Re: Info doc conflict between 1.4.6 and 2.0.1?
On Thu, 7 Dec 2006 06:07, [EMAIL PROTECTED] said: I am MacOS X user (10.4.6), unable till now to compile 2.0.1 (posted a few messages explaining why). If you are MacOS X user, could you please explain how you succeeded to compile 2.0.1. Thanks. I know that there are some problems. Please give me some time wor work through them. IIRC, you need to use --disable-nls as weel as the latest versions of the libraries (maybe even from SVN). Shalom-Salam, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: using belgium EID with gnupg 2.0.1
On Wed, 6 Dec 2006 11:11, [EMAIL PROTECTED] said: i'm trying to import my belgium eID card but it only imports the belgium Root CA I have currently no time to care about it. I hope I can look at this in the next week. My two developer cards work just fine. You need to import the root certificates, though. Shalom-Salam, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Compile of Gnupg 2.0.1 failed - no libintl
On Thu, 7 Dec 2006 01:46, [EMAIL PROTECTED] said: I don't know what other configuration options to try, and I don't understand what *any* of them do, so I'm going to bag gnupg 2.0.1 and wait until I can find out what is going on, or maybe wait for a macosx binary. I'm running 1.4.5 and its working fine for me. You should install libiconv. See my response too Charly Avital's report. Salam-Shalom, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Info doc conflict between 1.4.6 and 2.0.1?
On Thu, 7 Dec 2006 05:37, [EMAIL PROTECTED] said: I don't recall seeing this before, but I don't use the info docs much, so maybe I've just missed it previously. It seems that 1.4.6 changed the texinfo file to use the dircategory GNU Utilities just as 2.0.1 does. 1.4.5 used GnuPG. Without knowing much about how install-info That is quite possible. I forgot to did this chnage in the release candidate and it was too late to do another one due to the security bug. If I'm doing something wrong or am incorrect in expecting that the info files should be parallel installable, let me know. If not, would a proper fix be to use gpg2 as the entry for 2.0.1? I think so and will change it for the next release. Salam-Shalom, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem building 2.0.1
On Wed, 6 Dec 2006 08:23, [EMAIL PROTECTED] said: - /usr/bin/ld: Undefined symbols: _libiconv Well, you need a proper iconv installation too. We need too do have an extra test for it in case NLS has been disabled. NLS requires iconv anyway but there is some otehr code in gpg which needs it too. Can you please add your problem it to the bug tracker, so we don't forget about it? Use category gnupg and mention libiconv in the title. http://bugs.g10code.com . Salam-Shalom, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: encrypt the sent folder
Andrew Berg wrote: TrueCrypt works also on Linux (kernel 2.6.5 and up). The advantage is that a TC volume can be accessed on both Linux and windows - very usefull when I use the same USB stick both at home and on my work. Uhhh... TC requires admin rights in order to mount a virtual drive. You must have admin rights at work. If not, how are you able to use it? I have on my local machine. As a programmer, I need to. -- ir. J.C.A. Wevers // Physics and science fiction site: [EMAIL PROTECTED] // http://www.xs4all.nl/~johanw/index.html PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
[Announce] Maintenance release for GnuPG 1.2.x
Hello, I am pleased to announce a security update to the 1.2 series of GnuPG: Version 1.2.8. The 1.2.x series has reached end of life status about 2 years ago. However, I make an update available for the sake of those who can't migrate to 1.4. There is no guarantee that all problems are solved in 1.2 - it is in general better to migrate to the activly maintained 1.4 series. You will find that version as well as corresponding signatures at the usual place (ftp://ftp.gnupg.org/gcrypt/gnupg/). Noteworthy changes in version 1.2.8 (2006-12-07) Backported security fixes. Note, that the 1.2.x series has reached end of life status. You should migrate to 1.4.x. * Fixed a serious and exploitable bug in processing encrypted packages. [CVE-2006-6235]. * Fixed a buffer overflow in gpg. [bug#728, CVE-2006-6169] * User IDs are now capped at 2048 bytes. This avoids a memory allocation attack [CVE-2006-3082]. * Added countermeasures against the Mister/Zuccherato CFB attack http://eprint.iacr.org/2005/033. Happy Hacking, Werner -- Werner Koch [EMAIL PROTECTED] The GnuPG Expertshttp://g10code.com Join the Fellowship and protect your Freedom!http://www.fsfe.org pgppwq8f7dC1h.pgp Description: PGP signature ___ Gnupg-announce mailing list [EMAIL PROTECTED] http://lists.gnupg.org/mailman/listinfo/gnupg-announce ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Info doc conflict between 1.4.6 and 2.0.1?
