From levi at eneservices.com Thu Oct 6 06:19:44 2016 From: levi at eneservices.com (Levi Stanley) Date: Thu, 6 Oct 2016 00:19:44 -0400 Subject: [gnutls-help] I keep getting a crypt32.dll message on Windows Message-ID: I compiled gnutls using Mingw64, and Msys2. However, when I try to execute the application, I get a dialog like this: ? Basically saying "The procedure entry point CertCloseStore at 8 could not be located in the dynamic link library crypt32.dll. And the application terminates after clicking the okay button. What flags do I need to set on the configure script to eliminate this issue? Currently, I am using this: *configure --prefix=/c/mingw --with-included-libtasn1 --without-p11-kit --with-unbound-root-key-file=/c/mingw/etc/unbound/root.key --host=i686-w64-mingw32 --build=i686-w64-mingw32 --target=i686-w64-mingw32 --enable-static --enable-local-libopts --disable-doc CFLAGS="-I/c/mingw/include -L/c/mingw/lib" CXXFLAGS="-I/c/mingw/include -L/c/mingw/lib"* Any assistance would be greatly appreciated. Best regards, Levi -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Windows 7 x64 - PCPitstop-2016-10-06-00-14-37.png Type: image/png Size: 21560 bytes Desc: not available URL: From nmav at gnutls.org Thu Oct 6 16:59:10 2016 From: nmav at gnutls.org (Nikos Mavrogiannopoulos) Date: Thu, 6 Oct 2016 16:59:10 +0200 Subject: [gnutls-help] I keep getting a crypt32.dll message on Windows In-Reply-To: References: Message-ID: Hi, Which version of windows is that? Does it occur with the automatically built versions of the library (e.g., https://gitlab.com/gnutls/gnutls/builds/3852960 and https://gitlab.com/gnutls/gnutls/builds/3852955) regards, Nikos On Thu, Oct 6, 2016 at 6:19 AM, Levi Stanley wrote: > I compiled gnutls using Mingw64, and Msys2. > > However, when I try to execute the application, I get a dialog like this: > > > ? > > Basically saying "The procedure entry point CertCloseStore at 8 could not be > located in the dynamic link library crypt32.dll. And the application > terminates after clicking the okay button. > > What flags do I need to set on the configure script to eliminate this > issue? > > Currently, I am using this: > > > *configure --prefix=/c/mingw --with-included-libtasn1 --without-p11-kit > --with-unbound-root-key-file=/c/mingw/etc/unbound/root.key > --host=i686-w64-mingw32 --build=i686-w64-mingw32 --target=i686-w64-mingw32 > --enable-static --enable-local-libopts --disable-doc > CFLAGS="-I/c/mingw/include -L/c/mingw/lib" CXXFLAGS="-I/c/mingw/include > -L/c/mingw/lib"* > > > Any assistance would be greatly appreciated. > > Best regards, > Levi > > _______________________________________________ > Gnutls-help mailing list > Gnutls-help at lists.gnutls.org > http://lists.gnupg.org/mailman/listinfo/gnutls-help > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Windows 7 x64 - PCPitstop-2016-10-06-00-14-37.png Type: image/png Size: 21560 bytes Desc: not available URL: From dank at kegel.com Thu Oct 6 17:05:27 2016 From: dank at kegel.com (Dan Kegel) Date: Thu, 6 Oct 2016 08:05:27 -0700 Subject: [gnutls-help] I keep getting a crypt32.dll message on Windows In-Reply-To: References: Message-ID: This sounds like DLL hell. Try using Dependency Walker to verify that you're loading the crypt32 DLL you think you're loading. I think depends.exe comes with visual studio, but if not, see http://www.dependencywalker.com/ or maybe https://technet.microsoft.com/en-us/sysinternals/processexplorer On Thu, Oct 6, 2016 at 7:59 AM, Nikos Mavrogiannopoulos wrote: > Hi, > Which version of windows is that? Does it occur with the automatically > built versions of the library (e.g., > https://gitlab.com/gnutls/gnutls/builds/3852960 > > and https://gitlab.com/gnutls/gnutls/builds/3852955) > > regards, > Nikos > > On Thu, Oct 6, 2016 at 6:19 AM, Levi Stanley wrote: > >> I compiled gnutls using Mingw64, and Msys2. >> >> However, when I try to execute the application, I get a dialog like this: >> >> >> ? >> >> Basically saying "The procedure entry point CertCloseStore at 8 could not >> be located in the dynamic link library crypt32.dll. And the application >> terminates after clicking the okay button. >> >> What flags do I need to set on the configure script to eliminate this >> issue? >> >> Currently, I am using this: >> >> >> *configure --prefix=/c/mingw --with-included-libtasn1 --without-p11-kit >> --with-unbound-root-key-file=/c/mingw/etc/unbound/root.key >> --host=i686-w64-mingw32 --build=i686-w64-mingw32 --target=i686-w64-mingw32 >> --enable-static --enable-local-libopts --disable-doc >> CFLAGS="-I/c/mingw/include -L/c/mingw/lib" CXXFLAGS="-I/c/mingw/include >> -L/c/mingw/lib"* >> >> >> Any assistance would be greatly appreciated. >> >> Best regards, >> Levi >> >> _______________________________________________ >> Gnutls-help mailing list >> Gnutls-help at lists.gnutls.org >> http://lists.gnupg.org/mailman/listinfo/gnutls-help >> > > > _______________________________________________ > Gnutls-help mailing list > Gnutls-help at lists.gnutls.org > http://lists.gnupg.org/mailman/listinfo/gnutls-help > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Windows 7 x64 - PCPitstop-2016-10-06-00-14-37.png Type: image/png Size: 21560 bytes Desc: not available URL: From levi at eneservices.com Sat Oct 8 01:40:20 2016 From: levi at eneservices.com (Levi Stanley) Date: Fri, 7 Oct 2016 19:40:20 -0400 Subject: [gnutls-help] I keep getting a crypt32.dll message on Windows In-Reply-To: References: Message-ID: It is loading the crypt32.dll from c:\windows\system32 On Thu, Oct 6, 2016 at 11:05 AM, Dan Kegel wrote: > This sounds like DLL hell. Try using Dependency Walker to verify that > you're loading the crypt32 DLL you think you're loading. > > I think depends.exe comes with visual studio, but if not, see > http://www.dependencywalker.com/ > or maybe https://technet.microsoft.com/en-us/sysinternals/processexplorer > > On Thu, Oct 6, 2016 at 7:59 AM, Nikos Mavrogiannopoulos > wrote: > >> Hi, >> Which version of windows is that? Does it occur with the automatically >> built versions of the library (e.g., >> https://gitlab.com/gnutls/gnutls/builds/3852960 >> >> and https://gitlab.com/gnutls/gnutls/builds/3852955) >> >> regards, >> Nikos >> >> On Thu, Oct 6, 2016 at 6:19 AM, Levi Stanley >> wrote: >> >>> I compiled gnutls using Mingw64, and Msys2. >>> >>> However, when I try to execute the application, I get a dialog like this: >>> >>> >>> ? >>> >>> Basically saying "The procedure entry point CertCloseStore at 8 could not >>> be located in the dynamic link library crypt32.dll. And the application >>> terminates after clicking the okay button. >>> >>> What flags do I need to set on the configure script to eliminate this >>> issue? >>> >>> Currently, I am using this: >>> >>> >>> *configure --prefix=/c/mingw --with-included-libtasn1 --without-p11-kit >>> --with-unbound-root-key-file=/c/mingw/etc/unbound/root.key >>> --host=i686-w64-mingw32 --build=i686-w64-mingw32 --target=i686-w64-mingw32 >>> --enable-static --enable-local-libopts --disable-doc >>> CFLAGS="-I/c/mingw/include -L/c/mingw/lib" CXXFLAGS="-I/c/mingw/include >>> -L/c/mingw/lib"* >>> >>> >>> Any assistance would be greatly appreciated. >>> >>> Best regards, >>> Levi >>> >>> _______________________________________________ >>> Gnutls-help mailing list >>> Gnutls-help at lists.gnutls.org >>> http://lists.gnupg.org/mailman/listinfo/gnutls-help >>> >> >> >> _______________________________________________ >> Gnutls-help mailing list >> Gnutls-help at lists.gnutls.org >> http://lists.gnupg.org/mailman/listinfo/gnutls-help >> > > > _______________________________________________ > Gnutls-help mailing list > Gnutls-help at lists.gnutls.org > http://lists.gnupg.org/mailman/listinfo/gnutls-help > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Windows 7 x64 - PCPitstop-2016-10-06-00-14-37.png Type: image/png Size: 21560 bytes Desc: not available URL: From dank at kegel.com Sat Oct 8 02:06:51 2016 From: dank at kegel.com (Dan Kegel) Date: Fri, 7 Oct 2016 17:06:51 -0700 Subject: [gnutls-help] I keep getting a crypt32.dll message on Windows In-Reply-To: References: Message-ID: What's the path to the .exe you're running, and to the crypt32.dll you want it to load? If they're not in the same directory, your exe is probably finding the crypt32 some other app installed. Ways around this: - copy the right crypt32.dll et al to the directory the .exe's in - use SetDllDirectory() to point there - use PATH to point there (though not globally... just in a batch file that runs your .exe) - use a manifest - swing a dead chicken over the computer Good luck! - Dan On Fri, Oct 7, 2016 at 4:40 PM, Levi Stanley wrote: > It is loading the crypt32.dll from c:\windows\system32 > > On Thu, Oct 6, 2016 at 11:05 AM, Dan Kegel wrote: > >> This sounds like DLL hell. Try using Dependency Walker to verify that >> you're loading the crypt32 DLL you think you're loading. >> >> I think depends.exe comes with visual studio, but if not, see >> http://www.dependencywalker.com/ >> or maybe https://technet.microsoft.com/en-us/sysinternals/processexplorer >> >> On Thu, Oct 6, 2016 at 7:59 AM, Nikos Mavrogiannopoulos >> wrote: >> >>> Hi, >>> Which version of windows is that? Does it occur with the automatically >>> built versions of the library (e.g., >>> https://gitlab.com/gnutls/gnutls/builds/3852960 >>> >>> and https://gitlab.com/gnutls/gnutls/builds/3852955) >>> >>> regards, >>> Nikos >>> >>> On Thu, Oct 6, 2016 at 6:19 AM, Levi Stanley >>> wrote: >>> >>>> I compiled gnutls using Mingw64, and Msys2. >>>> >>>> However, when I try to execute the application, I get a dialog like >>>> this: >>>> >>>> >>>> ? >>>> >>>> Basically saying "The procedure entry point CertCloseStore at 8 could not >>>> be located in the dynamic link library crypt32.dll. And the application >>>> terminates after clicking the okay button. >>>> >>>> What flags do I need to set on the configure script to eliminate this >>>> issue? >>>> >>>> Currently, I am using this: >>>> >>>> >>>> *configure --prefix=/c/mingw --with-included-libtasn1 --without-p11-kit >>>> --with-unbound-root-key-file=/c/mingw/etc/unbound/root.key >>>> --host=i686-w64-mingw32 --build=i686-w64-mingw32 --target=i686-w64-mingw32 >>>> --enable-static --enable-local-libopts --disable-doc >>>> CFLAGS="-I/c/mingw/include -L/c/mingw/lib" CXXFLAGS="-I/c/mingw/include >>>> -L/c/mingw/lib"* >>>> >>>> >>>> Any assistance would be greatly appreciated. >>>> >>>> Best regards, >>>> Levi >>>> >>>> _______________________________________________ >>>> Gnutls-help mailing list >>>> Gnutls-help at lists.gnutls.org >>>> http://lists.gnupg.org/mailman/listinfo/gnutls-help >>>> >>> >>> >>> _______________________________________________ >>> Gnutls-help mailing list >>> Gnutls-help at lists.gnutls.org >>> http://lists.gnupg.org/mailman/listinfo/gnutls-help >>> >> >> >> _______________________________________________ >> Gnutls-help mailing list >> Gnutls-help at lists.gnutls.org >> http://lists.gnupg.org/mailman/listinfo/gnutls-help >> > > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: Windows 7 x64 - PCPitstop-2016-10-06-00-14-37.png Type: image/png Size: 21560 bytes Desc: not available URL: From nmav at gnutls.org Sun Oct 9 