openssl upgrade, libcrypto, libssl confusion
Oleg Moskalenko
oleg.moskalenko at citrix.com
Wed Jul 25 16:17:26 UTC 2012
Anton,
I use mostly static openssl libraries, but I suppose it applies to the dynamic ones, too: with any OpenSSL version (including 1.0.1c), you need libcrypto and libssl. With the new OpenSSL version, you need the new library versions, and you must recompile your binary code to use the new dynamic libraries (because there probably some headers incompatibilities between the versions). You just misunderstood the release notes. Do not delete the library, just re-install the new version.
Regards,
Oleg
> -----Original Message-----
> From: owner-freebsd-current at freebsd.org [mailto:owner-freebsd-
> current at freebsd.org] On Behalf Of Anton Shterenlikht
> Sent: Wednesday, July 25, 2012 4:30 AM
> To: freebsd-current at freebsd.org
> Subject: openssl upgrade, libcrypto, libssl confusion
>
> In /usr/src/UPDATING I see
>
> 20120712:
> The OpenSSL has been upgraded to 1.0.1c. Any binaries
> requiring
> libcrypto.so.6 or libssl.so.6 must be recompiled. Also, there
> are
> configuration changes. Make sure to merge /etc/ssl/openssl.cnf.
>
> Looking at this:
>
> # make -C /usr/src check-old-libs
> >>> Checking for old libraries
> /lib/libcrypto.so.6
> /usr/lib/libssl.so.6
> #
>
> Am I correct that these 2 libraries can be safely deleted?
>
> However, I can't see any version 7 of these libs.
> Have these libs been replaced by some other lib?
>
> Finally, I've rebuilt mail/fetchmail and mail/mutt
> already several times, but the binaries still
> use these 2 libs:
>
> TZAV> ldd /usr/local/bin/mutt
> /usr/local/bin/mutt:
> libncursesw.so.8 => /lib/libncursesw.so.8 (0x1202f6000)
> libgssapi.so.10 => /usr/lib/libgssapi.so.10 (0x1203aa000)
> libheimntlm.so.11 => /usr/lib/libheimntlm.so.11 (0x1203ca000)
> libkrb5.so.11 => /usr/lib/libkrb5.so.11 (0x1203e4000)
> libhx509.so.11 => /usr/lib/libhx509.so.11 (0x1204c6000)
> libcom_err.so.5 => /usr/lib/libcom_err.so.5 (0x120550000)
> libcrypto.so.6 => /lib/libcrypto.so.6 (0x120562000)
> ^^^^^^^^^^^^^^^
> libasn1.so.11 => /usr/lib/libasn1.so.11 (0x120812000)
> libwind.so.11 => /usr/lib/libwind.so.11 (0x120918000)
> libheimbase.so.11 => /usr/lib/libheimbase.so.11 (0x120952000)
> libroken.so.11 => /usr/lib/libroken.so.11 (0x120968000)
> libcrypt.so.5 => /lib/libcrypt.so.5 (0x120996000)
> libssl.so.6 => /usr/lib/libssl.so.6 (0x1209d0000)
> ^^^^^^^^^^^^^^^
> libz.so.6 => /lib/libz.so.6 (0x120a72000)
> libintl.so.9 => /usr/local/lib/libintl.so.9 (0x120aaa000)
> libthr.so.3 => /lib/libthr.so.3 (0x120acc000)
> libc.so.7 => /lib/libc.so.7 (0x120b1a000)
> libiconv.so.3 => /usr/local/lib/libiconv.so.3 (0x120dca000)
> TZAV>
>
> TZAV> ldd /usr/local/bin/fetchmail
> /usr/local/bin/fetchmail:
> libopie.so.7 => /usr/lib/libopie.so.7 (0x120100000)
> libcrypt.so.5 => /lib/libcrypt.so.5 (0x12011e000)
> libkvm.so.5 => /lib/libkvm.so.5 (0x120158000)
> libcom_err.so.5 => /usr/lib/libcom_err.so.5 (0x120178000)
> libssl.so.6 => /usr/lib/libssl.so.6 (0x12018a000)
> ^^^^^^^^^^^^^^^
> libcrypto.so.6 => /lib/libcrypto.so.6 (0x12022c000)
> ^^^^^^^^^^^^^^^
> libc.so.7 => /lib/libc.so.7 (0x1204dc000)
> libmd.so.6 => /lib/libmd.so.6 (0x12078c000)
> TZAV>
>
> Or will the new library (what is it?) will not
> be used unless I delete the old ones?
>
> Thanks
>
> --
> Anton Shterenlikht
> Room 2.6, Queen's Building
> Mech Eng Dept
> Bristol University
> University Walk, Bristol BS8 1TR, UK
> Tel: +44 (0)117 331 5944
> Fax: +44 (0)117 929 4423
> _______________________________________________
> freebsd-current at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-current
> To unsubscribe, send any mail to "freebsd-current-
> unsubscribe at freebsd.org"
More information about the freebsd-current
mailing list