❓ [Samba NAS] other_users running into NT_STATUS_ACCESS_DENIED

[Selovert]

Addon

SambaNAS

Your request

What's going on

Having trouble connecting as a non-master user to shares. Hoping it's just some obvious thing I'm missing!

Details:

• no problem connecting as the master user to either share (fern/sarahbackup)
• using this path on a mac to connect as the other user: smb://sarah@192.168.0.100
  • using the same computer to connect as tassilo and sarah
• both mounted shares are ext4

Config

workgroup: WORKGROUP
username: tassilo
allow_hosts:
  - 10.0.0.0/8
  - 172.16.0.0/12
  - 192.168.0.0/16
  - 169.254.0.0/16
  - fe80::/10
  - fc00::/7
automount: true
moredisks: []
mountoptions:
  - nosuid
  - relatime
  - noexec
available_disks_log: true
medialibrary:
  enable: false
veto_files:
  - ._*
  - .DS_Store
  - Thumbs.db
  - icon?
  - .Trashes
compatibility_mode: true
recyle_bin_enabled: false
wsdd2: false
mqtt_nexgen_entities: false
autodiscovery: {}
other_users:
  - username: sarah
    password: ******
acl:
  - share: FERN
    timemachine: true
  - share: SARAHBACKUP
    timemachine: true
    users:
      - sarah
interfaces: []
password: ******

Log

s6-rc: info: service init-samba: starting
s6-rc: info: service hd-idle: starting
s6-rc: info: service hd-idle successfully started
[07:46:13] INFO: Hostname: basilio
[07:46:13] INFO: Interfaces: wlp1s0 eno1 
[07:46:13] INFO: Docker Interface: hassio 172.30.32.0/23
[07:46:13] INFO: Enabling S.M.A.R.T for /dev/sda
smartctl 7.4 2023-08-01 r5530 [x86_64-linux-6.6.54-haos] (local build)
Copyright (C) 2002-23, Bruce Allen, Christian Franke, www.smartmontools.org

=== START OF ENABLE/DISABLE COMMANDS SECTION ===
SMART Enabled.
SMART Attribute Autosave Enabled.
SMART Enable Automatic Offline failed: scsi error badly formed scsi parameters

[07:46:13] INFO: Enabling S.M.A.R.T for /dev/sdb
smartctl 7.4 2023-08-01 r5530 [x86_64-linux-6.6.54-haos] (local build)
Copyright (C) 2002-23, Bruce Allen, Christian Franke, www.smartmontools.org

tdbsam_open: Converting version 0.0 database to version 4.0.
tdbsam_convert_backup: updated /var/lib/samba/private/passdb.tdb file.
Added user tassilo.
=== START OF ENABLE/DISABLE COMMANDS SECTION ===
SMART Enabled.
SMART Attribute Autosave Enabled.
SMART Automatic Offline Testing Enabled every four hours.

[07:46:13] INFO: Enabling S.M.A.R.T for /dev/sdc
smartctl 7.4 2023-08-01 r5530 [x86_64-linux-6.6.54-haos] (local build)
Copyright (C) 2002-23, Bruce Allen, Christian Franke, www.smartmontools.org

