[thirdparty/openssl.git] / crypto / context.c

/*
 * Copyright 2019-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include "crypto/cryptlib.h"
#include <openssl/conf.h>
#include "internal/thread_once.h"
#include "internal/property.h"
#include "internal/core.h"
#include "internal/bio.h"
#include "internal/provider.h"
#include "crypto/decoder.h"
#include "crypto/context.h"

struct ossl_lib_ctx_st {
    CRYPTO_RWLOCK *lock, *rand_crngt_lock;
    OSSL_EX_DATA_GLOBAL global;

    void *property_string_data;
    void *evp_method_store;
    void *provider_store;
    void *namemap;
    void *property_defns;
    void *global_properties;
    void *drbg;
    void *drbg_nonce;
    CRYPTO_THREAD_LOCAL rcu_local_key;
#ifndef FIPS_MODULE
    void *provider_conf;
    void *bio_core;
    void *child_provider;
    OSSL_METHOD_STORE *decoder_store;
    void *decoder_cache;
    OSSL_METHOD_STORE *encoder_store;
    OSSL_METHOD_STORE *store_loader_store;
    void *self_test_cb;
#endif
#if defined(OPENSSL_THREADS)
    void *threads;
#endif
    void *rand_crngt;
#ifdef FIPS_MODULE
    void *thread_event_handler;
    void *fips_prov;
#endif

    unsigned int ischild:1;
};

int ossl_lib_ctx_write_lock(OSSL_LIB_CTX *ctx)
{
    return CRYPTO_THREAD_write_lock(ossl_lib_ctx_get_concrete(ctx)->lock);
}

int ossl_lib_ctx_read_lock(OSSL_LIB_CTX *ctx)
{
    return CRYPTO_THREAD_read_lock(ossl_lib_ctx_get_concrete(ctx)->lock);
}

int ossl_lib_ctx_unlock(OSSL_LIB_CTX *ctx)
{
    return CRYPTO_THREAD_unlock(ossl_lib_ctx_get_concrete(ctx)->lock);
}

int ossl_lib_ctx_is_child(OSSL_LIB_CTX *ctx)
{
    ctx = ossl_lib_ctx_get_concrete(ctx);

    if (ctx == NULL)
        return 0;
    return ctx->ischild;
}

static void context_deinit_objs(OSSL_LIB_CTX *ctx);

static int context_init(OSSL_LIB_CTX *ctx)
{
    int exdata_done = 0;

    if (!CRYPTO_THREAD_init_local(&ctx->rcu_local_key, NULL))
        return 0;

    ctx->lock = CRYPTO_THREAD_lock_new();
    if (ctx->lock == NULL)
        goto err;

    ctx->rand_crngt_lock = CRYPTO_THREAD_lock_new();
    if (ctx->rand_crngt_lock == NULL)
        goto err;

    /* Initialize ex_data. */
    if (!ossl_do_ex_data_init(ctx))
        goto err;
    exdata_done = 1;

    /* P2. We want evp_method_store to be cleaned up before the provider store */
    ctx->evp_method_store = ossl_method_store_new(ctx);
    if (ctx->evp_method_store == NULL)
        goto err;

#ifndef FIPS_MODULE
    /* P2. Must be freed before the provider store is freed */
    ctx->provider_conf = ossl_prov_conf_ctx_new(ctx);
    if (ctx->provider_conf == NULL)
        goto err;
#endif

    /* P2. */
    ctx->drbg = ossl_rand_ctx_new(ctx);
    if (ctx->drbg == NULL)
        goto err;

#ifndef FIPS_MODULE
    /*
     * P2. We want decoder_store/decoder_cache to be cleaned up before the
     * provider store
     */
    ctx->decoder_store = ossl_method_store_new(ctx);
    if (ctx->decoder_store == NULL)
        goto err;
    ctx->decoder_cache = ossl_decoder_cache_new(ctx);
    if (ctx->decoder_cache == NULL)
        goto err;

    /* P2. We want encoder_store to be cleaned up before the provider store */
    ctx->encoder_store = ossl_method_store_new(ctx);
    if (ctx->encoder_store == NULL)
        goto err;

    /* P2. We want loader_store to be cleaned up before the provider store */
    ctx->store_loader_store = ossl_method_store_new(ctx);
    if (ctx->store_loader_store == NULL)
        goto err;
#endif

    /* P1. Needs to be freed before the child provider data is freed */
    ctx->provider_store = ossl_provider_store_new(ctx);
    if (ctx->provider_store == NULL)
        goto err;

    /* Default priority. */
    ctx->property_string_data = ossl_property_string_data_new(ctx);
    if (ctx->property_string_data == NULL)
        goto err;

    ctx->namemap = ossl_stored_namemap_new(ctx);
    if (ctx->namemap == NULL)
        goto err;

    ctx->property_defns = ossl_property_defns_new(ctx);
    if (ctx->property_defns == NULL)
        goto err;

    ctx->global_properties = ossl_ctx_global_properties_new(ctx);
    if (ctx->global_properties == NULL)
        goto err;

