Details
-
Bug
-
Status: Open
-
Major
-
Resolution: Unresolved
-
0.9, 0.10.0, 0.11.0, 0.12.0, 0.13.0
-
None
-
None
Description
OpenSSL can generally be used safely in multi-threaded applications provided that at least two callback functions are set, the locking_function and threadid_func. This applies to OpenSSL version 1.0.2 and earlier.
However, the thrift server has not set the threadid_func for OpenSSL version 1.0.X. So, with OpenSSL 1.0.X, multi-threaded clients fail to connect to the Thrift server, when connections are attempted simultaneously, especially with FIPS mode ON.
This needs to be corrected by bumping up the OpenSSL version Check to include 1.0.X in the TSSLSocket class.