bugzilla-daemon at mindrot.org
2002-Jun-08 20:24 UTC
[Bug 269] New: OpenSSH doesn't compile with dynamic OpenSSL libraries
http://bugzilla.mindrot.org/show_bug.cgi?id=269 Summary: OpenSSH doesn't compile with dynamic OpenSSL libraries Product: Portable OpenSSH Version: -current Platform: UltraSparc OS/Version: Solaris Status: NEW Severity: normal Priority: P2 Component: Build system AssignedTo: openssh-unix-dev at mindrot.org ReportedBy: list_7531 at hotmail.com Hi, I'm trying to compile OpenSSH snapshot 20020603 with the dynamic libraries compiled from OpenSSL 0.9.6d. Using the "shared" option I can compile the OpenSSL source files to produce libssl.so and libcrypto.so (and libssl.a and libcrypto.a). When I run the OpenSSH configure script, I get "cannot find OpenSSL libraries" if I specify the dynamically compiled OpenSSL libraries in "--with-ssl-dir=..." When I use the statically compiled SSL libraries, SSH compiles and installs correctly. System notes: Statically compiled OpenSSL files in /opt/openssl-0.9.6d-stat gmake clean;./configure --prefix=/opt/openssh323p1 --with-ssl-dir=/opt/openssl- 0.9.6d-stat --with-zlib=/opt/zlib --with-pam Generates Makefile then compiles and installs. Dynamically compiled OpenSSL files in /opt/openssl-0.9.6d-sh gmake clean;./configure --prefix=/opt/openssh323p1 --with-ssl-dir=/opt/openssl- 0.9.6d-sh --with-zlib=/opt/zlib --with-pam checking for pam_set_item in -lpam... yes checking for pam_getenvlist... yes checking whether pam_strerror takes only one argument... no configure: error: *** Can't find recent OpenSSL libcrypto (see config.log for details) *** Here are the last 8 lines from config.log: #define HAVE_INTTYPES_H 1 #define HAVE_UNISTD_H 1 #define GETPGRP_VOID 1 #define HAVE_LIBDL 1 #define HAVE_LIBPAM 1 #define HAVE_PAM_GETENVLIST 1 #define USE_PAM 1 configure: exit 1 This issue is reproducible with OpenSSL 0.9.6c and OpenSSH 3.2.3p1 This issue is important because system security updates are a lot more difficult if I have to keep track of statically linked binaries, which have to be updated every time a component from a different package is patched. This issue is also a matter of concern as the "--with-zlib=/opt/zlib" option is correctly processed to use the dynamic library /opt/zlib/lib/libz.so. Please let me know if you are able to fix this. Thanks, Adrian ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
Lutz Jaenicke
2002-Jun-09 07:58 UTC
[Bug 269] New: OpenSSH doesn't compile with dynamic OpenSSL libraries
On Sun, Jun 09, 2002 at 06:24:04AM +1000, bugzilla-daemon at mindrot.org wrote:> Dynamically compiled OpenSSL files in /opt/openssl-0.9.6d-sh > gmake clean;./configure --prefix=/opt/openssh323p1 --with-ssl-dir=/opt/openssl- > 0.9.6d-sh --with-zlib=/opt/zlib --with-pam > > checking for pam_set_item in -lpam... yes > checking for pam_getenvlist... yes > checking whether pam_strerror takes only one argument... no > configure: error: *** Can't find recent OpenSSL libcrypto (see config.log for > details) *** > > Here are the last 8 lines from config.log: > #define HAVE_INTTYPES_H 1 > #define HAVE_UNISTD_H 1 > #define GETPGRP_VOID 1 > #define HAVE_LIBDL 1 > #define HAVE_LIBPAM 1 > #define HAVE_PAM_GETENVLIST 1 > #define USE_PAM 1 > configure: exit 1This information is not sufficient. It does not tell, why the detection of the OpenSSL libraries failed. You must further examine config.log for locations where "-lcrypto" is tested. Best regards, Lutz -- Lutz Jaenicke Lutz.Jaenicke at aet.TU-Cottbus.DE http://www.aet.TU-Cottbus.DE/personen/jaenicke/ BTU Cottbus, Allgemeine Elektrotechnik Universitaetsplatz 3-4, D-03044 Cottbus