#ifndef FIPS_MODULE
    ctx->bio_core = ossl_bio_core_globals_new(ctx);
    if (ctx->bio_core == NULL)
        goto err;
#endif

    ctx->drbg_nonce = ossl_prov_drbg_nonce_ctx_new(ctx);
    if (ctx->drbg_nonce == NULL)
        goto err;

#ifndef FIPS_MODULE
    ctx->self_test_cb = ossl_self_test_set_callback_new(ctx);
    if (ctx->self_test_cb == NULL)
        goto err;
#endif

#ifdef FIPS_MODULE
    ctx->thread_event_handler = ossl_thread_event_ctx_new(ctx);
    if (ctx->thread_event_handler == NULL)
        goto err;

    ctx->fips_prov = ossl_fips_prov_ossl_ctx_new(ctx);
    if (ctx->fips_prov == NULL)
        goto err;
#endif

#ifndef OPENSSL_NO_THREAD_POOL
    ctx->threads = ossl_threads_ctx_new(ctx);
    if (ctx->threads == NULL)
        goto err;
#endif

    /* Low priority. */
#ifndef FIPS_MODULE
    ctx->child_provider = ossl_child_prov_ctx_new(ctx);
    if (ctx->child_provider == NULL)
        goto err;
#endif

    /* Everything depends on properties, so we also pre-initialise that */
    if (!ossl_property_parse_init(ctx))
        goto err;

    return 1;

 err:
    context_deinit_objs(ctx);

    if (exdata_done)
        ossl_crypto_cleanup_all_ex_data_int(ctx);

    CRYPTO_THREAD_lock_free(ctx->rand_crngt_lock);
    CRYPTO_THREAD_lock_free(ctx->lock);
    CRYPTO_THREAD_cleanup_local(&ctx->rcu_local_key);
    memset(ctx, '\0', sizeof(*ctx));
    return 0;
}

static void context_deinit_objs(OSSL_LIB_CTX *ctx)
{
    /* P2. We want evp_method_store to be cleaned up before the provider store */
    if (ctx->evp_method_store != NULL) {
        ossl_method_store_free(ctx->evp_method_store);
        ctx->evp_method_store = NULL;
    }

    /* P2. */
    if (ctx->drbg != NULL) {
        ossl_rand_ctx_free(ctx->drbg);
        ctx->drbg = NULL;
    }

#ifndef FIPS_MODULE
    /* P2. */
    if (ctx->provider_conf != NULL) {
        ossl_prov_conf_ctx_free(ctx->provider_conf);
        ctx->provider_conf = NULL;
    }

    /*
     * P2. We want decoder_store/decoder_cache to be cleaned up before the
     * provider store
     */
    if (ctx->decoder_store != NULL) {
        ossl_method_store_free(ctx->decoder_store);
        ctx->decoder_store = NULL;
    }
    if (ctx->decoder_cache != NULL) {
        ossl_decoder_cache_free(ctx->decoder_cache);
        ctx->decoder_cache = NULL;
    }


    /* P2. We want encoder_store to be cleaned up before the provider store */
    if (ctx->encoder_store != NULL) {
        ossl_method_store_free(ctx->encoder_store);
        ctx->encoder_store = NULL;
    }

    /* P2. We want loader_store to be cleaned up before the provider store */
    if (ctx->store_loader_store != NULL) {
        ossl_method_store_free(ctx->store_loader_store);
        ctx->store_loader_store = NULL;
    }
#endif

    /* P1. Needs to be freed before the child provider data is freed */
    if (ctx->provider_store != NULL) {
        ossl_provider_store_free(ctx->provider_store);
        ctx->provider_store = NULL;
    }

    /* Default priority. */
    if (ctx->property_string_data != NULL) {
        ossl_property_string_data_free(ctx->property_string_data);
        ctx->property_string_data = NULL;
    }

    if (ctx->namemap != NULL) {
        ossl_stored_namemap_free(ctx->namemap);
        ctx->namemap = NULL;
    }

    if (ctx->property_defns != NULL) {
        ossl_property_defns_free(ctx->property_defns);
        ctx->property_defns = NULL;
    }

    if (ctx->global_properties != NULL) {
        ossl_ctx_global_properties_free(ctx->global_properties);
        ctx->global_properties = NULL;
    }

#ifndef FIPS_MODULE
    if (ctx->bio_core != NULL) {
        ossl_bio_core_globals_free(ctx->bio_core);
        ctx->bio_core = NULL;
    }
#endif

    if (ctx->drbg_nonce != NULL) {
        ossl_prov_drbg_nonce_ctx_free(ctx->drbg_nonce);
        ctx->drbg_nonce = NULL;
    }

#ifndef FIPS_MODULE
    if (ctx->self_test_cb != NULL) {
        ossl_self_test_set_callback_free(ctx->self_test_cb);
        ctx->self_test_cb = NULL;
    }
#endif

    if (ctx->rand_crngt != NULL) {
        ossl_rand_crng_ctx_free(ctx->rand_crngt);
        ctx->rand_crngt = NULL;
    }

