[openssl-dev] [openssl.org #4614] pthread_once and malloc failures
Viktor Dukhovni via RT
rt at openssl.org
Tue Jul 19 17:26:02 UTC 2016
> On Jul 19, 2016, at 5:26 PM, Matt Caswell via RT <rt at openssl.org> wrote:
>
>> Most of all, we use CRYPTO_THREAD_run_once() internally to initiate the first
>> locks, so pretty much in an initial state of the library (not entirely true,
>> since we do these inits opportunistically, but it's probable that they happen
>> very early on). If they are having memory allocation, the running app is
>> probably in deep shit anyway, so a hard assert in our diverse inits would
>> probably be appropriate either way.
>
> You are assuming that the application loads and inits OpenSSL early and
> that it is critical to its function. It may not be.
Postfix expects to be able to continue "degraded" operation without TLS,
when TLS initialization fails. Asserts are not acceptable. They would
cause Postfix to look for a different SSL library.
When initialization fails, all subsequent calls can return errors, but
assert is not an option.
--
Viktor.
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4614
Please log in as guest with password guest if prompted
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1963 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20160719/65017cbc/attachment.bin>
More information about the openssl-dev
mailing list