Android OpenSSL应用拒绝问题
在研究了这么多之后,我仍然无法确定我的应用程序中有哪些部分使用的是OpenSSL,而这是谷歌不接受的 查询以下命令后,我收到的输出为:Android OpenSSL应用拒绝问题,android,openssl,Android,Openssl,在研究了这么多之后,我仍然无法确定我的应用程序中有哪些部分使用的是OpenSSL,而这是谷歌不接受的 查询以下命令后,我收到的输出为: 解压-p MyApp.apk | strings | grep“OpenSSL” 由于我在项目中使用不同的library jar文件和library.so文件,我的问题是如何找出哪个库导致此问题?。我应该替换哪个库文件,以便我的应用不会再次被拒绝 非常感谢您的帮助。经过长时间的研究,我发现我在应用程序中使用的一个库是使用较旧的OpenSSL版本编译的。因此,我的
解压-p MyApp.apk | strings | grep“OpenSSL”非常感谢您的帮助。经过长时间的研究,我发现我在应用程序中使用的一个库是使用较旧的OpenSSL版本编译的。因此,我的解决方案是使用最新版本的OpenSSL重新编译库Jar 此外,6月期间,所有开发者均通过
GoogleHello Google Play Developer,
We wanted to let you know that your app(s) listed below statically link against a version of OpenSSL that has multiple security vulnerabilities for users. Please migrate your app(s) to an updated version of OpenSSL by 7/7/15. Starting on this date, Google Play will block publishing of any new apps and updates that use unsupported versions of OpenSSL.
REASON FOR WARNING: Violation of the dangerous products provision of the Content Policy and section 4.4 of the Developer Distribution Agreement.
The vulnerabilities were fixed in OpenSSL versions beginning with 1.0.1h, 1.0.0m, and 0.9.8za. To confirm your OpenSSL version, you can do a grep via:
$ unzip -p YourApp.apk | strings | grep "OpenSSL"
For more information about the vulnerability, please see this OpenSSL Security Advisory. To confirm you’ve upgraded correctly, submit the updated version of the app(s) to the Developer Console and check back after five hours.
Starting on 7/7/15, we will not accept app updates containing the vulnerabilities. Any new apps containing the vulnerabilities will be rejected.
While these issues may not affect every app that uses OpenSSL versions prior to 1.0.1h, 1.0.0m, or 0.9.8za, it’s best to stay up to date on all security patches. Make sure to update any libraries in your app that have known issues, even if you're not sure the issues are relevant to your app.
Before publishing applications, please ensure your apps’ compliance with the Developer Distribution Agreement and Content Policy.
If you feel we’ve sent this warning in error, please contact our appeals team through the App Developer help center.
Sincerely,
Google Play Team
希望这对你有所帮助。问候。经过长时间的研究,我发现我在应用程序中使用的一个库是使用较旧的OpenSSL版本编译的。因此,我的解决方案是使用最新版本的OpenSSL重新编译库Jar 此外,6月期间,所有开发者均通过
GoogleHello Google Play Developer,
We wanted to let you know that your app(s) listed below statically link against a version of OpenSSL that has multiple security vulnerabilities for users. Please migrate your app(s) to an updated version of OpenSSL by 7/7/15. Starting on this date, Google Play will block publishing of any new apps and updates that use unsupported versions of OpenSSL.
REASON FOR WARNING: Violation of the dangerous products provision of the Content Policy and section 4.4 of the Developer Distribution Agreement.
The vulnerabilities were fixed in OpenSSL versions beginning with 1.0.1h, 1.0.0m, and 0.9.8za. To confirm your OpenSSL version, you can do a grep via:
$ unzip -p YourApp.apk | strings | grep "OpenSSL"
For more information about the vulnerability, please see this OpenSSL Security Advisory. To confirm you’ve upgraded correctly, submit the updated version of the app(s) to the Developer Console and check back after five hours.
Starting on 7/7/15, we will not accept app updates containing the vulnerabilities. Any new apps containing the vulnerabilities will be rejected.
While these issues may not affect every app that uses OpenSSL versions prior to 1.0.1h, 1.0.0m, or 0.9.8za, it’s best to stay up to date on all security patches. Make sure to update any libraries in your app that have known issues, even if you're not sure the issues are relevant to your app.
Before publishing applications, please ensure your apps’ compliance with the Developer Distribution Agreement and Content Policy.
If you feel we’ve sent this warning in error, please contact our appeals team through the App Developer help center.
Sincerely,
Google Play Team
希望这对你有所帮助。问候。你找到解决方案了吗请帮我这里:你找到解决方案了吗请帮我这里: