[PATCH 8/9] kerberos: Don't include GSS_C_DCE_STYLE in default gss_init_sec_context() flags.

Dmitry Timoshkov dmitry at baikal.ru
Mon Feb 5 04:26:25 CST 2018


Hans Leidekker <hans at codeweavers.com> wrote:

> > This patch is marked as 'Superseded' in the patch tracker, but my testing
> > shows that (after applying "[PATCH 13/13] secur32: Add support for switching
> > between Kerberos and NTLM in Negotiate provider.") both my test program and
> > Kerberos Authentication Tester still fail to authenticate without removing
> > GSS_C_DCE_STYLE when creating initial Kerberos context.
> > 
> > Thus, I believe that 'Superseded' state was assigned by mistake. If that's
> > not the case please point out to a patch that was supposed to obsolete this
> > one.
> 
> I showed you how simply removing GSS_C_DCE_STYLE failed my tests, so
> the patch should have been marked as rejected.

Sure, I was mostly curious about the replacement patch.

> Note that Kerberos
> Authentication Tester only tests initializing a Negotiate security 
> context whereas my tests work directly against the Kerberos provider,
> and they include tests for signing and sealing.
> 
> I have submitted a patch that should fix your problem.

Thanks, your patch looks good to me. Please also note that I have a much
more complex application than Kerberos Tester that requires support for
Kerberos authentication, and I'm mentioning Kerberos Tester just so you
could reproduce the problem on your own.

-- 
Dmitry.



More information about the wine-devel mailing list