You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by "Smith, Burton" <Bu...@Williams.com> on 2013/05/21 19:25:05 UTC
Where is a good SSL/TLS
I've been trying to figure out how to compile Apache 2.2 on Red Hat Enterprise Linux Server release 6.4 (Santiago). I can generate both the "No recognized SSL/TLS toolkit detected" and "Error, SSL/TLS libraries were missing or unusable" errors. I assume that means I have found the correct "--with-ssl" path based on various openSSL configurations. I know I need a good mod_ssl and mod_jk. If there is an alternate way to get the modules I'm missing, that would be cool too.
---
Thanks,
Burton L. Smith
w:801-584-6164
c:801-201-2897
Re: Where is a good SSL/TLS
Posted by Christopher Schultz <ch...@christopherschultz.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Burton,
On 5/23/13 11:39 AM, Smith, Burton wrote:
> OK Chris,
>
> I have to be nearing the finish line on mod_jk. Sitting in
> tomcat-connectors-1.2.37-src/native and running your configuration
> command I get: configure: error: C++ preprocessor "/lib/cpp" fails
> sanity check See `config.log' for more details.
>
> I have the following packages: gcc.x86_64 4.4.7-3.el6
> gcc-c++.x86_64 4.4.7-3.el6 httpd-devel.x86_64 0:2.2.15-28.el6_4
> apr-devel.x86_64 0:1.3.9-5.el6_2 apr-util-devel.x86_64
> 0:1.3.9-3.el6_0.1
>
> What am I missing?
If you read "config.log" you'll find that /lib/cpp can't find the C++
compiler. I had to install this package (mentioned above, I might
add), in order to get past that error:
gcc-c++
Hope that helps,
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQIcBAEBCAAGBQJRnjpmAAoJEBzwKT+lPKRY2R0P/27c/7HcC4seqkYD3J1qrFLD
TIdNMc6fJx4dxCg++iAUg86Va5CSJ/LuTfFRd3Q8mt3DAHxujJACPmCtpAoZeCLA
B1L2te2idf0mJQQpcnNZUOTz1c4k3xQyEQIsb9DOPakO9pToN3dGno3uPOyZlK8W
JivODGB6Ni+vouTRQ3CFNrMqJ2bq6ZloefhZRACvHcluGNMdgqyb38Mlvxp2NRp9
iV/S1Kfz5JPlYtzlt35KpRDbeI0Q+BFi0gT4PE8wjH+zecMgHsaQhLIUlusmtURu
V3rzoIJ9NP4N9fSRrpQ7fLlCwB6R4o2pLhlDrmeF06w8GX1skBxhwRsG4Btn5sr8
Zj9g8uc8uUoZyD0lxqRF5Q+2RY6wQX5qTHM0ido18wdqO6jbbN8Sj3ncyQiAwfMA
LsXSuxpH1NPS+Lk5KjH1cvfT76WvEfIZTehsY50RE1AoNj9yLoWvkpvoQf0M8Xjd
T7eFH3OHbd0Hy3L9cXFu1seNLsavydhixSCIrwhLCIn18ye11RMixZfGYoCF6g2C
+vQf45hruvZyR0rBSpR/VGAkxpG3t7fgjfDQpbh0B1SrZaMqC+XH2oH09KDaPDor
gDO+gUBVFicdBQSuNPhaCYUHoWfzzpgPjc3r2iFnyivIEW2tc8dyGIq9I7+xvFoO
9Pg6DAvA00ZMLrqbyY+T
=hgzP
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
RE: Where is a good SSL/TLS
Posted by "Smith, Burton" <Bu...@Williams.com>.
OK Chris,
I have to be nearing the finish line on mod_jk. Sitting in tomcat-connectors-1.2.37-src/native and running your configuration command I get:
configure: error: C++ preprocessor "/lib/cpp" fails sanity check
See `config.log' for more details.
I have the following packages:
gcc.x86_64 4.4.7-3.el6
gcc-c++.x86_64 4.4.7-3.el6
httpd-devel.x86_64 0:2.2.15-28.el6_4
apr-devel.x86_64 0:1.3.9-5.el6_2
apr-util-devel.x86_64 0:1.3.9-3.el6_0.1
What am I missing?
