From tfo at netcentral.com Fri Oct 10 22:05:41 2003 From: tfo at netcentral.com (Thomas F. O'Connell) Date: Fri, 10 Oct 2003 15:05:41 -0500 Subject: [Help-gnutls] Build Error with gnutls-0.8.10 Message-ID: <1065816341.27207.65.camel@tfocentral.netcentral.net> I'm trying to build gnutls-0.8.10 on a Slackware 9.0 box using GCC 3.3.1. I got libgcrypt-1.1.43 and libgpg-error-0.4 installed just fine, but when I try to make gnutls, I get: gcc -DHAVE_CONFIG_H -I. -I. -I.. -I../libextra -Iminitasn1/ -I../includes -g -O2 -O2 -finline-functions -pipe -I/usr/local/include -MT gnutls_record.lo -MD -MP -MF .deps/gnutls_record.Tpo -c gnutls_record.c -fPIC -DPIC -o .libs/gnutls_record.lo In file included from gnutls_int.h:108, from gnutls_record.c:25: gnutls_mpi.h:27: error: parse error before '*' token gnutls_mpi.h:29: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:30: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:32: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:33: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:35: error: parse error before "MPI" In file included from gnutls_record.c:25: gnutls_int.h:225: error: parse error before "MPI" gnutls_int.h:225: warning: no semicolon at end of struct or union gnutls_int.h:226: warning: data definition has no type or storage class gnutls_int.h:227: error: parse error before "client_g" gnutls_int.h:227: warning: data definition has no type or storage class gnutls_int.h:228: error: parse error before "client_p" gnutls_int.h:228: warning: data definition has no type or storage class gnutls_int.h:229: error: parse error before "dh_secret" gnutls_int.h:229: warning: data definition has no type or storage class gnutls_int.h:231: error: parse error before "A" gnutls_int.h:231: warning: data definition has no type or storage class gnutls_int.h:232: error: parse error before "B" gnutls_int.h:232: warning: data definition has no type or storage class gnutls_int.h:233: error: parse error before "u" gnutls_int.h:233: warning: data definition has no type or storage class gnutls_int.h:234: error: parse error before "b" gnutls_int.h:234: warning: data definition has no type or storage class gnutls_int.h:235: error: parse error before "a" gnutls_int.h:235: warning: data definition has no type or storage class gnutls_int.h:236: error: parse error before "x" gnutls_int.h:236: warning: data definition has no type or storage class gnutls_int.h:239: error: parse error before "rsa" gnutls_int.h:239: warning: data definition has no type or storage class gnutls_int.h:264: error: parse error before '}' token In file included from gnutls_int.h:270, from gnutls_record.c:25: gnutls_hash_int.h:29: warning: `GCRY_MD_HD' is deprecated (declared at /usr/local/include/gcrypt.h:1032) In file included from gnutls_int.h:271, from gnutls_record.c:25: gnutls_cipher_int.h:27: warning: `GCRY_CIPHER_HD' is deprecated (declared at /usr/local/include/gcrypt.h:580) gnutls_cipher_int.h:28: warning: `GCRY_CIPHER_HD' is deprecated (declared at /usr/local/include/gcrypt.h:580) gnutls_cipher_int.h:29: warning: `GCRY_CIPHER_HD' is deprecated (declared at /usr/local/include/gcrypt.h:580) gnutls_cipher_int.h:30: warning: `GCRY_CIPHER_HD' is deprecated (declared at /usr/local/include/gcrypt.h:580) In file included from gnutls_cert.h:4, from gnutls_int.h:273, from gnutls_record.c:25: gnutls_pk.h:5: error: parse error before "MPI" gnutls_pk.h:7: error: parse error before "MPI" gnutls_pk.h:9: error: parse error before "MPI" gnutls_pk.h:11: error: parse error before "MPI" gnutls_pk.h:13: error: parse error before "MPI" In file included from gnutls_int.h:273, from gnutls_record.c:25: gnutls_cert.h:39: error: parse error before "MPI" gnutls_cert.h:39: warning: no semicolon at end of struct or union gnutls_cert.h:72: error: parse error before '}' token gnutls_cert.h:72: warning: data definition has no type or storage class gnutls_cert.h:75: error: parse error before "MPI" gnutls_cert.h:75: warning: no semicolon at end of struct or union gnutls_cert.h:96: error: parse error before '}' token gnutls_cert.h:96: warning: data definition has no type or storage class gnutls_cert.h:100: error: parse error before '*' token gnutls_cert.h:102: error: parse error before "cert" In file included from gnutls_record.c:25: gnutls_int.h:381: warning: `GCRY_CIPHER_HD' is deprecated (declared at /usr/local/include/gcrypt.h:580) gnutls_int.h:382: warning: `GCRY_CIPHER_HD' is deprecated (declared at /usr/local/include/gcrypt.h:580) gnutls_int.h:609: error: parse error before "MPI" gnutls_int.h:609: warning: no semicolon at end of struct or union gnutls_int.h:610: warning: data definition has no type or storage class gnutls_int.h:616: error: parse error before '}' token gnutls_int.h:616: warning: data definition has no type or storage class gnutls_int.h:623: error: parse error before "MPI" gnutls_int.h:623: warning: no semicolon at end of struct or union gnutls_int.h:624: warning: data definition has no type or storage class In file included from gnutls_record.c:44: gnutls_dh.h:21: error: parse error before "gnutls_get_dh_params" gnutls_dh.h:21: error: parse error before '*' token gnutls_dh.h:21: warning: data definition has no type or storage class gnutls_dh.h:22: error: parse error before "gnutls_calc_dh_secret" gnutls_dh.h:22: error: parse error before '*' token gnutls_dh.h:22: warning: data definition has no type or storage class gnutls_dh.h:23: error: parse error before "gnutls_calc_dh_key" gnutls_dh.h:23: error: parse error before "f" gnutls_dh.h:23: warning: data definition has no type or storage class gnutls_dh.h:24: error: parse error before '*' token gnutls_dh.h:28: error: parse error before "_gnutls_dh_default_params" gnutls_dh.h:28: warning: data definition has no type or storage class gmake[3]: *** [gnutls_record.lo] Error 1 gmake[3]: Leaving directory `/usr/local/src/gnutls-0.8.10/lib' gmake[2]: *** [all-recursive] Error 1 gmake[2]: Leaving directory `/usr/local/src/gnutls-0.8.10/lib' gmake[1]: *** [all-recursive] Error 1 gmake[1]: Leaving directory `/usr/local/src/gnutls-0.8.10' gmake: *** [all] Error 2 There seems to be a problem with MPI vs. GCRY_MPI. I tried modifying the header to define MPI to be the same as GCRY_MPI, and the errors changed. I'm wondering if maybe there're unstated dependencies among the versions of gnutls and libgcrypt that are available? -tfo From ivo at o2w.nl Sat Oct 11 00:43:17 2003 From: ivo at o2w.nl (Ivo Timmermans) Date: Sat, 11 Oct 2003 00:43:17 +0200 Subject: [Help-gnutls] Build Error with gnutls-0.8.10 In-Reply-To: <1065816341.27207.65.camel@tfocentral.netcentral.net> References: <1065816341.27207.65.camel@tfocentral.netcentral.net> Message-ID: <20031010224317.GA30564@juarez> Thomas F. O'Connell wrote: > I'm trying to build gnutls-0.8.10 on a Slackware 9.0 box using GCC > 3.3.1. I got libgcrypt-1.1.43 and libgpg-error-0.4 installed just fine, > but when I try to make gnutls, I get: gnutls 0.8.x needs libgcrypt 1.1.12, only the 0.9.x series can deal with 1.1.43. Ivo -- Poak poak, I'm a pengaru! From f.miletic at ewi.tudelft.nl Sun Oct 12 22:02:17 2003 From: f.miletic at ewi.tudelft.nl (Filip Miletic) Date: Sun, 12 Oct 2003 22:02:17 +0200 Subject: [Help-gnutls] Building gnutls 0.8.10, 0.8.11 fails on gcc 3.2.3 Slackware due to ptrdiff_t conflicting