Fix wrong lock claimed in x509 dir lookup.

x509 store's objects cache can get corrupted when using dir lookup method in multithreaded application. Claim x509 store's lock when accessing objects cache. CLA: trivial Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de> Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9326)
author: Krists Krilovs <krists.krilovs@gmail.com> 2019-07-08 13:43:09 -0700
committer: Shane Lontis <shane.lontis@oracle.com> 2019-07-15 11:55:46 +1000
commit: 69ae4153af5a6e62369611b694748c846a461d02 (patch)
tree: 2b6eaa3e07fa6a56d152eafcdf56926c2b07b595
parent: 04151456b9d896a7825a5ac77c0310c97fa5f650 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/crypto/x509/by_dir.c b/crypto/x509/by_dir.c
index 4fa1dd37b9..c3ab3621d1 100644
--- a/crypto/x509/by_dir.c
+++ b/crypto/x509/by_dir.c
@@ -322,13 +322,13 @@ static int get_cert_by_subject(X509_LOOKUP *xl, X509_LOOKUP_TYPE type,
         /*
          * we have added it to the cache so now pull it out again
          */
-        CRYPTO_THREAD_write_lock(ctx->lock);
+        X509_STORE_lock(xl->store_ctx);
         j = sk_X509_OBJECT_find(xl->store_ctx->objs, &stmp);
         if (j != -1)
             tmp = sk_X509_OBJECT_value(xl->store_ctx->objs, j);
         else
             tmp = NULL;
-        CRYPTO_THREAD_unlock(ctx->lock);
+        X509_STORE_unlock(xl->store_ctx);
 
         /* If a CRL, update the last file suffix added for this */
author	Krists Krilovs <krists.krilovs@gmail.com>	2019-07-08 13:43:09 -0700
committer	Shane Lontis <shane.lontis@oracle.com>	2019-07-15 11:55:46 +1000
commit	69ae4153af5a6e62369611b694748c846a461d02 (patch)
tree	2b6eaa3e07fa6a56d152eafcdf56926c2b07b595
parent	04151456b9d896a7825a5ac77c0310c97fa5f650 (diff)