Re: Openssl backward compatibility

Fri, 28 Sep 2007 06:07:37 -0700 

jimmy bahuleyan wrote:

Kaushalye Kapuruge wrote:

Hi Listers,
I'm having a problem shipping my (xml security)library, which is based
on openssl crypto implementation.
I have statically linked it with the ssl and crypto libraries (-lssl
-lcrypto).


Are you sure you have statically linked in the Openssl libraries? If it
was, then I don't think you'd get link errors for these symbols.

I also believe all versions of 0.9.x to be binary compatible for the
same 'x'.


  

Correction: It's not statically linked. :) My bad

But why I'm getting this error even if its dynamically linked, on 
another machine with 0.9.8c?

What's the meaning of 0.9.8e in
"OpenSSL 0.9.8c 05 Sep 2006 (Library: OpenSSL 0.9.8e 23 Feb 2007)"
when I issue
%openssl version


What possible actions I can take to ship my library so that it'll work 
on any 0.9.8x (rather than linking statically) ?

Thanks for the reply. :)
Cheers,
Kau


And my openssl version is
OpenSSL 0.9.8c 05 Sep 2006 (Library: OpenSSL 0.9.8e 23 Feb 2007)

When I compile and create binaries in my machine it simply won't work
with another machine with the same openssl version 0.9.8.c. But in that
machine I don't get the library version as 0.9.8e.
And gives this error

libomopenssl.so.0: symbol EVP_CIPHER_CTX_key_length, version
OPENSSL_0.9.8 not defined in file libcrypto.so.0.9.8 with link time
reference

When I list symbols in my library as %nm libomopenssl.so | grep
EVP_CIPHER_CTX
I get
        U EVP_CIPHER_CTX_block_size@@OPENSSL_0.9.8
        U EVP_CIPHER_CTX_cleanup@@OPENSSL_0.9.8
        U EVP_CIPHER_CTX_init@@OPENSSL_0.9.8
        U EVP_CIPHER_CTX_iv_length@@OPENSSL_0.9.8
        U EVP_CIPHER_CTX_key_length@@OPENSSL_0.9.8
        U EVP_CIPHER_CTX_set_padding@@OPENSSL_0.9.8

But in the other machine I get
        U EVP_CIPHER_CTX_block_size
        U EVP_CIPHER_CTX_cleanup@@OPENSSL_0.9.8
        U EVP_CIPHER_CTX_init@@OPENSSL_0.9.8
        U EVP_CIPHER_CTX_iv_length
        U EVP_CIPHER_CTX_key_length
        U EVP_CIPHER_CTX_set_padding@@OPENSSL_0.9.8

Note that these symbols are different for  EVP_CIPHER_CTX_key_length

So, my question is, How do I make my library work with another machine
with the same openssl version? What instructions I have to give? Should
I ask them to use 0.9.8e?  How's the backward compatibility of openssl?

Cheers,
Kaushalye


    


-jb

  



--
http://kaushalye.blogspot.com/
http://wso2.org/

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]






















					Reply via email to