Werner Koch wrote: On Thu, 7 Dec 2006 05:37, [EMAIL PROTECTED] said: I don't recall seeing this before, but I don't use the info docs much, so maybe I've just missed it previously. It seems that 1.4.6 changed the texinfo file to use the dircategory GNU Utilities just as 2.0.1 does. 1.4.5 used GnuPG. Without knowing much about how install-info That is quite possible. I forgot to did this chnage in the release candidate and it was too late to do another one due to the security bug. Yes, I can understand that there were far more important things to be done. Here's hoping you can take this weekend off and relax. :) If I'm doing something wrong or am incorrect in expecting that the info files should be parallel installable, let me know. If not, would a proper fix be to use gpg2 as the entry for 2.0.1? I think so and will change it for the next release. If it helps, attached a one line patch against current svn. That seems to be all that's needed to get both 1.4 and 2.0 installed together happily. Thanks again to you and the whole GnuPG team! -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp == To tax and to please, no more than to love and be wise, is not given to men. -- Edmund Burke Index: doc/gnupg.texi === --- doc/gnupg.texi (revision 4372) +++ doc/gnupg.texi (working copy) @@ -48,7 +48,7 @@ @dircategory GNU Utilities @direntry -* gpg: (gnupg).OpenPGP encryption and signing tool. +* gpg2: (gnupg). OpenPGP encryption and signing tool. * gpgsm: (gnupg). S/MIME encryption and signing tool. @end direntry pgpRCQVqLRW84.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Signed patch against 2.0.1
Hi!
Here comes a signed patch against 2.0.1 for those who care to verify
signatures ;-).
Shalom-Salam,
Werner
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
NotDashEscaped: You need GnuPG to verify this message
This is a patch against GnuPG 2.0.1. Change the directory to g10/ and
apply this patch.
2006-12-02 Werner Koch [EMAIL PROTECTED]
* encr-data.c: Allocate DFX context on the heap and not on the
stack. Changes at several places. Fixes CVE-2006-6235.
Index: encr-data.c
===
--- encr-data.c (revision 4352)
+++ encr-data.c (working copy)
@@ -39,16 +39,37 @@
static int decode_filter ( void *opaque, int control, IOBUF a,
byte *buf, size_t *ret_len);
-typedef struct
+typedef struct decode_filter_context_s
{
gcry_cipher_hd_t cipher_hd;
gcry_md_hd_t mdc_hash;
char defer[22];
int defer_filled;
int eof_seen;
-} decode_filter_ctx_t;
+ int refcount;
+} *decode_filter_ctx_t;
+/* Helper to release the decode context. */
+static void
+release_dfx_context (decode_filter_ctx_t dfx)
+{
+ if (!dfx)
+return;
+
+ assert (dfx-refcount);
+ if ( !--dfx-refcount )
+{
+ gcry_cipher_close (dfx-cipher_hd);
+ dfx-cipher_hd = NULL;
+ gcry_md_close (dfx-mdc_hash);
+ dfx-mdc_hash = NULL;
+ xfree (dfx);
+}
+}
+
+
+
/
* Decrypt the data, specified by ED with the key DEK.
*/
@@ -62,7 +83,11 @@
unsigned blocksize;
unsigned nprefix;
- memset( dfx, 0, sizeof dfx );
+ dfx = xtrycalloc (1, sizeof *dfx);
+ if (!dfx)
+return gpg_error_from_syserror ();
+ dfx-refcount = 1;
+
if ( opt.verbose !dek-algo_info_printed )
{
const char *s = gcry_cipher_algo_name (dek-algo);
@@ -77,20 +102,20 @@
goto leave;
blocksize = gcry_cipher_get_algo_blklen (dek-algo);
if ( !blocksize || blocksize 16 )
-log_fatal(unsupported blocksize %u\n, blocksize );
+log_fatal (unsupported blocksize %u\n, blocksize );
nprefix = blocksize;
if ( ed-len ed-len (nprefix+2) )
BUG();
if ( ed-mdc_method )
{
- if (gcry_md_open (dfx.mdc_hash, ed-mdc_method, 0 ))
+ if (gcry_md_open (dfx-mdc_hash, ed-mdc_method, 0 ))
BUG ();
if ( DBG_HASHING )
-gcry_md_start_debug (dfx.mdc_hash, checkmdc);
+gcry_md_start_debug (dfx-mdc_hash, checkmdc);
}
- rc = gcry_cipher_open (dfx.cipher_hd, dek-algo,
+ rc = gcry_cipher_open (dfx-cipher_hd, dek-algo,
GCRY_CIPHER_MODE_CFB,
(GCRY_CIPHER_SECURE
| ((ed-mdc_method || dek-algo = 100)?
