Smbd crash while closing connection
shilpa.krishnareddy at gmail.com
Thu Feb 26 10:40:54 MST 2015
The problem reported in this mail thread can be reproduced with below steps:
1. Map network drive (Z:) to a share winshare
2. Using fsmgmt.msc on windows system, connect to Server. Go to shares
section and stop sharing winshare.
3. Disconnect mapped network drive Z:
Smbd cores with the same foot prints reported in this mail thread.
In the steps reported above, as part of step 2, smbd clears the
corresponding share entry (service name) in ServicePtrs. While executing
step 3, when smbd tries to get service name based on service number, it
will get a NULL service name because the folder path was already stopped
from being shared. Due to this NULL service name, smbd cores in strlcpy().
Can you please let me know if we can just return from yield_connection in
case the service name is NULL?
On Wed, Feb 25, 2015 at 5:57 PM, Volker Lendecke <Volker.Lendecke at sernet.de>
> On Wed, Feb 25, 2015 at 04:52:21PM +0530, Shilpa K wrote:
> > Hi Volker,
> > Actually, code changes are in multiple places to tailor Samba for our
> > specific use. This particular crash seems to have been reported couple of
> > times (with 3.3 and 3.5.15):
> > https://bugzilla.samba.org/show_bug.cgi?id=6724
> > https://lists.samba.org/archive/samba-technical/2012-May/083909.html
> > Like Richard suggests in the above technical list, is it ok to return
> > the service name is NULL?
> Ok, sorry, I missed that. Can you please retry with 4.1? According to
> 3.6 is security fixes only mode. If you depend on 3.6, you might contact
> someone from https://www.samba.org/samba/support/ to assist you with
> your questions.
> With best regards,
> SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
> phone: +49-551-370000-0, fax: +49-551-370000-9
> AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen
> http://www.sernet.de, mailto:kontakt at sernet.de
More information about the samba-technical