Added user sarah.
---------------------------------------------------
[07:46:13] INFO: Exposed Disks Summary:
[CONFIG]                path = /homeassistant # TM:false#
[ADDONS]                path = /addons # TM:false#
[SSL]                   path = /ssl # TM:false#
[SHARE]                 path = /share # TM:false#
[BACKUP]                path = /backup # TM:false#
[MEDIA]                 path = /media # TM:false#
[ADDON_CONFIGS]         path = /addon_configs # TM:false#
[FERN]                  path = /mnt/Fern # TM:true#
[SARAHBACKUP]           path = /mnt/sarahbackup # TM:true#
---------------------------------------------------
s6-rc: info: service init-samba successfully started
s6-rc: info: service init-mqtt: starting
s6-rc: info: service wsdd: starting
s6-rc: info: service smbd: starting
s6-rc: info: service nmbd: starting
s6-rc: info: service avahi: starting
s6-rc: info: service wsdd successfully started
s6-rc: info: service smbd successfully started
s6-rc: info: service nmbd successfully started
s6-rc: info: service cifs-supervisor-mount: starting
s6-rc: info: service avahi successfully started
s6-rc: info: service cifs-supervisor-mount successfully started
[07:46:13] INFO: Starting the AVAHI for basilio...
nmbd version 4.18.9 started.
Copyright Andrew Tridgell and the Samba Team 1992-2023
Waiting for daemon ...
smbd version 4.18.9 started.
Copyright Andrew Tridgell and the Samba Team 1992-2023
[07:46:13] INFO: MQTT support not enabled in config
s6-rc: info: service init-mqtt successfully started
s6-rc: info: service mqtt-disk-handler: starting
INFO: Profiling support unavailable in this build.
[07:46:13] INFO: Starting the wsdd daemon for WORKGROUP/basilio...
s6-rc: info: service mqtt-disk-handler successfully started
s6-rc: info: service mqtt-handler: starting
s6-rc: info: service mqtt-handler successfully started
[07:46:13] INFO: Interfaces: -i wlp1s0 -i eno1 
=== START OF ENABLE/DISABLE COMMANDS SECTION ===
SMART Enabled.
SMART Attribute Autosave Enabled.
SMART Automatic Offline Testing Enabled every four hours.
2024-11-03 07:46:13,717:wsdd INFO(pid 401): using pre-defined UUID cb6a33a0-b841-531d-a34e-09ecec492eb1
2024-11-03 07:46:13,719:wsdd INFO(pid 401): joined multicast group 239.255.255.250 on 192.168.0.100%eno1
2024-11-03 07:46:13,721:wsdd INFO(pid 401): scheduling Hello message via eno1 to 239.255.255.250%eno1
2024-11-03 07:46:13,804:wsdd INFO(pid 401): joined multicast group [ff02::c] on fe80::8a05:69ab:8463:787a%eno1
2024-11-03 07:46:13,806:wsdd INFO(pid 401): scheduling Hello message via eno1 to ff02::c%eno1

s6-rc: info: service init-smartd successfully started
s6-rc: info: service legacy-services: starting
s6-rc: info: service legacy-services successfully started
*****

Samba name server BASILIO is now a local master browser for workgroup WORKGROUP on subnet 192.168.0.100

*****
*****

Samba name server BASILIO is now a local master browser for workgroup WORKGROUP on subnet 172.30.32.1

*****
create_connection_session_info: user 'sarah' (from session setup) not permitted to access this share (SARAHBACKUP)
create_connection_session_info failed: NT_STATUS_ACCESS_DENIED
create_connection_session_info: user 'sarah' (from session setup) not permitted to access this share (SARAHBACKUP)
create_connection_session_info failed: NT_STATUS_ACCESS_DENIED
parse_dfs_path_strict: can't parse hostname from path \192.168.0.100

[dianlight]

The config seems ok. I'm trying to replicate without success.

It can be the password set for the user Sarah. Can you try with a simple password without special characters if it works? Also if you don't use the " to enclose the password in yaml try it.

Also can you try to set the log level to trace and repost the log? Attention that in trace sensitive data can be in the output replace with * before post.

L.

[Selovert]

changed the password to testpassword, and got the same results :(.

When the log is set to trace it moves very quickly, but I was able to catch the connection request when attempting to connect from her macbook

