https://wiki.openssl.org/index.php?action=history&feed=atom&title=API_Design_Considerations%3A_Initialization_Functions_HurtAPI Design Considerations: Initialization Functions Hurt - Revision history2026-04-10T10:15:32ZRevision history for this page on the wikiMediaWiki 1.35.13https://wiki.openssl.org/index.php?title=API_Design_Considerations:_Initialization_Functions_Hurt&diff=2346&oldid=prevNWilliams: Created page with "== Layered Software and OpenSSL == OpenSSL isn't just used by "applications", but also by libraries. A sufficiently complex application can have many libraries loaded that c..."2016-01-26T22:13:41Z<p>Created page with "== Layered Software and OpenSSL == OpenSSL isn't just used by "applications", but also by libraries. A sufficiently complex application can have many libraries loaded that c..."</p>
<p><b>New page</b></p><div>== Layered Software and OpenSSL ==<br />
<br />
OpenSSL isn't just used by "applications", but also<br />
by libraries. A sufficiently complex application can have many<br />
libraries loaded that call OpenSSL, and the main program may not know it.<br />
<br />
For example, libldap, libcurl, Kerberos implementations, and many other<br />
libraries might use OpenSSL. Then there's things like PAM, SASL, and<br />
GSS that are pluggable using dlopen() (or LoadLibrary(), ...) and whose<br />
plugins might use one of those libraries or even OpenSSL directly.<br />
<br />
Now, with the lock callbacks: who's responsible for setting them?<br />
<br />
Today, each call to set the lock callbacks changes them.<br />
<br />
Surprise: set lock callbacks, use locks, have these callbacks changed<br />
under your feet, explode.<br />
<br />
It's just not safe for libraries to set lock callbacks... unless all of<br />
them set the same lock callbaks, which... they wouldn't because the lock<br />
callback prototypes don't match, say, standard pthreads functions', thus<br />
each library would have its own callback functions, and who knows how<br />
they'll be coded. So libraries can't set them. Sure, libraries can<br />
check if they've been set and set them otherwise, but this is racy<br />
and fails in threaded applications (e.g., the JVM).<br />
<br />
If any threaded code uses OpenSSL prior to initializing callbacks -><br />
process explodes.<br />
<br />
Libraries can't initialize them. That leaves the application.<br />
<br />
=== Automatic Self-Initialization is the Solution ===<br />
<br />
The solution to the above problems is simple: the OpenSSL libcrypto and<br />
libssl libraries must self-initialize automatically.<br />
<br />
Note that relying on run-time linker-loader functionality for self-<br />
initialization (e.g., .init/.fini sections, DllMain()) is generally<br />
frowned upon. The correct way to automatically self-initialize is to<br />
use pthread_once() or InitOnceExecuteOnce(), or to construct a similar<br />
once initializer.<br />
<br />
Explicit initialization functions are OK, as long as they are optional<br />
(these may be useful for applications that will chroot, for example).<br />
<br />
Finalization should not be required and may not be possible.</div>NWilliams