Le 23/08/2017 à 23:43, Jeff King a écrit : > On Mon, Aug 21, 2017 at 09:34:19AM +0200, Nicolas Morey-Chaisemartin wrote: > >>>> It appears curl do not support the PREAUTH tag. >>> Too bad. IMHO preauth is the main reason to use a tunnel in the first >>> place. >> It shouldn't be too hard to add support for this in curl. >> If it's the main usecase, it'll simply means the curl tunnelling >> should be disabled by default for older curl (in this case, meaning >> every version until it gets supported) versions. > Yes, I agree. I was hoping when we started this discussion that we were > more ready to switch to curl-by-default. But sadly, that isn't close to > being the case. But hopefully we can at least end up with logic that > lets us use it in the easy cases (no tunneling) and falls back in the > harder ones. > > -Peff I opened a bug upstream and they already fixed this. https://github.com/curl/curl/pull/1820 At least bleeding edge curl user should be able to use this. I'm not sure where to go with these patches now. 1) There does not seem to be an easy/clean workaround for the lack of socketpair on windows. Fidling with a loopback AF_UNIX?AF_LOCAL socket should work but it means creating a socket file somewhere which pulls a lot of potential issues (where to put it ? Post-mortem cleanup ? Parallel imap-send ?) 2) The PREAUTH support won't largely be available for a while (curl, release, distro, etc.) - If this is the main use case, it does not make much sense to puch curl; tunneling support without this. I could push the code and only enable the curl tunneling for the next curl release ? Meaning no one (or close to no one) would use this until some later This also means very little testing (apart from mine) until the next curl version gets widely available - If this is not the main case (or at least the non PREAUTH is important enough), it would make sense to get this changes in. But it would probably need some more to code to either fallback to legacy mode when curl failed (due to PREAUTH) or detect PREAUTH and directly use the legacy mode. Nicolas