Date: Sun, 28 Oct 2018 18:41:30 +0100 From: Bernard Spil <brnrd@freebsd.org> To: Kurt Jaeger <pi@freebsd.org> Cc: apache@freebsd.org Subject: Re: svn commit: r483139 - in head/www/apache24: . files Message-ID: <b162ad56b3d28405ba5250569cf02fe5@freebsd.org> In-Reply-To: <20181028162434.GA1107@fc.opsec.eu> References: <201810271436.w9REafeR040613@repo.freebsd.org> <20181028162434.GA1107@fc.opsec.eu>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2018-10-28 17:24, Kurt Jaeger wrote: > Hi! > >> Log: >> www/apache24: Update to 2.4.37 >> >> - Adds TLSv1.3 support with security/openssl111 > > On a 11.2p4 amd64, if I try to use mod_ssl.so, this happens: > > httpd: Syntax error on line 138 of /usr/local/etc/apache24/httpd.conf: > Cannot load /usr/local/libexec/apache24/mod_ssl.so into server: > /usr/local/libexec/apache24/mod_ssl.so: Undefined symbol "RAND_egd" > > Any ideas ? Sounds like a conflict in libs used. Just checked a vanilla OpenSSL 1.0.2 package and it still has EGD. The 1.1 branch does NOT have EGD (# define OPENSSL_NO_EGD in opensslconf.h from openssl111-1.1.1_1). Apache httpd's autoconf looks for rand_EGD > work/httpd-2.4.37/config.log > 2506:configure:27293: checking for RAND_egd > 2509:conftest.c:(.text+0x7): undefined reference to `RAND_egd' and unsets HAVE_RAND_EGD if it isn't found work/httpd-2.4.37/include/ap_config_auto.h 186:/* #undef HAVE_RAND_EGD */ EGD has been OK for a long while in the ports tree, it was one of the first things that was removed by LibreSSL and all ports were updated subsequently. EGD support in OpenSSL can easily be checked by checking for OPENSSL_NO_EGD in include/openssl/opensslconf.h (if it is there, then it EGD NOT available... OpenSSL idiosyncrasies). Better open a PR I guess.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?b162ad56b3d28405ba5250569cf02fe5>