[Interest] Qt Android with OpenSSL problems "OpenSSL vulnerabilities in your apps"

Nguyen Ngoc Thach Chau chaupad at gmail.com
Mon Oct 29 08:58:20 CET 2018

Dear supporters

I'm using Qt Android for mobile project.
When I upload APK file to Google Play Store, they always send me an alert
as below
I checked APK, it is return openSSL 1.0.2k but it is confusing then I want
to ask to make sure
I searched Google a lot and applied some solutions:
- Add library file to "android\libs\armeabi-v7a" folder
- Add library path to .pro file
android {

    contains(ANDROID_TARGET_ARCH,armeabi-v7a) {
            $$PWD/android/libs/armeabi-v7a/libcrypto.so \
    OTHER_FILES += \
#        android/build.gradle \
        libs/armeabi-v7a/libcrypto.so \
        libs/armeabi-v7a/libssl.so \


The question is:
When I'm checking output of build process
("...android-build\libs\armeabi-v7a" folder)
I always see old openSSL library file (libcrypto.so / libssl.so).
I also see that my library files are copied but they are replaced by old
library files (may be it is process of Qt)
=> How can I prevent Qt replace my library file in this cases ?
=> Is there any success case that use Qt to build Android game / app for Qt
recently ? ( before, I already uploaded successfully some apps, but from 2
months ago. I can not upload any more because of this problem)

- NDK: android-ndk-r17c
- Java: Java\jdk1.8.0_111
- Qt: 5.9.4 => I can upgrade this if needed
- SDK: Android SDK (build tool v25.0.3, android build sdk 28)
- target: min API 16, max API 26
- error details: https://support.google.com/faqs/answer/6376725
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.qt-project.org/pipermail/interest/attachments/20181029/b2bc8f35/attachment.html>

More information about the Interest mailing list