来自Google Play的OpenSSL安全警报邮件，用于安卓应用 [英] OpenSSL Security Alert Mail from Google Play for android apps

问题描述

我正在AndEngine和Cocos2dx中开发android应用程序。

我今天收到一封来自Google Play的邮件，内容如下：一个或多个应用程序运行的是过时的OpenSSL版本，您需要尽快更新OpenSSL ...

我下载了一个名为bluebox testing（HeartBleed Scanner）的应用程序。

我发现的是，应用程序的构建使用cocos2dx是使用openSSL的应用程序，而使用AndEngine构建的应用程序不在使用心跳扫描器生成的列表中。

是否有任何人知道这个问题以及如何解决它？

I am developing android apps in AndEngine and Cocos2dx.
I have received a mail today from Google Play, that says: "One or more of your apps is running an outdated version of OpenSSL, which has multiple security vulnerabilities. You should update OpenSSL as soon as possible. ..."
I download an app called bluebox testing(HeartBleed Scanner).
What i found was, apps build using cocos2dx were the apps with openSSL while apps build using AndEngine were not in the list generated by heartbleed scanner.
Is there anyone who knows the issue exactly and how to solve it?

推荐答案

现在我找到了一个解决方案。在cocos2dx中创建的应用程序在Android.mk中有这一行

$（调用import-module，extensions）

我刚刚删除了该行并删除了这些错误。

清洁构建我的应用程序并再次运行它。

令人惊讶地从HeartBleed Scanner生成的开放SSL列表中删除它。
我希望它适用于使用cocos2dx的人。

Right now i have found one solution. The apps build in cocos2dx have this line in Android.mk
$(call import-module,extensions)
I just removed that line and removed the errors.
Clean build my app and run it again.
It was surprisingly removed from open SSL list generated by HeartBleed Scanner. I hope it works for the guys using cocos2dx.

这篇关于来自Google Play的OpenSSL安全警报邮件，用于安卓应用的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！