Opened 12 years ago

Closed 11 years ago

#616 closed enhancement (fixed)

IZ2845: Need to be able to dynamically link to openssl

Reported by: opoplawski Owned by:
Priority: normal Milestone:
Component: sge Version: 6.2u1
Severity: minor Keywords: build


[Imported from gridengine issuezilla]

        Issue #:      2845             Platform:     All           Reporter: opoplawski (opoplawski)
       Component:     gridengine          OS:        All
     Subcomponent:    build            Version:      6.2u1            CC:    None defined
        Status:       NEW              Priority:     P3
      Resolution:                     Issue type:    ENHANCEMENT
                                   Target milestone: ---
      Assigned to:    andreas (andreas)
      QA Contact:     andreas
       * Summary:     Need to be able to dynamically link to openssl
   Status whiteboard:

     Issue 2845 blocks:
   Votes for issue 2845:

   Opened: Thu Dec 18 15:44:00 -0700 2008 

Currently the build expects to link statically (at least some components) to
libssl.a and libcrypto.a.  To build for Fedora, I need to link dynamically.  I
currently use:

--- gridengine/source/aimk.ssl  2008-05-22 15:16:17.000000000 -0600
+++ gridengine/source/aimk      2008-05-22 15:18:06.000000000 -0600
@@ -337,7 +337,7 @@
 set SEC               = 1
 set SECFLAGS          = "-DSECURE -I$OPENSSL_HOME/include"
 set SECLIB            = ""
-set SECLIBS_STATIC    = "$OPENSSL_HOME/lib/libssl.a $OPENSSL_HOME/lib/libcrypto.a"
+set SECLIBS_STATIC    = "-lssl"
 set KLFLAGS           = "-L$OPENSSL_HOME/lib"

 set CORELIB           = ""

But it would be nice if I could specify this as a build option.

   ------- Additional comments from andreas Fri Dec 19 05:23:17 -0700 2008 -------
Adding this as build option should be possible. Reason for static linking is to
prevent someone foist invalid openssl libraries via LD_LIBRARY_PATH.
Have you thought about this?

   ------- Additional comments from opoplawski Fri Dec 19 08:27:35 -0700 2008 -------
Static linking in not scalable in the event of a security update to the openssl
libs.  Is there any distribution out there that statically links to openssl for
all of its applications?

Change History (1)

comment:1 Changed 11 years ago by dlove

  • Resolution set to fixed
  • Severity set to minor
  • Status changed from new to closed

Fixed by [3548]

Note: See TracTickets for help on using tickets.