Group[  0]: 1001
fsp_new: allocated files structure (1 used)
chdir_below_conn: Bad access attempt: . is a symlink outside the share path
conn_rootdir =/tmp
resolved_name=/
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
vfs_ChDir to 
vfs_ChDir to /
vfs_ChDir: vfs_ChDir got /
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/]
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
fsp_new: allocated files structure (1 used)
chdir_below_conn: Bad access attempt: . is a symlink outside the share path
conn_rootdir =/tmp
resolved_name=/
file_free: freed files structure 0 (0 used)
macbookair-add2 (ipv4:192.168.0.196:58108) signed connect to service IPC$ initially as user sarah (uid=1001, gid=1001) (pid 863)
signed SMB2 message (sign_algo_id=1)
setting sec ctx (1001, 1001) - sec_ctx_stack_ndx = 0
Security token SIDs (7):
  SID[  0]: S-1-5-21-4092821647-3468014018-2806097045-1001
  SID[  1]: S-1-5-21-4092821647-3468014018-2806097045-513
  SID[  2]: S-1-22-2-1001
  SID[  3]: S-1-1-0
  SID[  4]: S-1-5-2
  SID[  5]: S-1-5-11
  SID[  6]: S-1-22-1-1001
 Privileges (0x               0):
 Rights (0x               0):
UNIX token of user 1001
Primary group is 1001 and contains 1 supplementary groups
Group[  0]: 1001
vfs_ChDir to /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/tmp]
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
parse_dfs_path_strict: can't parse hostname from path \192.168.0.100
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_NOT_FOUND] || at ../../source3/smbd/smb2_ioctl.c:353
change_to_user_impersonate: Skipping user change - already user
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/tmp]
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
vfs_ChDir to /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /tmp
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
macbookair-add2 (ipv4:192.168.0.196:58108) closed connection to service IPC$
vfs_ChDir to /
fsp_new: allocated files structure (1 used)
chdir_below_conn: Bad access attempt: . is a symlink outside the share path
conn_rootdir =/tmp
resolved_name=/
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
vfs_ChDir to 
vfs_ChDir to /
vfs_ChDir: vfs_ChDir got /
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb

Here is the result when connecting from my computer (looks about the same)

dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
parse_dfs_path_strict: can't parse hostname from path \192.168.0.100
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_NOT_FOUND] || at ../../source3/smbd/smb2_ioctl.c:353
change_to_user_impersonate: Skipping user change - already user
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/tmp]
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
vfs_ChDir to /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /tmp
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
maslin (ipv4:192.168.0.18:57222) closed connection to service IPC$
vfs_ChDir to /
fsp_new: allocated files structure (1 used)
chdir_below_conn: Bad access attempt: . is a symlink outside the share path
conn_rootdir =/tmp
resolved_name=/
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
vfs_ChDir to 
vfs_ChDir to /
vfs_ChDir: vfs_ChDir got /
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
find_workgroup_on_subnet: workgroup search for WORKGROUP on subnet 192.168.0.100: found.
find_workgroup_on_subnet: workgroup search for WORKGROUP on subnet 172.30.32.1: found.
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_session_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_session_global.tdb
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_client_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_client_global.tdb
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
Server exit (NT_STATUS_END_OF_FILE)

[dianlight]

Please try the release 12.3.2-nas.beta80 in the beta channel repository (https://github.com/dianlight/hassio-addons-beta). It contains samba 4.19.9 that is more friendy with the error. Also this in version if you set logger to trace the generated smb.conf also is saved in ADDONS_CONFIG share.

If don't work please repost the log and the generated smb.conf

L.

[Selovert]

Thanks for following up! I installed the beta80 and had the same error. This time I was able to download the log and get the relevant section.