#ifdef FIPS_MODULE
    if (ctx->thread_event_handler != NULL) {
        ossl_thread_event_ctx_free(ctx->thread_event_handler);
        ctx->thread_event_handler = NULL;
    }

    if (ctx->fips_prov != NULL) {
        ossl_fips_prov_ossl_ctx_free(ctx->fips_prov);
        ctx->fips_prov = NULL;
    }
#endif

#ifndef OPENSSL_NO_THREAD_POOL
    if (ctx->threads != NULL) {
        ossl_threads_ctx_free(ctx->threads);
        ctx->threads = NULL;
    }
#endif

    /* Low priority. */
#ifndef FIPS_MODULE
    if (ctx->child_provider != NULL) {
        ossl_child_prov_ctx_free(ctx->child_provider);
        ctx->child_provider = NULL;
    }
#endif
}

static int context_deinit(OSSL_LIB_CTX *ctx)
{
    if (ctx == NULL)
        return 1;

    ossl_ctx_thread_stop(ctx);

    context_deinit_objs(ctx);

    ossl_crypto_cleanup_all_ex_data_int(ctx);

    CRYPTO_THREAD_lock_free(ctx->rand_crngt_lock);
    CRYPTO_THREAD_lock_free(ctx->lock);
    ctx->rand_crngt_lock = NULL;
    ctx->lock = NULL;
    CRYPTO_THREAD_cleanup_local(&ctx->rcu_local_key);
    return 1;
}

#ifndef FIPS_MODULE
/* The default default context */
static OSSL_LIB_CTX default_context_int;

static CRYPTO_ONCE default_context_init = CRYPTO_ONCE_STATIC_INIT;
static CRYPTO_THREAD_LOCAL default_context_thread_local;
static int default_context_inited = 0;

DEFINE_RUN_ONCE_STATIC(default_context_do_init)
{
    if (!CRYPTO_THREAD_init_local(&default_context_thread_local, NULL))
        goto err;

    if (!context_init(&default_context_int))
        goto deinit_thread;

    default_context_inited = 1;
    return 1;

deinit_thread:
    CRYPTO_THREAD_cleanup_local(&default_context_thread_local);
err:
    return 0;
}

void ossl_lib_ctx_default_deinit(void)
{
    if (!default_context_inited)
        return;
    context_deinit(&default_context_int);
    CRYPTO_THREAD_cleanup_local(&default_context_thread_local);
    default_context_inited = 0;
}

static OSSL_LIB_CTX *get_thread_default_context(void)
{
    if (!RUN_ONCE(&default_context_init, default_context_do_init))
        return NULL;

    return CRYPTO_THREAD_get_local(&default_context_thread_local);
}

static OSSL_LIB_CTX *get_default_context(void)
{
    OSSL_LIB_CTX *current_defctx = get_thread_default_context();

    if (current_defctx == NULL)
        current_defctx = &default_context_int;
    return current_defctx;
}

static int set_default_context(OSSL_LIB_CTX *defctx)
{
    if (defctx == &default_context_int)
        defctx = NULL;

    return CRYPTO_THREAD_set_local(&default_context_thread_local, defctx);
}
#endif

OSSL_LIB_CTX *OSSL_LIB_CTX_new(void)
{
    OSSL_LIB_CTX *ctx = OPENSSL_zalloc(sizeof(*ctx));

    if (ctx != NULL && !context_init(ctx)) {
        OPENSSL_free(ctx);
        ctx = NULL;
    }
    return ctx;
}

#ifndef FIPS_MODULE
OSSL_LIB_CTX *OSSL_LIB_CTX_new_from_dispatch(const OSSL_CORE_HANDLE *handle,
                                             const OSSL_DISPATCH *in)
{
    OSSL_LIB_CTX *ctx = OSSL_LIB_CTX_new();

    if (ctx == NULL)
        return NULL;

    if (!ossl_bio_init_core(ctx, in)) {
        OSSL_LIB_CTX_free(ctx);
        return NULL;
    }

    return ctx;
}

OSSL_LIB_CTX *OSSL_LIB_CTX_new_child(const OSSL_CORE_HANDLE *handle,
                                     const OSSL_DISPATCH *in)
{
    OSSL_LIB_CTX *ctx = OSSL_LIB_CTX_new_from_dispatch(handle, in);

    if (ctx == NULL)
        return NULL;

    if (!ossl_provider_init_as_child(ctx, handle, in)) {
        OSSL_LIB_CTX_free(ctx);
        return NULL;
    }
    ctx->ischild = 1;

    return ctx;
}

int OSSL_LIB_CTX_load_config(OSSL_LIB_CTX *ctx, const char *config_file)
{
    return CONF_modules_load_file_ex(ctx, config_file, NULL, 0) > 0;
}
#endif

void OSSL_LIB_CTX_free(OSSL_LIB_CTX *ctx)
{
    if (ossl_lib_ctx_is_default(ctx))
        return;

#ifndef FIPS_MODULE
    if (ctx->ischild)
        ossl_provider_deinit_child(ctx);
#endif
    context_deinit(ctx);
    OPENSSL_free(ctx);
}

#ifndef FIPS_MODULE
OSSL_LIB_CTX *OSSL_LIB_CTX_get0_global_default(void)
{
    if (!RUN_ONCE(&default_context_init, default_context_do_init))
        return NULL;

    return &default_context_int;
}

OSSL_LIB_CTX *OSSL_LIB_CTX_set0_default(OSSL_LIB_CTX *libctx)
{
    OSSL_LIB_CTX *current_defctx;

    if ((current_defctx = get_default_context()) != NULL) {
        if (libctx != NULL)
            set_default_context(libctx);
        return current_defctx;
    }

    return NULL;
}

void ossl_release_default_drbg_ctx(void)
{
    /* early release of the DRBG in global default libctx */
    if (default_context_int.drbg != NULL) {
        ossl_rand_ctx_free(default_context_int.drbg);
        default_context_int.drbg = NULL;
    }
}
#endif

OSSL_LIB_CTX *ossl_lib_ctx_get_concrete(OSSL_LIB_CTX *ctx)
{
#ifndef FIPS_MODULE
    if (ctx == NULL)
        return get_default_context();
#endif
    return ctx;
}

int ossl_lib_ctx_is_default(OSSL_LIB_CTX *ctx)
{
#ifndef FIPS_MODULE
    if (ctx == NULL || ctx == get_default_context())
        return 1;
#endif
    return 0;
}

int ossl_lib_ctx_is_global_default(OSSL_LIB_CTX *ctx)
{
#ifndef FIPS_MODULE
    if (ossl_lib_ctx_get_concrete(ctx) == &default_context_int)
        return 1;
#endif
    return 0;
}

void *ossl_lib_ctx_get_data(OSSL_LIB_CTX *ctx, int index)
{
    void *p;

    ctx = ossl_lib_ctx_get_concrete(ctx);
    if (ctx == NULL)
        return NULL;

    switch (index) {
    case OSSL_LIB_CTX_PROPERTY_STRING_INDEX:
        return ctx->property_string_data;
    case OSSL_LIB_CTX_EVP_METHOD_STORE_INDEX:
        return ctx->evp_method_store;
    case OSSL_LIB_CTX_PROVIDER_STORE_INDEX:
        return ctx->provider_store;
    case OSSL_LIB_CTX_NAMEMAP_INDEX:
        return ctx->namemap;
    case OSSL_LIB_CTX_PROPERTY_DEFN_INDEX:
        return ctx->property_defns;
    case OSSL_LIB_CTX_GLOBAL_PROPERTIES:
        return ctx->global_properties;
    case OSSL_LIB_CTX_DRBG_INDEX:
        return ctx->drbg;
    case OSSL_LIB_CTX_DRBG_NONCE_INDEX:
        return ctx->drbg_nonce;
#ifndef FIPS_MODULE
    case OSSL_LIB_CTX_PROVIDER_CONF_INDEX:
        return ctx->provider_conf;
    case OSSL_LIB_CTX_BIO_CORE_INDEX:
        return ctx->bio_core;
    case OSSL_LIB_CTX_CHILD_PROVIDER_INDEX:
        return ctx->child_provider;
    case OSSL_LIB_CTX_DECODER_STORE_INDEX:
        return ctx->decoder_store;
    case OSSL_LIB_CTX_DECODER_CACHE_INDEX:
        return ctx->decoder_cache;
    case OSSL_LIB_CTX_ENCODER_STORE_INDEX:
        return ctx->encoder_store;
    case OSSL_LIB_CTX_STORE_LOADER_STORE_INDEX:
        return ctx->store_loader_store;
    case OSSL_LIB_CTX_SELF_TEST_CB_INDEX:
        return ctx->self_test_cb;
#endif
#ifndef OPENSSL_NO_THREAD_POOL
    case OSSL_LIB_CTX_THREAD_INDEX:
        return ctx->threads;
#endif

    case OSSL_LIB_CTX_RAND_CRNGT_INDEX: {

        /*
         * rand_crngt must be lazily initialized because it calls into
         * libctx, so must not be called from context_init, else a deadlock
         * will occur.
         *
         * We use a separate lock because code called by the instantiation
         * of rand_crngt is liable to try and take the libctx lock.
         */
        if (CRYPTO_THREAD_read_lock(ctx->rand_crngt_lock) != 1)
            return NULL;

        if (ctx->rand_crngt == NULL) {
            CRYPTO_THREAD_unlock(ctx->rand_crngt_lock);

            if (CRYPTO_THREAD_write_lock(ctx->rand_crngt_lock) != 1)
                return NULL;

            if (ctx->rand_crngt == NULL)
                ctx->rand_crngt = ossl_rand_crng_ctx_new(ctx);
        }

        p = ctx->rand_crngt;

