Re: [clamav-users] Problem compiling Clamav 0.98.1 on Solaris 10/x86 (fwd)
Should anyone ever search for this, the problem was solved by upgrading gcc to 4.8.1 On Fri, 31 Jan 2014, Christopher X. Candreva wrote: > > > Under Solaris 10 x86, gcc 4.7.1, gnu ld 2.21.1 libclamav is failing to > link. Here is an exerpt from the compile: > > make[4]: Entering directory `/home/chris/apps/mail/clamav-0.98.1/libclamav' > CC unrar15.lo > CC unrar.lo > CC unrar20.lo > CC unrarppm.lo > CC unrarvm.lo > CC unrarcmd.lo > CC unrarfilter.lo > CC unrarhlp.lo > CCLD libclamunrar.la > /usr/local/bin/ld: cannot find : No such file or directory > /usr/local/bin/ld:../libclamunrar/libclamunrar.map: file format not > recognized; treating as linker script > /usr/local/bin/ld:../libclamunrar/libclamunrar.map:1: syntax error > collect2: error: ld returned 1 exit status > > > Has anyone else run into this ? > > > == > Chris Candreva -- ch...@westnet.com -- (914) 948-3162 > WestNet Internet Services of Westchester > http://www.westnet.com/ > ___ > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > http://www.clamav.net/support/ml > > == Chris Candreva -- ch...@westnet.com -- (914) 948-3162 WestNet Internet Services of Westchester http://www.westnet.com/ ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Introducing OpenSSL as a dependency to ClamAV
On Feb 28, 2014, at 7:34 AM, Shawn Webb mailto:sw...@sourcefire.com>> wrote: On Fri, Feb 28, 2014 at 10:27 AM, Mark Allan mailto:markjal...@blueyonder.co.uk>>wrote: As this is first time ClamAV has had an external dependency, would it be worth making it an opt-out configure option for people who can't get it to compile or who have to rely on an older/incompatible version of OpenSSL? Mark Hey Mark, I explored that option, but I found attempting to support both too be too "cludgy". We would need to maintain two separate code paths, brought together with a shim. There would be a noticeable performance impact along with added complexity. I settled on outright replacing our current hashing functions with OpenSSL's in order to keep ClamAV's engine's performance top-notch and keep complexity at a minimum. In addition here Mark, we’re going to be using OpenSSL in future features we have planned for ClamAV, so this is the best option. -- Joel Esler | Threat Intelligence Team Lead | Open Source Manager | Vulnerability Research Team ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Introducing OpenSSL as a dependency to ClamAV
On Fri, Feb 28, 2014 at 10:27 AM, Mark Allan wrote: > As this is first time ClamAV has had an external dependency, would it be > worth making it an opt-out configure option for people who can't get it to > compile or who have to rely on an older/incompatible version of OpenSSL? > > Mark Hey Mark, I explored that option, but I found attempting to support both too be too "cludgy". We would need to maintain two separate code paths, brought together with a shim. There would be a noticeable performance impact along with added complexity. I settled on outright replacing our current hashing functions with OpenSSL's in order to keep ClamAV's engine's performance top-notch and keep complexity at a minimum. Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Introducing OpenSSL as a dependency to ClamAV
As this is first time ClamAV has had an external dependency, would it be worth making it an opt-out configure option for people who can't get it to compile or who have to rely on an older/incompatible version of OpenSSL? Mark ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Introducing OpenSSL as a dependency to ClamAV
On Fri, Feb 28, 2014 at 8:59 AM, Richard Conto wrote: > Can the OpenSSL dependency be abstracted so that GNU TLS could be a > replacement as well? (Frankly, I'm speaking out of a bit of ignorance here > as I don't know how incompatible GNU TLS is with OpenSSL at the API layer. > With the exception of a few places in ClamAV's code, I wrapped most of the functions with abstractions. So yes, it'd be possible to replace our OpenSSL Integration work with GNU TLS integration, but it still would be a sizeable task. Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Introducing OpenSSL as a dependency to ClamAV
On Thu, Feb 27, 2014 at 5:56 PM, Lawrence K. Chen, P.Eng. wrote: > > > On 02/27/14 02:34, Steve Basford wrote: > > > > > >> OpenSSL will be required to both compile and run ClamAV. > > > > Out of interest what Cipher: > > > > http://zombe.es/post/4078724716/openssl-cipher-selection > > > > > http://security.stackexchange.com/questions/35036/different-performance-of-openssl-speed-on-the-same-hardware-with-aes-256-evp-an > > > > Cheers, > > > > Steve > > Sanesecurity > > > > So, will it build/run with openssl 0.9.8* or require openssl 1.0.* > > We only have openssl 0.9.8* in our environment (with some ancient boxes > using 0.9.7*) > > Currently, the latest available is 0.9.8y, since I have DNS only VMs > where I don't have to worry about the newer version causing problems for > other automated (through CFEngine) sun package installs. > > And, my clamav instances are also dedicated VMs (well, semi...but > hopefully there won't be a problem with having older 0.9.8 openssl > 32-bit libraries with the latest 0.9.8 64-bit libraries :) I confirmed this morning that using 0.9.8 and later is fine. I haven't tested with 0.9.7. Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Introducing OpenSSL as a dependency to ClamAV
Can the OpenSSL dependency be abstracted so that GNU TLS could be a replacement as well? (Frankly, I'm speaking out of a bit of ignorance here as I don't know how incompatible GNU TLS is with OpenSSL at the API layer.) --- Richard Conto DNA Sequencing Core Biomedical Research Core Facilities Medical School Administration Office of Research NCRC Bldg 14 room 168 -- (734) 764-7620 On Fri, Feb 28, 2014 at 5:56 AM, Al Varnell wrote: > > On Wed, Feb 26, 2014 at 08:08 AM, Joel Esler (jesler) wrote: > > On Friday last week I put a blog post up about introducing OpenSSL into > the ClamAV ecosystem. I wanted to make sure everyone saw it, so please > have a look at the blog post here: > > > > http://blog.clamav.net/2014/02/introducing-openssl-as-dependency-to.html > > > Just thought I'd throw this out from the OS X world. > > OpenSSL was officially deprecated by Apple with OS X 10.7 in favor of > Common Crypto and Security Transforms (and you probably all know what that > did for them this weekend). OpenSSL v1.0.1f is still included in the > library so I don't anticipate any immediate issues for developers or users, > but we'll have to wait for a ClamAV® developer release to be certain and > there's no telling how long Apple will continue to include it. After that > I'm sure there will be ports available that can be adapted. > > > -Al- > -- > Al Varnell > Mountain View, CA > > > > > > ___ > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > http://www.clamav.net/support/ml > ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Introducing OpenSSL as a dependency to ClamAV
On Wed, Feb 26, 2014 at 08:08 AM, Joel Esler (jesler) wrote: > On Friday last week I put a blog post up about introducing OpenSSL into the > ClamAV ecosystem. I wanted to make sure everyone saw it, so please have a > look at the blog post here: > > http://blog.clamav.net/2014/02/introducing-openssl-as-dependency-to.html Just thought I'd throw this out from the OS X world. OpenSSL was officially deprecated by Apple with OS X 10.7 in favor of Common Crypto and Security Transforms (and you probably all know what that did for them this weekend). OpenSSL v1.0.1f is still included in the library so I don't anticipate any immediate issues for developers or users, but we'll have to wait for a ClamAV® developer release to be certain and there's no telling how long Apple will continue to include it. After that I'm sure there will be ports available that can be adapted. -Al- -- Al Varnell Mountain View, CA ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