smb.conf is below that

maslin (ipv4:192.168.0.18:51905) signed connect to service IPC$ initially as user sarah (uid=1001, gid=1001) (pid 906)
signed SMB2 message (sign_algo_id=2)
setting sec ctx (1001, 1001) - sec_ctx_stack_ndx = 0
Security token SIDs (7):
  SID[  0]: S-1-5-21-896270746-1127428994-3577097185-1001
  SID[  1]: S-1-5-21-896270746-1127428994-3577097185-513
  SID[  2]: S-1-22-2-1001
  SID[  3]: S-1-1-0
  SID[  4]: S-1-5-2
  SID[  5]: S-1-5-11
  SID[  6]: S-1-22-1-1001
 Privileges (0x               0):
 Rights (0x               0):
UNIX token of user 1001
Primary group is 1001 and contains 1 supplementary groups
Group[  0]: 1001
vfs_ChDir to /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/tmp]
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
get_referred_path: |SARAHBACKUP| in dfs path \192.168.0.100\SARAHBACKUP is not a dfs root.
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_NOT_FOUND] || at ../../source3/smbd/smb2_ioctl.c:355
change_to_user_impersonate: Skipping user change - already user
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/tmp]
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
vfs_ChDir to /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /tmp
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
maslin (ipv4:192.168.0.18:51905) closed connection to service IPC$
vfs_ChDir to /
fsp_new: allocated files structure (1 used)
chdir_below_conn: Bad access attempt: . is a symlink outside the share path
conn_rootdir =/tmp
resolved_name=/
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
vfs_ChDir to 
vfs_ChDir to /
vfs_ChDir: vfs_ChDir got /
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
Allowed connection from 192.168.0.18 (192.168.0.18)
make_connection_snum: Connect path is '/tmp' for service [IPC$]
Initialising default vfs hooks
Initialising custom vfs hooks from [/[Default VFS]/]
Successfully loaded vfs module [/[Default VFS]/] with the new modules system
Initialising custom vfs hooks from [streams_xattr]
Successfully loaded vfs module [streams_xattr] with the new modules system
Initialising custom vfs hooks from [fruit]
Successfully loaded vfs module [fruit] with the new modules system
Initialising custom vfs hooks from [catia]
Successfully loaded vfs module [catia] with the new modules system
setting sec ctx (1001, 1001) - sec_ctx_stack_ndx = 0
Security token SIDs (7):
  SID[  0]: S-1-5-21-896270746-1127428994-3577097185-1001
  SID[  1]: S-1-5-21-896270746-1127428994-3577097185-513
  SID[  2]: S-1-22-2-1001
  SID[  3]: S-1-1-0
  SID[  4]: S-1-5-2
  SID[  5]: S-1-5-11
  SID[  6]: S-1-22-1-1001
 Privileges (0x               0):
 Rights (0x               0):
UNIX token of user 1001
Primary group is 1001 and contains 1 supplementary groups
Group[  0]: 1001
fsp_new: allocated files structure (1 used)
chdir_below_conn: Bad access attempt: . is a symlink outside the share path
conn_rootdir =/tmp
resolved_name=/
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
vfs_ChDir to 
vfs_ChDir to /
vfs_ChDir: vfs_ChDir got /
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/]
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
fsp_new: allocated files structure (1 used)
chdir_below_conn: Bad access attempt: . is a symlink outside the share path
conn_rootdir =/tmp
resolved_name=/
file_free: freed files structure 0 (0 used)
maslin (ipv4:192.168.0.18:51905) signed connect to service IPC$ initially as user sarah (uid=1001, gid=1001) (pid 906)
signed SMB2 message (sign_algo_id=2)
setting sec ctx (1001, 1001) - sec_ctx_stack_ndx = 0
Security token SIDs (7):
  SID[  0]: S-1-5-21-896270746-1127428994-3577097185-1001
  SID[  1]: S-1-5-21-896270746-1127428994-3577097185-513
  SID[  2]: S-1-22-2-1001
  SID[  3]: S-1-1-0
  SID[  4]: S-1-5-2
  SID[  5]: S-1-5-11
  SID[  6]: S-1-22-1-1001
 Privileges (0x               0):
 Rights (0x               0):
UNIX token of user 1001
Primary group is 1001 and contains 1 supplementary groups
Group[  0]: 1001
vfs_ChDir to /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/tmp]
dbwrap_lock_order_lock: check lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
dbwrap_lock_order_unlock: release lock order 1 for /var/cache/samba/smbXsrv_tcon_global.tdb
get_referred_path: |SARAHBACKUP| in dfs path \192.168.0.100\SARAHBACKUP is not a dfs root.
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_NOT_FOUND] || at ../../source3/smbd/smb2_ioctl.c:355
change_to_user_impersonate: Skipping user change - already user
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
print_impersonation_info: Impersonated user: uid=(1001,1001), gid=(0,1001), cwd=[/tmp]
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
vfs_ChDir to /tmp
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
fsp_new: allocated files structure (1 used)
file_free: freed files structure 0 (0 used)
vfs_ChDir: vfs_ChDir got /tmp
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
Security token: (NULL)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
change_to_root_user: now uid=(0,0) gid=(0,0)
maslin (ipv4:192.168.0.18:51905) closed connection to service IPC$