        CRYPTO_THREAD_unlock(ctx->rand_crngt_lock);

        return p;
    }

#ifdef FIPS_MODULE
    case OSSL_LIB_CTX_THREAD_EVENT_HANDLER_INDEX:
        return ctx->thread_event_handler;

    case OSSL_LIB_CTX_FIPS_PROV_INDEX:
        return ctx->fips_prov;
#endif

    default:
        return NULL;
    }
}

OSSL_EX_DATA_GLOBAL *ossl_lib_ctx_get_ex_data_global(OSSL_LIB_CTX *ctx)
{
    ctx = ossl_lib_ctx_get_concrete(ctx);
    if (ctx == NULL)
        return NULL;
    return &ctx->global;
}

const char *ossl_lib_ctx_get_descriptor(OSSL_LIB_CTX *libctx)
{
#ifdef FIPS_MODULE
    return "FIPS internal library context";
#else
    if (ossl_lib_ctx_is_global_default(libctx))
        return "Global default library context";
    if (ossl_lib_ctx_is_default(libctx))
        return "Thread-local default library context";
    return "Non-default library context";
#endif
}

CRYPTO_THREAD_LOCAL *ossl_lib_ctx_get_rcukey(OSSL_LIB_CTX *libctx)
{
    libctx = ossl_lib_ctx_get_concrete(libctx);
    if (libctx == NULL)
        return NULL;
    return &libctx->rcu_local_key;
}
Commit	Line	Data
d64b6299	1	/*
da1c088f	2	* Copyright 2019-2023 The OpenSSL Project Authors. All Rights Reserved.
d64b6299 RL	3	*
	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
25f2138b	10	#include "crypto/cryptlib.h"
22e27978	11	#include <openssl/conf.h>
d64b6299	12	#include "internal/thread_once.h"
505f4660	13	#include "internal/property.h"
4b1f34f1	14	#include "internal/core.h"
b0ee1de9	15	#include "internal/bio.h"
f12a5690	16	#include "internal/provider.h"
98d81174	17	#include "crypto/decoder.h"
927d0566	18	#include "crypto/context.h"
d64b6299	19
b4250010	20	struct ossl_lib_ctx_st {
927d0566	21	CRYPTO_RWLOCK lock, rand_crngt_lock;
1aedc35f MC	22	OSSL_EX_DATA_GLOBAL global;
1aedc35f MC	23
927d0566 HL	24	void *property_string_data;
	25	void *evp_method_store;
	26	void *provider_store;
	27	void *namemap;
	28	void *property_defns;
	29	void *global_properties;
	30	void *drbg;
	31	void *drbg_nonce;
24d16d3a	32	CRYPTO_THREAD_LOCAL rcu_local_key;
927d0566 HL	33	#ifndef FIPS_MODULE
	34	void *provider_conf;
	35	void *bio_core;
	36	void *child_provider;
	37	OSSL_METHOD_STORE *decoder_store;
32d3c3ab	38	void *decoder_cache;
927d0566 HL	39	OSSL_METHOD_STORE *encoder_store;
	40	OSSL_METHOD_STORE *store_loader_store;
	41	void *self_test_cb;
4574a7fd ČK	42	#endif
	43	#if defined(OPENSSL_THREADS)
	44	void *threads;
927d0566 HL	45	#endif
	46	void *rand_crngt;
	47	#ifdef FIPS_MODULE
	48	void *thread_event_handler;
	49	void *fips_prov;
	50	#endif
770de346	51
f12a5690	52	unsigned int ischild:1;
d64b6299 RL	53	};
d64b6299 RL	54
4b1f34f1 P	55	int ossl_lib_ctx_write_lock(OSSL_LIB_CTX *ctx)
	56	{
	57	return CRYPTO_THREAD_write_lock(ossl_lib_ctx_get_concrete(ctx)->lock);
	58	}
	59
	60	int ossl_lib_ctx_read_lock(OSSL_LIB_CTX *ctx)
	61	{
	62	return CRYPTO_THREAD_read_lock(ossl_lib_ctx_get_concrete(ctx)->lock);
	63	}
	64
	65	int ossl_lib_ctx_unlock(OSSL_LIB_CTX *ctx)
	66	{
	67	return CRYPTO_THREAD_unlock(ossl_lib_ctx_get_concrete(ctx)->lock);
	68	}
	69
f12a5690 MC	70	int ossl_lib_ctx_is_child(OSSL_LIB_CTX *ctx)
	71	{
	72	ctx = ossl_lib_ctx_get_concrete(ctx);
	73
	74	if (ctx == NULL)
	75	return 0;
	76	return ctx->ischild;
	77	}
	78
927d0566 HL	79	static void context_deinit_objs(OSSL_LIB_CTX *ctx);
927d0566 HL	80
b4250010	81	static int context_init(OSSL_LIB_CTX *ctx)
d64b6299	82	{
505f4660	83	int exdata_done = 0;
1aedc35f	84
24d16d3a NH	85	if (!CRYPTO_THREAD_init_local(&ctx->rcu_local_key, NULL))
	86	return 0;
	87
1aedc35f MC	88	ctx->lock = CRYPTO_THREAD_lock_new();
1aedc35f MC	89	if (ctx->lock == NULL)
