Re: svn commit: r483139 - in head/www/apache24: . files

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Re: svn commit: r483139 - in head/www/apache24: . files

Bernard Spil
On 2018-10-28 17:24, Kurt Jaeger wrote:

> Hi!
>
>> Log:
>>   www/apache24: Update to 2.4.37
>>
>>    - Adds TLSv1.3 support with security/openssl111
>
> On a 11.2p4 amd64, if I try to use mod_ssl.so, this happens:
>
> httpd: Syntax error on line 138 of /usr/local/etc/apache24/httpd.conf:
> Cannot load /usr/local/libexec/apache24/mod_ssl.so into server:
> /usr/local/libexec/apache24/mod_ssl.so: Undefined symbol "RAND_egd"
>
> Any ideas ?

Sounds like a conflict in libs used. Just checked a vanilla OpenSSL
1.0.2 package and it still has EGD. The 1.1 branch does NOT have EGD (#
define OPENSSL_NO_EGD in opensslconf.h from openssl111-1.1.1_1).

Apache httpd's autoconf looks for rand_EGD

> work/httpd-2.4.37/config.log
> 2506:configure:27293: checking for RAND_egd
> 2509:conftest.c:(.text+0x7): undefined reference to `RAND_egd'

and unsets HAVE_RAND_EGD if it isn't found

work/httpd-2.4.37/include/ap_config_auto.h
186:/* #undef HAVE_RAND_EGD */

EGD has been OK for a long while in the ports tree, it was one of the
first things that was removed by LibreSSL and all ports were updated
subsequently.
EGD support in OpenSSL can easily be checked by checking for
OPENSSL_NO_EGD in include/openssl/opensslconf.h (if it is there, then it
EGD NOT available... OpenSSL idiosyncrasies).

Better open a PR I guess.
_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"
Reply | Threaded
Open this post in threaded view
|

Re: svn commit: r483139 - in head/www/apache24: . files

Kurt Jaeger-6
Hi!

> >> Log:
> >>   www/apache24: Update to 2.4.37
> >>
> >>    - Adds TLSv1.3 support with security/openssl111
> >
> > On a 11.2p4 amd64, if I try to use mod_ssl.so, this happens:
> >
> > httpd: Syntax error on line 138 of /usr/local/etc/apache24/httpd.conf:
> > Cannot load /usr/local/libexec/apache24/mod_ssl.so into server:
> > /usr/local/libexec/apache24/mod_ssl.so: Undefined symbol "RAND_egd"
> >
> > Any ideas ?
>
> Sounds like a conflict in libs used.

Can the cause be that apr-1 is using 11.2 base openssl, but
apache24 uses openssl111 ?

> EGD has been OK for a long while in the ports tree, it was one of the
> first things that was removed by LibreSSL and all ports were updated
> subsequently.
> EGD support in OpenSSL can easily be checked by checking for
> OPENSSL_NO_EGD in include/openssl/opensslconf.h (if it is there, then it
> EGD NOT available... OpenSSL idiosyncrasies).
>
> Better open a PR I guess.

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232765

--
[hidden email]         +49 171 3101372              2 years to go !
_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"