下载nginx源码(无需修改nginx代码),将下载的nginx安装包和附件内容放置在同一个目录下。
编译gmssl静态库的Linux版本
root@localhost:~# cat /etc/issue
Ubuntu 16.04.1 LTS \n \l
root@localhost:~# uname -a
Linux localhost 4.4.0-31-generic #50-Ubuntu SMP Wed Jul 13 00:07:12 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux
nginx.conf配置文件添加国密套件方式
server {
listen 4433 ssl;
server_name localhost;
ssl_certificate SS.pem;
ssl_certificate_key SS.pem;
ssl_certificate SE.pem;
ssl_certificate_key SE.pem;
ssl_ciphers "SM2-WITH-SMS4-SM3";
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 5m;
ssl_prefer_server_ciphers on;
location / {
root html;
index index.html index.htm;
}
}
编译nginx的脚本内容:
脚本参考来源(https://gist.github.com/neilstuartcraig/4b8f06a4d4374c379bc0f44923a11fa4)
#!/bin/bash
# nginx 版本
LATESTNGINX="1.20.1"
BUILDROOT="/tmp/gmssl-nginx"
# mkdir GmSSL libs and in