type declaration Message-ID: <3F89B349.1060206@ewi.tudelft.nl> Greetings everyone. Building gnutls, either 0.8.10, or 0.8.11 fail on my system (gcc 3.2.3 that comes with Slackware 9.1) both for the same reason: conflicting type declaration for ptrdiff_t. Apparently, the way to test the existence of ptrdiff_t is wrong(?) -- or at least inappropriate for gcc 3.2.3. I searched the archive of the mailing list and found that I might be able to solve the problem by using gnutls 0.9.x. But this gnutls version is nowhere (* -- gnutls home page) to be found. Could I 'tweak' 0.8.x to work? libgcrypt version is 1.1.42. Thanking you, f What follows are excerpts from various logfiles: The test for ptrdiff_t fails in ./configure, with: --- Excerpt from config.log configure:6742: checking for ptrdiff_t configure:6770: gcc -c -g -O2 -O2 -finline-functions -pipe conftest.c >&5 configure: In function `main': configure:6801: `ptrdiff_t' undeclared (first use in this function) configure:6801: (Each undeclared identifier is reported only once configure:6801: for each function it appears in.) configure:6801: syntax error before ')' token configure:6773: $? = 1 configure: failed program was: | #line 6747 "configure" | /* confdefs.h. */ | | #define PACKAGE_NAME "" | #define PACKAGE_TARNAME "" | #define PACKAGE_VERSION "" | #define PACKAGE_STRING "" | #define PACKAGE_BUGREPORT "" | #define T_CPU "i686" | #define T_VENDOR "pc" | #define T_OS "linux-gnu" | #define GNUTLS_VERSION "0.8.10" | #define C99_MACROS 1 | #define STDC_HEADERS 1 | #define TIME_WITH_SYS_TIME 1 | #define HAVE_SYS_TYPES_H 1 | #define HAVE_SYS_STAT_H 1 | #define HAVE_STDLIB_H 1 | #define HAVE_STRING_H 1 | #define HAVE_MEMORY_H 1 | #define HAVE_STRINGS_H 1 | #define HAVE_INTTYPES_H 1 | #define HAVE_STDINT_H 1 | #define HAVE_UNISTD_H 1 | #define HAVE_UNISTD_H 1 | #define HAVE_PWD_H 1 | #define HAVE_STRINGS_H 1 | #define HAVE_STDARG_H 1 | #define HAVE_SYS_STAT_H 1 | #define HAVE_SYS_TYPES_H 1 | #define HAVE_SYS_SOCKET_H 1 | #define HAVE_ERRNO_H 1 | #define HAVE_SYS_TIME_H 1 | #define HAVE_TIME_H 1 | #define HAVE_BZERO 1 | #define HAVE_MEMSET 1 | #define HAVE_MEMMOVE 1 | #define HAVE_BCOPY 1 | #define HAVE_MEMCMP 1 | #define HAVE_MEMCPY 1 | #define HAVE_ALLOCA_H 1 | #define HAVE_ALLOCA 1 | #define SIZEOF_UNSIGNED_LONG 4 | #define SIZEOF_UNSIGNED_INT 4 | #define SIZEOF_UNSIGNED_SHORT 2 | #define SIZEOF_UNSIGNED_CHAR 1 | #define SIZEOF_UNSIGNED_CHARP 4 | /* end confdefs.h. */ | | # include | | | int | main () | { | if ((ptrdiff_t *) 0) | return 0; | if (sizeof (ptrdiff_t)) | return 0;| } configure:6790: result: no --- compile output: gcc -DHAVE_CONFIG_H -I. -I. -I.. -I../libextra -Iminitasn1/ -I../includes -g -O2 -O2 -finline-functions -pipe -I/usr/local/include -MT gnutls_record.lo -MD -MP -MF .deps/gnutls_record.Tpo -c gnutls_record.c -fPIC -DPIC -o .libs/gnutls_record.lo In file included from /usr/local/include/gpg-error.h:24, from /usr/local/include/gcrypt.h:27, from gnutls_mpi.h:4, from gnutls_int.h:108, from gnutls_record.c:25: /usr/lib/gcc-lib/i486-slackware-linux/3.2.3/include/stddef.h:151: conflicting types for `ptrdiff_t' defines.h:58: previous declaration of `ptrdiff_t' In file included from gnutls_int.h:108, from gnutls_record.c:25: gnutls_mpi.h:27: syntax error before '*' token gnutls_mpi.h:29: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:30: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:32: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:33: warning: `GCRY_MPI' is deprecated (declared at /usr/local/include/gcrypt.h:153) gnutls_mpi.h:35: syntax error before "MPI" I From f.miletic at ewi.tudelft.nl Sun Oct 12 