On 28.04.2015 14:04, Tom Browder wrote:
> On Tue, Apr 28, 2015 at 6:45 AM, Eric Covener <[email protected]> wrote:
>> about openssl 1.02 though -- what exactly do you see?
>
> I see this when attempting to start apache:
>
> /usr/local/apache2/bin/httpd: symbol lookup error:
> /usr/local/apache2/bin/httpd: undefined symbol: SSL_CONF_CTX_new
>
> Maybe I need to play tricks with ld.so.conf and openssl?
Depends on whether you built OpenSSL with or without shared libraries -
what are the contents of the /opt/openssl/lib directory?
> I have no system installed openssl,
Hmm, what platform is this? Are you sure there are no libcrypto/libssl
libraries somewhere under /usr?
> SSLDIR=/opt/openssl
> export LDFLAGS="-L${SSLDIR}/lib"
This should not be needed.
> --enable-ssl \
> --enable-ssl-staticlib-deps \
> --enable-mods-static=ssl \
> --with-ssl=${SSLDIR} \
"--enable-mods-static=ssl" is probably not really what you want - it
includes mod_ssl in the httpd binary itself, but other than that, it
doesn't have an impact on how mod_ssl is linked against libcrypto/libssl
(you might try to see what "ldd /usr/local/apache2/bin/httpd" says).
The most important thing, though, is making sure that the directory
which appears in the LDFLAGS/MOD_LDFLAGS lines of the ./configure
outputs (after the "checking for user-provided OpenSSL base
directory...") in does not include any shared library files - only
static ones.
Kaspar
