Python OpenSSL C 扩展 : undefined symbol: AES_set_encrypt_key

Question

我正在尝试写入 Python 的 OpenSSL C 扩展。共享库(*.so 文件)已生成，但在导入模块时遇到 undefined symbol 错误。它抛出以下错误( undefined symbol :AES_set_encrypt_key):

>>> import openssl_python
Traceback (most recent call last):
  File "<stdin>", line 1, in <module>
ImportError: /home/rohith/python_c_extension/aes/openssl_python.cpython-35m-x86_64-linux-gnu.so: undefined symbol: AES_set_encrypt_key

以下是我的源代码

setup.py

from distutils.core import setup, Extension

openssl_module = Extension('openssl_python',
                       sources = ['openssl_python.c'])

setup(name = 'openssl',
      version = '1.0',
      description = 'Python Package with OpenSSL C Extension',
      ext_modules = [openssl_module])

openssl_python.c

#include <Python.h>
#include <stdio.h>
#include <openssl/des.h>
#include <openssl/aes.h>

static PyObject* openssl_module_aes_encrypt(PyObject *self, PyObject *args){
    char* sn;
    if (!PyArg_ParseTuple(args, "s", &sn))
        return NULL;

    AES_KEY       key;
    unsigned char ivec[AES_BLOCK_SIZE];

    unsigned char outBuf[16];

    memcpy(ivec, sqlcFirmwareIvec, sizeof(sqlcFirmwareIvec));

    AES_set_encrypt_key(sqlcFirmwareKey,
                            sizeof(sqlcFirmwareKey) * 8,
                            &key);
    int dataLen = 16;
    int requiredLen = (dataLen / AES_BLOCK_SIZE) * AES_BLOCK_SIZE;

    if (dataLen % AES_BLOCK_SIZE) {
        requiredLen += AES_BLOCK_SIZE;
    }

    AES_cbc_encrypt(sn, outBuf, requiredLen, &key, ivec, AES_ENCRYPT);

    return 1;
}

static PyMethodDef openssl_module_methods[] = { //Can add more functions here
    {   
        "aes_encrypt",
        openssl_module_aes_encrypt,
        METH_VARARGS,
        "Method to encrypt data using Openssl's AES algorithm"
    },  
    {NULL, NULL, 0, NULL}
};

static struct PyModuleDef openssl_module_definition = { 
    PyModuleDef_HEAD_INIT,
    "hello_module",
    "A Python module that prints 'hello world' from C code.",
    -1, 
    openssl_module_methods
};

PyMODINIT_FUNC PyInit_openssl_python(void)
{
    Py_Initialize();
    return PyModule_Create(&openssl_module_definition);
}

我使用 CFLAGS="-lcrypto"python3 ./setup.py build_ext --inplace 编译它

谁能帮我解决这个错误吗？

谢谢。我不是故意显示 key 和 Ivec 的值。

编辑:

运行命令:python3 setup.py clean, CFLAGS="-Wl,-z,defs -lcrypto"python3 setup.py build_ext --inplace

这是输出

running build_ext
building 'openssl_python' extension
creating build
creating build/temp.linux-x86_64-3.5
x86_64-linux-gnu-gcc -pthread -DNDEBUG -g -fwrapv -O2 -Wall -Wstrict-prototypes -Wl,-z,defs -lcrypto -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -I/usr/include/python3.5m -c openssl_python.c -o build/temp.linux-x86_64-3.5/openssl_python.o
openssl_python.c: In function ‘openssl_module_aes_encrypt’:
openssl_python.c:49:21: warning: pointer targets in passing argument 1 of ‘AES_cbc_encrypt’ differ in signedness [-Wpointer-sign]
     AES_cbc_encrypt(sn,
                     ^
In file included from openssl_python.c:4:0:
/usr/include/openssl/aes.h:107:6: note: expected ‘const unsigned char *’ but argument is of type ‘char *’
 void AES_cbc_encrypt(const unsigned char *in, unsigned char *out,
      ^
openssl_python.c:61:12: warning: return makes pointer from integer without a cast [-Wint-conversion]
     return 1;
            ^
openssl_python.c:20:23: warning: unused variable ‘sqlcFirmwarePadding’ [-Wunused-variable]
  static unsigned char sqlcFirmwarePadding[] = {
                       ^
x86_64-linux-gnu-gcc -pthread -shared -Wl,-O1 -Wl,-Bsymbolic-functions -Wl,-Bsymbolic-functions -Wl,-z,relro -Wl,-Bsymbolic-functions -Wl,-z,relro -Wl,-z,defs -lcrypto -Wdate-time -D_FORTIFY_SOURCE=2 build/temp.linux-x86_64-3.5/openssl_python.o -o /home/rohith/python_c_extension/aes/openssl_python.cpython-35m-x86_64-linux-gnu.so
build/temp.linux-x86_64-3.5/openssl_python.o: In function `openssl_module_aes_encrypt':
/home/rohith/python_c_extension/aes/openssl_python.c:27: undefined reference to `PyArg_ParseTuple'
/home/rohith/python_c_extension/aes/openssl_python.c:37: undefined reference to `AES_set_encrypt_key'
/home/rohith/python_c_extension/aes/openssl_python.c:49: undefined reference to `AES_cbc_encrypt'
build/temp.linux-x86_64-3.5/openssl_python.o: In function `PyInit_openssl_python':
/home/rohith/python_c_extension/aes/openssl_python.c:84: undefined reference to `Py_Initialize'
/home/rohith/python_c_extension/aes/openssl_python.c:86: undefined reference to `PyModule_Create2'
collect2: error: ld returned 1 exit status
error: command 'x86_64-linux-gnu-gcc' failed with exit status 1

Answer 1

这里的基本问题是，当 setup.py 链接您的扩展时，它会将 -lcrypto 放在命令行之前对象文件上你的代码在里面。 Unix 链接器在命令行上严格从左到右处理对象和库:-lcrypto foo.o 不会使用 libcrypto 来解析 foo.o 中的符号。这是出于历史原因，不再有意义，但我们坚持这样做，因为它会破坏太多的 Makefile 来更改它。另外，由于历史原因，不再有很大的意义，如果你不在命令行上放置 -Wl,-z,defs ，共享库(编译代码 Python 扩展在技术上是共享库)中包含 undefined symbol 不是链接时错误，这就是构建似乎有效的原因。

您的扩展本质上需要 libcrypto。如果我正确阅读 Distutils 文档，这意味着您应该在 Extension(...) 的 libraries= 关键字参数中指定它，而不是将其放在 CFLAGS 中。像这样:

openssl_module = Extension('openssl_python',
                       sources = ['openssl_python.c'],
                       libraries = ['crypto'])