diff options
author | Krists Krilovs <krists.krilovs@gmail.com> | 2019-07-08 13:43:09 -0700 |
---|---|---|
committer | Shane Lontis <shane.lontis@oracle.com> | 2019-07-15 11:55:46 +1000 |
commit | 69ae4153af5a6e62369611b694748c846a461d02 (patch) | |
tree | 2b6eaa3e07fa6a56d152eafcdf56926c2b07b595 | |
parent | 04151456b9d896a7825a5ac77c0310c97fa5f650 (diff) |
Fix wrong lock claimed in x509 dir lookup.
x509 store's objects cache can get corrupted when using dir lookup
method in multithreaded application. Claim x509 store's lock when
accessing objects cache.
CLA: trivial
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/9326)
-rw-r--r-- | crypto/x509/by_dir.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/crypto/x509/by_dir.c b/crypto/x509/by_dir.c index 4fa1dd37b9..c3ab3621d1 100644 --- a/crypto/x509/by_dir.c +++ b/crypto/x509/by_dir.c @@ -322,13 +322,13 @@ static int get_cert_by_subject(X509_LOOKUP *xl, X509_LOOKUP_TYPE type, /* * we have added it to the cache so now pull it out again */ - CRYPTO_THREAD_write_lock(ctx->lock); + X509_STORE_lock(xl->store_ctx); j = sk_X509_OBJECT_find(xl->store_ctx->objs, &stmp); if (j != -1) tmp = sk_X509_OBJECT_value(xl->store_ctx->objs, j); else tmp = NULL; - CRYPTO_THREAD_unlock(ctx->lock); + X509_STORE_unlock(xl->store_ctx); /* If a CRL, update the last file suffix added for this */ |