@@ -104,7 +129,7 @@
/* log_hexdump( thekey, dek-key, dek-keylen );*/
- rc = gcry_cipher_setkey (dfx.cipher_hd, dek-key, dek-keylen);
+ rc = gcry_cipher_setkey (dfx-cipher_hd, dek-key, dek-keylen);
if ( gpg_err_code (rc) == GPG_ERR_WEAK_KEY )
{
log_info(_(WARNING: message was encrypted with
@@ -123,7 +148,7 @@
goto leave;
}
- gcry_cipher_setiv (dfx.cipher_hd, NULL, 0);
+ gcry_cipher_setiv (dfx-cipher_hd, NULL, 0);
if ( ed-len )
{
@@ -144,8 +169,8 @@
temp[i] = c;
}
- gcry_cipher_decrypt (dfx.cipher_hd, temp, nprefix+2, NULL, 0);
- gcry_cipher_sync (dfx.cipher_hd);
+ gcry_cipher_decrypt (dfx-cipher_hd, temp, nprefix+2, NULL, 0);
+ gcry_cipher_sync (dfx-cipher_hd);
p = temp;
/* log_hexdump( prefix, temp, nprefix+2 ); */
if (dek-symmetric
@@ -155,17 +180,18 @@
goto leave;
}
- if ( dfx.mdc_hash )
-gcry_md_write (dfx.mdc_hash, temp, nprefix+2);
-
+ if ( dfx-mdc_hash )
+gcry_md_write (dfx-mdc_hash, temp, nprefix+2);
+
+ dfx-refcount++;
if ( ed-mdc_method )
-iobuf_push_filter( ed-buf, mdc_decode_filter, dfx );
+iobuf_push_filter ( ed-buf, mdc_decode_filter, dfx );
else
-iobuf_push_filter( ed-buf, decode_filter, dfx );
+iobuf_push_filter ( ed-buf, decode_filter, dfx );
proc_packets ( procctx, ed-buf );
ed-buf = NULL;
- if ( ed-mdc_method dfx.eof_seen == 2 )
+ if ( ed-mdc_method dfx-eof_seen == 2 )
rc = gpg_error (GPG_ERR_INV_PACKET);
else if ( ed-mdc_method )
{
@@ -184,26 +210,28 @@
bytes are appended. */
int datalen = gcry_md_get_algo_dlen (ed-mdc_method);
- gcry_cipher_decrypt (dfx.cipher_hd, dfx.defer, 22, NULL, 0);
- gcry_md_write (dfx.mdc_hash, dfx.defer, 2);
- gcry_md_final (dfx.mdc_hash);
+ assert (dfx-cipher_hd);
+ assert (dfx-mdc_hash);
+ gcry_cipher_decrypt (dfx-cipher_hd, dfx-defer, 22, NULL, 0);
+ gcry_md_write (dfx-mdc_hash, dfx-defer, 2);
+ gcry_md_final (dfx-mdc_hash);
- if (dfx.defer[0] != '\xd3' || dfx.defer[1] != '\x14' )
+ if (dfx-defer[0] != '\xd3' || dfx-defer[1] != '\x14' )
{
log_error(mdc_packet with invalid encoding\n);
rc = gpg_error (GPG_ERR_INV_PACKET);
}
Signed patch against 1.4.5
Hi!
Here comes a signed pacth agains 1.4.5 for those who care to verify
signatures ;-).
Shalom-Salam,
Werner
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
NotDashEscaped: You need GnuPG to verify this message
This is a patch against GnuPG 1.4.5. Change the directory to g10/ and
apply this patch.
2006-12-02 Werner Koch [EMAIL PROTECTED]
* encr-data.c: Allocate DFX context on the heap and not on the
stack. Changes at several places. Fixes CVE-2006-6235.
