compilation error for libgpg-error-1.28 on armhf

2018-03-24 Thread murphy 
Hi - does anyone know how to force speedo to compile using
libgpg-error-1.27 for the latest version of GnuPG (2.2.5)?  I came
across a bug in libgpg-error-1.28 while using the speedo method on a
Raspberry Pi 3 running the latest 'Jessie' Raspbian:

/home/pi/Downloads/gnupg-2.2.5/PLAY/src/libgpg-error/src/logging.c: In
function '_gpgrt_log_printhex':
/home/pi/Downloads/gnupg-2.2.5/PLAY/src/libgpg-error/src/logging.c:1153:49:
error: incompatible type for argument 4 of '_gpgrt_logv_printhex'
 _gpgrt_logv_printhex (buffer, length, NULL, NULL);
 ^~~~
/home/pi/Downloads/gnupg-2.2.5/PLAY/src/libgpg-error/src/logging.c:1097:1:
note: expected 'va_list {aka __va_list}' but argument is of type 'void *'
 _gpgrt_logv_printhex (const void *buffer, size_t length,
 ^~~~

This has been identified previously by dkg and is being worked:

https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1592390.html

As a work-around I found everything compiles nicely if libgpg-error-1.27
is used instead.  But then I cannot use the beloved speedo method!  Is
it possible to easily make speedo use v1.27?

Best Regards - Murphy




signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Is signing a file with multiple keys possible

2018-03-24 Thread Thomas Jarosch 
Hi Dirk,

On 03/24/2018 02:04 AM, Dirk Gottschalk via Gnupg-users wrote:
>>> Is it possible to sign a file with multiple keys?
>>
>> Yes.  Slightly lower-level operations than normal signing, but not by
>> much, you just need to know about enarmor/dearmor and how signatures
>> are
>> put together.
>> ...
> 
> Thank you very much. It's like chaining up PEM Certs in OpenSSL. Why
> didn't I even think about this? The Format is so similar.

it's even easier when two or more people sign at the same time,
just supply "-u KEYID" multiple times.

At $dayjob our software updates are signed with two smartcards
(four eye principle). Here's the relevant part from the sign script:

gpg_cmd = ['/usr/bin/gpg2', '--personal-digest-preferences', 'sha256']
for gpg_id in gpg_sign_ids:
gpg_cmd.extend(['-u', gpg_id])
gpg_cmd.extend(['--sign', shlex.quote(target_file)])

Cheers,
Thomas



signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users