cURL / Mailing Lists / curl-library / Single Mail


Re: [PATCH] SF bug #1302: HTTP Auth Negotiate sends Kerberos token instead of SPNEGO token

From: David Woodhouse <>
Date: Tue, 15 Jul 2014 14:34:43 +0100

On Tue, 2014-07-15 at 13:18 +0200, Michael Osipov wrote:
> Please have a look again:
> I'll test that by the end of the week and make a complete patch
> proposal if everything is fine.

Merged into git://, which
now looks like this:

David Woodhouse (8):
      ntlm_wb: Fix hard-coded limit on NTLM auth packet size
      ntlm_wb: Avoid invoking ntlm_auth helper with empty username
      Remove all traces of FBOpenSSL SPNEGO support
      Use SPNEGO for HTTP Negotiate
      Don't clear GSSAPI state between each exchange in the negotiation
      Don't abort Negotiate auth when the server has a response for us
      Fix negotiate auth to proxies to track correct state
      Support WWW-Authenticate: Kerberos in place of defunct GSS-Negotiate

Michael Osipov (4):
      Add feature and version info for GSS-API (like with SSPI)
      Deprecate GSS-Negotiate related macros due to bad naming
      Make Negotiate (SPNEGO) CLI options and help available only when appropriate
      Improve inline GSS-API naming in code documentation

Does that look OK to you?

David Woodhouse                            Open Source Technology Centre                              Intel Corporation

List admin:

  • application/x-pkcs7-signature attachment: smime.p7s
Received on 2014-07-15