nginx http_spdy_module

Requests for RPMS, or new coding projects related to server administration, Plesk, security, or anything else you can think of.
anhedonia
New Forum User
New Forum User
Posts: 2
Joined: Mon Dec 02, 2013 2:31 am
Location: Australia

nginx http_spdy_module

Unread post by anhedonia »

Please correct me if I'm mistaken, but it looks like even though --with-http_spdy_module was used while compiling the current nginx RPM, it was compiled against a pre 1.0.1 OpenSSL library, meaning it doesn't have NPN compatibility ?

Code: Select all

# openssl version
OpenSSL 1.0.1e 11 Feb 2013
# service nginx reload
nginx: [warn] nginx was built without OpenSSL NPN support, SPDY is not enabled
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4149
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: nginx http_spdy_module

Unread post by mikeshinn »

EL6 didnt include openssl 1.0.1 until yesterday, so it wasnt possible to compile against a newer version of openssl - the library would not have existed on the system. And EL5 does not include openssl 1.0.1 at all.
anhedonia
New Forum User
New Forum User
Posts: 2
Joined: Mon Dec 02, 2013 2:31 am
Location: Australia

Re: nginx http_spdy_module

Unread post by anhedonia »

That makes sense. I was just confused since spdy support was compiled in. I needed/wanted ECC support, so I compiled my own OpenSSL libraries and didn't keep track of what was in Base or Atomicorp so when I noticed it there yesterday, I just assumed it has been available for a while.
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: nginx http_spdy_module

Unread post by scott »

The reason you dont want to do that is you lose your FIPS-140-2 cert when you modify openssl
Post Reply