1、ImportError: /usr/lib64/python2.7/site-packages/OpenSSL/crypto.so: symbol X509_REVOKED_dup, version libcrypto.so.10 not defined in file libcrypto.so.10 with link time reference
大致的意思就是crypto.so有問題,也查了很多版本又說OpenSSL的問題,但是我機器是環境變量的問題
[root@izufok5hmn78z ~]# certbot -version
Traceback (most recent call last):
File "/usr/bin/certbot", line 9, in <module>
load_entry_point('certbot==1.3.0', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 564, in load_entry_point
return get_distribution(dist).load_entry_point(group, name)
File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2662, in load_entry_point
return ep.load()
File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2316, in load
return self.resolve()
File "/usr/lib/python2.7/site-packages/pkg_resources/__init__.py", line 2322, in resolve
module = __import__(self.module_name, fromlist=['__name__'], level=0)
File "/usr/lib/python2.7/site-packages/certbot/main.py", line 2, in <module>
from certbot._internal import main as internal_main
File "/usr/lib/python2.7/site-packages/certbot/_internal/main.py", line 10, in <module>
import josepy as jose
File "/usr/lib/python2.7/site-packages/josepy/__init__.py", line 41, in <module>
from josepy.interfaces import JSONDeSerializable
File "/usr/lib/python2.7/site-packages/josepy/interfaces.py", line 7, in <module>
from josepy import errors, util
File "/usr/lib/python2.7/site-packages/josepy/util.py", line 7, in <module>
import OpenSSL
File "/usr/lib64/python2.7/site-packages/OpenSSL/__init__.py", line 36, in <module>
from OpenSSL import crypto
ImportError: /usr/lib64/python2.7/site-packages/OpenSSL/crypto.so: symbol X509_REVOKED_dup, version libcrypto.so.10 not defined in file libcrypto.so.10 with link time reference
[root@izufok5hmn78z ~]#
查找原因:找到這個外連接,是有個LD_LIBRARY_PATH 環境變量在控制,libssl.so.10已經指向了其他位置。
正確位置應該是:libcrypto.so.10 => /lib64/libcrypto.so.10 (0x00007ff603c7f000)
[root@izufok5hmn78z OpenSSL]# cd /usr/lib64/python2.7/site-packages/OpenSSL/
[root@izufok5hmn78z OpenSSL]# ldd crypto.so
linux-vdso.so.1 => (0x00007fff3875e000)
libssl.so.10 => /xxxxxxxxxxxxxx/4.1.1/lib/libssl.so.10 (0x00007f2050486000)
libcrypto.so.10 => /xxxxxxxxxxxx/4.1.1/lib/libcrypto.so.10 (0x00007f205009b000)
libpython2.7.so.1.0 => /lib64/libpython2.7.so.1.0 (0x00007f204fcc6000)
libpthread.so.0 => /lib64/libpthread.so.0 (0x00007f204faaa000)
libc.so.6 => /lib64/libc.so.6 (0x00007f204f6e8000)
libgssapi_krb5.so.2 => /lib64/libgssapi_krb5.so.2 (0x00007f204f49b000)
libkrb5.so.3 => /lib64/libkrb5.so.3 (0x00007f204f1b3000)
libcom_err.so.2 => /lib64/libcom_err.so.2 (0x00007f204efae000)
libk5crypto.so.3 => /lib64/libk5crypto.so.3 (0x00007f204ed7b000)
libdl.so.2 => /lib64/libdl.so.2 (0x00007f204eb77000)
libz.so.1 => /lib64/libz.so.1 (0x00007f204e960000)
libutil.so.1 => /lib64/libutil.so.1 (0x00007f204e75d000)
libm.so.6 => /lib64/libm.so.6 (0x00007f204e45b000)
/lib64/ld-linux-x86-64.so.2 (0x00007f205090d000)
libkrb5support.so.0 => /lib64/libkrb5support.so.0 (0x00007f204e24c000)
libkeyutils.so.1 => /lib64/libkeyutils.so.1 (0x00007f204e048000)
libresolv.so.2 => /lib64/libresolv.so.2 (0x00007f204de2e000)
libselinux.so.1 => /lib64/libselinux.so.1 (0x00007f204dc06000)
libpcre.so.1 => /lib64/libpcre.so.1 (0x00007f204d9a4000)
[root@izufok5hmn78z OpenSSL]# echo $LD_LIBRARY_PATH
/xxxxxxxxxxxxxxxxxxxx/4.1.1/lib/
解決辦法:每個人環境不同可能改變方式不同,我的是因爲LD_LIBRARY_PATH 環境變量控制,臨時用的話直接設置爲空即可
[root@izufok5hmn78z OpenSSL]# export LD_LIBRARY_PATH=""
[root@izufok5hmn78z OpenSSL]# echo $LD_LIBRARY_PATH
[root@izufok5hmn78z OpenSSL]#
2、ImportError: cannot import name UnrewindableBodyError,借用別人一張圖
解決辦法:重裝urllib3庫
pip uninstall urllib3
pip install urllib3
3、certbot pkg_resources.DistributionNotFound: The 'urllib3<1.23,>=1.21.1' distribution was not found and is required by requests
解決辦法:直接運行 # easy_install urllib3==1.21.1
4、ImportError: 'pyOpenSSL' module missing required functionality. Try upgrading to v0.14 or newer.
應該是pyOpenSSL版本和依賴有問題。參考https://github.com/certbot/certbot/issues/5534
pip install --upgrade --force-reinstall 'requests==2.6.0'
如果執行失敗,那先安裝依賴包,因爲我百度都試了一遍,最終成功的是上面這句
yum install -y python-devel
yum install -y openssl-devel
pip install pyOpenSSL
最後,certbot運行成功
[root@izufok5hmn78z OpenSSL]# certbot --version
certbot 1.3.0
[root@izufok5hmn78z OpenSSL]#