16 00:08:23 freenas winbindd44475: #19 0x8070818e3 <tevent_req_print+3603> at /usr/local/lib/libtevent.so.0
Nov 16 00:08:23 freenas winbindd44475: [2015/11/16 00:08:23.401329, 0] ../source3/lib/util.c:797(smb_panic_s3)
Nov 16 00:08:23 freenas winbindd44475: smb_panic(): calling panic action [/usr/local/libexec/samba/samba-backtrace]
Nov 16 00:08:24 freenas winbindd44475: [2015/11/16 00:08:24.216289, 0] ../source3/lib/util.c:805(smb_panic_s3)
Nov 16 00:08:24 freenas winbindd44475: smb_panic(): action returned status 0
Nov 16 00:08:24 freenas winbindd44475: [2015/11/16 00:08:24.216458, 0] ../source3/lib/dumpcore.c:317(dump_core)
Nov 16 00:08:24 freenas winbindd44475: dumping core in /var/db/system/cores
Nov 16 00:08:24 freenas winbindd44475:
Nov 16 00:08:24 freenas kernel: pid 44475 (winbindd), uid 0: exited on signal 6 (core dumped)

#13 Updated by Josh Paetzel almost 5 years ago

That kernel panic is being generated by CTL.

Take a look at ddb.txt for the backtrace. At any rate, it's orthogonal to your problem

#14 Updated by Herwarth Heitmann almost 5 years ago

  • File ddb.txt added

#15 Updated by Herwarth Heitmann almost 5 years ago

i really don't know how to interpret it.

#16 Updated by Josh Paetzel almost 5 years ago

I do. And it's an iSCSI kernel panic. ddb.txt is included in the save debug you already attached.

#17 Updated by Vaibhav Chauhan almost 5 years ago

John, did the user attached debug helped you to interpret the issue ?

#18 Updated by John Hixson almost 5 years ago

Herwarth,

Does your LDAP server have samba attributes configured? I'm also curious if you have the idmap ldap backend configured correctly.

#19 Updated by John Hixson almost 5 years ago

John Hixson wrote:

Herwarth,

Does your LDAP server have samba attributes configured? I'm also curious if you have the idmap ldap backend configured correctly.

After looking at your config again, I am certain you have not configured the idmap backend correctly. This is most likely your problem.

#20 Updated by John Hixson almost 5 years ago

John Hixson wrote:

John Hixson wrote:

Herwarth,

Does your LDAP server have samba attributes configured? I'm also curious if you have the idmap ldap backend configured correctly.

After looking at your config again, I am certain you have not configured the idmap backend correctly. This is most likely your problem.

https://www.samba.org/samba/docs/man/manpages/idmap_ldap.8.html

#21 Updated by Vaibhav Chauhan almost 5 years ago

  • Target version changed from 261 to Unspecified

moving this bug to SU candidate, John please mark this bug with appropriate resolution when available.

#22 Updated by John Hixson almost 5 years ago

  • Status changed from 15 to Closed: User Config Issue

#23 Updated by Herwarth Heitmann almost 5 years ago

hello,

this bug is not resolved yet... i do not know how to set idmapping on my openldap server.... and i don't think it is the problem.
it is not connecting to the ldap at all for cifs. afp works.... freenas ssh login with ldap works.

there is a similar bug with no solution but closed over a year ago:

https://bugs.freenas.org/issues/4624

#24 Avatar?id=14398&size=24x24 Updated by Kris Moore about 3 years ago

  • Target version changed from Unspecified to N/A

#25 Updated by Dru Lavigne almost 3 years ago

  • File deleted (debug-freenas-20151117224819..tgz)

#26 Updated by Dru Lavigne almost 3 years ago

  • File deleted (ddb.txt)

Also available in: Atom PDF