24d16d3a	90	goto err;
1aedc35f	91
927d0566 HL	92	ctx->rand_crngt_lock = CRYPTO_THREAD_lock_new();
	93	if (ctx->rand_crngt_lock == NULL)
	94	goto err;
1aedc35f	95
927d0566	96	/* Initialize ex_data. */
e4bec869	97	if (!ossl_do_ex_data_init(ctx))
1aedc35f	98	goto err;
505f4660	99	exdata_done = 1;
1aedc35f	100
927d0566 HL	101	/* P2. We want evp_method_store to be cleaned up before the provider store */
	102	ctx->evp_method_store = ossl_method_store_new(ctx);
	103	if (ctx->evp_method_store == NULL)
	104	goto err;
	105
	106	#ifndef FIPS_MODULE
	107	/* P2. Must be freed before the provider store is freed */
	108	ctx->provider_conf = ossl_prov_conf_ctx_new(ctx);
	109	if (ctx->provider_conf == NULL)
	110	goto err;
	111	#endif
	112
	113	/* P2. */
	114	ctx->drbg = ossl_rand_ctx_new(ctx);
	115	if (ctx->drbg == NULL)
1aedc35f	116	goto err;
1aedc35f	117
927d0566	118	#ifndef FIPS_MODULE
32d3c3ab MC	119	/*
	120	* P2. We want decoder_store/decoder_cache to be cleaned up before the
	121	* provider store
	122	*/
927d0566 HL	123	ctx->decoder_store = ossl_method_store_new(ctx);
	124	if (ctx->decoder_store == NULL)
	125	goto err;
32d3c3ab MC	126	ctx->decoder_cache = ossl_decoder_cache_new(ctx);
	127	if (ctx->decoder_cache == NULL)
	128	goto err;
927d0566 HL	129
	130	/* P2. We want encoder_store to be cleaned up before the provider store */
	131	ctx->encoder_store = ossl_method_store_new(ctx);
	132	if (ctx->encoder_store == NULL)
	133	goto err;
	134
	135	/* P2. We want loader_store to be cleaned up before the provider store */
	136	ctx->store_loader_store = ossl_method_store_new(ctx);
	137	if (ctx->store_loader_store == NULL)
	138	goto err;
	139	#endif
	140
	141	/* P1. Needs to be freed before the child provider data is freed */
	142	ctx->provider_store = ossl_provider_store_new(ctx);
	143	if (ctx->provider_store == NULL)
	144	goto err;
	145
	146	/* Default priority. */
	147	ctx->property_string_data = ossl_property_string_data_new(ctx);
	148	if (ctx->property_string_data == NULL)
	149	goto err;
	150
	151	ctx->namemap = ossl_stored_namemap_new(ctx);
	152	if (ctx->namemap == NULL)
	153	goto err;
	154
	155	ctx->property_defns = ossl_property_defns_new(ctx);
	156	if (ctx->property_defns == NULL)
	157	goto err;
	158
	159	ctx->global_properties = ossl_ctx_global_properties_new(ctx);
	160	if (ctx->global_properties == NULL)
	161	goto err;
	162
	163	#ifndef FIPS_MODULE
	164	ctx->bio_core = ossl_bio_core_globals_new(ctx);
	165	if (ctx->bio_core == NULL)
	166	goto err;
	167	#endif
	168
	169	ctx->drbg_nonce = ossl_prov_drbg_nonce_ctx_new(ctx);
	170	if (ctx->drbg_nonce == NULL)
	171	goto err;
	172
	173	#ifndef FIPS_MODULE
	174	ctx->self_test_cb = ossl_self_test_set_callback_new(ctx);
	175	if (ctx->self_test_cb == NULL)
	176	goto err;
	177	#endif
	178
	179	#ifdef FIPS_MODULE
	180	ctx->thread_event_handler = ossl_thread_event_ctx_new(ctx);
	181	if (ctx->thread_event_handler == NULL)
	182	goto err;
	183
	184	ctx->fips_prov = ossl_fips_prov_ossl_ctx_new(ctx);
	185	if (ctx->fips_prov == NULL)
	186	goto err;
	187	#endif
	188
f5a3669c	189	#ifndef OPENSSL_NO_THREAD_POOL
4574a7fd ČK	190	ctx->threads = ossl_threads_ctx_new(ctx);
	191	if (ctx->threads == NULL)
	192	goto err;
	193	#endif
	194
927d0566 HL	195	/* Low priority. */
	196	#ifndef FIPS_MODULE
	197	ctx->child_provider = ossl_child_prov_ctx_new(ctx);
	198	if (ctx->child_provider == NULL)
	199	goto err;
	200	#endif
	201
505f4660 MC	202	/* Everything depends on properties, so we also pre-initialise that */
	203	if (!ossl_property_parse_init(ctx))
	204	goto err;
	205
1aedc35f	206	return 1;
927d0566	207
1aedc35f	208	err:
