AnsweredAssumed Answered

Google play rejects android app - OpenSSL

Question asked by oabutbul on Aug 14, 2016
Latest reply on Aug 16, 2016 by cpalau

Google has been rejected our android Remote Expert app  "for violating our Malicious Behavior or User Data policy"


OpenSSL

The vulnerabilities were addressed in OpenSSL 1.02f/1.01r. To confirm your OpenSSL version, you can do a grep search for:

 

It seems there is old version in "libjingle_peerconnection_so.so"

 

please advice ??

 

Thanks,

Orel

 

unzip -p YourApp.apk | strings | grep "OpenSSL"

 

OpenSSLAdapter::OnCloseEvent(

OpenSSLAdapter::Error(

OpenSSLAdapter::OnConnectEvent

Failed to create OpenSSLCertificate from PEM string.

%s(%d): OpenSSL internal error, assertion failed: %s OpenSSL 1.0.1h 06 Jun 2014 OpenSSL CMAC method OpenSSL PKCS#3 DH method OpenSSL DH Method OpenSSL DSA method OpenSSL EC algorithm OpenSSL ECDH method OpenSSL ECDSA method OpenSSL HMAC method You need to read the OpenSSL FAQ, http://www.openssl.org/support/faq.html

OpenSSL RSA method

OpenSSL default user interface

OpenSSLStreamAdapter::Error(

OpenSSLStreamAdapter::OnEvent SE_OPEN

OpenSSLStreamAdapter::OnEvent

OpenSSLStreamAdapter::OnEvent(SE_CLOSE,

OpenSSLStreamAdapter::Read(

OpenSSLStreamAdapter::Write(

Outcomes