On Sat, Mar 21, 2015 at 09:22:25PM +0100, ?ukasz W?sikowski wrote:
> I've restored mail server to previous state (with openssl from ports
> with zlib enabled). Some data:
>
> # pkg query "%Ok %Ov" openssl
> ZLIB on
>
> It seems that ./config sets zlib as zlib-dynamic:
>
> # grep zlib
> ./config --prefix=/usr/local ... shared zlib zlib-dynamic ..
> And some ldd:
Showing no compile-time zlib dependencies, because zlib is dynamically
loaded. I've never tested OpenSSL's zlib-dynamic support. Have
you tried (in separate windows or otherwise concurrent, with the
server started first):
$ openssl s_server -nocert -cipher aNULL -accept 12345
$ openssl s_client -cipher aNULL -connect localhost:12345
If that does not crash, try with the actual certificate you're
using (replace -nocert with "-cert your-cert-file.pem" and drop
the "-cipher" options).
--
Viktor.