--- encr-data.c.orig2006-05-16 14:34:26.0 +0200
+++ encr-data.c 2006-12-04 11:58:53.0 +0100
@@ -44,7 +44,27 @@ typedef struct {
char defer[20];
int defer_filled;
int eof_seen;
-} decode_filter_ctx_t;
+int refcount;
+} *decode_filter_ctx_t;
+
+
+/* Helper to release the decode context. */
+static void
+release_dfx_context (decode_filter_ctx_t dfx)
+{
+ if (!dfx)
+return;
+
+ assert (dfx-refcount);
+ if ( !--dfx-refcount )
+{
+ cipher_close (dfx-cipher_hd);
+ dfx-cipher_hd = NULL;
+ md_close (dfx-mdc_hash);
+ dfx-mdc_hash = NULL;
+ xfree (dfx);
+}
+}
/
@@ -60,7 +80,10 @@ decrypt_data( void *procctx, PKT_encrypt
unsigned blocksize;
unsigned nprefix;
-memset( dfx, 0, sizeof dfx );
+
+dfx = xcalloc (1, sizeof *dfx);
+dfx-refcount = 1;
+
if( opt.verbose !dek-algo_info_printed ) {
const char *s = cipher_algo_to_string( dek-algo );
if( s )
@@ -79,15 +102,15 @@ decrypt_data( void *procctx, PKT_encrypt
BUG();
if( ed-mdc_method ) {
- dfx.mdc_hash = md_open( ed-mdc_method, 0 );
+ dfx-mdc_hash = md_open ( ed-mdc_method, 0 );
if ( DBG_HASHING )
- md_start_debug(dfx.mdc_hash, checkmdc);
+ md_start_debug (dfx-mdc_hash, checkmdc);
}
-dfx.cipher_hd = cipher_open( dek-algo,
-ed-mdc_method? CIPHER_MODE_CFB
- : CIPHER_MODE_AUTO_CFB, 1 );
+dfx-cipher_hd = cipher_open ( dek-algo,
+ ed-mdc_method? CIPHER_MODE_CFB
+ : CIPHER_MODE_AUTO_CFB, 1 );
/* log_hexdump( thekey, dek-key, dek-keylen );*/
-rc = cipher_setkey( dfx.cipher_hd, dek-key, dek-keylen );
+rc = cipher_setkey ( dfx-cipher_hd, dek-key, dek-keylen );
if( rc == G10ERR_WEAK_KEY )
{
log_info(_(WARNING: message was encrypted with
@@ -105,7 +128,7 @@ decrypt_data( void *procctx, PKT_encrypt
goto leave;
}
-cipher_setiv( dfx.cipher_hd, NULL, 0 );
+cipher_setiv ( dfx-cipher_hd, NULL, 0 );
if( ed-len ) {
for(i=0; i (nprefix+2) ed-len; i++, ed-len-- ) {
@@ -122,8 +145,8 @@ decrypt_data( void *procctx, PKT_encrypt
else
temp[i] = c;
}
-cipher_decrypt( dfx.cipher_hd, temp, temp, nprefix+2);
-cipher_sync( dfx.cipher_hd );
+cipher_decrypt ( dfx-cipher_hd, temp, temp, nprefix+2);
+cipher_sync ( dfx-cipher_hd );
p = temp;
/* log_hexdump( prefix, temp, nprefix+2 ); */
if(dek-symmetric
@@ -133,34 +156,34 @@ decrypt_data( void *procctx, PKT_encrypt
goto leave;
}
-if( dfx.mdc_hash )
- md_write( dfx.mdc_hash, temp, nprefix+2 );
+if ( dfx-mdc_hash )
+ md_write ( dfx-mdc_hash, temp, nprefix+2 );
-if( ed-mdc_method )
- iobuf_push_filter( ed-buf, mdc_decode_filter, dfx );
+dfx-refcount++;
+if ( ed-mdc_method )
+ iobuf_push_filter( ed-buf, mdc_decode_filter, dfx );
else
- iobuf_push_filter( ed-buf, decode_filter, dfx );
+ iobuf_push_filter( ed-buf, decode_filter, dfx );
proc_packets( procctx, ed-buf );
ed-buf = NULL;
-if( ed-mdc_method dfx.eof_seen == 2 )
+if( ed-mdc_method dfx-eof_seen == 2 )
rc = G10ERR_INVALID_PACKET;
else if( ed-mdc_method ) { /* check the mdc */
int datalen = md_digest_length( ed-mdc_method );
- cipher_decrypt( dfx.cipher_hd, dfx.defer, dfx.defer, 20);
- md_final( dfx.mdc_hash );
+ cipher_decrypt ( dfx-cipher_hd, dfx-defer, dfx-defer, 20);
+ md_final ( dfx-mdc_hash );
if( datalen != 20
- || memcmp(md_read( dfx.mdc_hash, 0 ), dfx.defer, datalen) )
+ || memcmp(md_read( dfx-mdc_hash, 0 ), dfx-defer, datalen) )
rc = G10ERR_BAD_SIGN;
- /*log_hexdump(MDC calculated:, md_read( dfx.mdc_hash, 0), datalen);*/
- /*log_hexdump(MDC message :, dfx.defer, 20);*/
+ /*log_hexdump(MDC calculated:,md_read( dfx-mdc_hash, 0), datalen);*/
+ /*log_hexdump(MDC message :, dfx-defer, 20);*/
}
leave:
-cipher_close(dfx.cipher_hd);
-md_close( dfx.mdc_hash );
+release_dfx_context (dfx);
return rc;
}
@@ -171,7 +194,7 @@ static int
mdc_decode_filter( void *opaque, int control, IOBUF a,
byte *buf, size_t *ret_len)
{
-
Re: Signed patch against 2.0.1
Werner Koch wrote: Here comes a signed patch against 2.0.1 for those who care to verify signatures ;-). Thanks Werner. Seems that the list archives scrub the attachment, which makes it less useful than it'd be otherwise, 'cause you can't point others to the signed patch. If any of the list owners have some free time I'd be happy to try to get that corrected or take it to the mailman-users list for advice if need be. (It seems that the content filter settings for the list may be a little aggressive.) BTW, I really like your Content-Type boundary string. :) -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp == Lack of money is the root of all evil. -- George Bernard Shaw Man and Superman, 1903 pgpPBgw3tjWod.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Signed patch against 2.0.1
