Hans Leidekker hans@codeweavers.com wrote:
This patch is marked as 'Superseded' in the patch tracker, but my testing shows that (after applying "[PATCH 13/13] secur32: Add support for switching between Kerberos and NTLM in Negotiate provider.") both my test program and Kerberos Authentication Tester still fail to authenticate without removing GSS_C_DCE_STYLE when creating initial Kerberos context.
Thus, I believe that 'Superseded' state was assigned by mistake. If that's not the case please point out to a patch that was supposed to obsolete this one.
I showed you how simply removing GSS_C_DCE_STYLE failed my tests, so the patch should have been marked as rejected.
Sure, I was mostly curious about the replacement patch.
Note that Kerberos Authentication Tester only tests initializing a Negotiate security context whereas my tests work directly against the Kerberos provider, and they include tests for signing and sealing.
I have submitted a patch that should fix your problem.
Thanks, your patch looks good to me. Please also note that I have a much more complex application than Kerberos Tester that requires support for Kerberos authentication, and I'm mentioning Kerberos Tester just so you could reproduce the problem on your own.