Home -> Toolkit -> 3.2beta

Globus Toolkit® 3.2 Beta Security Release Notes

Improvements/Bug Details

• CRL Support for Java GSI libraries
• Support for authorization callouts. These callouts can be used to replace gridmap based authorization/mapping and to enforce finer grained authorization in the GT2 GRAM component. More information can be found here
• OpenSSL has been upgraded to version 0.9.7. If you have DNs in your grid-mapfile that contain a USERID component, you will need to update these (see bug 575 for details)
• grid-proxy-init now checks that the certificate and the private key match
• CRL checking for C GSI libraries now handles the lastUpdate field and no longer assumes that the nextUpdate field is always present, which means that CRLs without a nextUpdate field no longer cause an error and don't expire.
• The SimpleCA packages are now included in the standard distribution
• The Globus CA setup package is now no longer part of the distribution. Users requiring certificates for testing should take a look at the Globus Certificate Service or Simple CA. Note that you will not be able to run grid-cert-request until you have installed a CA setup package.
• CA setup packages (GCS and SimpleCA) are now non-interactive.
• grid-cert-renew has been removed from the distribution
• For grid services specific security changes please see the core release notes
• The grid-default-ca utility has been added to the distribution
• Various minor API changes have been made (Proxy Core, Cert Utils, System Config)
• Fixed bugs 590, 978, 982, 1018, 1028, 1091, 1126, 1143, 1151, 1171, 1304, 1308