[openssl] openssl-3.0 update

Dr. Paul Dale pauli at openssl.org
Sun Nov 7 22:59:25 UTC 2021


The branch openssl-3.0 has been updated
       via  ed1a12aa5e2b5f312d0f75c90f5d91eafe0e1a89 (commit)
      from  2d35559743d2d73a0ffa82c02bbdc3b4d3b3cbf6 (commit)


- Log -----------------------------------------------------------------
commit ed1a12aa5e2b5f312d0f75c90f5d91eafe0e1a89
Author: Pauli <pauli at openssl.org>
Date:   Fri Nov 5 13:10:10 2021 +1000

    Fix data race setting `default_DSO_meth`
    
    The global variable `default_DSO_meth` was potentially set multiple times by
    different threads.  It turns out that it could only be set to a single value
    so the race is harmless but still better avoided.  The fix here simply removes
    the global and accesses the value it was set to via the `DSO_METHOD_openssl()`
    call.
    
    Problem discovered via #16970, but this does not resolve that issue because
    there are other concerns.
    
    Reviewed-by: Tomas Mraz <tomas at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/16972)
    
    (cherry picked from commit e6a10b074e90f1ce3d8e9ae0ca740a835ff29bb9)

-----------------------------------------------------------------------

Summary of changes:
 crypto/dso/dso_lib.c | 22 +++++-----------------
 1 file changed, 5 insertions(+), 17 deletions(-)

diff --git a/crypto/dso/dso_lib.c b/crypto/dso/dso_lib.c
index 4850e96a4b..e093b77a27 100644
--- a/crypto/dso/dso_lib.c
+++ b/crypto/dso/dso_lib.c
@@ -10,20 +10,10 @@
 #include "dso_local.h"
 #include "internal/refcount.h"
 
-static DSO_METHOD *default_DSO_meth = NULL;
-
 static DSO *DSO_new_method(DSO_METHOD *meth)
 {
     DSO *ret;
 
-    if (default_DSO_meth == NULL) {
-        /*
-         * We default to DSO_METH_openssl() which in turn defaults to
-         * stealing the "best available" method. Will fallback to
-         * DSO_METH_null() in the worst case.
-         */
-        default_DSO_meth = DSO_METHOD_openssl();
-    }
     ret = OPENSSL_zalloc(sizeof(*ret));
     if (ret == NULL) {
         ERR_raise(ERR_LIB_DSO, ERR_R_MALLOC_FAILURE);
@@ -36,7 +26,7 @@ static DSO *DSO_new_method(DSO_METHOD *meth)
         OPENSSL_free(ret);
         return NULL;
     }
-    ret->meth = default_DSO_meth;
+    ret->meth = DSO_METHOD_openssl();
     ret->references = 1;
     ret->lock = CRYPTO_THREAD_lock_new();
     if (ret->lock == NULL) {
@@ -309,9 +299,8 @@ char *DSO_convert_filename(DSO *dso, const char *filename)
 
 int DSO_pathbyaddr(void *addr, char *path, int sz)
 {
-    DSO_METHOD *meth = default_DSO_meth;
-    if (meth == NULL)
-        meth = DSO_METHOD_openssl();
+    DSO_METHOD *meth = DSO_METHOD_openssl();
+
     if (meth->pathbyaddr == NULL) {
         ERR_raise(ERR_LIB_DSO, DSO_R_UNSUPPORTED);
         return -1;
@@ -339,9 +328,8 @@ DSO *DSO_dsobyaddr(void *addr, int flags)
 
 void *DSO_global_lookup(const char *name)
 {
-    DSO_METHOD *meth = default_DSO_meth;
-    if (meth == NULL)
-        meth = DSO_METHOD_openssl();
+    DSO_METHOD *meth = DSO_METHOD_openssl();
+
     if (meth->globallookup == NULL) {
         ERR_raise(ERR_LIB_DSO, DSO_R_UNSUPPORTED);
         return NULL;


More information about the openssl-commits mailing list