From owner-freebsd-questions@FreeBSD.ORG Mon Dec 29 03:00:05 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 7BFDEB08 for ; Mon, 29 Dec 2014 03:00:05 +0000 (UTC) Received: from mail.shockergroup.com (mail.shockergroup.com [199.233.228.110]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 422CE649EF for ; Mon, 29 Dec 2014 03:00:04 +0000 (UTC) Received: (qmail 78503 invoked by uid 89); 29 Dec 2014 02:59:01 -0000 Received: by simscan 1.4.0 ppid: 78495, pid: 78498, t: 0.1378s scanners: attach: 1.4.0 clamav: 0.98.4/m:55/d:19851 Received: from unknown (HELO powersled.home) (tom@shockergroup.com@173.78.85.67) by mail.shockergroup.com with ESMTPA; 29 Dec 2014 02:59:01 -0000 From: Tom Ierna Subject: curl error - /usr/lib/libssl.so.7: Undefined symbol "EVP_aes_128_gcm" Message-Id: <333F0C20-F01C-4D2D-900C-1EEDBD84A790@shockergroup.com> Date: Sun, 28 Dec 2014 21:59:00 -0500 To: freebsd-questions@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2064\)) X-Mailer: Apple Mail (2.2064) Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18-1 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Dec 2014 03:00:05 -0000 Hello list, I have two RootBSD instances, both upgraded to 10.0-RELEASE-p9 (when it = was the newest available) from 8.x-ish. Both are mail servers and have Spam Assassin installed. SA uses curl to = update rules. On one box, sa-update works fine, and on the other, sa-update fails with = this error: /usr/lib/libssl.so.7: Undefined symbol "EVP_aes_128_gcm" It=E2=80=99s actually curl generating the error. Even just issuing curl = -V from the command line gives the error. I=E2=80=99ve done a pkg update -f curl on the offending box, and = that=E2=80=99s not fixed anything. Both instances' /usr/lib/libssl.so.7 exist and has the same sum. I=E2=80=99ve run "openssl speed -evp aes-128-gcm=E2=80=9D on the = offending box - I figured it would error out the same way, but it = worked. The library seems to have this symbol: # readelf --syms /usr/lib/libssl.so.7 | grep aes 41: 00000000 49 FUNC GLOBAL DEFAULT UND EVP_aes_192_cbc 113: 00000000 7 FUNC GLOBAL DEFAULT UND = EVP_aes_256_cbc_hmac_sha1 180: 00000000 7 FUNC GLOBAL DEFAULT UND = EVP_aes_128_cbc_hmac_sha1 194: 00000000 49 FUNC GLOBAL DEFAULT UND EVP_aes_256_cbc 292: 00000000 49 FUNC GLOBAL DEFAULT UND EVP_aes_256_gcm 320: 00000000 49 FUNC GLOBAL DEFAULT UND EVP_aes_128_cbc 342: 00000000 49 FUNC GLOBAL DEFAULT UND EVP_aes_128_gcm I=E2=80=99m not in a position to do any deep upgrading of these = instances unless in a controlled fashion. Any thoughts as to what=E2=80=99s wrong and how I can get curl working? Thanks, -Tom -- Tom Ierna