20:34:05 2016 From: nmav at gnutls.org (Nikos Mavrogiannopoulos) Date: Sun, 09 Oct 2016 20:34:05 +0200 Subject: [gnutls-help] gnutls 3.5.5 Message-ID: <1476038045.32389.1.camel@gnutls.org> Hello,? ?I've just released gnutls 3.5.5. This is an enhancements and bugfix release for the 3.5.x branch. * Version 3.5.5 (released 2016-10-09) ** libgnutls: enhanced gnutls_certificate_set_ocsp_status_request_file() ???to allow importing multiple OCSP request files, one for each chain ???provided. ** libgnutls: The gnutls_certificate_set_key* functions return an ???index of the added chain. That index can be used either with ???gnutls_certificate_set_ocsp_status_request_file(), or with ???gnutls_certificate_get_crt_raw() and friends. ** libgnutls: Added SHA*, AES-GCM, AES-CCM and AES-CBC optimized implementations ???for the aarch64 architecture. Uses Andy Polyakov's assembly code. ** libgnutls: Ensure proper cleanups on gnutls_certificate_set_*key() ???failures due to key mismatch. This prevents leaks or double freeing ???on such failures. ** libgnutls: Increased the maximum size of the handshake message hash. ???This will allow the library to cope better with larger packets, as ???the ones offered by current TLS 1.3 drafts. ** libgnutls: Allow to use client certificates despite them containing ???disallowed algorithms for a session. That allows for example a client ???to use DSA-SHA1 due to his old DSA certificate, without requiring him ???to enable DSA-SHA1 (and thus make it acceptable for the server's certificate). ** libgnutls: Reverted AESNI code on x86 to earlier version as the ???latest version was creating position depending code. Added checks ???in the CI to detect position depending code early. ** guile: Update code to the I/O port API of Guile >= 2.1.4 ???This makes sure the GnuTLS bindings will work with the forthcoming 2.2 ???stable series of Guile, of which 2.1 is a preview. ** API and ABI modifications: gnutls_certificate_set_ocsp_status_request_function2: Added gnutls_session_ext_register: Added gnutls_session_supplemental_register: Added GNUTLS_E_PK_INVALID_PUBKEY: Added GNUTLS_E_PK_INVALID_PRIVKEY: Added Getting the Software ==================== GnuTLS may be downloaded directly from .??A list of GnuTLS mirrors can be found at . Here are the XZ compressed sources: ? ftp://ftp.gnutls.org/gcrypt/gnutls/v3.5/gnutls-3.5.5.tar.xz Here are OpenPGP detached signatures signed using key 0x96865171: ? ftp://ftp.gnutls.org/gcrypt/gnutls/v3.5/gnutls-3.5.5.tar.xz.sig Note that it has been signed with my openpgp key: pub???3104R/96865171 2008-05-04 [expires: 2028-04-29] uid??????????????????Nikos Mavrogiannopoulos gnutls.org> uid??????????????????Nikos Mavrogiannopoulos gmail.com> sub???2048R/9013B842 2008-05-04 [expires: 2018-05-02] sub???2048R/1404A91D 2008-05-04 [expires: 2018-05-02] regards, Nikos From nmav at gnutls.org Sun Oct 9 20:35:14 2016 From: nmav at gnutls.org (Nikos Mavrogiannopoulos) Date: Sun, 09 Oct 2016 20:35:14 +0200 Subject: [gnutls-help] gnutls 3.4.16 Message-ID: <1476038114.32389.2.camel@gnutls.org> Hello,? ?I've just released gnutls 3.4.16. This is a bug fix release of the current stable branch. * Version 3.4.16 (released 2016-10-09) ** libgnutls: Ensure proper cleanups on gnutls_certificate_set_*key() ???failures due to key mismatch. This prevents leaks or double freeing ???on such failures. ** libgnutls: Increased the maximum size of the handshake message hash. ???This will allow the library to cope better with larger packets, as ???the ones offered by current TLS 1.3 drafts. ** libgnutls: Allow to use client certificates despite them containing ???disallowed algorithms for a session. That allows for example a client ???to use DSA-SHA1 due to his old DSA certificate, without