httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Larry Irwin (work)" <larry.ir...@ccamedical.com>
Subject Re: [users@httpd] Where is a good SSL/TLS
Date Tue, 21 May 2013 20:54:54 GMT
Hi All,

I compile it on all kinds of kernel levels and the most irritating part 
is a round-robin issue with zlib-1.2.3 and zlib-1.2.5 and other base 
packages that require zlib...

To handle zlib, sometimes it can be scripted, But sometimes it must be 
run line-by-line at a bash prompt...
This is my current workaround to make zlib-1.2.3 available if an 
existing zlib-1.2.5 causes compilation issues:
===== Snippet =====
ShowMsg() {
   echo "Error $1 encountered while working on $PKG. Exiting."
   exit $1
}
echo '# all std libs' > /etc/ld.so.conf.d/allstdlibs.conf
echo '/lib' >> /etc/ld.so.conf.d/allstdlibs.conf
echo '/usr/lib' >> /etc/ld.so.conf.d/allstdlibs.conf
ldconfig
# Install/update zlib
PKG="zlib"
Here=`pwd`
mkdir -p tmp
cd $Here/tmp
tar xzf ../zlib-1.2.3.tar.gz || ShowMsg $?
cd $Here/tmp/zlib* || ShowMsg $?
./configure || ShowMsg $?
make || ShowMsg $?
make install || ShowMsg $?
./configure -s --prexfix=/usr/local || ShowMsg $?
make || ShowMsg $?
# if the above does not work in a scripted environment, try it by hand 
at the prompt
# or, in some *nixes, try the following in the scripted environment
# /bin/bash -c "cd $Here/tmp/zlib-1.2.3; make" || ShowMsg $?
make install || ShowMsg $?
cd $Here/tmp || ShowMsg $?
rm -r zlib* || ShowMsg $?
# Force rpath for dynamic libs for everything else
LD_RUN_PATH=/usr/local/lib
export LD_RUN_PATH
===== End Snippet =====

With that said, I compile openssl (from http://www.openssl.org/source/) 
with:
(I'm sure it will work with the current 1.0.0k as well...)
===== Snippet =====
tar xzf openssl-1.0.0g.tar.gz || exit $?
cd openssl-1.0.0g || exit $?
./config shared --prefix=/usr/local --openssldir=/usr/local/ssl || exit $?
make || exit $?
make test || exit $?
make install || exit $?
===== End Snippet =====

Then I fix up the library paths prior to compiling apache:
===== Snippet =====
echo '# /usr/local/lib[32|64]' > /etc/ld.so.conf.d/locallib.conf
[ -d /usr/local/lib ] && echo '/usr/local/lib' >> 
/etc/ld.so.conf.d/locallib.conf
[ -d /usr/local/lib64 ] && echo '/usr/local/lib64' >> 
/etc/ld.so.conf.d/locallib.conf
[ -d /usr/local/lib32 ] && echo '/usr/local/lib32' >> 
/etc/ld.so.conf.d/locallib.conf
[ -x /usr/local/lib/libssl.so.1.0.0 ] && {
   cd /usr/local/lib
   ln -s libssl.so.1.0.0 libssl.so.1
}
[ -x /usr/local/lib64/libssl.so.1.0.0 ] && {
   cd /usr/local/lib64
   ln -s libssl.so.1.0.0 libssl.so.1
}
[ -x /usr/local/lib32/libssl.so.1.0.0 ] && {
   cd /usr/local/lib32
   ln -s libssl.so.1.0.0 libssl.so.1
}
ldconfig
===== End Snippet =====

Then compile apache:
===== Snippet =====
tar xzf httpd-2.2.22.tar.gz || exit $?
cd httpd-2.2.22 || exit $?
LDFLAGS="-L/usr/local/lib"; export LDFLAGS
./configure --prefix=/usr/local/apache2 \
   --enable-so\
   --enable-cgi\
   --enable-info\
   --enable-rewrite\
   --enable-speling\
   --enable-usertrack\
   --enable-deflate \
   --enable-ssl\
   --enable-mime-magic\
   --with-ssl=/usr/local
make || exit $?
===== End Snippet =====

Then php, curl and related packages...
Hope that helps!
Larry

-- 
Larry Irwin
V.P. Development
CCA Medical
Ph: 864-233-2700 ext 225
Fax: 864-271-1755
Cell: 864-525-1322
Email: larryi@ccamedical.com
AIM: mkitwrk
Skype: larry_irwin
WinMsgr: larryi@ccamedical.com
About: http://about.me/larry_irwin


On 05/21/2013 04:05 PM, Smith, Burton wrote:
>
> I've been trying to figure out how to compile Apache 2.2 on Red Hat 
> Enterprise Linux Server release 6.4 (Santiago).  I can generate both 
> the "No recognized SSL/TLS toolkit detected" and "Error, SSL/TLS 
> libraries were missing or unusable" errors.  I assume that means I 
> have found the correct "--with-ssl" path based on various openSSL 
> configurations.  I know I need a good mod_ssl and mod_jk.  If there is 
> an alternate way to get the modules I'm missing, that would be cool too.
>
> ---
>
> Thanks,
>
> Burton L. Smith
>
> w:801-584-6164
>
> c:801-201-2897
>

Mime
View raw message