22:46:43 2003 From: f.miletic at ewi.tudelft.nl (Filip Miletic) Date: Sun, 12 Oct 2003 22:46:43 +0200 Subject: [Help-gnutls] Building gnutls 0.8.10, 0.8.11 fails on gcc 3.2.3 Slackware due to ptrdiff_t conflicting type declaration In-Reply-To: <3F89B349.1060206@ewi.tudelft.nl> References: <3F89B349.1060206@ewi.tudelft.nl> Message-ID: <3F89BDB3.6050709@ewi.tudelft.nl> Filip Miletic wrote: > Building gnutls, either 0.8.10, or 0.8.11 fail on my system (gcc 3.2.3 ... Solved by using compatible versions of gnutls and libgcrypt as follows: gnutls 0.8.11 libgcrypt 1.1.12 (note here that for instance 1.1.42 and .43 would not work) f From tfo at netcentral.com Mon Oct 13 22:38:27 2003 From: tfo at netcentral.com (Thomas F. O'Connell) Date: Mon, 13 Oct 2003 15:38:27 -0500 Subject: [Help-gnutls] Build Error with gnutls-0.8.10 In-Reply-To: <20031010224317.GA30564@juarez> References: <1065816341.27207.65.camel@tfocentral.netcentral.net> <20031010224317.GA30564@juarez> Message-ID: <1066077506.27212.17.camel@tfocentral.netcentral.net> That did the trick. Thanks! -tfo On Fri, 2003-10-10 at 17:43, Ivo Timmermans wrote: > Thomas F. O'Connell wrote: > > I'm trying to build gnutls-0.8.10 on a Slackware 9.0 box using GCC > > 3.3.1. I got libgcrypt-1.1.43 and libgpg-error-0.4 installed just fine, > > but when I try to make gnutls, I get: > > gnutls 0.8.x needs libgcrypt 1.1.12, only the 0.9.x series can deal > with 1.1.43. From pete at geckoworks.com Thu Oct 16 22:03:18 2003 From: pete at geckoworks.com (Pete Naylor) Date: Thu, 16 Oct 2003 13:03:18 -0700 Subject: [Help-gnutls] generating certificates Message-ID: <20031016200318.GA22335@geckoworks.com> I've finally managed to get GnuTLS to build on my Solaris 2.9 system, and I've linked my MTA (Exim) against it. I'd like to configure Exim to offer TLS, but I cannot find any tools for generating x509 keys/certs. Would someone point me in the right direction please? From nmav at gnutls.org Thu Oct 16 22:40:25 2003 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Thu, 16 Oct 2003 23:40:25 +0300 Subject: [Help-gnutls] generating certificates In-Reply-To: <20031016200318.GA22335@geckoworks.com> References: <20031016200318.GA22335@geckoworks.com> Message-ID: <20031016204025.GA2548@gnutls.org> On Thu, Oct 16, 2003 at 01:03:18PM -0700, Pete Naylor wrote: > I've finally managed to get GnuTLS to build on my Solaris 2.9 system, and > I've linked my MTA (Exim) against it. I'd like to configure Exim to offer > TLS, but I cannot find any tools for generating x509 keys/certs. Would > someone point me in the right direction please? You cannot generate or sign certificates using gnutls. You should use the openssl tools for that. -- Nikos Mavroyanopoulos From pete at geckoworks.com Thu Oct 16 23:59:55 2003 From: pete at geckoworks.com (Pete Naylor) Date: Thu, 16 Oct 2003 14:59:55 -0700 Subject: [Help-gnutls] generating certificates In-Reply-To: <20031016204025.GA2548@gnutls.org> References: <20031016200318.GA22335@geckoworks.com> <20031016204025.GA2548@gnutls.org> Message-ID: <20031016215955.GB22335@geckoworks.com> Nikos Mavroyanopoulos wrote... > You cannot generate or sign certificates using gnutls. You should > use the openssl tools for that. Is that expected to change? For v1.0 perhaps? I don't want to install OpenSSL on my systems - that's why I built GnuTLS. From nmav at gnutls.org Fri Oct 17 09:15:32 2003 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Fri, 17 Oct 2003 10:15:32 +0300 Subject: [Help-gnutls] generating certificates In-Reply-To: <20031016215955.GB22335@geckoworks.com> References: <20031016200318.GA22335@geckoworks.com> <20031016204025.GA2548@gnutls.org> <20031016215955.GB22335@geckoworks.com> Message-ID: <20031017071532.GB1662@gnutls.org> On Thu, Oct 16, 2003 at 02:59:55PM -0700, Pete Naylor wrote: > > You cannot generate or sign certificates using gnutls. You should > > use the openssl tools for that. > Is that expected to change? For v1.0 perhaps? I don't want to install > OpenSSL on my systems - that's why I built GnuTLS. No this is not expected to change for gnutls v1.0. However new versions of gnupg will have this capability. In any case you don't have to install openssl in all your systems. You could generate them in a simple system. The features available for gnutls 1.0, are features that are needed in TLS servers, and TLS-enabled web browsers. That is certificate request generation/parsing, private key generation/parsing, pkcs #12 packet parsing and generation, certificate parsing etc. -- Nikos Mavroyanopoulos From charlesg at unixrealm.com Fri Oct 17 18:02:34 2003 From: charlesg at unixrealm.com (Charles Gagnon) Date: Fri, 17 Oct 2003 12:02:34 -0400 Subject: [Help-gnutls] Compile gnutls-0.9.90 without opencdk Message-ID: <20031017160234.GD9041@daumier.unixrealm.com> How do I compile gnutls-0.9.90 (on Solaris 8) without opencdk or openpgp support? Is it doable? I tried various configure options like: ./configure -disable-openpgp-authentication --without-openpgp --without-opencdk And it seems like opencdk support is disabled: checking whether to disable OpenPGP Certificate authentication support... yes But I still fail to compile with errors like: gcc -DHAVE_CONFIG_H -I. -I. -I../.. -I../ -I../../includes/ -I../../lib -O2 -finline-functions -I/usr/local/include -MT verify.lo -MD -MP -MF .deps/verify.Tpo -c verify.c -fPIC -DPIC -o .libs/verify.o cc1: warning: changing search order for system directory "/usr/local/include" cc1: warning: as it has already been specified as a non-system directory In file included from verify.c:28: gnutls_openpgp.h:6:21: opencdk.h: No such file or directory In file included from verify.c:28: gnutls_openpgp.h:80: parse error before "kbx_to_keydb" gnutls_openpgp.h:80: warning: data definition has no type or storage class In file included from verify.c:29: openpgp.h:4:21: opencdk.h: No such file or directory In file included from verify.c:29: openpgp.h:7: parse error before "cdk_kbnode_t" openpgp.h:7: warning: no semicolon at end of struct or union openpgp.h:8: warning: data definition has no type or storage class openpgp.h:11: parse error before "cdk_keydb_hd_t" openpgp.h:11: warning: no semicolon at end of struct or union openpgp.h:12: warning: data definition has no type or storage class openpgp.h:15: parse error before "cdk_stream_t" openpgp.h:15: warning: no semicolon at end of struct or union openpgp.h:16: warning: data definition has no type or storage class make[3]: *** [verify.lo] Error 1 make[3]: Leaving directory `/home/cgagnon/src/gnutls-0.9.90/libextra/openpgp' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/home/cgagnon/src/gnutls-0.9.90/libextra' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/home/cgagnon/src/gnutls-0.9.90' make: *** [all] Error 2 help. -- Charles Gagnon | My views are my views and they http://unixrealm.com | do not represent those of anybody charlesg at unixrealm.com | but me. Is there another word for synonym? -- Dennis Miller From pete at geckoworks.com Fri Oct 17 19:00:03 2003 From: pete at geckoworks.com (Pete Naylor) Date: Fri, 17 Oct 2003 10:00:03 -0700 Subject: [Help-gnutls] generating certificates In-Reply-To: <20031017071532.GB1662@gnutls.org> References: <20031016200318.GA22335@geckoworks.com> <20031016204025.GA2548@gnutls.org> <20031016215955.GB22335@geckoworks.com> <20031017071532.GB1662@gnutls.org> Message-ID: <20031017170003.GC27377@geckoworks.com> Nikos Mavroyanopoulos wrote... > On Thu, Oct 16, 2003 at 02:59:55PM -0700, Pete Naylor wrote: > > > > You cannot generate or sign certificates using gnutls. You should > > > use the openssl tools for that. > > Is that expected to change? For v1.0 perhaps? I don't want to install > > OpenSSL on my systems - that's why I built GnuTLS. > No this is not expected to change for gnutls v1.0. However new > versions of gnupg will have this capability. > In any case you don't have to install openssl in all your systems. > You could generate them in a simple system. I don't want to install OpenSSL on any of my systems - I don't trust it at all, and in fact I cannot install it since I don't have Perl and OpenSSL will not build without it (a C library requiring Perl to build is quite pathetic). For the moment, I will use the Roxen web server to generate my self-signed keys/certs. > The features available for gnutls 1.0, are features that > are needed in TLS servers, and TLS-enabled web browsers. That is > certificate request generation/parsing, private key generation/parsing, > pkcs #12 packet parsing and generation, certificate parsing etc. That doesn't seem to be the case, since I wanted to run a TLS server, but the tools required to generate a self-signed key/cert are not included. IMHO, that represents a serious deficiency in the package which will make it less attractive as a solution for many users. From jgeorgeson at lopht.net Fri Oct 17 19:12:50 2003 From: jgeorgeson at lopht.net (Justin Georgeson) Date: Fri, 17 Oct 2003 12:12:50 -0500 Subject: [Help-gnutls] opencdk Message-ID: <3F902312.90104@lopht.net> I'm trying to build/install the latest tarballs of gnutls (0.9.90), libtasn1 (0.2.6) and opencdk (0.5.1) on Red Hat Advanced Workstation 2.1 (between 7.2 and 7.3). I have installed libgpg-error 0.4 and libgcrypt 1.1.43 successfully, and libtasn1 built and installed fine too. But opencdk fails to compile: gcc -DHAVE_CONFIG_H -I. -I. -I.. -I/home/afiler1/jgeorgeson/apps/include -g -O2 -Wall -Wcast-align -Wshadow -Wstrict-prototypes -MT new-packet.lo -MD -MP -MF .deps/new-packet.Tpo -c new-packet.c -fPIC -DPIC -o .libs/new-packet.lo In file included from main.h:27, from new-packet.c:30: types.h:55: redefinition of `gcry_mpi_t' /home/afiler1/jgeorgeson/apps/include/gcrypt.h:151: `gcry_mpi_t' previously declared here types.h:56: redefinition of `gcry_sexp_t' /home/afiler1/jgeorgeson/apps/include/gcrypt.h:222: `gcry_sexp_t' previously declared here From nmav at gnutls.org Sat Oct 18 00:29:43 2003 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Sat, 18 Oct 2003 01:29:43 +0300 Subject: [Help-gnutls] opencdk In-Reply-To: <3F902312.90104@lopht.net> References: <3F902312.90104@lopht.net> Message-ID: <20031017222943.GA3789@gnutls.org> On Fri, Oct 17, 2003 at 12:12:50PM -0500, Justin Georgeson wrote: > I'm trying to build/install the latest tarballs of gnutls (0.9.90), > libtasn1 (0.2.6) and opencdk (0.5.1) on Red Hat Advanced Workstation 2.1 > (between 7.2 and 7.3). I have installed libgpg-error 0.4 and libgcrypt > 1.1.43 successfully, and libtasn1 built and installed fine too. But > opencdk fails to compile: You cannot use the current version of opencdk with the new libgcrypt. You have to disable openpgp authentication, until a new version (0.5.2) of opencdk is released. There was a compilation bug in gnutls 0.9.90, so use the patch sent in this list today, or get gnutls 0.9.91. -- Nikos Mavroyanopoulos From gnutls at jeremye.net Mon Oct 20 18:32:24 2003 From: gnutls at jeremye.net (Jeremy