---
Thanks,
Burton L. Smith
w:801-584-6164
c:801-201-2897
-----Original Message-----
From: Christopher Schultz [mailto:chris@christopherschultz.net]
Sent: Wednesday, May 22, 2013 8:48 AM
To: Tomcat Users List
Subject: Re: Where is a good SSL/TLS
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Burton,
On 5/22/13 10:36 AM, Christopher Schultz wrote:
> Instead, you'll need to install a handful of other packages to support
> it. From memory, I think you need a few of these, and possibly other
> dependencies:
>
> gcc (which you almost certainly already have installed) make (which
> you almost certainly already have installed) httpd-devel apr-devel
- From a stock Amazon Linux 2013.03, I had to install:
gcc
gcc-c++
httpd-devel
(apr-devel and apr-util are dependencies for httpd-devel)
At this point, ./configure and make ran without a problem:
$ ./configure --with-apxs=/usr/sbin/apxs $ make
It took 18 seconds to build mod_jk 1.2.37 on a t1.micro instance.
- -chris
Re: Where is a good SSL/TLS
Posted by Christopher Schultz <ch...@christopherschultz.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Burton,
On 5/22/13 10:36 AM, Christopher Schultz wrote:
> Instead, you'll need to install a handful of other packages to
> support it. From memory, I think you need a few of these, and
> possibly other dependencies:
>
> gcc (which you almost certainly already have installed) make (which
> you almost certainly already have installed) httpd-devel apr-devel
- From a stock Amazon Linux 2013.03, I had to install:
gcc
gcc-c++
httpd-devel
(apr-devel and apr-util are dependencies for httpd-devel)
At this point, ./configure and make ran without a problem:
$ ./configure --with-apxs=/usr/sbin/apxs
$ make
It took 18 seconds to build mod_jk 1.2.37 on a t1.micro instance.
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQIcBAEBCAAGBQJRnNqVAAoJEBzwKT+lPKRYWYUQAJVv7mj+NgQ/16OlkonYXP+R
pApw1IpDu/xe20I060bMS4Ch5yIKuQZxTX/GnAH/YlHPmh2AzcbW0uw9+k34cDgO
7YoegqPPWPcdlpxsvZuXleWjh32HOfXud7/FRvwt4l6WHm4zxYT2xsswT0UrcUbF
f5DwZEX0IH1ZBN+kmEQWAfbZSqMbwH+L13YC4U44laKWlomC9oNTe/pt4Nv58ajB
pFnbp5BC47BOxOHpQDtQIoHxEOBROvk8+ZX3oaoxoW8f4T3gAZRs9HcpnxsJH99M
ukaYVY/lqij6dSmMY7TlsH0TbwbuB9mCaZxTftpE/DZu8JF0cSeBKODzKWbsKRf7
YfWu2cLd7wQquTacMrA50NAJMthgeFWVAWi6Hs6GBMFC66gIu7ZQi12xh/ziHx5b
RGEpveeLMv+xgcFNy2IsdtJJq0CoR93x+EFXORTmeVpajovsN+cWMgBAXEq28np5
040MeFtnD9biCZiDRV6WW+Std7ItwDGFiXvBFIXDUUcAdjNHbnUrz51qqtaXTI8U
fvyLb4Y6/PCR7pX1M04dn2JMRxRhz9IeGuFTECt9bBfpI4fjWpx0qykEAMqF1sPQ
MD9wZP4I/6QpnOUFhu3TIJMdsWMHOThjqebDClbF+MlXCNE5zk1yd2oMgTQQAxEd
dE7KJYJXw2f/9Ift5UYX
=ssZ+
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Where is a good SSL/TLS
Posted by Christopher Schultz <ch...@christopherschultz.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Burton,
On 5/22/13 10:20 AM, Smith, Burton wrote:
> I can get yum to pull 2.2.15-26.el6, but it is missing mod_ssl and
> mod_jk.
Try installing the package "mod_ssl". I don't have a RHEL box handy,
but I do have access to an Amazon Linux box which aims to be
RHEL-compatible. Installing the "mod_ssl" package will install the
Apache httpd module for SSL.
As for mod_jk, you will have to compile that yourself on most
platforms. Fortunately, you don't have to actually compile httpd in
order to compile mod_jk against it.
Instead, you'll need to install a handful of other packages to support
it. From memory, I think you need a few of these, and possibly other
dependencies:
gcc (which you almost certainly already have installed)
make (which you almost certainly already have installed)
httpd-devel
apr-devel
You might also need openssl-devel, but I think that's only for
compiling tcnative.
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/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=/QNh
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
RE: Where is a good SSL/TLS
Posted by "Smith, Burton" <Bu...@Williams.com>.
Chris,
I can get yum to pull 2.2.15-26.el6, but it is missing mod_ssl and mod_jk. I can see 2.2.15-28.el6_4, but yum will not perform the update for me to verify the modules. Once I resolve this (should be easy) issue is resolved I can verify the performance differences in Linux. Patches may become interesting after normal work/issues are resolved.
