Databases
StackOverflow2013
Postsdbo
POWhat does mean SSL_library_init is not reentrant for practical purposes?
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POWhat does mean SSL_library_init is not reentrant for practical purposes?
    primarykey
    data
    text
    <p>I'm using openssl library to open a TLS connexion to some server. Reading the library documentation (yes, some people still read documentations and man pages) I stumbled upon the sentence "SSL_libary_init() is not <a href="https://stackoverflow.com/questions/2799023/what-exactly-is-a-reentrant-function">reentrant</a>".</p> <p>I understand generally speaking what is a non reentrant function: ie some function that keeps an internal state in such a way that calling it twice at the same time or interrupting it while it executes may cause mayhem (the function not doing what callers are expecting).</p> <p>But in the specific case of SSL_library_init() I wonder what it actually means.</p> <ul> <li><p>does it mean that if some interrupt occurs while calling SSL_library_init() it won't correctly initialize SSL library ? Hence am I supposed to disable all accessible interrupts before calling it and reenable the needed ones aftwerward ?</p></li> <li><p>does it means that it's thread unsafe, and that I should ensure that two threads can't call it at the same time ? (looks likely, even if thread safety does not exactly means the same as reentrant).</p></li> <li><p>does it means I should'nt call it two times in the program lifetime, or that calling it while SSL connections are open it will wreak havoc ?</p></li> </ul> <p>AS I'm working on a proxy with one end being client and the other one being server, both ends could potentially be using TLS services, (but i could also be only one end, or none). Should I manage SSL library as a system wide singleton ? If this is the case it's easy enough to manage but it is not exactly a reentracy issue as I understand the word. </p> <p>I do not know the short word for a function that should only be called once...</p> <p>I also have a similar question for SSL_CTX_new(). The documentation states it should only be called once per program lifetime. This is annoying as it seems to restrict both server and client (or several independant server or client instances running in the same process) to use the same SSL_METHOD and it does not feel right, but I still hope in this case it's merely some documentation inaccuracy.</p> <p>Does anyone have enough experience with openSSL to explain what I should or should not do with OpenSSL initialisations code to stay on the safe side ?</p>
    singulars
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PTQuestion
    1. USCommunity
    1. USkriss
    plurals
    1. PL
      singulars
      1. LTLinked
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. VO
      singulars
      1. POWhat does mean SSL_library_init is not reentrant for practical purposes?
      1. This table or related slice is empty.
      1. VTUpMod
    1. COI don't know SSL, so don't hold me for what I'm saying next, but most commonly when they say "this function is not re-entrant", they say so because they access some global variable. Since it's an _init_ function, it makes sense to just call it once in `main` and be done with it (so you wouldn't care about thread-safety or re-entrant-ness!). `SSL_CTX_new` also sounds like it initializes global variables, so calling it multiple times doesn't achieve anything (except memory leak perhaps). Again, I don't know SSL, so these are all just guesses.
      singulars
      1. POWhat does mean SSL_library_init is not reentrant for practical purposes?
      1. USShahbaz
    2. CO@Shahbaz: yes, you are probably right. Not much to do with reentrancy but it's probably what it means. The second one is is more annoying if it's actually gloabl, because it sets some dispatch table (but I still hope it won't really be global: if it where why should it allocate memory ?
      singulars
      1. POWhat does mean SSL_library_init is not reentrant for practical purposes?
      1. USkriss
    3. COagain, I have no idea what SSL is, but looking at the documentation of [SSL_CTX_new](http://www.openssl.org/docs/ssl/SSL_CTX_new.html), I don't see any mention of "having to be called only once per program lifetime". Where did you see that?
      singulars
      1. POWhat does mean SSL_library_init is not reentrant for practical purposes?
      1. USShahbaz
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload