Re: [PATCH 0/3] MR8020: libs/ldap: Make GSS-SPNEGO SASL plugin work with LDAP server that uses Kerberos authentication.

13 May 2025


      Hans Leidekker (@hans) commented about libs/ldap/libldap/sasl_w.c:
...
     if (status == SEC_I_CONTINUE_NEEDED) return SASL_CONTINUE;
     else
     {


       if (((flags & ISC_REQ_INTEGRITY) && !(attrs & ISC_RET_INTEGRITY)) ||


           ((flags & ISC_REQ_CONFIDENTIALITY) && !(attrs & ISC_RET_CONFIDENTIALITY)))


           return SASL_BADSERV; /* refuse to continue if the server doesn't support requested security levels */


The RFC you mention is about Kerberos. Does NTLM have the same requirement?
-- 
https://gitlab.winehq.org/wine/wine/-/merge_requests/8020#note_103108

2025

2024

2023

2022

Re: [PATCH 0/3] MR8020: libs/ldap: Make GSS-SPNEGO SASL plugin work with LDAP server that uses Kerberos authentication.