> 2. What is the nature and description of the request? The customer wants kerberos negotiation auth proxy support to be added to curl. > 3. Why does the customer need this? (List the business requirements here) "Users need curl to download many pages of statistics from some institutional and governments web sites. They then use these data to update a Postgresql database. Without kerberos authentication they need to save their credentials in a file with obvious security and management problems." > 4. How would the customer like to achieve this? (List the functional requirements here) The customer wants curl to be kerberos negotiation auth capable. > 5. For each functional requirement listed in question 4, specify how Red Hat and the customer can test to confirm the requirement is successfully implemented. 1. Install and setup squid with kerberos negotiation auth. 2. curl --proxy http://myproxy:3128 --proxy-negotiate --proxy-user : https://server.example.com > 6. Is there already an existing RFE upstream or in Red Hat bugzilla? Yes, although it's for RHEL6 instead of RHEL5. BZ#625685 is about the git commit 13b8fc46a3fd6b202a7f2df5f9aff4f26fe6c4db, but 015d5869d7e3daf81548e4d5d55209adfd4285bf is also required. > 7. How quickly does this need resolved? (desired target release) Next minor release, RHEL5.7 or sooner. > 8. Does this request meet the RHEL Inclusion criteria (please review) Yes. > 9. List the affected packages curl
Related upstream commits: https://github.com/bagder/curl/commit/a777eb3 https://github.com/bagder/curl/commit/dc2c70b https://github.com/bagder/curl/commit/015d586 https://github.com/bagder/curl/commit/9e48097 https://github.com/bagder/curl/commit/13b8fc4
(In reply to comment #12) > https://github.com/bagder/curl/commit/9e48097 This one ^^^ is harmless but redundant since we compile without HAVE_SPNEGO.
This request was evaluated by Red Hat Product Management for inclusion in the current release of Red Hat Enterprise Linux. Because the affected component is not scheduled to be updated in the current release, Red Hat is unfortunately unable to address this request at this time. Red Hat invites you to ask your support representative to propose this request, if appropriate and relevant, in the next release of Red Hat Enterprise Linux.
This request was erroneously denied for the current release of Red Hat Enterprise Linux. The error has been fixed and this request has been re-proposed for the current release.
Created attachment 522110 [details] backport of 4 upstream commits I just removed 9e48097 from the patch set. Otherwise exactly the same as the original (already tested) version.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2012-0241.html