[Bug 269] New: OpenSSH doesn't compile with dynamic OpenSSL libraries

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sun Jun 9 06:24:04 EST 2002 

http://bugzilla.mindrot.org/show_bug.cgi?id=269

           Summary: OpenSSH doesn't compile with dynamic OpenSSL libraries
           Product: Portable OpenSSH
           Version: -current
          Platform: UltraSparc
        OS/Version: Solaris
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Build system
        AssignedTo: openssh-unix-dev at mindrot.org
        ReportedBy: list_7531 at hotmail.com


Hi,

I'm trying to compile OpenSSH snapshot 20020603 with the dynamic libraries 
compiled from OpenSSL 0.9.6d. Using the "shared" option I can compile the 
OpenSSL source files to produce libssl.so and libcrypto.so (and libssl.a and 
libcrypto.a).

When I run the OpenSSH configure script, I get "cannot find OpenSSL libraries" 
if I specify the dynamically compiled OpenSSL libraries in "--with-ssl-dir=..."
When I use the statically compiled SSL libraries, SSH compiles and installs 
correctly.

System notes:
Statically compiled OpenSSL files in /opt/openssl-0.9.6d-stat
gmake clean;./configure --prefix=/opt/openssh323p1 --with-ssl-dir=/opt/openssl-
0.9.6d-stat --with-zlib=/opt/zlib --with-pam

Generates Makefile then compiles and installs.

Dynamically compiled OpenSSL files in /opt/openssl-0.9.6d-sh
gmake clean;./configure --prefix=/opt/openssh323p1 --with-ssl-dir=/opt/openssl-
0.9.6d-sh --with-zlib=/opt/zlib --with-pam

checking for pam_set_item in -lpam... yes
checking for pam_getenvlist... yes
checking whether pam_strerror takes only one argument... no
configure: error: *** Can't find recent OpenSSL libcrypto (see config.log for 
details) ***

Here are the last 8 lines from config.log:
#define HAVE_INTTYPES_H 1
#define HAVE_UNISTD_H 1
#define GETPGRP_VOID 1
#define HAVE_LIBDL 1
#define HAVE_LIBPAM 1
#define HAVE_PAM_GETENVLIST 1
#define USE_PAM 1
configure: exit 1


This issue is reproducible with OpenSSL 0.9.6c and OpenSSH 3.2.3p1

This issue is important because system security updates are a lot more 
difficult if I have to keep track of statically linked binaries, which have to 
be updated every time a component from a different package is patched.

This issue is also a matter of concern as the "--with-zlib=/opt/zlib" option is 
correctly processed to use the dynamic library /opt/zlib/lib/libz.so.

Please let me know if you are able to fix this.

Thanks,

Adrian



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the openssh-unix-dev mailing list