openssh unix dev - Jun 2002 - [Bug 269] New: OpenSSH doesn't compile with dynamic OpenSSL libraries

http://bugzilla.mindrot.org/show_bug.cgi?id=269

           Summary: OpenSSH doesn't compile with dynamic OpenSSL libraries
           Product: Portable OpenSSH
           Version: -current
          Platform: UltraSparc
        OS/Version: Solaris
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Build system
        AssignedTo: openssh-unix-dev at mindrot.org
        ReportedBy: list_7531 at hotmail.com


Hi,

I'm trying to compile OpenSSH snapshot 20020603 with the dynamic libraries 
compiled from OpenSSL 0.9.6d. Using the "shared" option I can compile
the
OpenSSL source files to produce libssl.so and libcrypto.so (and libssl.a and 
libcrypto.a).

When I run the OpenSSH configure script, I get "cannot find OpenSSL
libraries"
if I specify the dynamically compiled OpenSSL libraries in
"--with-ssl-dir=..."
When I use the statically compiled SSL libraries, SSH compiles and installs 
correctly.

System notes:
Statically compiled OpenSSL files in /opt/openssl-0.9.6d-stat
gmake clean;./configure --prefix=/opt/openssh323p1 --with-ssl-dir=/opt/openssl-
0.9.6d-stat --with-zlib=/opt/zlib --with-pam

Generates Makefile then compiles and installs.

Dynamically compiled OpenSSL files in /opt/openssl-0.9.6d-sh
gmake clean;./configure --prefix=/opt/openssh323p1 --with-ssl-dir=/opt/openssl-
0.9.6d-sh --with-zlib=/opt/zlib --with-pam

checking for pam_set_item in -lpam... yes
checking for pam_getenvlist... yes
checking whether pam_strerror takes only one argument... no
configure: error: *** Can't find recent OpenSSL libcrypto (see config.log
for
details) ***

Here are the last 8 lines from config.log:
#define HAVE_INTTYPES_H 1
#define HAVE_UNISTD_H 1
#define GETPGRP_VOID 1
#define HAVE_LIBDL 1
#define HAVE_LIBPAM 1
#define HAVE_PAM_GETENVLIST 1
#define USE_PAM 1
configure: exit 1


This issue is reproducible with OpenSSL 0.9.6c and OpenSSH 3.2.3p1

This issue is important because system security updates are a lot more 
difficult if I have to keep track of statically linked binaries, which have to 
be updated every time a component from a different package is patched.

This issue is also a matter of concern as the "--with-zlib=/opt/zlib"
option is
correctly processed to use the dynamic library /opt/zlib/lib/libz.so.

Please let me know if you are able to fix this.

Thanks,

Adrian



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

On Sun, Jun 09, 2002 at 06:24:04AM +1000, bugzilla-daemon at mindrot.org
wrote:
> Dynamically compiled OpenSSL files in /opt/openssl-0.9.6d-sh
> gmake clean;./configure --prefix=/opt/openssh323p1
--with-ssl-dir=/opt/openssl-
> 0.9.6d-sh --with-zlib=/opt/zlib --with-pam
> 
> checking for pam_set_item in -lpam... yes
> checking for pam_getenvlist... yes
> checking whether pam_strerror takes only one argument... no
> configure: error: *** Can't find recent OpenSSL libcrypto (see
config.log for
> details) ***
> 
> Here are the last 8 lines from config.log:
> #define HAVE_INTTYPES_H 1
> #define HAVE_UNISTD_H 1
> #define GETPGRP_VOID 1
> #define HAVE_LIBDL 1
> #define HAVE_LIBPAM 1
> #define HAVE_PAM_GETENVLIST 1
> #define USE_PAM 1
> configure: exit 1
This information is not sufficient. It does not tell, why the detection of
the OpenSSL libraries failed. You must further examine config.log for
locations where "-lcrypto" is tested.

Best regards,
	Lutz
-- 
Lutz Jaenicke                             Lutz.Jaenicke at aet.TU-Cottbus.DE
http://www.aet.TU-Cottbus.DE/personen/jaenicke/
BTU Cottbus, Allgemeine Elektrotechnik
Universitaetsplatz 3-4, D-03044 Cottbus