From bug1 at optushome.com.au Mon Jun 17 08:00:04 2002 From: bug1 at optushome.com.au (Glenn McGrath) Date: Mon Jun 17 08:00:04 2002 Subject: [Help-gnutls] Error setting the OpenPGP keyring file Message-ID: <20020617215705.069d7c8c.bug1@optushome.com.au> I would like to use gnutls with gpg authentication to setup a secure channel. Im strugling against the learning curve trying to understand the implementation of ssl type communictations. I thought i could use gnutls-serv and gnutls-cli to test things out, however i get errors trying to start the server with various gpg options e.g. bug1 at home:~$ gnutls-serv --pgpkeyring ~/.gnupg/pubring.gpg Error setting the OpenPGP keyring file Echo Server ready. Listening to port '5556'. or bug1 at home:~$ gnutls-serv --pgptrustdb ~/.gnupg/trustdb.gpg Error setting the OpenPGP keyring file Echo Server ready. Listening to port '5556'. I dont know if im using them properly.... do you know of any examples of using gnutls with gpg for ssl type communications ? Thanks Glenn -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From nmav at gnutls.org Mon Jun 17 09:06:01 2002 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Mon Jun 17 09:06:01 2002 Subject: [Help-gnutls] Error setting the OpenPGP keyring file In-Reply-To: <20020617215705.069d7c8c.bug1@optushome.com.au> References: <20020617215705.069d7c8c.bug1@optushome.com.au> Message-ID: <20020617130212.GB705@gnutls.org> On Mon, Jun 17, 2002 at 09:57:05PM +1000, Glenn McGrath wrote: > I would like to use gnutls with gpg authentication to setup a secure > channel. > Im strugling against the learning curve trying to understand the > implementation of ssl type communictations. > I thought i could use gnutls-serv and gnutls-cli to test things out, > however i get errors trying to start the server with various gpg options > e.g. > bug1 at home:~$ gnutls-serv --pgpkeyring ~/.gnupg/pubring.gpg > Error setting the OpenPGP keyring file > Echo Server ready. Listening to port '5556'. You should note that the openpgp support is still of very alpha quality. Also encrypted stuff are not accepted at all. I do not remember if keyrings may be encrypted, Timo should know better. > or > bug1 at home:~$ gnutls-serv --pgptrustdb ~/.gnupg/trustdb.gpg > Error setting the OpenPGP keyring file > Echo Server ready. Listening to port '5556'. The trustdb file situation is quite different. Only version 3 trustdb files are currently supported. These are generated by the development version of gnupg. There was also a bug in the gnutls-serv which did not allow to specify the trustdb (treated it as a keyring). This is now corrected in the cvs. > I dont know if im using them properly.... do you know of any examples of > using gnutls with gpg for ssl type communications ? The only examples for now are the ones in the src/openpgp directory. For cutting edge stuff you'll probably want to follow the cvs instead. > Thanks > Glenn -- Nikos Mavroyanopoulos mailto:nmav at gnutls.org From nmav at gnutls.org Mon Jun 17 09:18:01 2002 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Mon Jun 17 09:18:01 2002 Subject: [Help-gnutls] Error setting the OpenPGP keyring file In-Reply-To: <20020617130212.GB705@gnutls.org> References: <20020617215705.069d7c8c.bug1@optushome.com.au> <20020617130212.GB705@gnutls.org> Message-ID: <20020617131336.GA975@gnutls.org> On Mon, Jun 17, 2002 at 04:02:12PM +0300, Nikos Mavroyanopoulos wrote: > > Im strugling against the learning curve trying to understand the > > implementation of ssl type communictations. > > I thought i could use gnutls-serv and gnutls-cli to test things out, > > however i get errors trying to start the server with various gpg options > > e.g. > > bug1 at home:~$ gnutls-serv --pgpkeyring ~/.gnupg/pubring.gpg > > Error setting the OpenPGP keyring file > > Echo Server ready. Listening to port '5556'. > You should note that the openpgp support is still of very alpha > quality. Also encrypted stuff are not accepted at all. > I do not remember if keyrings may be encrypted, Timo should know better. Ok Timo just told me that you need to export your keyring using: gpg --export > keyring.tls GnuPG uses some internal packets which caused some parsing problems in the gnutls code. PS. This is no longer a problem in the cvs. -- Nikos Mavroyanopoulos mailto:nmav at gnutls.org From bug1 at optushome.com.au Mon Jun 17 11:28:22 2002 From: bug1 at optushome.com.au (Glenn McGrath) Date: Mon Jun 17 11:28:22 2002 Subject: [Help-gnutls] Error setting the OpenPGP keyring file In-Reply-To: <20020617131336.GA975@gnutls.org> References: <20020617215705.069d7c8c.bug1@optushome.com.au> <20020617130212.GB705@gnutls.org> <20020617131336.GA975@gnutls.org> Message-ID: <20020618012623.1aa3d17e.bug1@optushome.com.au> On Mon, 17 Jun 2002 16:13:36 +0300 "Nikos Mavroyanopoulos" wrote: > Ok Timo just told me that you need to export your keyring using: > gpg --export > keyring.tls > > GnuPG uses some internal packets which caused some parsing problems > in the gnutls code. > > PS. This is no longer a problem in the cvs. > > I get an error in the CVS code gcc -DHAVE_CONFIG_H -I. -I. -I.. -I../lib -I../libtasn1/lib/ -g -O2 -O2 -finline-functions -fexpensive-optimizations -fomit-frame-pointer -pipe -c gnutls_openpgp.c -Wp,-MD,.deps/gnutls_openpgp.TPlo -fPIC -DPIC -o .libs/gnutls_openpgp.lo gnutls_openpgp.c:1896: conflicting types for `gnutls_openpgp_add_keyring_mem' gnutls_openpgp.h:58: previous declaration of `gnutls_openpgp_add_keyring_mem' gnutls_openpgp.c:1910: conflicting types for `gnutls_certificate_set_openpgp_keyring_mem' gnutls_openpgp.h:71: previous declaration of `gnutls_certificate_set_openpgp_keyring_mem' make[2]: *** [gnutls_openpgp.lo] Error 1 make[2]: Leaving directory `/home/bug1/gnutls/CVS/gnutls/libextra' It looks like the header file wasnt updated wheh the function arguments changed. Glenn From nmav at gnutls.org Mon Jun 17 13:36:01 2002 From: nmav at gnutls.org (Nikos Mavroyanopoulos) Date: Mon Jun 17 13:36:01 2002 Subject: [Help-gnutls] Error setting the OpenPGP keyring file In-Reply-To: <20020618012623.1aa3d17e.bug1@optushome.com.au> References: <20020617215705.069d7c8c.bug1@optushome.com.au> <20020617130212.GB705@gnutls.org> <20020617131336.GA975@gnutls.org> <20020618012623.1aa3d17e.bug1@optushome.com.au> Message-ID: <20020617173134.GA890@gnutls.org> On Tue, Jun 18, 2002 at 01:26:23AM +1000, Glenn McGrath wrote: > > PS. This is no longer a problem in the cvs. > I get an error in the CVS code > gcc -DHAVE_CONFIG_H -I. -I. -I.. -I../lib -I../libtasn1/lib/ -g -O2 -O2 > -finline-functions -fexpensive-optimizations -fomit-frame-pointer -pipe -c > gnutls_openpgp.c -Wp,-MD,.deps/gnutls_openpgp.TPlo -fPIC -DPIC -o > .libs/gnutls_openpgp.lo gnutls_openpgp.c:1896: conflicting types for > `gnutls_openpgp_add_keyring_mem' gnutls_openpgp.h:58: previous declaration > of `gnutls_openpgp_add_keyring_mem' gnutls_openpgp.c:1910: conflicting > types for `gnutls_certificate_set_openpgp_keyring_mem' > gnutls_openpgp.h:71: previous declaration of > `gnutls_certificate_set_openpgp_keyring_mem' make[2]: *** > [gnutls_openpgp.lo] Error 1 make[2]: Leaving directory > `/home/bug1/gnutls/CVS/gnutls/libextra' I've just corrected it. Thank you. However this problem only occurs if you do not have opencdk. Opencdk is required for openpgp key support, thus you will have to check it out and compile it too. > Glenn -- Nikos Mavroyanopoulos mailto:nmav at gnutls.org