[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Generic Security Service Library (GSSLib) 0.0.16 alpha

From: Simon Josefsson
Subject: Generic Security Service Library (GSSLib) 0.0.16 alpha
Date: Thu, 11 Aug 2005 13:18:42 +0200
User-agent: Gnus/5.110004 (No Gnus v0.4) Emacs/22.0.50 (gnu/linux)

I am pleased to announce the availability of the Generic Security
Service Library version 0.0.22!

GSSLib is an implementation of the Generic Security Service
Application Program Interface (GSS-API).  GSS-API is used by network
servers to provide security services.  For example, GSS can be used to
authenticate a client against SMTP or IMAP servers.  GSS consists of a
library, a manual, and a command line tool for debugging purposes.

While written to be flexible with regards to different GSS mechanisms,
the only currently supported mechanism is Kerberos 5 via GNU Shishi.
Mutual and non-mutual authentication, as client and server, is
supported.  Message privacy protection using DES and 3DES is

GSS aims to be internationalized, thread safe and portable.  GSS is
written in ANSI/ISO C89, and has been ported to numerous platforms,
even cross compiled to embedded platforms such as Motorola Coldfire.

Current work items include implementing more GSS mechanisms, possibly
supporting MIT Kerberos 5 or Heimdal (thus making it possible to
change GSS-API implementation after compile-time, through a
configuration file), dynamically loaded mechanisms using dlopen,
message privacy using AES, message integrity support, and evaluation
of implementation suitability of CCM-BIND.  Assistance is appreciated
on any of these (or other) items.

Improving GSS is costly, but you can help!  We are looking for
organizations that find GSS useful and wish to contribute back.  You
can contribute by reporting bugs, improve the software, or donate
money or equipment.

Commercial support contracts for GSS are available, and they help
finance continued maintenance.  Simon Josefsson Datakonsult, a
Stockholm based privately held company, is currently funding GSS
maintenance.  We are always looking for interesting development

If you need help to use GSSLib, or want to help others, you are
invited to join our help-gss mailing list, see:

The project page of the library is available at:

Here are the compressed sources:         (1.4MB)   (1.4MB)

Here are GPG detached signatures using key 0xB565716F:

Here are the build reports for various platforms:

Here are the MD5/SHA1 checksums:

006672aa6081dbedd7012560974feb21  gss-0.0.16.tar.gz
0c79031c68a0f332212e0be3da709889  gss-0.0.16.tar.gz.sig
b30ad08e6485e44c57d9a80917a7a73a9f9c20b9  gss-0.0.16.tar.gz
73270c983849aa48680f408bf4ad3f6a5dd02220  gss-0.0.16.tar.gz.sig


Noteworthy changes since version 0.0.12 (last version announced here):

* Version 0.0.16 (released 2005-08-11)

** Kinyarwanda translation added, by Steve Murphy.

** The address@hidden mailing list is now mentioned in documentation.

** The license template in files were updated with the new FSF address.

** API and ABI modifications.
gss_release_oid: REMOVED.  It seem it was the wrong thing to export
   this API, although the underlaying question (who is responsible for
   managing dynamically allocated OIDs?  How?) is still unanswered.

* Version 0.0.15 (released 2004-11-22)

** Documentation improvements.
For example, you can now browse the GSS manual using DevHelp.

** Libtool's -export-symbols-regex is now used to only export official APIs.
Before, applications might accidentally access internal functions.
Note that this is not supported on all platforms, so you must still
make sure you are not using undocumented symbols in GSS.

* Version 0.0.14 (released 2004-10-15)

** gss_import_name and gss_duplicate_name no longer clone the OID.
Instead, only the pointer to the OID is cloned.  It seem unclear where
a cloned OID would be deallocated.

** Fixed handling of sequence numbers in gss_accept_sec_context, for servers.

** Fix crash in gss_accept_sec_context for NULL values of ret_flags.

** Fix memory leaks.

** Sync with new Shishi 0.0.18 API.

* Version 0.0.13 (released 2004-08-08)

** Revamp of gnulib compatibility files.

** More translations.
French (by Michel Robitaille) and Romanian (by Laurentiu Buzdugan).

reply via email to

[Prev in Thread] Current Thread [Next in Thread]