On Sat, Mar 13, 2010 at 09:15:40AM +0100, Marcel Telka wrote: > On Fri, Mar 12, 2010 at 05:56:11PM -0600, Nicolas Williams wrote: > > - re: 6805664 > > > > Technically it should be possible to use SASL/GSSAPI without linking > > with libgss at all. Can you confirm that mutt can / cannot do > > SASL/GSSAPI just by configuring it with --with-sasl but without > > --with-gss? > > I'll test this later.
I analyzed the situation and it looks like --with-gss is not needed once we have --with-sasl. The SASL/GSSAPI support in mutt is handled by /usr/lib/sasl/gssapi.so.1 library. OTOH, the direct GSSAPI support in mutt is covered by /usr/lib/libgss.so library. The important thing (according to the mutt sources) is that: 1. direct GSSAPI is supported in IMAP only, 2. SASL is supported in mutt in IMAP, SMTP and POP, 3. In case when both SASL and direct GSSAPI are compiled in, the SASL is always tried before direct GSSAPI. The #3 above means that the direct GSSAPI could be utilized only in case when the SASL does not have its own GSSAPI support. Unlike in some Linux distributions, OpenSolaris ships both GSSAPI libraries (/usr/lib/sasl/gssapi.so.1 and /usr/lib/libgss.so) in one package named SUNWgss (or system/library/security/gss in recent devel builds). The direct GSSAPI library will never be used (on consistent installations). It will be always overriden by SASL/GSSAPI. The --with-gss just added hard dependency on SUNWgss for mutt which might be not desired. Without the --with-gss a mutt user would have an option to use SASL/GSSAPI or not, depending whether the SUNWgss is installed or not. This soft dependency better than the hard one, I believe. The above means that the CR 6805664 "Add GSS-API support to mutt" is duplicate of CR 6780832 "Add SASL support to mutt". In case when the situation described above will change in the future, we can add direct GSSAPI support to mutt later. I'll close the CR 6805664 as duplicate of the CR 6780832. I uploaded new webrev at: http://cr.opensolaris.org/~aragorn/6780832-mutt-sasl/ For reference, I left the previous webrev at: http://cr.opensolaris.org/~aragorn/6780832-mutt-sasl-1/ I renamed the mutt binary built with --with-gss to http://cr.opensolaris.org/~aragorn/mutt-bin/mutt-with-gss I'll update the new mutt binary built without the --with-gss in few hours. Once the build is finished. Thanks. -- Marcel Telka RPE, Systems