[global]

   client min protocol = NT1
   server min protocol = NT1

   dns proxy = yes 

   ea support = yes
   vfs objects = catia fruit streams_xattr  
   fruit:aapl = yes
   fruit:model = MacSamba

   fruit:resource = file
   fruit:veto_appledouble = no
   fruit:posix_rename = yes 
   fruit:wipe_intentionally_left_blank_rfork = yes
   fruit:zero_file_id = yes
   fruit:delete_empty_adfiles = yes

   # cherry pick from PR#167 to Test
   fruit:copyfile = yes
   fruit:nfs_aces = no

   # Performance Enhancements for network
   socket options = TCP_NODELAY IPTOS_LOWDELAY
   min receivefile size = 16384
   getwd cache = yes
   aio read size = 1
   aio write size = 1  
   # End PR#167

   netbios name = basilio
   workgroup = WORKGROUP
   server string = Samba NAS HomeAssistant config
   multicast dns register = no

   security = user
   ntlm auth = yes
   idmap config * : backend = tdb
   idmap config * : range = 1000000-2000000

   load printers = no
   disable spoolss = yes

   log level = 5

   bind interfaces only = yes
   interfaces = 127.0.0.1 eno1 wlp1s0 hassio
   hosts allow = 127.0.0.1 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 169.254.0.0/16 fe80::/10 fc00::/7 172.30.32.0/23

   mangled names = no
   dos charset = CP1253
   unix charset = UTF-8   

[CONFIG]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /homeassistant
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {}|.share=config|$name=CONFIG|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:false US:tassilo 

[ADDONS]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /addons
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {}|.share=addons|$name=ADDONS|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:false US:tassilo 

[SSL]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /ssl
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {}|.share=ssl|$name=SSL|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:false US:tassilo 

[SHARE]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /share
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {}|.share=share|$name=SHARE|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:false US:tassilo 

[BACKUP]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /backup
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {}|.share=backup|$name=BACKUP|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:false US:tassilo 

[MEDIA]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /media
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {}|.share=media|$name=MEDIA|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:false US:tassilo 

[ADDON_CONFIGS]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /addon_configs
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {}|.share=addon_configs|$name=ADDON_CONFIGS|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:false US:tassilo 

[FERN]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /mnt/Fern
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {"fs":"ext4","path":"/mnt/Fern"}|.share=mnt/Fern|$name=FERN|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:true US:tassilo 
   vfs objects = catia fruit streams_xattr

   # Time Machine Settings Ref: https://github.com/markthomas93/samba.apple.templates
   fruit:time machine = yes
   #fruit:time machine max size = SIZE [K|M|G|T|P]
   fruit:metadata = stream

[SARAHBACKUP]
   browseable = yes
   writeable = yes

   # cherry pick from PR#167 to Test
   create mask = 0664
   force create mode = 0664
   directory mask = 0775
   force directory mode = 0775
   # End PR#167

   path = /mnt/sarahbackup
   valid users =_ha_mount_user_ tassilo 

   force user = root
   force group = root
   veto files = /._*/.DS_Store/Thumbs.db/icon?/.Trashes/
   delete veto files = yes

# DEBUG: {"fs":"ext4","path":"/mnt/sarahbackup"}|.share=mnt/sarahbackup|$name=SARAHBACKUP|.shares=map[FERN:map[fs:ext4 path:/mnt/Fern] SARAHBACKUP:map[fs:ext4 path:/mnt/sarahbackup]]|

# TM:true US:tassilo 
   vfs objects = catia fruit streams_xattr

   # Time Machine Settings Ref: https://github.com/markthomas93/samba.apple.templates
   fruit:time machine = yes
   #fruit:time machine max size = SIZE [K|M|G|T|P]
   fruit:metadata = stream

[dianlight]

The new beta release has the fix. Please try and give me a feedback

L