http_negotiate: improve handling of gss_init_sec_context() failures

If HTTPAUTH_GSSNEGOTIATE was used for a POST request and gss_init_sec_context() failed, the POST request was sent with empty body. This commit also restores the original behavior of `curl --fail --negotiate`, which was changed by commit 6c6035532383e300c712e4c1cd9fdd749ed5cf59. Add regression tests 2077 and 2078 to cover this. Fixes #3992 Closes #4171
author: Kamil Dudka <kdudka@redhat.com> 2019-07-30 12:59:35 +0200
committer: Kamil Dudka <kdudka@redhat.com> 2019-08-01 16:21:41 +0200
commit: 4c187043c5aac57f354ebb96cc6ff3263411e98d (patch)
tree: f2e2298cd80224d5d31ccb8664ecf34178f4059c /tests/data/test2077
parent: cd8068ed4c6e03a3c13aa31326d0a7f1a36bfa02 (diff)
download: curl-4c187043c5aac57f354ebb96cc6ff3263411e98d.tar.gz
1 files changed, 42 insertions, 0 deletions
diff --git a/tests/data/test2077 b/tests/data/test2077
new file mode 100644
index 000000000..0c600f5c3
--- /dev/null
+++ b/tests/data/test2077
@@ -0,0 +1,42 @@
+<testcase>
+<info>
+<keywords>
+HTTP
+HTTP GET
+GSS-API
+</keywords>
+</info>
+
+# Server-side
+<reply>
+<data>
+HTTP/1.1 200 OK swsclose
+Content-Length: 23
+
+This IS the real page!
+</data>
+</reply>
+
+# Client-side
+<client>
+<server>
+http
+</server>
+<features>
+GSS-API
+</features>
+<name>
+curl --fail --negotiate to unauthenticated service fails
+</name>
+<command>
+http://%HOSTIP:%HTTPPORT/2077 -u : --fail --negotiate
+</command>
+</client>
+
+# Verify data after the test has been "shot"
+<verify>
+<errorcode>
+0
+</errorcode>
+</verify>
+</testcase>
author	Kamil Dudka <kdudka@redhat.com>	2019-07-30 12:59:35 +0200
committer	Kamil Dudka <kdudka@redhat.com>	2019-08-01 16:21:41 +0200
commit	4c187043c5aac57f354ebb96cc6ff3263411e98d (patch)
tree	f2e2298cd80224d5d31ccb8664ecf34178f4059c /tests/data/test2077
parent	cd8068ed4c6e03a3c13aa31326d0a7f1a36bfa02 (diff)
download	curl-4c187043c5aac57f354ebb96cc6ff3263411e98d.tar.gz