Ellington) Date: Mon, 20 Oct 2003 11:32:24 -0500 (CDT) Subject: [Help-gnutls] compatible versions of various software components Message-ID: <30155.208.190.191.177.1066667544.squirrel@mail.jeremye.net> I'm interested in using gnutls with OpenPGP (gpg) authentication. I downloaded the latest versions of all the required software packages (libgcrypt, libgpg-error, opencdk, libtasn1, gnutls), but they don't seem to be compatible with one another. I believe that grabbing the latest packages is like shooting at moving target. Can someone give a list of the latest software packages that should work together, allowing me to user PGP authentication? An unrelated question: how similar is this software package to OpenSSL? Besides supporting OpenPGP authentication, are there any significant differences? Why was the decision made to create a new library from scratch rather than adding OpenPGP authentication to OpenSSL? Thanks! From nmav at gnutls.org Wed Oct 22 11:05:20 2003 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Wed, 22 Oct 2003 12:05:20 +0300 Subject: [Help-gnutls] compatible versions of various software components In-Reply-To: <30155.208.190.191.177.1066667544.squirrel@mail.jeremye.net> References: <30155.208.190.191.177.1066667544.squirrel@mail.jeremye.net> Message-ID: <20031022090520.GB1002@gnutls.org> On Mon, Oct 20, 2003 at 11:32:24AM -0500, Jeremy Ellington wrote: > I'm interested in using gnutls with OpenPGP (gpg) authentication. I > downloaded the latest versions of all the required software packages > (libgcrypt, libgpg-error, opencdk, libtasn1, gnutls), but they don't seem > to be compatible with one another. I believe that grabbing the latest > packages is like shooting at moving target. Currently there is no opencdk version compatible with the current libgcrypt. So you cannot build the openpgp authentication part of gnutls. This will change soon. > Can someone give a list of the latest software packages that should work > together, allowing me to user PGP authentication? > An unrelated question: how similar is this software package to OpenSSL? > Besides supporting OpenPGP authentication, are there any significant > differences? Why was the decision made to create a new library from > scratch rather than adding OpenPGP authentication to OpenSSL? Gnutls was implemented in order to have a GPL compatible TLS implementation. > Thanks! -- Nikos Mavroyanopoulos From nmav at gnutls.org Wed Oct 22 11:06:40 2003 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Wed, 22 Oct 2003 12:06:40 +0300 Subject: [Help-gnutls] generating certificates In-Reply-To: <20031017170003.GC27377@geckoworks.com> References: <20031016200318.GA22335@geckoworks.com> <20031016204025.GA2548@gnutls.org> <20031016215955.GB22335@geckoworks.com> <20031017071532.GB1662@gnutls.org> <20031017170003.GC27377@geckoworks.com> Message-ID: <20031022090640.GC1002@gnutls.org> On Fri, Oct 17, 2003 at 10:00:03AM -0700, Pete Naylor wrote: > > The features available for gnutls 1.0, are features that > > are needed in TLS servers, and TLS-enabled web browsers. That is > > certificate request generation/parsing, private key generation/parsing, > > pkcs #12 packet parsing and generation, certificate parsing etc. > That doesn't seem to be the case, since I wanted to run a TLS server, but > the tools required to generate a self-signed key/cert are not included. > IMHO, that represents a serious deficiency in the package which will make > it less attractive as a solution for many users. You surely have a point here. I'll work on it soon, although I don't think it will be included in the 1.0 release. -- Nikos Mavroyanopoulos