learning_curve
Golden Pleskian
We ran the corrected script and very nearly... made it this time.
It's a different error than before though. See code extracts below:
At which point, the script then runs smoothly with only one small error prior to: make -f objs/Makefile
The error being the last line shown above
The make process runs fine but the end result is:
This we discussed previously (as we don't have Phusion Passenger installed or use it anyway).
We can either ignore these two warnings or modify the original script again as follows:
Next is a warning which has been covered before (in other threads) and can be ignored:
But finally, it's this next error which stops any further process:
and is summarised with:
Running systemctl status nginx.service gives this:
Running journalctl -xe didn't give anything relative to the error, so we've excluded it from here.
As before, we've then restored back to the server snapshot taken just before running the script and all is well again.
Our current /etc/nginx/conf.d/ssl.conf contains this line:
and this runs perfectly on the current setup. For example, this is the line taken from Qualys SSL Labs report:
We quickly ran a search on nginx: [emerg] SSL_CTX_set1_curves_list("X25519:secp521r1:secp384r1: prime256v1") failed (SSL: ) Hmmm where to start? because the variables including Plesk related / not related on the results, means it would be guesswork at this stage, if we go further without waiting to read your input first.
So @IgorG we need your help again please!
It's a different error than before though. See code extracts below:
Code:
# cd /root/tmp
# chmod u+x nginx_with_modules_CentOS7.sh
# ./nginx_with_modules_CentOS7.sh
Code:
Configuration summary
+ using threads
+ using system PCRE library
+ using system OpenSSL library
+ using system zlib library
nginx path prefix: "/etc/nginx"
nginx binary file: "/usr/sbin/nginx"
nginx modules path: "/etc/nginx/modules"
nginx configuration prefix: "/etc/nginx"
nginx configuration file: "/etc/nginx/nginx.conf"
nginx pid file: "/var/run/nginx.pid"
nginx error log file: "/var/log/nginx/error.log"
nginx http access log file: "/var/log/nginx/access.log"
nginx http client request body temporary files: "/var/lib/nginx/body"
nginx http proxy temporary files: "/var/lib/nginx/proxy"
nginx http fastcgi temporary files: "/var/lib/nginx/fastcgi"
nginx http uwsgi temporary files: "/var/lib/nginx/uwsgi"
nginx http scgi temporary files: "/var/lib/nginx/scgi"
./nginx_with_modules_CentOS7.sh: line 86: --with-openssl=/usr/local/src/openssl: No such file or directory
The make process runs fine but the end result is:
Code:
make[1]: Leaving directory `/usr/local/src/nginx'
mv: cannot stat ‘/etc/nginx/modules.conf.d/phusion-passenger.conf’: No such file or directory
mv: cannot stat ‘/etc/nginx/conf.d/phusion-passenger.conf’: No such file or directory
We can either ignore these two warnings or modify the original script again as follows:
Code:
.............
make install
# mv /etc/nginx/modules.conf.d/phusion-passenger.conf /etc/nginx/modules.conf.d/phusion-passenger.conf_bak
# mv /etc/nginx/conf.d/phusion-passenger.conf /etc/nginx/conf.d/phusion-passenger.conf_bak
systemctl unmask sw-nginx
..............
Code:
nginx: [warn] duplicate MIME type "text/html" in /etc/nginx/nginx.conf:40
Code:
nginx: [emerg] SSL_CTX_set1_curves_list("X25519:secp521r1:secp384r1:prime256v1") failed (SSL:)
Code:
nginx: configuration file /etc/nginx/nginx.conf test failed
Job for nginx.service failed because the control process exited with error code. See "systemctl status nginx.service" and "journalctl -xe" for det
Code:
# systemctl status nginx.service -l
● nginx.service - Startup script for nginx service
Loaded: loaded (/usr/lib/systemd/system/nginx.service; enabled; vendor preset: disabled)
Active: failed (Result: exit-code) since Tue 2018-04-17 01:13:29 BST; 2min 50s ago
Process: 15637 ExecStop=/bin/kill -s QUIT $MAINPID (code=exited, status=0/SUCCESS)
Process: 15643 ExecStartPre=/usr/sbin/nginx -t (code=exited, status=1/FAILURE)
Process: 15641 ExecStartPre=/usr/bin/test $NGINX_ENABLED = yes (code=exited, status=0/SUCCESS)
Main PID: 1540 (code=exited, status=0/SUCCESS)
Apr 17 01:13:29 *server-name* systemd[1]: Starting Startup script for nginx service...
Apr 17 01:13:29 *server-name* nginx[15643]: nginx: [warn] duplicate MIME type "text/html" in /etc/nginx/nginx.conf:40
Apr 17 01:13:29 *server-name* nginx[15643]: nginx: [emerg] SSL_CTX_set1_curves_list("X25519:secp521r1:secp384r1:prime256v1") failed (SSL:)
Apr 17 01:13:29 *server-name* nginx[15643]: nginx: configuration file /etc/nginx/nginx.conf test failed
Apr 17 01:13:29 *server-name* systemd[1]: nginx.service: control process exited, code=exited status=1
Apr 17 01:13:29 *server-name* systemd[1]: Failed to start Startup script for nginx service.
Apr 17 01:13:29 *server-name* systemd[1]: Unit nginx.service entered failed state.
Apr 17 01:13:29 *server-name* systemd[1]: nginx.service failed.
As before, we've then restored back to the server snapshot taken just before running the script and all is well again.
Our current /etc/nginx/conf.d/ssl.conf contains this line:
Code:
#SSL ECDH Curve
ssl_ecdh_curve X25519:secp521r1:secp384r1:prime256v1;
Code:
Supported Named Groups x25519, secp521r1, secp384r1, secp256r1 (server preferred order)
We quickly ran a search on nginx: [emerg] SSL_CTX_set1_curves_list("X25519:secp521r1:secp384r1: prime256v1") failed (SSL: ) Hmmm where to start? because the variables including Plesk related / not related on the results, means it would be guesswork at this stage, if we go further without waiting to read your input first.
So @IgorG we need your help again please!