Forked from moneytoo/gist:ab3f34e4fddc2110675952f8280f49c5
Last active
March 6, 2018 10:52
-
-
Save nkhine/d76a1759c24a46af20745958ea4afa32 to your computer and use it in GitHub Desktop.
nginx with OpenSSL 1.0.2 (ALPN) on CentOS 7, also available from https://brouken.com/brouken-centos-7-repo/
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ### No longer needed as of nginx-1.13.9-1.el7_4.ngx.x86_64.rpm from nginx.org | |
| ### it was compiled against OpenSSL 1.0.2 from CentoOS 7.4 so it supports ALPN (HTTP2 works) | |
| ### nginx-module-njs-1.13.9.0.1.15-1.el7_4.ngx.x86_64.rpm | |
| yum -y groupinstall 'Development Tools' | |
| yum -y install wget openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel rpmdevtools | |
| OPENSSL="openssl-1.0.2l" | |
| NGINX_VERSION="1.13.9-1" | |
| NJS_VERSION="1.13.9.0.1.15-1" | |
| rpm -ivh http://nginx.org/packages/mainline/centos/7/SRPMS/nginx-$NGINX_VERSION.el7.ngx.src.rpm | |
| rpm -ivh http://nginx.org/packages/mainline/centos/7/SRPMS/nginx-module-geoip-$NGINX_VERSION.el7.ngx.src.rpm | |
| rpm -ivh http://nginx.org/packages/mainline/centos/7/SRPMS/nginx-module-image-filter-$NGINX_VERSION.el7.ngx.src.rpm | |
| rpm -ivh http://nginx.org/packages/mainline/centos/7/SRPMS/nginx-module-njs-$NJS_VERSION.el7.ngx.src.rpm | |
| rpm -ivh http://nginx.org/packages/mainline/centos/7/SRPMS/nginx-module-perl-$NGINX_VERSION.el7.ngx.src.rpm | |
| rpm -ivh http://nginx.org/packages/mainline/centos/7/SRPMS/nginx-module-xslt-$NGINX_VERSION.el7.ngx.src.rpm | |
| sed -i "/Source12: .*/a Source100: https://www.openssl.org/source/$OPENSSL.tar.gz" /root/rpmbuild/SPECS/nginx.spec | |
| sed -i "s|--with-http_ssl_module|--with-http_ssl_module --with-openssl=$OPENSSL|g" /root/rpmbuild/SPECS/nginx.spec | |
| sed -i '/%setup -q/a tar zxf %{SOURCE100}' /root/rpmbuild/SPECS/nginx.spec | |
| sed -i '/.*Requires: openssl.*/d' /root/rpmbuild/SPECS/nginx.spec | |
| # hardening whatnots since 1.11.9 | |
| sed -i 's|%define WITH_LD_OPT .*|%define WITH_LD_OPT ""|g' /root/rpmbuild/SPECS/nginx.spec | |
| sed -i 's| -fPIC||g' /root/rpmbuild/SPECS/nginx.spec | |
| spectool -g -R /root/rpmbuild/SPECS/nginx.spec | |
| # if '.rpmmacros' contains "%_sourcedir %{_topdir}/SOURCES/%{name}" | |
| #spectool -g -C /root/rpmbuild/SOURCES/nginx/ /root/rpmbuild/SPECS/nginx.spec | |
| rpmbuild -ba /root/rpmbuild/SPECS/nginx.spec | |
| rpmbuild -ba /root/rpmbuild/SPECS/nginx-module-geoip.spec | |
| rpmbuild -ba /root/rpmbuild/SPECS/nginx-module-image-filter.spec | |
| rpmbuild -ba /root/rpmbuild/SPECS/nginx-module-njs.spec | |
| rpmbuild -ba /root/rpmbuild/SPECS/nginx-module-perl.spec | |
| rpmbuild -ba /root/rpmbuild/SPECS/nginx-module-xslt.spec | |
| #rpm -Uvh /root/rpmbuild/RPMS/x86_64/nginx-$NGINX_VERSION.el7.centos.ngx.x86_64.rpm |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment