From 9669794e7aeebead1c085cab7a9de2ffd1ed7923 Mon Sep 17 00:00:00 2001
From: Steve Holme <steve_holme@hotmail.com>
Date: Sun, 16 Nov 2014 13:27:03 +0000
Subject: [PATCH] sasl_sspi: Added base64 decoding debug failure messages

Just like in the NTLM code, added infof() failure messages for
DIGEST-MD5 and GSSAPI authentication when base64 decoding fails.
---
 lib/curl_sasl_sspi.c | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/lib/curl_sasl_sspi.c b/lib/curl_sasl_sspi.c
index a1c6064921d972..ac8d09cdaccb02 100644
--- a/lib/curl_sasl_sspi.c
+++ b/lib/curl_sasl_sspi.c
@@ -146,8 +146,11 @@ CURLcode Curl_sasl_create_digest_md5_message(struct SessionHandle *data,
   }
 
   /* Ensure we have a valid challenge message */
-  if(!input_token)
+  if(!input_token) {
+    infof(data, "DIGEST-MD5 handshake failure (empty challenge message)\n");
+
     return CURLE_BAD_CONTENT_ENCODING;
+  }
 
   /* Query the security package for DigestSSP */
   status = s_pSecFn->QuerySecurityPackageInfo((TCHAR *) TEXT(SP_NAME_DIGEST),
@@ -873,8 +876,11 @@ CURLcode Curl_sasl_create_gssapi_user_message(struct SessionHandle *data,
     }
 
     /* Ensure we have a valid challenge message */
-    if(!chlg)
+    if(!chlg) {
+      infof(data, "GSSAPI handshake failure (empty challenge message)\n");
+
       return CURLE_BAD_CONTENT_ENCODING;
+    }
 
     /* Setup the challenge "input" security buffer */
     chlg_desc.ulVersion = SECBUFFER_VERSION;
@@ -984,8 +990,11 @@ CURLcode Curl_sasl_create_gssapi_security_message(struct SessionHandle *data,
   }
 
   /* Ensure we have a valid challenge message */
-  if(!chlg)
+  if(!chlg) {
+    infof(data, "GSSAPI handshake failure (empty security message)\n");
+
     return CURLE_BAD_CONTENT_ENCODING;
+  }
 
   /* Get our response size information */
   status = s_pSecFn->QueryContextAttributes(krb5->context,