romenskiy2012/curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-05-30 05:47:28 +03:00
Code Issues Projects Releases Packages Wiki Activity

krb5_sspi: the chlg argument is NOT optional

Browse source 
Fix the comment, add assert.

Reported-by: Joshua Rogers
Closes #18865
This commit is contained in:
Daniel Stenberg 2025-10-06 09:44:45 +02:00
parent d4c0332677
commit 0d68f48205
No known key found for this signature in database
GPG key ID: 5CC908FDB71E12C2
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
lib/vauth/krb5_sspi.c
View file

@ -238,7 +238,7 @@ CURLcode Curl_auth_create_gssapi_user_message(struct Curl_easy *data,
*
* data [in] - The session handle.
* authzid [in] - The authorization identity if some.
* chlg [in] - The optional challenge message.
* chlg [in] - The challenge message.
* krb5 [in/out] - The Kerberos 5 data struct being used and modified.
* out [out] - The result storage.
*
@ -273,6 +273,7 @@ CURLcode Curl_auth_create_gssapi_security_message(struct Curl_easy *data,
#endif
/* Ensure we have a valid challenge message */
DEBUGASSERT(chlg);
if(!Curl_bufref_len(chlg)) {
infof(data, "GSSAPI handshake failure (empty security message)");
return CURLE_BAD_CONTENT_ENCODING;