927d0566 HL	209	context_deinit_objs(ctx);
927d0566 HL	210
505f4660	211	if (exdata_done)
e4bec869	212	ossl_crypto_cleanup_all_ex_data_int(ctx);
927d0566 HL	213
927d0566 HL	214	CRYPTO_THREAD_lock_free(ctx->rand_crngt_lock);
1aedc35f	215	CRYPTO_THREAD_lock_free(ctx->lock);
24d16d3a	216	CRYPTO_THREAD_cleanup_local(&ctx->rcu_local_key);
7ca3bf79	217	memset(ctx, '\0', sizeof(*ctx));
1aedc35f	218	return 0;
d64b6299 RL	219	}
d64b6299 RL	220
927d0566 HL	221	static void context_deinit_objs(OSSL_LIB_CTX *ctx)
	222	{
	223	/* P2. We want evp_method_store to be cleaned up before the provider store */
	224	if (ctx->evp_method_store != NULL) {
	225	ossl_method_store_free(ctx->evp_method_store);
	226	ctx->evp_method_store = NULL;
	227	}
	228
	229	/* P2. */
	230	if (ctx->drbg != NULL) {
	231	ossl_rand_ctx_free(ctx->drbg);
	232	ctx->drbg = NULL;
	233	}
	234
	235	#ifndef FIPS_MODULE
	236	/* P2. */
	237	if (ctx->provider_conf != NULL) {
	238	ossl_prov_conf_ctx_free(ctx->provider_conf);
	239	ctx->provider_conf = NULL;
	240	}
	241
32d3c3ab MC	242	/*
	243	* P2. We want decoder_store/decoder_cache to be cleaned up before the
	244	* provider store
	245	*/
927d0566 HL	246	if (ctx->decoder_store != NULL) {
	247	ossl_method_store_free(ctx->decoder_store);
	248	ctx->decoder_store = NULL;
	249	}
32d3c3ab MC	250	if (ctx->decoder_cache != NULL) {
	251	ossl_decoder_cache_free(ctx->decoder_cache);
	252	ctx->decoder_cache = NULL;
	253	}
	254
927d0566 HL	255
	256	/* P2. We want encoder_store to be cleaned up before the provider store */
	257	if (ctx->encoder_store != NULL) {
	258	ossl_method_store_free(ctx->encoder_store);
	259	ctx->encoder_store = NULL;
	260	}
	261
	262	/* P2. We want loader_store to be cleaned up before the provider store */
	263	if (ctx->store_loader_store != NULL) {
	264	ossl_method_store_free(ctx->store_loader_store);
	265	ctx->store_loader_store = NULL;
	266	}
	267	#endif
	268
	269	/* P1. Needs to be freed before the child provider data is freed */
	270	if (ctx->provider_store != NULL) {
	271	ossl_provider_store_free(ctx->provider_store);
	272	ctx->provider_store = NULL;
	273	}
	274
	275	/* Default priority. */
	276	if (ctx->property_string_data != NULL) {
	277	ossl_property_string_data_free(ctx->property_string_data);
	278	ctx->property_string_data = NULL;
	279	}
	280
	281	if (ctx->namemap != NULL) {
	282	ossl_stored_namemap_free(ctx->namemap);
	283	ctx->namemap = NULL;
	284	}
	285
	286	if (ctx->property_defns != NULL) {
	287	ossl_property_defns_free(ctx->property_defns);
	288	ctx->property_defns = NULL;
	289	}
	290
	291	if (ctx->global_properties != NULL) {
	292	ossl_ctx_global_properties_free(ctx->global_properties);
	293	ctx->global_properties = NULL;
	294	}
	295
	296	#ifndef FIPS_MODULE
	297	if (ctx->bio_core != NULL) {
	298	ossl_bio_core_globals_free(ctx->bio_core);
	299	ctx->bio_core = NULL;
	300	}
	301	#endif
	302
	303	if (ctx->drbg_nonce != NULL) {
	304	ossl_prov_drbg_nonce_ctx_free(ctx->drbg_nonce);
	305	ctx->drbg_nonce = NULL;
	306	}
	307
	308	#ifndef FIPS_MODULE
	309	if (ctx->self_test_cb != NULL) {
	310	ossl_self_test_set_callback_free(ctx->self_test_cb);
	311	ctx->self_test_cb = NULL;
	312	}
	313	#endif
	314
	315	if (ctx->rand_crngt != NULL) {
	316	ossl_rand_crng_ctx_free(ctx->rand_crngt);
	317	ctx->rand_crngt = NULL;
	318	}
319
320	#ifdef FIPS_MODULE
321	if (ctx->thread_event_handler != NULL) {
322	ossl_thread_event_ctx_free(ctx->thread_event_handler);
323	ctx->thread_event_handler = NULL;
324	}
325
326	if (ctx->fips_prov != NULL) {
327	ossl_fips_prov_ossl_ctx_free(ctx->fips_prov);
328	ctx->fips_prov = NULL;
329	}
330	#endif
331
