On Fri, Aug 31, 2007 at 04:26:07AM -0500, Prabhu S wrote:
> Hi,
>
> I am seeing a similar case as addressed in this mail.
> Here is the extract of the message I posted earlier:
>
> The client application spawns one thread for each connection with the
> server. Each thread is having its own SSL_CTX* object.
> When 100 connections are to be made, once the SSL library in initialised -
> SSL_library_init().And 100 threads are created and each connect with server
> with their own SSL_CTX* object. All object will be using the same set of
> certificates from one common location. However I see that almost every time
> some threads report SSL_CTX_use_certificate_chain_file() returning zero.
>
Are you running out of file descriptors? Does your system's stdio
implementation (under the covers OpenSSL uses stdio to access the pem
file) have a file descriptor limit that is lower than the per-process
limit?
It is quite possible that threads are consuming either all available
descriptors, or all low-numbered descriptors, which starves out stdio.
If the latter, use fcntl(F_DUPFD) to move the connected sockets to a
minimum fd that leaves some room for ephemeral use of stdio.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
