[openssl-dev] About multi-thread unsafe for APIs defined in crypto/objects/obj_dat.c

[Salz, Rich]

  *   The current patch ( PR 5164 ) just changes "can be safely used" to "can generally be used safely". Without enough information for a user of the library to know whether a given usage is safe, this isn't useful documentation. When it comes to threading, "generally safe" is the same as "unsafe". There needs to be at least a little bit of guidance.

Pedantically and strictly speaking, you might be correct.  Pragmatically, however, many people have been able to write or deploy multi-threaded servers.

I doubt that anyone on the project will do anything approaching a definitive thread-safety analysis, let alone documentation.  Even with the “small number of API’s” that might be affected.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20180124/96bfb7dd/attachment.html>