[Pkg-openssl-devel] Bug#656568: Bug#656568: applications using https is crashing in amd64 due to libssl0.9.8 0.9.8o-4squeeze5
Kurt Roeckx
kurt at roeckx.be
Fri Jan 20 10:01:37 UTC 2012
On Thu, Jan 19, 2012 at 11:57:01PM -0600, Gireesh Gopinathan wrote:
> Package: libssl0.9.8
> Version: 0.9.8o-4squeeze5
> Severity: high
> Tags: patch
>
>
>
> In amd64 machine while developing applications using gsoap(2.7.10) i am observing a crash. This crash happens when i try to enable ssl.
> Not only with gsoap but also in any application which try to use https by linking against /usr/lib/libcrypto.so.0.9.8 this sort of crash happens.
>
> But if I download the source code from debian site(openssl) , revert the debian patch patches/no-symbolic.patch and build libcrypto.so library this crash is not happening.
I don't see how this is relevant at all. I think you have some
other problem, like linking to 2 different versions of libssl.
This will almost always cause problems. Using -Bsymbolic will
fix some of the issues, but not all of them.
Note that gsoap didn't used to be linked to libssl like it should
(http://bugs.debian.org/646228). openssl in Debian doesn't use
symbolic but symbol versioning instead. In cases like gsoap not
linking to libssl it means it doesn't properly record the version
of libssl it's linked against, and your application might pull
in a different version than it's expecting.
Please show me any application in Debian itself that has the
issue.
Kurt
More information about the Pkg-openssl-devel
mailing list