将Android应用更新到最新版本的OpenSSL [英] Update Android app to latest version of OpenSSL

问题描述

今天早晨，我从Google开发人员控制台收到一封邮件，该邮件使用的是OpenSSL版本，该版本对安全漏洞开放.

This morning i got a Mail from google's developer console that i'm using a version of OpenSSL that is open to security vulnerabilities.

实际上，我只是在维护代码，而没有开发它.但是，我应该解决此问题.

Actually I'm just maintaining the code and i haven't developer it rather. However, I am supposed to fix this issue.

我想知道如何将打开的SSL更新为我的Android应用程序中受支持的最新版本.

尝试了很多搜索，但是还没有在Android应用程序中进行搜索.

Tried searching a lot, but have not how to do so in an Android application.

这将是今天早上收到同一封邮件的所有开发人员的解决方案.

This would be a solution for all the developers who got the same Mail this morning.

谢谢.

推荐答案

我想知道如何在我的Android应用程序中将开放SSL更新到最新的受支持版本.

I would like to know how to update open SSL to the latest supported version in my Android application.

1. 从 OpenSSL:来源，Tarballs
下载OpenSSL 1.0.2a
2. Android
3. 重建您的应用程序，链接到交叉编译的库

1. Download OpenSSL 1.0.2a from OpenSSL: Source, Tarballs
2. Cross-compile OpenSSL for Android
3. Rebuild your app, linking against the cross-compiled library

注意 :您的共享库必须对OpenSSL使用静态链接(libssl.a和libcrypto.a).您不能将共享对象与OpenSSL共享对象链接.如果您链接到1.0.2共享对象，则Android的Zygote(所有进程的父级)将加载其下级版本，而您的1.0.2版本将永远不会加载.

Note: your shared object must use static linking against OpenSSL (libssl.a and libcrypto.a). You cannot link your shared object against the OpenSSL shared objects. If you link against 1.0.2 shared objects, then Android's Zygote (the parent of all processes), will load its down-level version and your 1.0.2 version will never load.

这篇关于将Android应用更新到最新版本的OpenSSL的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！