Discussion:
Problems with compiling BIND 9.17.10 or above ...
Zhéxué M. @SysAdmin
2021-05-26 17:07:02 UTC
Permalink
Dear Ladies and Gentlemen,

I wanted to update my BIND server to the current version 9.10.17 and keep getting stuck in the compile process.

First I compiled and installed the tool "NGHTTP/2" under "/user/local/nghttp2/1.43.0/".
But the "CONFIGURE" - process constantly brings me the error message "...error: libnghttp2 not found.

The path of the library is set correctly...

What else can I do? What is possibly going wrong here?

Best regards from Berlin

Matthias
-------------------------------------------------------------------------
The diversity of human dignity
"Jede Handlung, die mit gutem Willen und Wirksamkeit
ausgefÃŒhrt wird, ist eine mystische Handlung"
Rick Dicaire
2021-05-26 17:25:10 UTC
Permalink
Post by Zhéxué M. @SysAdmin
The path of the library is set correctly...
How are you setting it?
Rick Dicaire
2021-05-27 15:11:41 UTC
Permalink
Now another problem comes up and I hope someone here can help me. The
Configure process now produces the message:

checking for OPENSSL... yes

checking for OpenSSL >= 1.0.0 or LibreSSL >= 2.7.0... yes

checking for OPENSSL_init_ssl... no

checking for OPENSSL_init_crypto... no

checking for CRYPTO_zalloc... no

checking for EVP_CIPHER_CTX_new... no

checking for EVP_CIPHER_CTX_free... no

checking for EVP_MD_CTX_new... no

checking for EVP_MD_CTX_free... no

checking for EVP_MD_CTX_reset... no

checking for HMAC_CTX_new... no

checking for HMAC_CTX_free... no

checking for HMAC_CTX_reset... no

checking for HMAC_CTX_get_md... no

checking for SSL_read_ex... no

checking for SSL_peek_ex... no

checking for SSL_write_ex... no

checking for BIO_read_ex... no

checking for BIO_write_ex... no

checking for SSL_CTX_up_ref... no

checking for SSL_CTX_set_min_proto_version... no

checking for ECDSA_sign... no

configure: error: in `/root/tools/software/bind-9.17.13':

configure: error: ECDSA support in OpenSSL is mandatory.



But with the command "openssl ciphers -v 'ALL:COMPLEMENTOFALL' | grep
ECDSA" I get several lines with ECDSA. What could be the reason for this?
Ondřej Surý
2021-05-27 16:28:06 UTC
Permalink
Hi,

you need to post full config.log, not just snippet of the console. But I would suggest to look into the config.log first.

Ondrej
--
Ondřej Surý — ISC (He/Him)

My working hours and your working hours may be different. Please do not feel obligated to reply outside your normal working hours.
Post by Rick Dicaire
checking for OPENSSL... yes
checking for OpenSSL >= 1.0.0 or LibreSSL >= 2.7.0... yes
checking for OPENSSL_init_ssl... no
checking for OPENSSL_init_crypto... no
checking for CRYPTO_zalloc... no
checking for EVP_CIPHER_CTX_new... no
checking for EVP_CIPHER_CTX_free... no
checking for EVP_MD_CTX_new... no
checking for EVP_MD_CTX_free... no
checking for EVP_MD_CTX_reset... no
checking for HMAC_CTX_new... no
checking for HMAC_CTX_free... no
checking for HMAC_CTX_reset... no
checking for HMAC_CTX_get_md... no
checking for SSL_read_ex... no
checking for SSL_peek_ex... no
checking for SSL_write_ex... no
checking for BIO_read_ex... no
checking for BIO_write_ex... no
checking for SSL_CTX_up_ref... no
checking for SSL_CTX_set_min_proto_version... no
checking for ECDSA_sign... no
configure: error: ECDSA support in OpenSSL is mandatory.
But with the command "openssl ciphers -v 'ALL:COMPLEMENTOFALL' | grep ECDSA" I get several lines with ECDSA. What could be the reason for this?
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
https://lists.isc.org/mailman/listinfo/bind-users
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.


bind-users mailing list
bind-***@lists.isc.org
https://lis

Loading...