openssl_init in multithreaded programs

Russ Allbery eagle at
Thu Jun 11 21:08:46 EDT 2015

Greg Hudson <ghudson at> writes:

> It's also worth noting that we never tear down OpenSSL (because we have
> no way of knowing whether the application or another library is still
> using it), so all of the heap memory it allocates could get lost if the
> PKINIT module and OpenSSL library are unloaded.  This shouldn't happen
> with 1.13 on platforms with RTLD_NODELETE.

Oh, even for PAM modules where the PAM module and libkrb5 are all
unloaded?  That's great news!

Russ Allbery (eagle at              <>

More information about the krbdev mailing list