Comment 93 for bug 207072

further comments:
- my earlier attempt at reducing the number of authentication attempts was a red herring. The authentication callback is called twice for each connection attempt, for some reason, so my suggested patch could actually cause problems for kerberos auth.
- the auth callback is called regardless of whether Kerberos tickets are currently available. This is, arguably, a bug in libsmbclient; since the callback deals only in domain/username/password, the current method of "forcing" kerberos authentication results in a spurious username-based authentication attempt. We can work around this by playing with smbc_setOptionFallbackAfterKerberos() before and after the first connection attempt.
- after far too much time looking at this code, I now have a handle on how to try to move the connection out of the mount operation. Patch to follow shortly (I think).