---
Thanks,
Burton L. Smith
w:801-584-6164
c:801-201-2897
-----Original Message-----
From: Christopher Schultz [mailto:chris@christopherschultz.net]
Sent: Wednesday, May 22, 2013 7:49 AM
To: Tomcat Users List
Subject: Re: Where is a good SSL/TLS
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Burton,
On 5/21/13 4:06 PM, Smith, Burton wrote:
> Sorry, mouse got away from me.
No problem: it happens.
I'm just curious: why are you compiling httpd yourself? RedHat should supply decent binaries including mod_so for pluggable module support, and they should be reasonably optimized for your platform.
Long ago, people wanting to squeeze every ounce of speed out of httpd would statically-compile everything do remove a later of indirection.
At the time, I thought that was silly because it made deployments a pain in the neck.
These days, I think everyone who doesn't like modularized-httpd just jumps-ship and goes to nginx or lighttpd, right?
Or maybe you are hacking httpd and just want to provide a patch. That would be great!
- -chris
Re: Where is a good SSL/TLS
Posted by Christopher Schultz <ch...@christopherschultz.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Burton,
On 5/21/13 4:06 PM, Smith, Burton wrote:
> Sorry, mouse got away from me.
No problem: it happens.
I'm just curious: why are you compiling httpd yourself? RedHat should
supply decent binaries including mod_so for pluggable module support,
and they should be reasonably optimized for your platform.
Long ago, people wanting to squeeze every ounce of speed out of httpd
would statically-compile everything do remove a later of indirection.
At the time, I thought that was silly because it made deployments a
pain in the neck.
These days, I think everyone who doesn't like modularized-httpd just
jumps-ship and goes to nginx or lighttpd, right?
Or maybe you are hacking httpd and just want to provide a patch. That
would be great!
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQIcBAEBCAAGBQJRnMy8AAoJEBzwKT+lPKRY6EEQALbd33ceJOz8zJa9RM9CqYJB
hVi7TRVqNKrm0D9SJhUxYbCS7/wxVHaqXsz8vrhdTjKmN21xdrPfeyNSZ1zag8a8
JhMJW20OD6d7n/Swvp1PoTqXoG/mB/cdXZM2y/8HkLR1K8WST/8zl1gKfji3qzhh
AUN+8vRe75KTrgTUBp51gQunLdo3ElCXieEVEzSiXG+9C/actMdr1DKxCwbDetIh
LeTbf128gBWhTk448Py8ghgF4591K95/KAghV7pZbQXK3aB5Du3VVvOFeaTNvcsX
UKLGfyIXNcsUq+3Up4Qbbnq4KmR8Y/M8U0Sv3vwkckeXYAIXJfX4afER10GFOOK4
5He/6shn3bVxp5J5sP9vFwxvvogrvcv5LJnZlTBX6aZu7d3vhFGv8ZoHtcjpUT+Y
Af++oG0JLsYBGwIh0ixpyPpXP+ENXE/v16kImkSaWNvglbVs1c6oK/DIaxjmbc47
dcm9QFg+ur5WcKuIYM1G4FpBod6TuD09kEjoVdM8D6NlS+Bry3bA6dvt2xFiB34T
SCppmPZHvLJNjyYLm7/wi2b7uDB3K8hhL50gWGXtK45yjYGmUlyQ6tNMVynGSp4G
Frx3mo75o9DSgPOElNYx2jWdT77Q4EqZAEATb4Jw3MAr8KglNHtcVW1tbl0o+Cgq
FJCkQT6tDUoWFI0pU+7X
=Vgpk
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
RE: Where is a good SSL/TLS
Posted by "Smith, Burton" <Bu...@Williams.com>.
Sorry, mouse got away from me.
-----Original Message-----
From: Caldarale, Charles R [mailto:Chuck.Caldarale@unisys.com]
Sent: Tuesday, May 21, 2013 11:40 AM
To: Tomcat Users List
Subject: RE: Where is a good SSL/TLS
> From: Smith, Burton [mailto:Burton.Smith@Williams.com]
> Subject: Where is a good SSL/TLS
> I've been trying to figure out how to compile Apache 2.2
So wouldn't it be more effective to ask on the httpd mailing list rather than the Tomcat one?
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
RE: Where is a good SSL/TLS
Posted by "Caldarale, Charles R" <Ch...@unisys.com>.
> From: Smith, Burton [mailto:Burton.Smith@Williams.com]
> Subject: Where is a good SSL/TLS
> I've been trying to figure out how to compile Apache 2.2
So wouldn't it be more effective to ask on the httpd mailing list rather than the Tomcat one?
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org