openssl upgrade, libcrypto, libssl confusion

Anton Shterenlikht mexas at bristol.ac.uk
Wed Jul 25 12:06:27 UTC 2012 

On Wed, Jul 25, 2012 at 12:30:29PM +0100, Anton Shterenlikht wrote:
> In /usr/src/UPDATING I see
> 
> 20120712:
>         The OpenSSL has been upgraded to 1.0.1c.  Any binaries requiring
>         libcrypto.so.6 or libssl.so.6 must be recompiled.  Also, there are
>         configuration changes.  Make sure to merge /etc/ssl/openssl.cnf.

oops.. wait a minute, I'm still on 

# uname -a
FreeBSD mech-cluster241.men.bris.ac.uk 10.0-CURRENT FreeBSD 10.0-CURRENT #6 r237134: Mon Jun 18 09:02:17 BST 2012     root at mech-cluster241.men.bris.ac.uk:/usr/obj/usr/src/sys/TZAV  ia64
#

So this change shouldn't apply to me yet.

Still there are *lots* of binaries, and libs
linked with /lib/libcrypto.so.6:

Binaries that are linked with: /lib/libcrypto.so.6
        /bin/ed
        /bin/red
        /lib/geom/geom_eli.so
        /sbin/hastctl
        /sbin/hastd
        /usr/bin/bdes
        /usr/bin/bsdcpio
        /usr/bin/bsdtar
        /usr/bin/bsnmpget
        /usr/bin/bsnmpset
        /usr/bin/bsnmpwalk
        /usr/bin/chkey
        /usr/bin/cvs
        /usr/bin/dc
        /usr/bin/dig
        /usr/bin/fetch
        /usr/bin/host
        /usr/bin/hxtool
        /usr/bin/kadmin
        /usr/bin/kcc
        /usr/bin/kdestroy
        /usr/bin/kf
        /usr/bin/kgetcred
        /usr/bin/kinit
        /usr/bin/klist
        /usr/bin/kpasswd
        /usr/bin/ksu
        /usr/bin/kswitch
        /usr/bin/newkey
        /usr/bin/nslookup
        /usr/bin/nsupdate
        /usr/bin/openssl
        /usr/bin/scp
        /usr/bin/sftp
        /usr/bin/slogin
        /usr/bin/ssh
        /usr/bin/ssh-add
        /usr/bin/ssh-agent
        /usr/bin/ssh-keygen
        /usr/bin/ssh-keyscan
        /usr/bin/string2key
        /usr/bin/telnet
        /usr/bin/verify_krb5_conf
        /usr/games/factor
        /usr/lib/libarchive.so.6
        /usr/lib/libbsnmp.so.6
        /usr/lib/libfetch.so.6
        /usr/lib/libgssapi_krb5.so.10
        /usr/lib/libgssapi_ntlm.so.10
        /usr/lib/libheimntlm.so.11
        /usr/lib/libhx509.so.11
        /usr/lib/libkdc.so.11
        /usr/lib/libkrb5.so.11
        /usr/lib/libmp.so.7
        /usr/lib/libradius.so.4
        /usr/lib/libssh.so.5
        /usr/lib/libssl.so.6
        /usr/lib/pam_krb5.so.5
        /usr/lib/pam_ksu.so.5
        /usr/lib/pam_ssh.so.5
        /usr/libexec/digest-service
and so on,

so is it really right that I can safely delete it?
 
> 
> Looking at this:
> 
> # make -C /usr/src check-old-libs
> >>> Checking for old libraries
> /lib/libcrypto.so.6
> /usr/lib/libssl.so.6
> # 
> 

-- 
Anton Shterenlikht
Room 2.6, Queen's Building
Mech Eng Dept
Bristol University
University Walk, Bristol BS8 1TR, UK
Tel: +44 (0)117 331 5944
Fax: +44 (0)117 929 4423

More information about the freebsd-current mailing list