共计 1463 个字符,预计需要花费 4 分钟才能阅读完成。
提醒:本文最后更新于2025-07-07 14:56,文中所关联的信息可能已发生改变,请知悉!
centos 升级 openssl
安装相关依赖
apt-get install zlib1g zlib1g-dev
下载 cloudflare/sslconfig
git clone --depth 1 https://github.com/cloudflare/sslconfig
下载 openssl 并解压
| wget https://www.openssl.org/source/openssl-1.1.1s.tar.gz | |
| tar -zxvf openssl-1.1.1s.tar.gz | |
| mv openssl-1.1.1s openssl | |
| cd openssl | |
| patch -p1 < ../sslconfig/patches/openssl__chacha20_poly1305_draft_and_rfc_ossl102g.patch |
执行编译
| # 编译为静态库 | |
| ./config shared zlib | |
| # 编译为动态库 | |
| # ./config shared zlib-dynamic | |
| make depend | |
| make | |
| make install |
备份旧的 openssl
| mv /usr/bin/openssl /usr/bin/openssl.bak | |
| mv /usr/include/openssl /usr/include/openssl.bak |
建立软链接
| ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl | |
| ln -s /usr/local/ssl/include/openssl/ /usr/include/openssl |
配置文件搜索路径
| echo "/usr/local/ssl/lib" >> /etc/ld.so.conf | |
| ldconfig -v | grep openssl |
查看最新版本
openssl version -a
脚本汇总:
| cd /usr/source | |
| # 安装相关依赖 | |
| apt-get install zlib1g zlib1g-dev | |
| # 下载 cloudflare/sslconfig | |
| git clone --depth 1 https://github.com/cloudflare/sslconfig | |
| # 下载 openssl 并解压 | |
| wget https://www.openssl.org/source/openssl-1.1.1s.tar.gz | |
| tar -zxvf openssl-1.1.1s.tar.gz | |
| mv openssl-OpenSSL_1_1_1s/ openssl | |
| cd openssl | |
| patch -p1 < ../sslconfig/patches/openssl__chacha20_poly1305_draft_and_rfc_ossl102g.patch | |
| # 编译为静态库 | |
| ./config shared zlib | |
| # 编译为动态库 | |
| # ./config shared zlib-dynamic | |
| make depend | |
| make | |
| make install | |
| # 备份旧的 openssl | |
| mv /usr/bin/openssl /usr/bin/openssl.bak | |
| mv /usr/include/openssl /usr/include/openssl.bak | |
| # 建立软链接 | |
| ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl | |
| ln -s /usr/local/ssl/include/openssl/ /usr/include/openssl | |
| # 配置文件搜索路径 | |
| echo "/usr/local/ssl/lib" >> /etc/ld.so.conf | |
| ldconfig -v | grep openssl | |
| # 查看最新版本 | |
| openssl version -a |
正文完
