[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GNU Generic Security Service 1.0.2 released

From: Simon Josefsson
Subject: GNU Generic Security Service 1.0.2 released
Date: Fri, 25 Nov 2011 01:14:00 +0100
User-agent: Gnus/5.110018 (No Gnus v0.18) Emacs/23.2 (gnu/linux)

GSSLib is an implementation of the Generic Security Service Application
Program Interface (GSS-API).  GSS-API is used by network applications to
implement security services.  For example, an application can use GSS to
authenticate a user against a SMTP or IMAP server for sending or
receiving e-mail.  GSS consists of a library, a manual, and a command
line tool for debugging purposes.

Noteworthy changes since the last version:

** gss/api.h: Added RFC 5587 const typedefs.
The new types are gss_const_buffer_t, gss_const_channel_bindings_t,
gss_const_ctx_id_t, gss_const_cred_id_t, gss_const_name_t,
gss_const_OID, and gss_const_OID_set.

** gss/api.h, gss/ext.h: Moved RFC 6339 functions from ext.h to api.h.
The functions gss_oid_equal, gss_encapsulate_token, and
gss_decapsulate_token are now standardized.  The types have changed
slightly to used RFC 5587 const types instead.  This does not affect
the ABI and doesn't modify any semantics: the functions did not modify
the non-const parameters before.

** i18n: Translations were updated.

** build: Update gnulib files.  Several QA bug fixes.

** API and ABI modifications.
gss_decapsulate_token: See above.

There is a known problem building this release on MinGW with MSVC as the
compiler, fortunately there is a workaround available -- please see
for more information.

While written to be flexible with regards to different GSS mechanisms,
the only currently supported mechanism is Kerberos V5 via GNU Shishi.
Mutual and non-mutual authentication and channel bindings, as client
and server, is supported.  Message privacy protection using DES and
3DES is supported.

GSS aims to be internationalized, thread safe and portable.  GSS is
written in ANSI/ISO C89, and has been ported to numerous platforms, even
cross compiled to embedded platforms such as Motorola Coldfire.

GSS is a GNU project, and is licensed under the GNU General Public
License version 3 or later.

Improving GSS is costly, but you can help!  We are looking for
organizations that find GSS useful and wish to contribute back.  You can
contribute by reporting bugs, improve the software, or donate money or

Commercial support contracts for GSS are available, and they help
finance continued maintenance.  Simon Josefsson Datakonsult AB, a
Stockholm based privately held company, is currently funding GSS
maintenance.  We are always looking for interesting development

The project's web page is available at:

All manuals are available from:

Direct links to the manual:

Direct links to the API Reference manual:

For code coverage and cyclomatic code complexity charts:

If you need help to use GNU GSS, or want to help others, you are
invited to join our help-gss mailing list, see:

Here are the compressed sources of the entire package: (2.2MB) (OpenPGP signature)

The software is cryptographically signed by the author using an
OpenPGP key identified by the following information:

pub   1280R/B565716F 2002-05-05 [expires: 2012-01-24]
      Key fingerprint = 0424 D4EE 81A0 E3D1 19C6  F835 EDA2 1E94 B565 716F
uid                  Simon Josefsson <address@hidden>
uid                  Simon Josefsson <address@hidden>
sub   1280R/4D5D40AE 2002-05-05 [expires: 2012-01-24]

The key is available from:

Here are the SHA-1 and SHA-224 checksums:

243bb5afd9b1925b2c45be8bbfe0339b04d37c4f  gss-1.0.2.tar.gz
4c91b5805904652dcb88066b3736450f5ef44868f7d8b89bcb0b0bfc  gss-1.0.2.tar.gz

Happy hacking,

Attachment: pgppYl6ArjqwI.pgp
Description: PGP signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]