Bug 15912 - samba4.ntvfs.cifs.krb5.base.lock fails with MIT Kerberos
Summary: samba4.ntvfs.cifs.krb5.base.lock fails with MIT Kerberos
Status: RESOLVED FIXED
Alias: None
Product: Samba 4.1 and newer
Classification: Unclassified
Component: AD: LDB/DSDB/SAMDB (show other bugs)
Version: unspecified
Hardware: All All
: P5 normal (vote)
Target Milestone: ---
Assignee: Jule Anger
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2025-09-10 13:15 UTC by Andreas Schneider
Modified: 2025-09-17 07:37 UTC (History)
1 user (show)

See Also:

Attachments
patch for 4.23 (1.44 KB, patch)
2025-09-12 05:31 UTC, Andreas Schneider 		ab: review+
Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Schneider 2025-09-10 13:15:37 UTC 
samba4.ntvfs.cifs.krb5.base.lock fails with MIT Kerberos

I've bisected it and the culprit is:

ec6892bd1fcc0391f9aa831d7e4f095825dafb56 is the first bad commit
commit ec6892bd1fcc0391f9aa831d7e4f095825dafb56
Author: Stefan Metzmacher <metze@samba.org>
Date:   Wed Nov 6 14:29:10 2024 +0100

    gensec: add GENSEC_FEATURE_NO_DELEGATION flag to avoid GSS_C_DELEG[_POLICY]_FLAG
    
    Signed-off-by: Stefan Metzmacher <metze@samba.org>
    Reviewed-by: Andreas Schneider <asn@samba.org>

 auth/gensec/gensec.h                | 1 +
 source3/librpc/crypto/gse.c         | 5 ++++-
 source4/auth/gensec/gensec_gssapi.c | 4 ++++
 3 files changed, 9 insertions(+), 1 deletion(-)
Comment 1 Samba QA Contact 2025-09-11 17:05:03 UTC 
This bug was referenced in samba master:

66d3e5e49d34b0a4bfb8f2c862d48d11e27b2ea2
Comment 2 Andreas Schneider 2025-09-12 05:31:04 UTC 
Created attachment 18722 [details]
patch for 4.23
Comment 3 Alexander Bokovoy 2025-09-12 05:32:02 UTC 
Comment on attachment 18722 [details]
patch for 4.23

LGTM
Comment 4 Alexander Bokovoy 2025-09-12 06:14:07 UTC 
Jule, please push this to the 4.23 release branch. Thank you!
Comment 5 Jule Anger 2025-09-12 06:22:32 UTC 
Pushed to autobuild-v4-23-test.
Comment 6 Samba QA Contact 2025-09-12 07:24:03 UTC 
This bug was referenced in samba v4-23-test:

c51f476794abaa81460f7af46efeb0cd5d6bb0c9
Comment 7 Samba QA Contact 2025-09-12 08:29:54 UTC 
This bug was referenced in samba v4-23-stable (Release samba-4.23.0):

c51f476794abaa81460f7af46efeb0cd5d6bb0c9
Comment 8 Jule Anger 2025-09-17 07:37:13 UTC 
Closing out bug report.

Thanks!