Created attachment 13504 [details] Possible backport patches for master krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Client sent patypes: PK-INIT(ietf), OCSP, 128 [2017/08/22 14:29:00.910355, 3] ../source4/auth/kerberos/ krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Looking for PKINIT pa-data -- testsso\@realm@REALM [2017/08/22 14:29:00.911763, 3] ../source4/auth/kerberos/ krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: PKINIT: Can't decode algorithm parameters in clientPublicValue [2017/08/22 14:29:00.911844, 3] ../source4/auth/kerberos/ krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Failed to decode PKINIT PA-DATA -- testsso\@realm@REALM
Created attachment 13505 [details] Possible backport patches for master This time with BUG: line...
Vmware Horizon skips the 'q' part of DomainParameters...
Created attachment 13510 [details] Patches for v4-7-test
Created attachment 13511 [details] Patches for v4-6-test
There's an additional fix coming... See https://lists.samba.org/archive/samba-technical/2017-August/122606.html
Created attachment 13858 [details] Patches for v4-7-test (including the typo fix)
Created attachment 13859 [details] Patches for v4-6-test (including the typo fix)
Created attachment 13860 [details] Patches for v4-5-test (including the typo fix) just as reference This is not for upstream as 4.5 doesn't get bug fixes anymore. I'm only attaching it in case someone needs it.
Pushed to autobuild-v4-{7,6}-test.
(In reply to Karolin Seeger from comment #9) Pushed to both branches. Closing out bug report. Thanks!