From owner-freebsd-questions@FreeBSD.ORG Wed Jun 10 20:23:25 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id A8FB17C5 for ; Wed, 10 Jun 2015 20:23:25 +0000 (UTC) (envelope-from dweimer@dweimer.net) Received: from webmail.dweimer.net (24-240-198-187.static.stls.mo.charter.com [24.240.198.187]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 81E6016AB for ; Wed, 10 Jun 2015 20:23:24 +0000 (UTC) (envelope-from dweimer@dweimer.net) Received: from webmail.dweimer.local (webmail [192.168.5.2]) by webmail.dweimer.net (8.14.9/8.14.9) with ESMTP id t5AKNLb9018089 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Wed, 10 Jun 2015 15:23:22 -0500 (CDT) (envelope-from dweimer@dweimer.net) Received: (from www@localhost) by webmail.dweimer.local (8.14.9/8.14.9/Submit) id t5AKNLRK018086; Wed, 10 Jun 2015 15:23:21 -0500 (CDT) (envelope-from dweimer@dweimer.net) X-Authentication-Warning: webmail.dweimer.local: www set sender to dweimer@dweimer.net using -f To: Matt Smith , dweimer@dweimer.net, FreeBSD Questions Subject: Re: Squid 3.5.5 Port Update, with SSL X-PHP-Script: www.dweimer.net/webmail/index.php for 71.86.41.122 MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit Date: Wed, 10 Jun 2015 15:23:21 -0500 From: dweimer Organization: dweimer.net Reply-To: dweimer@dweimer.net Mail-Reply-To: dweimer@dweimer.net In-Reply-To: <20150610174538.GE44513@xtaz.uk> References: <92391b32d330c3cb4f474a6ccb96cdc4@dweimer.net> <20150610174538.GE44513@xtaz.uk> Message-ID: <4e960c86e2468531d81e371af009e010@dweimer.net> X-Sender: dweimer@dweimer.net User-Agent: Roundcube Webmail/1.1.2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Jun 2015 20:23:25 -0000 On 06/10/2015 12:45 pm, Matt Smith wrote: > On Jun 10 10:30, dweimer wrote: >> Has anyone else tried building the Squid Port since the 3.5.5 Update >> with SSL option enabled? >> >> I have tried with OpenSSL from base and ports, dies with the same >> error from either option. >> >> bio.cc:(.text+0x46ca): undefined reference to `SSL_set_alpn_protos' >> c++: error: linker command failed with exit code 1 (use -v to see >> invocation) >> libtool: link: rm -f ".libs/squidS.o" >> *** Error code 1 > > Yes. It worked fine for me. To begin with it errored out instantly > telling me that I had to select at least one of the SSL options. So I > ran make config and noticed the SSL options at the bottom. Selected > OpenSSL and ran the upgrade again. Everything compiled and installed > fine and I've been using it since. > > I'm using FreeBSD 10.1-STABLE r283027 dated from May 17th and I have > the OpenSSL 1.0.2 port installed. well this is odd, I have only two options with SSL these have both been available for some time: [x] SSL SSL gatewaying support [ ] SSL_CRTD Use ssl_crtd to handle SSL cert requests It ends with Kerbose authentication options on the make config, no option about using OpenSSL I am trying to build it now on 10.1-RELEASE-p11, built from source just today, ports tree updated today along with a fresh installation of all the other ports. Still have my 10.1-RELEASE-p10 jail running with the old 3.5.3_1 version of the port installed. from Makefile # $FreeBSD: head/www/squid/Makefile 388783 2015-06-07 21:03:25Z flo $ PORTNAME= squid PORTVERSION= 3.5.5 Options File: # This file is auto-generated by 'make config'. # Options for squid-3.5.5 _OPTIONS_READ=squid-3.5.5 _FILE_COMPLETE_OPTIONS_LIST=ARP_ACL AUTH_LDAP AUTH_NIS AUTH_SASL AUTH_SMB AUTH_SQL CACHE_DIGESTS DEBUG DELAY_POOLS DOCS ECAP ESI EXAMPLES FOLLOW_XFF FS_AUFS FS_DISKD FS_ROCK HTCP ICAP ICMP IDENT IPV6 KQUEUE LARGEFILE LAX_HTTP NETTLE SNMP SSL SSL_CRTD STACKTRACES TP_IPF TP_IPFW TP_PF VIA_DB WCCP WCCPV2 GSSAPI_NONE GSSAPI_BASE GSSAPI_HEIMDAL GSSAPI_MIT OPTIONS_FILE_UNSET+=ARP_ACL OPTIONS_FILE_UNSET+=AUTH_LDAP OPTIONS_FILE_UNSET+=AUTH_NIS OPTIONS_FILE_UNSET+=AUTH_SASL OPTIONS_FILE_UNSET+=AUTH_SMB OPTIONS_FILE_UNSET+=AUTH_SQL OPTIONS_FILE_SET+=CACHE_DIGESTS OPTIONS_FILE_UNSET+=DEBUG OPTIONS_FILE_SET+=DELAY_POOLS OPTIONS_FILE_SET+=DOCS OPTIONS_FILE_UNSET+=ECAP OPTIONS_FILE_UNSET+=ESI OPTIONS_FILE_SET+=EXAMPLES OPTIONS_FILE_SET+=FOLLOW_XFF OPTIONS_FILE_SET+=FS_AUFS OPTIONS_FILE_SET+=FS_DISKD OPTIONS_FILE_UNSET+=FS_ROCK OPTIONS_FILE_SET+=HTCP OPTIONS_FILE_UNSET+=ICAP OPTIONS_FILE_SET+=ICMP OPTIONS_FILE_SET+=IDENT OPTIONS_FILE_SET+=IPV6 OPTIONS_FILE_SET+=KQUEUE OPTIONS_FILE_SET+=LARGEFILE OPTIONS_FILE_SET+=LAX_HTTP OPTIONS_FILE_SET+=NETTLE OPTIONS_FILE_UNSET+=SNMP OPTIONS_FILE_SET+=SSL OPTIONS_FILE_SET+=SSL_CRTD OPTIONS_FILE_UNSET+=STACKTRACES OPTIONS_FILE_UNSET+=TP_IPF OPTIONS_FILE_UNSET+=TP_IPFW OPTIONS_FILE_UNSET+=TP_PF OPTIONS_FILE_SET+=VIA_DB OPTIONS_FILE_SET+=WCCP OPTIONS_FILE_SET+=WCCPV2 OPTIONS_FILE_UNSET+=GSSAPI_NONE OPTIONS_FILE_SET+=GSSAPI_BASE OPTIONS_FILE_UNSET+=GSSAPI_HEIMDAL OPTIONS_FILE_UNSET+=GSSAPI_MIT -- Thanks, Dean E. Weimer http://www.dweimer.net/