[openssl-users] OpenSSL and RPATH's (was: Cannot find SSL_CTX_get0_param in libssl library)

Jakob Bohm jb-openssl at wisemo.com
Tue May 30 15:58:14 UTC 2017

On 29/05/2017 16:39, Wouter Verhelst wrote:
> ...
> The only reason why you would ever want to use RPATH with OpenSSL is
> because you need to install a particular old version of libssl (or
> libcrypto) that has the same SONAME as the system-default, but where you
> don't want to use that system-default one -- but why would you want to
> do that? Security updates are a good thing, usually.
There is another, converse case: If the system comes with a (patched)
old version of the OpenSSL libraries (for example, Debian 7 comes with
a patched OpenSSL 1.0.1 that ensures 100% compatibility with programs
compiled against version 1.0.1t headers), then you may also need a
special SO name or RPATH to link locally compiled software against the
latest 1.0.x release, rather than 1.0.1 .

> RPATH support is nice for corner cases, but it should not be the
> default, ever.


Jakob Bohm, CIO, Partner, WiseMo A/S.  https://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark.  Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded

More information about the openssl-users mailing list