requiring him ???to enable DSA-SHA1 (and thus make it acceptable for the server's certificate). ** guile: Backported all improvements from 3.5.x branch. ** guile: Update code to the I/O port API of Guile >= 2.1.4 ???This makes sure the GnuTLS bindings will work with the forthcoming 2.2 ???stable series of Guile, of which 2.1 is a preview. ** API and ABI modifications: No changes since last version. Getting the Software ==================== GnuTLS may be downloaded directly from .??A list of GnuTLS mirrors can be found at . Here are the XZ compressed sources: ? ftp://ftp.gnutls.org/gcrypt/gnutls/v3.4/gnutls-3.4.16.tar.xz Here are OpenPGP detached signatures signed using key 0x96865171: ? ftp://ftp.gnutls.org/gcrypt/gnutls/v3.4/gnutls-3.4.16.tar.xz.sig Note that it has been signed with my openpgp key: pub???3104R/96865171 2008-05-04 [expires: 2028-04-29] uid??????????????????Nikos Mavrogiannopoulos gnutls.org> uid??????????????????Nikos Mavrogiannopoulos gmail.com> sub???2048R/9013B842 2008-05-04 [expires: 2018-05-02] sub???2048R/1404A91D 2008-05-04 [expires: 2018-05-02] regards, Nikos From nmav at gnutls.org Sun Oct 9 20:38:57 2016 From: nmav at gnutls.org (Nikos Mavrogiannopoulos) Date: Sun, 09 Oct 2016 20:38:57 +0200 Subject: [gnutls-help] gnutls 3.3.25 Message-ID: <1476038337.32389.6.camel@gnutls.org> Hello,? ?I've just released gnutls 3.3.25. This is a bug-fix release on the previous stable branch which addresses GNUTLS-SA-2016-3, and backports some functionality used by recent samba versions. * Version 3.3.25 (released 2016-10-9) ** libgnutls: Ensure proper cleanups on gnutls_certificate_set_*key() ???failures due to key mismatch. This prevents leaks or double freeing ???on such failures. ** libgnutls: Corrected the comparison of the serial size in OCSP response. ???Previously the OCSP certificate check wouldn't verify the serial length ???and could succeed in cases it shouldn't (GNUTLS-SA-2016-3). ???Reported by Stefan Buehler. ** libgnutls: Fixes in gnutls_x509_crt_list_import2, which was ???ignoring flags if all certificates in the list fit within the ???initially allocated memory. ** libgnutls: Fix gnutls_pkcs12_simple_parse to always extract the complete chain, ???even when the extra_certs was non-null. Report and fix by Stefan S?rensen. ** libgnutls: Added support for decrypting PKCS#8 files which use the HMAC-SHA256 ???as PRF. ** libgnutls: Addressed issue with PKCS#11 signature generation on ECDSA ???keys. The signature is now written as unsigned integers into the DSASignatureValue ???structure. Previously signed integers could be written depending on what ???the underlying module would produce. Addresses #122. ** libgnutls: backported X.509 unique ID functionality from later versions. ** libgnutls: Increased the maximum size of the handshake message hash. ???This will allow the library to cope better with larger packets, as ???the ones offered by current TLS 1.3 drafts. ** API and ABI modifications: gnutls_x509_crt_set_issuer_unique_id: Added gnutls_x509_crt_set_subject_unique_id: Added Getting the Software ==================== GnuTLS may be downloaded directly from .??A list of GnuTLS mirrors can be found at . Here are the XZ compressed sources: ? ftp://ftp.gnutls.org/gcrypt/gnutls/v3.3/gnutls-3.3.25.tar.xz Here are OpenPGP detached signatures signed using key 0x96865171: ? ftp://ftp.gnutls.org/gcrypt/gnutls/v3.3/gnutls-3.3.25.tar.xz.sig Note that it has been signed with my openpgp key: pub???3104R/96865171 2008-05-04 [expires: 2028-04-29] uid??????????????????Nikos Mavrogiannopoulos gnutls.org> uid??????????????????Nikos Mavrogiannopoulos gmail.com> sub???2048R/9013B842 2008-05-04 [expires: 2018-05-02] sub???2048R/1404A91D 2008-05-04 [expires: 2018-05-02] regards, Nikos