From ee4c90c63b9af1255958f3cb2b8fa2b2ae5c62c5 Mon Sep 17 00:00:00 2001 From: Daniel-Constantin Mierla Date: Thu, 4 Jul 2024 16:09:22 +0200 Subject: [PATCH] cookbooks/5.8.x/core: docs for tls_threads_mode --- docs/cookbooks/5.8.x/core.md | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) diff --git a/docs/cookbooks/5.8.x/core.md b/docs/cookbooks/5.8.x/core.md index c33e9397..afcf3fc6 100644 --- a/docs/cookbooks/5.8.x/core.md +++ b/docs/cookbooks/5.8.x/core.md @@ -3759,6 +3759,27 @@ Example of usage: tls_max_connections=4096 ``` +### tls_threads_mode + +Control how to initialize the internal multi-threading system that impacts +libssl 3.x. + +Values: + + - `0` - no thread-specific initialization/execution (default) + - `1` - for each function that might initialize OpenSSL, run it in a temporary + thread; this leaves the thread-local variables in rank 0, main thread at their + default value of 0x0 + - `2` - use at-fork handler to set thread-local variables to 0x0; the + implementation will set thread-local keys from 0-15 to have value 0x0. + +``` +tls_threads_mode = 2 +``` + +With libssl v3.x, the recommended value for production is `2`. For +development/troubleshooting, value `1` can be used. + ## SCTP Parameters ### disable_sctp