[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GNU Generic Security Service Library (GSSLib) 0.0.12 alpha released

From: Simon Josefsson
Subject: GNU Generic Security Service Library (GSSLib) 0.0.12 alpha released
Date: Sun, 01 Aug 2004 19:16:22 +0200
User-agent: Gnus/5.110003 (No Gnus v0.3) Emacs/21.3.50 (gnu/linux)

GSS is an implementation of the Generic Security Service Application
Program Interface (GSS-API).  GSS-API is used by network servers to
provide security services.  For example, GSS can be used to
authenticate a client against SMTP or IMAP servers.  GSS consists of a
library, a manual, and a command line tool for debugging purposes.

While written to be flexible with regards to different GSS mechanisms,
the only currently supported mechanism is Kerberos 5 via GNU Shishi.
Mutual and non-mutual authentication, as client and server, is
supported.  Message privacy protection using DES and 3DES is

GSS aims to be internationalized, thread safe and portable.  GSS is
written in ANSI/ISO C89, and has been ported to numerous platforms,
even cross compiled to embedded platforms such as Motorola Coldfire.

Current work items include dynamically loaded mechanisms using dlopen,
message privacy using AES, message integrity support, and evaluation
of implementation suitability of CCM-BIND.  Assistance is appreciated
on any of these (or other) items.

GSS is supported commercially; contact me if you have special needs or

GSS is free software licensed under the GNU General Public License.

The project page of the library is available at:

Here are the compressed sources:         (1.3MB)   (1.3MB)

Here are GPG detached signatures using key 0xB565716F:

Here are the build reports for various platforms:

Here are the MD5/SHA1 checksums:

e3da7f9f6ee39ac108a2708934598527  gss-0.0.12.tar.gz
5802b88afe2d8e2b341809d8eda6d985  gss-0.0.12.tar.gz.sig
43211a1ad1b0e8b5050c151bfaf64093f22897ed  gss-0.0.12.tar.gz
ec61ff1fb6d387bf11507f587a1031d1cb29e3e8  gss-0.0.12.tar.gz.sig

Noteworthy changes since the last release:

** Added rudimentary self tests of Kerberos 5 context init/accept.
Tests client and server authentication, with and without mutual
authentication, and that various aspects of the API like ret_flags

** Various fixes, discovered while writing the Kerberos 5 self test.

** Cross compile builds should work.
It should work for any sane cross compile target, but the only tested
platform is uClibc/uClinux on Motorola Coldfire.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]