aaad33c5ac
We move ssl_err.c out of libssl and into libcrypto. This file is entirely self contained and is used to load error strings into the libcrypto error tables. By moving this file into libcrypto, libssl can be unloaded safely without having dangling references to this error information. Fixes #26672 Reviewed-by: Neil Horman <nhorman@openssl.org> Reviewed-by: Saša Nedvědický <sashan@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org> (Merged from https://github.com/openssl/openssl/pull/26931)
77 lines
2.3 KiB
C
77 lines
2.3 KiB
C
/*
|
|
* Copyright 2016-2024 The OpenSSL Project Authors. All Rights Reserved.
|
|
*
|
|
* Licensed under the Apache License 2.0 (the "License"). You may not use
|
|
* this file except in compliance with the License. You can obtain a copy
|
|
* in the file LICENSE in the source distribution or at
|
|
* https://www.openssl.org/source/license.html
|
|
*/
|
|
|
|
#include "internal/e_os.h"
|
|
|
|
#include "internal/err.h"
|
|
#include <openssl/crypto.h>
|
|
#include <openssl/evp.h>
|
|
#include <openssl/trace.h>
|
|
#include "ssl_local.h"
|
|
#include "internal/thread_once.h"
|
|
#include "internal/rio_notifier.h" /* for ossl_wsa_cleanup() */
|
|
|
|
static int stopped;
|
|
|
|
static CRYPTO_ONCE ssl_base = CRYPTO_ONCE_STATIC_INIT;
|
|
static int ssl_base_inited = 0;
|
|
DEFINE_RUN_ONCE_STATIC(ossl_init_ssl_base)
|
|
{
|
|
#ifndef OPENSSL_NO_COMP
|
|
OSSL_TRACE(INIT, "ossl_init_ssl_base: "
|
|
"SSL_COMP_get_compression_methods()\n");
|
|
/*
|
|
* This will initialise the built-in compression algorithms. The value
|
|
* returned is a STACK_OF(SSL_COMP), but that can be discarded safely
|
|
*/
|
|
SSL_COMP_get_compression_methods();
|
|
#endif
|
|
ssl_sort_cipher_list();
|
|
OSSL_TRACE(INIT, "ossl_init_ssl_base: SSL_add_ssl_module()\n");
|
|
ssl_base_inited = 1;
|
|
return 1;
|
|
}
|
|
|
|
/*
|
|
* If this function is called with a non NULL settings value then it must be
|
|
* called prior to any threads making calls to any OpenSSL functions,
|
|
* i.e. passing a non-null settings value is assumed to be single-threaded.
|
|
*/
|
|
int OPENSSL_init_ssl(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings)
|
|
{
|
|
static int stoperrset = 0;
|
|
|
|
if (stopped) {
|
|
if (!stoperrset) {
|
|
/*
|
|
* We only ever set this once to avoid getting into an infinite
|
|
* loop where the error system keeps trying to init and fails so
|
|
* sets an error etc
|
|
*/
|
|
stoperrset = 1;
|
|
ERR_raise(ERR_LIB_SSL, ERR_R_INIT_FAIL);
|
|
}
|
|
return 0;
|
|
}
|
|
|
|
opts |= OPENSSL_INIT_ADD_ALL_CIPHERS
|
|
| OPENSSL_INIT_ADD_ALL_DIGESTS;
|
|
#ifndef OPENSSL_NO_AUTOLOAD_CONFIG
|
|
if ((opts & OPENSSL_INIT_NO_LOAD_CONFIG) == 0)
|
|
opts |= OPENSSL_INIT_LOAD_CONFIG;
|
|
#endif
|
|
|
|
if (!OPENSSL_init_crypto(opts, settings))
|
|
return 0;
|
|
|
|
if (!RUN_ONCE(&ssl_base, ossl_init_ssl_base))
|
|
return 0;
|
|
|
|
return 1;
|
|
}
|