-
-
Notifications
You must be signed in to change notification settings - Fork 6.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
curl 8.10.x with SPNEGO authentication through an HTTP proxy to an HTTP endpoint throws "Failed to find SSL backend for endpoint" error #14973
Comments
Did this work with a previous curl version? |
It's only when a proxy server is used that the issue occurs. SPNEGO to an HTTPS endpoint without using a proxy server works as expected. I believe 0a5ea09 is the commit that introduced the regression, but I'm not sure why it's causing the issue other than there are no
|
Yes, it works fine in 8.9.1. |
/cc @SGA-max-faxalv
|
Deeply sorry for the regression. I am currently on holiday without a laptop, and will be back 3rd October. In the meantime I'm investigating (1) how/if this will be possible, (2) whether the PROXY requires to support SCB as well... I have an environment at work where I can test this, but I don't know if that proxy supports channel binding. In the meantime I'm wondering if it would be possible to disable SCB when using proxy, saying it is not supported yet, which would restore previous functionality. Doing so leaves a bad taste, but I also feel deeply sorry for not having access to a computer for so long either to "fix my mess" in a timely manner. |
We do have other authentication mechanisms besides SPNEGO for the service, but they're not as convenient. We've opted to back out curl to version 8.9.1 until this gets addressed. |
I did this
I expected the following
curl/libcurl version
curl 8.10.0 and curl 8.10.1
operating system
Linux RHEL 7.9 and RHEL 8.8
The text was updated successfully, but these errors were encountered: