Camellia block cipher don't work on current developers' releases 2.3.x.

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu May 1 10:17:47 CEST 2008


Yoshisato YANAGISAWA wrote:
> Hello,
> 
> I noticed two problems that prevent camellia block cipher working.
> One problem is that it becomes invalid cipher even with camellia-enabled
> gnutls.  To repeat the problem, just you execute gnutls-cli with:
> % gnutls-cli --ciphers camellia -p 5556 test.gnutls.org
> You will see following error:
> | *** Fatal error: GnuTLS internal error.
> | *** Handshake has failed
> | GNUTLS ERROR: GnuTLS internal error.
> It is cauesd by a bug in lgl/gc-libgcrypt.c.
> 
> I put the patch to fix the problem:
> https://savannah.gnu.org/support/index.php?106314

Thank you for the patch. I've just applied it.

> The other problem is that camellia block cipher is disabled by configure
> script even if the user using libgcrypt with camellia block cipher and
> configured with --enable-camellia option.  You can repeat the problem by
> installing libgcrypt to no default directory such as /tmp/test, and then
> pointing the directory with --with-libgcrypt-prefix=/tmp/test as option
> of the configure script.

This is quite strange. As I see the configure file does:
test -n "`$LIBGCRYPT_CONFIG --algorithms | grep -i camellia`"
to check for camellia. Was the correct libgcrypt detected by the
configure script?

regards,
Nikos





More information about the Gnutls-devel mailing list