Don't hold a lock when calling a callback in ossl_namemap_doall_names

We don't want to hold a read lock when calling a user supplied callback. That callback could do anything so the risk of a deadlock is high. Instead we collect all the names first inside the read lock, and then subsequently call the user callback outside the read lock. Fixes #14225 Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14250)
author: Matt Caswell <matt@openssl.org> 2021-02-19 17:03:43 +0000
committer: Pauli <ppzgs1@gmail.com> 2021-02-25 08:37:22 +1000
commit: d84f5515faf3fe00ed5eeca7e7b8b041be863e90 (patch)
tree: b2e8245e0a152f16b5bb2c5260e47781a6261c9d /crypto/evp/mac_lib.c
parent: 6be27456e1346121b1fed797e92353733b59e16e (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/crypto/evp/mac_lib.c b/crypto/evp/mac_lib.c
index c5c12598d3..de4d3623ff 100644
--- a/crypto/evp/mac_lib.c
+++ b/crypto/evp/mac_lib.c
@@ -174,10 +174,12 @@ int EVP_MAC_is_a(const EVP_MAC *mac, const char *name)
     return evp_is_a(mac->prov, mac->name_id, NULL, name);
 }
 
-void EVP_MAC_names_do_all(const EVP_MAC *mac,
-                          void (*fn)(const char *name, void *data),
-                          void *data)
+int EVP_MAC_names_do_all(const EVP_MAC *mac,
+                         void (*fn)(const char *name, void *data),
+                         void *data)
 {
     if (mac->prov != NULL)
-        evp_names_do_all(mac->prov, mac->name_id, fn, data);
+        return evp_names_do_all(mac->prov, mac->name_id, fn, data);
+
+    return 1;
 }
author	Matt Caswell <matt@openssl.org>	2021-02-19 17:03:43 +0000
committer	Pauli <ppzgs1@gmail.com>	2021-02-25 08:37:22 +1000
commit	d84f5515faf3fe00ed5eeca7e7b8b041be863e90 (patch)
tree	b2e8245e0a152f16b5bb2c5260e47781a6261c9d /crypto/evp/mac_lib.c
parent	6be27456e1346121b1fed797e92353733b59e16e (diff)