openssl版本一键升级(需要修改tar包名称和路径)
---
- name: Install OpenSSL
hosts: openssl
tasks:
- name: Copy OpenSSL tar.gz to /tmp
copy:
src: /root/shl/soft/openssl-1.1.1v.tar.gz
dest: /tmp
# remote_src: yes # 如果源文件在控制主机上
- name: Extract OpenSSL tar.gz
command: tar -zxvf /tmp/openssl-1.1.1v.tar.gz
args:
chdir: /tmp
become: yes
- name: Configure OpenSSL
command: ./config --prefix=/usr/local/openssl
args:
chdir: /tmp/openssl-1.1.1v
#become: yes
- name: Build and make OpenSSL
command: make
args:
chdir: /tmp/openssl-1.1.1v
#become: yes
- name: Build and make install OpenSSL
command: make install
args:
chdir: /tmp/openssl-1.1.1v
- name: Backup existing openssl binary
command: mv /usr/bin/openssl /usr/bin/openssl.bak
#become: yes
- name: Create symlink to the new OpenSSL
command: ln -s /usr/local/openssl/bin/openssl /usr/bin/openssl
#become: yes
- name: Verify OpenSSL version
command: openssl version
register: openssl_version
become: yes
- name: Display OpenSSL version
debug:
var: openssl_version.stdout_lines
如果出现 openssl: error while loading shared libraries: libssl.so.1.1: cannot open shared object file: No such file or directory ,缺少相关库依赖,检查库文件
解决办法:
ln -s /usr/local/openssl/lib64/libssl.so.3 /usr/lib64/libssl.so.3
ln -s /usr/local/openssl/lib64/libcrypto.so.3 /usr/lib64/libcrypto.so.3
查看版本
openssl version