[Bug 1578576] Re: ntlm_auth --helper-protocol=squid-2.5-ntlmssp report segfault

Sven Ehret 1578576 at bugs.launchpad.net
Mon May 9 07:09:12 UTC 2016

running an Apache2 server with NTLM authentication against an AD,
stopped working with 500 Internal Server error since the Samba upgrade.

Apache config:
AuthType NTLM
AuthName "..."
NTLMAuth on
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-.5-ntlmssp"
NTLMBasicAuthoritative on
require valid-user

May  9 08:41:17 intranet-gvp kernel: [438844.377831] ntlm_auth[23011]: segfault at 8 ip 00007f512efcf9b0 sp 00007ffc8017cc78 error 4 in libsamba-security.so.0[7f512efc4000+1b000]
May  9 08:41:23 intranet-gvp kernel: [438849.956323] ntlm_auth[23148]: segfault at 8 ip 00007f39b08e99b0 sp 00007fff4ba86bb8 error 4 in libsamba-security.so.0[7f39b08de000+1b000]
May  9 08:41:30 intranet-gvp kernel: [438856.430960] ntlm_auth[23240]: segfault at 8 ip 00007f96a55309b0 sp 00007ffe0a7eaa98 error 4 in libsamba-security.so.0[7f96a5525000+1b000]
May  9 08:43:30 intranet-gvp kernel: [438977.462065] ntlm_auth[25264]: segfault at 8 ip 00007f874faf29b0 sp 00007ffd417d0478 error 4 in libsamba-security.so.0[7f874fae7000+1b000]
May  9 08:45:03 intranet-gvp kernel: [439070.043363] ntlm_auth[28559]: segfault at 8 ip 00007fb5af4769b0 sp 00007ffcc2b84918 error 4 in libsamba-security.so.0[7fb5af46b000+1b000]
May  9 08:47:12 intranet-gvp kernel: [439199.384723] ntlm_auth[30675]: segfault at 8 ip 00007f357d1439b0 sp 00007ffef1ea7c98 error 4 in libsamba-security.so.0[7f357d138000+1b000]
May  9 08:47:25 intranet-gvp kernel: [439211.944010] ntlm_auth[30822]: segfault at 8 ip 00007f89a24e49b0 sp 00007ffffb32b3c8 error 4 in libsamba-security.so.0[7f89a24d9000+1b000]
May  9 08:50:12 intranet-gvp kernel: [439379.146404] ntlm_auth[1121]: segfault at 8 ip 00007fdb6f7d19b0 sp 00007ffcf44e5728 error 4 in libsamba-security.so.0[7fdb6f7c6000+1b000]

After rollback to Samba packages 4.3.8, the system is running again.

$ pgrep ntlm -a
2192 ntlm_auth
4951 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
4952 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
4953 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
6074 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
6503 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
6596 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
15376 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
17037 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
17149 /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp

You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.

  ntlm_auth --helper-protocol=squid-2.5-ntlmssp report segfault

Status in samba package in Ubuntu:

Bug description:
  System version: Ubuntu 14.04.4 LTS
  Squid version: 2:4.3.8+dfsg-0ubuntu0.14.04.2
  Winbind version: 2:4.3.8+dfsg-0ubuntu0.14.04.2 upgrade to 2:4.3.9+dfsg-0ubuntu0.14.04.1

  My ubuntu server installed Squid to perform http_proxy. Squid auth the
  Active Directory users(Win2003) by winbind, settings like follow:

  auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp

  Everything is ok until I upgrade winbind from 2:4.3.8+dfsg-
  0ubuntu0.14.04.2 to 2:4.3.9+dfsg-0ubuntu0.14.04.1 today. Squid can't
  auth the AD users anymore. There are some error log in the cache.log:

  2016/05/05 13:50:45| ERROR: NTLM Authentication Helper '0x7fb54812af68' crashed!.
  2016/05/05 13:50:45| ERROR: NTLM Authentication validating user. Error returned 'BH Internal error'

  And there are some error log in the /var/log/syslog:

  May  5 09:26:08 ocelot kernel: [  187.793014] ntlm_auth[4543]: segfault at 8 ip 00007f10aad619b0 sp 00007ffc1ed0e778 error 4 in libsamba-security.so.0[7f10aad56000+1b000]
  May  5 09:26:08 ocelot kernel: [  188.207378] ntlm_auth[5062]: segfault at 8 ip 00007f41ada4d9b0 sp 00007ffebc1a1108 error 4 in libsamba-security.so.0[7f41ada42000+1b000]
  May  5 09:26:08 ocelot kernel: [  188.438501] ntlm_auth[4535]: segfault at 8 ip 00007f73fa26a9b0 sp 00007ffc1c63f808 error 4 in libsamba-security.so.0[7f73fa25f000+1b000]
  May  5 09:26:35 ocelot kernel: [  214.949867] ntlm_auth[5063]: segfault at 8 ip 00007fc1b5c459b0 sp 00007fffd3d5b398 error 4 in libsamba-security.so.0[7fc1b5c3a000+1b000]
  May  5 09:26:35 ocelot kernel: [  215.026850] ntlm_auth[5067]: segfault at 8 ip 00007f782ba5c9b0 sp 00007ffe59d96aa8 error 4 in libsamba-security.so.0[7f782ba51000+1b000]

  And now I downgraded winbind to 2:4.1.6+dfsg-1ubuntu2(I can't
  downgrade it to 2:4.3.8+dfsg-0ubuntu0.14.04.2, it keeps telling me
  "Unable to find a version..."), Squid auth_param ntlm works again.

To manage notifications about this bug go to:

More information about the foundations-bugs mailing list