Smbd crash while closing connection

Richard Sharpe realrichardsharpe at
Thu Feb 26 11:40:52 MST 2015

On Thu, Feb 26, 2015 at 9:55 AM, Jeremy Allison <jra at> wrote:
> On Thu, Feb 26, 2015 at 11:10:54PM +0530, Shilpa K wrote:
>> Hello,
>> The problem reported in this mail thread can be reproduced with below steps:
>> 1. Map network drive (Z:) to a share winshare
>> 2. Using fsmgmt.msc on windows system, connect to Server. Go to shares
>> section and stop sharing winshare.
>> 3. Disconnect mapped network drive Z:
>> Smbd cores with the same foot prints reported in this mail thread.
>> In the steps reported above, as part of step 2, smbd clears the
>> corresponding share entry (service name) in ServicePtrs. While executing
>> step 3, when smbd tries to get service name based on service number, it
>> will get a NULL service name because the folder path was already stopped
>> from being shared. Due to this NULL service name, smbd cores in strlcpy().
>> Can you please let me know if we can just return from yield_connection in
>> case the service name is NULL?
> Can you reproduce this with 4.x, or is this a 3.x-only bug ?

If Shilpa does not get to this I can try soon as I have master built
and have the W2K08 VMs.

Richard Sharpe

More information about the samba-technical mailing list