There are Proxy which need Kerberos Authentication, but the authentication flow sometimes failed . This not easy to reproduce.
After checking the wireshark captured file and source code of libcurl. We find the possible root cause of the issue.
CURLcode Curl_buffer_send(struct dynbuf *in,
struct connectdata *conn,
/* add the number of sent bytes to this
/* how much of the buffer contains body data */
sendsize = CURLMIN(size, CURL_MAX_WRITE_SIZE);
if((size_t)amount != size)
/* We have no continue-send mechanism now, fail. This can only happen
when this function is used from the CONNECT sending function. We
currently (stupidly) assume that the whole request is always sent
away in the first single chunk.
This needs FIXing.
When the Kerberos Auth challenge is bigger than CURL_MAX_WRITE_SIZE (16384) , the request with auth will be failed. (Will be fallbacked to using NTLM in our user's proxy environment.)
The text was updated successfully, but these errors were encountered: