Code sets several ISC_REQ_* bit flags in order to setup security context, and later verifies if the flags of the security context actually match those previously set.
The problem is that except for ISC_REQ_ALLOCATE_MEMORY, all other may simply be ignored, changed while handshaking and even further changed while renegotiating. I believe the fix is to only warn if returned flags don't match requested ones, except for the ISC_REQ_ALLOCATE_MEMORY one which should fail hard if it doesn't match and make schannel_connect_step3 fail. -- -=[Yang]=- ------------------------------------------------------------------- List admin: http://cool.haxx.se/list/listinfo/curl-library Etiquette: http://curl.haxx.se/mail/etiquette.html
