AC openssl library version mismatch in apache
Bug #1659252 reported by
Konrad Rzepecki
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
PLD Linux |
Fix Released
|
Medium
|
Elan Ruusamäe |
Bug Description
In AC Apache binary and mod_ssl have different openssl library compiled in causing SSL vhost to stop working. Any "SSLEngine On" directive causes following error "Unable to initialize TLS servername extension callback (incompatible OpenSSL version?)" and prevent apache to start.
/usr/sbin/
Server version: Apache/2.2.32 (PLD/Linux)
Server built: Jan 16 2017 17:14:55
ldd /usr/sbin/
ldd /usr/lib/
Apache should be recompiled using 1.0.2 openssl
To post a comment you must log in.
apache doesn't link with openssl. this is pristine install with apache only:
bash-3.2# ldd /usr/sbin/ httpd.prefork
libpcre. so.0 => /lib64/libpcre.so.0 (0x00007f84be25 4000)
libaprutil- 1.so.0 => /usr/lib64/ libaprutil- 1.so.0 (0x00007f84be03 3000)
libapr- 1.so.0 => /usr/lib64/ libapr- 1.so.0 (0x00007f84bde0 8000)
libpthread. so.0 => /lib64/ tls/libpthread. so.0 (0x00007f84bdcf 3000) tls/libc. so.6 (0x00007f84bdac d000)
libexpat. so.0 => /usr/lib64/ libexpat. so.0 (0x00007f84bd9a a000)
libcrypt. so.1 => /lib64/ libcrypt. so.1 (0x00007f84bd87 3000)
libuuid. so.1 => /lib64/libuuid.so.1 (0x00007f84bd66 f000) c000)
/lib64/ ld-linux- x86-64. so.2 (0x00007f84be48 7000)
libc.so.6 => /lib64/
libdl.so.2 => /lib64/libdl.so.2 (0x00007f84bd56
bash-3.2#
even installing apache-mod_ssl does not make apache binary link with openssl (it's dynamically loaded module)
bash-3.2# rpm -q apache-mod_ssl mod_ssl- 2.2.32- 1.amd64 httpd.prefork |grep ssl httpd.prefork |grep -c ssl
apache-
bash-3.2# ldd /usr/sbin/
bash-3.2# ldd /usr/sbin/
0
bash-3.2#
what other apache packages you have installed?
$ rpm -qa '*apache*'
or or maybe nss configuration affects?
$ cat /etc/nsswitch.conf
also post objdump output to see what is httpd binary directly linking against:
$ objdump -p /usr/sbin/ httpd.prefork