Some closed source SMB servers, check the gssapi channel bindings, and don't support the address type 255 for null bindings. Both heimdal and mit use 16 zero bytes instead of a md5 checksum of the channel bindings. See also: https://bugzilla.redhat.com/show_bug.cgi?id=645127 https://bugzilla.redhat.com/show_bug.cgi?id=622790
Created attachment 6164 [details] Backport Patch for v3-5-test This revert some of the changes for https://bugzilla.samba.org/show_bug.cgi?id=7583 But we match the behavior of windows, heimdal and mit now.
Jeremy, the new behavior matches RFC 4121... Can you please ack the patch?
Comment on attachment 6164 [details] Backport Patch for v3-5-test looks good and has been successfully tested (see redhat bug)
Karolin, please pick for 3.5.x
Pushed to v3-5-test. Closing out bug report. Thanks!