[openssl-users] Initialising OpenSSL more than once - how do we handle this?

Jakob Bohm jb-openssl at wisemo.com
Tue Jul 31 16:27:10 UTC 2018

On 31/07/2018 01:10, Jordan Brown wrote:
> On 7/30/2018 12:27 PM, Viktor Dukhovni wrote:
>> The only time such "leaks" come into play is process exit and library 
>> unload.
> Process exit is not the only time that libraries get unloaded.  I 
> don't happen to remember any details, but I know we've had problems 
> with libraries that got unloaded because they were dependencies of 
> other shared objects that are intended to be used on a "load, call, 
> unload" basis.
And *this* is the reason why having a common library like OpenSSL
or libc refuse to get unloaded on the fly is such a horrible idea.
I still recall the problems when (decades ago) Borland added such
anti-unload code to some of their compiler-bundled libraries.

There are processes that naturally run for a lot longer than the
library-format plugins inside them, and it is highly valuable to
end users to be able to upgrade those plugins on the fly without
restarting the long-lived container, with all the other state it


Jakob Bohm, CIO, Partner, WiseMo A/S.  https://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark.  Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded

More information about the openssl-users mailing list