On Thu, Dec 07, 2006 at 02:01:22PM -0500, Todd Zullinger wrote: Werner Koch wrote: Here comes a signed patch against 2.0.1 for those who care to verify signatures ;-). Thanks Werner. Seems that the list archives scrub the attachment, which makes it less useful than it'd be otherwise, 'cause you can't point others to the signed patch. If any of the list owners have some free time I'd be happy to try to get that corrected or take it to the mailman-users list for advice if need be. (It seems that the content filter settings for the list may be a little aggressive.) I got a patch plus sig just fine, sure it isn't somewhere between the list server and you that the scrubbing happens? Wouter van Heyst signature.asc Description: Digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
GnuPG 2.0.1 compile error
Yes, I know there has been a lot of compiling error going around on gnupg-users recently but I have tried to find the problem, but cannot. My './configure' works fine, but I get the following error part-way through 'make': compress.c:36:18: error: zlib.h: No such file or directory compress.c:61: error: expected declaration specifiers or '...' before 'z_stream' compress.c: In function 'init_compress': compress.c:76: error: 'Z_DEFAULT_COMPRESSION' undeclared (first use in this function) compress.c:76: error: (Each undeclared identifier is reported only once compress.c:76: error: for each function it appears in.) compress.c:82: warning: implicit declaration of function 'deflateInit2' compress.c:82: error: 'zs' undeclared (first use in this function) compress.c:82: error: 'Z_DEFLATED' undeclared (first use in this function) compress.c:83: error: 'Z_DEFAULT_STRATEGY' undeclared (first use in this function) compress.c:84: warning: implicit declaration of function 'deflateInit' compress.c:85: error: 'Z_OK' undeclared (first use in this function) compress.c:87: error: 'Z_MEM_ERROR' undeclared (first use in this function) compress.c:88: error: 'Z_VERSION_ERROR' undeclared (first use in this function) compress.c: At top level: compress.c:97: error: expected declaration specifiers or '...' before 'z_stream' compress.c: In function 'do_compress': compress.c:104: error: 'zs' undeclared (first use in this function) compress.c:109: warning: implicit declaration of function 'deflate' compress.c:110: error: 'Z_STREAM_END' undeclared (first use in this function) compress.c:110: error: 'Z_FINISH' undeclared (first use in this function) compress.c:112: error: 'Z_OK' undeclared (first use in this function) compress.c: At top level: compress.c:134: error: expected declaration specifiers or '...' before 'z_stream' compress.c: In function 'init_uncompress': compress.c:148: warning: implicit declaration of function 'inflateInit2' compress.c:148: error: 'zs' undeclared (first use in this function) compress.c:149: warning: implicit declaration of function 'inflateInit' compress.c:149: error: 'Z_OK' undeclared (first use in this function) compress.c:151: error: 'Z_MEM_ERROR' undeclared (first use in this function) compress.c:152: error: 'Z_VERSION_ERROR' undeclared (first use in this function) compress.c: At top level: compress.c:162: error: expected declaration specifiers or '...' before 'z_stream' compress.c: In function 'do_uncompress': compress.c:169: error: 'zs' undeclared (first use in this function) compress.c:198: warning: implicit declaration of function 'inflate' compress.c:198: error: 'Z_SYNC_FLUSH' undeclared (first use in this function) compress.c:202: error: 'Z_STREAM_END' undeclared (first use in this function) compress.c:204: error: 'Z_OK' undeclared (first use in this function) compress.c:204: error: 'Z_BUF_ERROR' undeclared (first use in this function) compress.c: In function 'compress_filter': compress.c:225: error: 'z_stream' undeclared (first use in this function) compress.c:225: error: 'zs' undeclared (first use in this function) compress.c:231: error: too many arguments to function 'init_uncompress' compress.c:238: warning: passing argument 3 of 'do_uncompress' from incompatible pointer type compress.c:238: error: too many arguments to function 'do_uncompress' compress.c:256: error: too many arguments to function 'init_compress' compress.c:262: error: 'Z_NO_FLUSH' undeclared (first use in this function) compress.c:262: error: too many arguments to function 'do_compress' compress.c:266: warning: implicit declaration of function 'inflateEnd' compress.c:274: error: 'Z_FINISH' undeclared (first use in this function) compress.c:274: error: too many arguments to function 'do_compress' compress.c:275: warning: implicit declaration of function 'deflateEnd' make[2]: *** [compress.o] Error 1 make[2]: Leaving directory `/root/gnupg-2.0.1/g10' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/root/gnupg-2.0.1' make: *** [all] Error 2 === -- Zach Himsel z.himsel[at]gmail.com === http://tinyurl.com/yjxo8s === |_|0|_| --- OpenPGP Key: 0x9A1DFCAC --- |_|_|0| () **ASCII Ribbon Campaign** -- against |0|0|0| /\ html mail proprietary attachments ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem building 2.0.1
On Thu, Dec 07, 2006 at 10:21:18AM +0100, Werner Koch wrote: On Wed, 6 Dec 2006 08:23, [EMAIL PROTECTED] said: - /usr/bin/ld: Undefined symbols: _libiconv Well, you need a proper iconv installation too. We need too do have an extra test for it in case NLS has been disabled. NLS requires iconv anyway but there is some otehr code in gpg which needs it too. OSX has iconv already. I see a problem in the Makefiles that we're not linking to it though. I've fixed this in svn, and 2.0 now builds more or less (still some doc/ issues) on my OSX box. Here's a patch for the various people who have had a problem. David Index: tools/Makefile.am === --- tools/Makefile.am (revision 4373) +++ tools/Makefile.am (working copy) @@ -54,13 +54,14 @@ common_libs = ../jnlib/libjnlib.a ../common/libcommon.a ../gl/libgnu.a pwquery_libs = ../common/libsimple-pwquery.a -gpgsplit_LDADD = $(common_libs) $(LIBGCRYPT_LIBS) $(GPG_ERROR_LIBS) $(ZLIBS) +gpgsplit_LDADD = $(common_libs) $(LIBGCRYPT_LIBS) $(GPG_ERROR_LIBS) \ +$(ZLIBS) $(LIBICONV) gpgconf_SOURCES = gpgconf.c gpgconf.h gpgconf-comp.c no-libgcrypt.c # jnlib/common sucks in gpg-error, will they, nil they (some compilers # do not eliminate the supposed-to-be-unused-inline-functions). -gpgconf_LDADD = $(common_libs) $(LIBINTL) $(GPG_ERROR_LIBS) +gpgconf_LDADD = $(common_libs) $(LIBINTL) $(GPG_ERROR_LIBS) $(LIBICONV) gpgparsemail_SOURCES = gpgparsemail.c rfc822parse.c rfc822parse.h gpgparsemail_LDADD = @@ -74,7 +75,7 @@ gpg_connect_agent_SOURCES = gpg-connect-agent.c no-libgcrypt.c gpg_connect_agent_LDADD = $(common_libs) $(LIBASSUAN_LIBS) \ - $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) + $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) $(LIBICONV) gpgkey2ssh_SOURCES = gpgkey2ssh.c gpgkey2ssh_CFLAGS = $(LIBGCRYPT_CFLAGS) $(GPG_ERROR_CFLAGS) Index: g10/Makefile.am === --- g10/Makefile.am (revision 4373) +++ g10/Makefile.am (working copy) @@ -118,8 +118,10 @@ LDADD = $(needed_libs) ../common/libgpgrl.a \ $(ZLIBS) $(DNSLIBS) $(LIBREADLINE) \ $(LIBINTL) $(CAPLIBS) $(NETLIBS) -gpg2_LDADD = $(LIBGCRYPT_LIBS) $(LDADD) $(LIBASSUAN_LIBS) $(GPG_ERROR_LIBS) -gpgv2_LDADD = $(LIBGCRYPT_LIBS) $(LDADD) $(LIBASSUAN_LIBS) $(GPG_ERROR_LIBS) +gpg2_LDADD = $(LIBGCRYPT_LIBS) $(LDADD) $(LIBASSUAN_LIBS) $(GPG_ERROR_LIBS) \ +$(LIBICONV) +gpgv2_LDADD = $(LIBGCRYPT_LIBS) $(LDADD) $(LIBASSUAN_LIBS) $(GPG_ERROR_LIBS) \ + $(LIBICONV) $(PROGRAMS): $(needed_libs) ../common/libgpgrl.a Index: agent/Makefile.am === --- agent/Makefile.am (revision 4373) +++ agent/Makefile.am (working copy) @@ -53,7 +53,7 @@ gpg_agent_CFLAGS = $(AM_CFLAGS) $(LIBASSUAN_PTH_CFLAGS) $(PTH_CFLAGS) gpg_agent_LDADD = $(commonpth_libs) \ $(LIBGCRYPT_LIBS) $(LIBASSUAN_PTH_LIBS) $(PTH_LIBS) \ - $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) + $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) $(LIBICONV) gpg_protect_tool_SOURCES = \ protect-tool.c \ @@ -62,14 +62,14 @@ # Needs $(NETLIBS) for libsimple-pwquery.la. gpg_protect_tool_LDADD = $(pwquery_libs) $(common_libs) \ - $(LIBGCRYPT_LIBS) $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) + $(LIBGCRYPT_LIBS) $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) $(LIBICONV) gpg_preset_passphrase_SOURCES = \ preset-passphrase.c # Needs $(NETLIBS) for libsimple-pwquery.la. gpg_preset_passphrase_LDADD = $(pwquery_libs) $(common_libs) \ -$(LIBGCRYPT_LIBS) $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) +$(LIBGCRYPT_LIBS) $(GPG_ERROR_LIBS) $(LIBINTL) $(NETLIBS) $(LIBICONV) # Make sure that all libs are build before we use them. This is ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GnuPG 2.0.1 compile error
On Thu, Dec 07, 2006 at 04:22:53PM -0500, Zach Himsel wrote: Yes, I know there has been a lot of compiling error going around on gnupg-users recently but I have tried to find the problem, but cannot. My './configure' works fine, but I get the following error part-way through 'make': compress.c:36:18: error: zlib.h: No such file or directory We need at least a tiny bit of information to try and help you. Let's start with what kind of computer you have and what OS is running on it? Then look in config.log and see what it says about zlib.h (stuff like checking for zlib.h usability and checking for zlib.h). David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem building 2.0.1
On Thu, Dec 07, 2006 at 04:56:38PM -0600, Robert J. Hansen wrote: David Shaw wrote: OSX has iconv already. Minor correction; OS X 10.4 has iconv already. For 10.3 and previous, iconv is not part of the operating system. That's not correct. 10.3 has iconv. 10.2 doesn't, but, well, 10.2 is also from 2002. Get modern, people, or compile iconv yourself ;) David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem building 2.0.1
David Shaw wrote: OSX has iconv already. Minor correction; OS X 10.4 has iconv already. For 10.3 and previous, iconv is not part of the operating system. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Fwd: GnuPG 2.0.1 compile error
On 12/7/06, David Shaw [EMAIL PROTECTED] wrote: We need at least a tiny bit of information to try and help you. Let's start with what kind of computer you have and what OS is running on it? Then look in config.log and see what it says about zlib.h (stuff like checking for zlib.h usability and checking for zlib.h). Duh! Sorry, I forgot about that! :) I'm running Ubuntu 'Edgy Eft' on an Acer Aspire 5100 (Turion 64, 1GB RAM). I currently have GnuPG 1.4.6 and 1.9.21. config.log is as follows (regarding zlib.h): === configure:30117: checking zlib.h usability configure:30134: gcc -c -g -O2 conftest.c 5 conftest.c:238:18: error: zlib.h: No such file or directory configure:30140: $? = 1 configure: failed program was: | /* confdefs.h. */ | #define PACKAGE_NAME gnupg | #define PACKAGE_TARNAME gnupg | #define PACKAGE_VERSION 2.0.1 SNIP | /* end confdefs.h. */ | #include zlib.h configure:30217: result: no configure:30250: checking for zlib.h configure:30257: result: no configure:30375: checking for bzlib.h configure:30396: gcc -c -g -O2 conftest.c 5 conftest.c:207:19: error: bzlib.h: No such file or directory configure:30402: $? = 1 === Hope this helps... -- Zach Himsel z.himsel[at]gmail.com === http://tinyurl.com/yjxo8s === |_|0|_| --- OpenPGP Key: 0x9A1DFCAC --- |_|_|0| () **ASCII Ribbon Campaign** -- against |0|0|0| /\ html mail proprietary attachments ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Fwd: GnuPG 2.0.1 compile error
On Thu, Dec 07, 2006 at 09:01:33PM -0500, Zach Himsel wrote: On 12/7/06, David Shaw [EMAIL PROTECTED] wrote: We need at least a tiny bit of information to try and help you. Let's start with what kind of computer you have and what OS is running on it? Then look in config.log and see what it says about zlib.h (stuff like checking for zlib.h usability and checking for zlib.h). Duh! Sorry, I forgot about that! :) I'm running Ubuntu 'Edgy Eft' on an Acer Aspire 5100 (Turion 64, 1GB RAM). I currently have GnuPG 1.4.6 and 1.9.21. config.log is as follows (regarding zlib.h): === configure:30117: checking zlib.h usability configure:30134: gcc -c -g -O2 conftest.c 5 conftest.c:238:18: error: zlib.h: No such file or directory Ok. The problem is simple: you don't have zlib installed, or at least don't have the zlib development package installed. I'm not sure what it's called on Ubuntu, but there is probably some variation of zlib and some variation on zlib-devel. You need zlib-devel. GnuPG 1.4.x comes with a built-in zlib just in case the build platform doesn't have one. GnuPG 2.0.x doesn't have a built-in one, so you must provide it yourself. David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Fwd: GnuPG 2.0.1 compile error
David Shaw wrote: Ok. The problem is simple: you don't have zlib installed, or at least don't have the zlib development package installed. I'm not sure what it's called on Ubuntu, but there is probably some variation of zlib and some variation on zlib-devel. You need zlib-devel. It appears to be (the obviously named) zlib1g-dev. :) Likewise, the bzip development package is named libbz2-dev. -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp == Duct tape is like the Force. It has a light side, a dark side, and it holds the universe together -- Carl Zwanzig pgpLTSOrg1doE.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem building 2.0.1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 David Shaw wrote the following on 12/7/06 5:48 PM: On Thu, Dec 07, 2006 at 10:21:18AM +0100, Werner Koch wrote: On Wed, 6 Dec 2006 08:23, [EMAIL PROTECTED] said: - /usr/bin/ld: Undefined symbols: _libiconv Well, you need a proper iconv installation too. We need too do have an extra test for it in case NLS has been disabled. NLS requires iconv anyway but there is some otehr code in gpg which needs it too. OSX has iconv already. I see a problem in the Makefiles that we're not linking to it though. I've fixed this in svn, and 2.0 now builds more or less (still some doc/ issues) on my OSX box. Here's a patch for the various people who have had a problem. David [...] Hi David, thanks for your support of MacOSX. Running MacOSX 10.4.8, on a PPC, GnuPG 1.4.6 already installed and running, as well as gpg2 1.9.20. 1. Patch applied: - -- $ cd /Users/shavital/Desktop/gnupg-2.0.1/ Charly-Avitals-PBG4:~/Desktop/gnupg-2.0.1 shavital$ patch -p0 /Users/shavital/Desktop/gnupg-2.0-osx-iconv.patch patching file tools/Makefile.am patching file g10/Makefile.am patching file agent/Makefile.am - -- 2. End of ./configure: - - GnuPG v2.0.1 has been configured as follows: Platform: Darwin (powerpc-apple-darwin8.8.0) OpenPGP: yes S/MIME:yes Agent: yes Smartcard: yes Protect tool: (default) Default agent: (default) Default pinentry: (default) Default scdaemon: (default) Default dirmngr: (default) PKITS based tests: no - -- 3. End of make: - -- /usr/bin/ld: Undefined symbols: _libiconv _libiconv_close _libiconv_open collect2: ld returned 1 exit status make[2]: *** [kbxutil] Error 1 make[1]: *** [all-recursive] Error 1 make: *** [all] Error 2 - -- Thanks in advance for any further suggestion/assistance whenever you can. Charly KeyOnCard at: http://homepage.mac.com/shavital/iblog/B788933981/C1591872826/E20061125110933/index.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (Darwin) Comment: GnuPG for Privacy Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQCVAwUBRXkPUSRJoUyU/RYhAQIEcwP/XELeA+kpSrfMBCobXsYAjmOje2cZrOPD K+rJBkUiR4bA3isggwUq/OPk1p2jIror9Xi7cx+0Zkbdan+HkojfqghxUuiX5aHR gYTTEmlYi4IPqtDRZRYJRZGEuyQoPMwrEAgmKYVzYS+a41+Y7ZkALdOXXnmbOxAI /D03/dUPtU8= =go3E -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem building 2.0.1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 David Shaw wrote the following on 12/7/06 5:48 PM: On Thu, Dec 07, 2006 at 10:21:18AM +0100, Werner Koch wrote: On Wed, 6 Dec 2006 08:23, [EMAIL PROTECTED] said: - /usr/bin/ld: Undefined symbols: _libiconv Well, you need a proper iconv installation too. We need too do have an extra test for it in case NLS has been disabled. NLS requires iconv anyway but there is some otehr code in gpg which needs it too. OSX has iconv already. I see a problem in the Makefiles that we're not linking to it though. I've fixed this in svn, and 2.0 now builds more or less (still some doc/ issues) on my OSX box. Here's a patch for the various people who have had a problem. David Hi David, Further to my previous posting, I applied the patch to a fresh copy of 2.0.1, and tried ./configure --disable.nls The results were exactly the same as previously reported. If you are interested and authorize me, I can send you, directly, the *whole* output, from patches (your own patch, and Werner's patch for g10), up to end of make. Charly KeyOnCard at: http://homepage.mac.com/shavital/iblog/B788933981/C1591872826/E20061125110933/index.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (Darwin) Comment: GnuPG for Privacy Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQCVAwUBRXkSbiRJoUyU/RYhAQJQoAP/frhMwqMkhbzoMo/a21ZSPIJJAQ7sAor0 YYfYAWek4r1MNPAK22arng99g5CJMtdVX+ugFxQih8AwWB6+o8a4HoAXmvTk2uEX hEu2pW5kJp6JmHpETUTkVWXKBnu+OB5kQgDvj0fzyp1t7nVdY/QIp5YlBrCpDPUj /5YNb2PlQjI= =Ug27 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