f5a3669c	332	#ifndef OPENSSL_NO_THREAD_POOL
4574a7fd ČK	333	if (ctx->threads != NULL) {
	334	ossl_threads_ctx_free(ctx->threads);
	335	ctx->threads = NULL;
	336	}
	337	#endif
	338
927d0566 HL	339	/* Low priority. */
	340	#ifndef FIPS_MODULE
	341	if (ctx->child_provider != NULL) {
	342	ossl_child_prov_ctx_free(ctx->child_provider);
	343	ctx->child_provider = NULL;
	344	}
	345	#endif
	346	}
	347
b4250010	348	static int context_deinit(OSSL_LIB_CTX *ctx)
d64b6299	349	{
1aedc35f MC	350	if (ctx == NULL)
1aedc35f MC	351	return 1;
b8fe36fe	352
da747958 MC	353	ossl_ctx_thread_stop(ctx);
da747958 MC	354
927d0566 HL	355	context_deinit_objs(ctx);
927d0566 HL	356
e4bec869	357	ossl_crypto_cleanup_all_ex_data_int(ctx);
770de346	358
927d0566	359	CRYPTO_THREAD_lock_free(ctx->rand_crngt_lock);
d64b6299	360	CRYPTO_THREAD_lock_free(ctx->lock);
927d0566	361	ctx->rand_crngt_lock = NULL;
1aedc35f	362	ctx->lock = NULL;
24d16d3a	363	CRYPTO_THREAD_cleanup_local(&ctx->rcu_local_key);
d64b6299 RL	364	return 1;
	365	}
	366
f844f9eb	367	#ifndef FIPS_MODULE
5a975275	368	/* The default default context */
b4250010	369	static OSSL_LIB_CTX default_context_int;
5a975275 RL	370
	371	static CRYPTO_ONCE default_context_init = CRYPTO_ONCE_STATIC_INIT;
	372	static CRYPTO_THREAD_LOCAL default_context_thread_local;
31295ca0	373	static int default_context_inited = 0;
5a975275 RL	374
	375	DEFINE_RUN_ONCE_STATIC(default_context_do_init)
	376	{
31295ca0 PM	377	if (!CRYPTO_THREAD_init_local(&default_context_thread_local, NULL))
	378	goto err;
	379
	380	if (!context_init(&default_context_int))
	381	goto deinit_thread;
	382
	383	default_context_inited = 1;
	384	return 1;
	385
	386	deinit_thread:
	387	CRYPTO_THREAD_cleanup_local(&default_context_thread_local);
	388	err:
	389	return 0;
5a975275 RL	390	}
5a975275 RL	391
b4250010	392	void ossl_lib_ctx_default_deinit(void)
d64b6299	393	{
31295ca0 PM	394	if (!default_context_inited)
31295ca0 PM	395	return;
5a975275	396	context_deinit(&default_context_int);
8e012cdc	397	CRYPTO_THREAD_cleanup_local(&default_context_thread_local);
31295ca0	398	default_context_inited = 0;
d64b6299	399	}
1aedc35f	400
b4250010	401	static OSSL_LIB_CTX *get_thread_default_context(void)
d64b6299	402	{
5a975275 RL	403	if (!RUN_ONCE(&default_context_init, default_context_do_init))
5a975275 RL	404	return NULL;
1aedc35f	405
5a975275 RL	406	return CRYPTO_THREAD_get_local(&default_context_thread_local);
	407	}
	408
b4250010	409	static OSSL_LIB_CTX *get_default_context(void)
5a975275	410	{
b4250010	411	OSSL_LIB_CTX *current_defctx = get_thread_default_context();
5a975275 RL	412
	413	if (current_defctx == NULL)
	414	current_defctx = &default_context_int;
	415	return current_defctx;
	416	}
	417
b4250010	418	static int set_default_context(OSSL_LIB_CTX *defctx)
5a975275 RL	419	{
	420	if (defctx == &default_context_int)
	421	defctx = NULL;
	422
	423	return CRYPTO_THREAD_set_local(&default_context_thread_local, defctx);
d64b6299	424	}
1aedc35f	425	#endif
d64b6299	426
b4250010	427	OSSL_LIB_CTX *OSSL_LIB_CTX_new(void)
d64b6299	428	{
b4250010	429	OSSL_LIB_CTX ctx = OPENSSL_zalloc(sizeof(ctx));
d64b6299 RL	430
d64b6299 RL	431	if (ctx != NULL && !context_init(ctx)) {
7ca3bf79	432	OPENSSL_free(ctx);
d64b6299 RL	433	ctx = NULL;
	434	}
	435	return ctx;
	436	}
	437
f844f9eb	438	#ifndef FIPS_MODULE
f12a5690 MC	439	OSSL_LIB_CTX OSSL_LIB_CTX_new_from_dispatch(const OSSL_CORE_HANDLE handle,
f12a5690 MC	440	const OSSL_DISPATCH *in)
b0ee1de9 MC	441	{
	442	OSSL_LIB_CTX *ctx = OSSL_LIB_CTX_new();
	443
	444	if (ctx == NULL)
	445	return NULL;
	446
	447	if (!ossl_bio_init_core(ctx, in)) {
	448	OSSL_LIB_CTX_free(ctx);
	449	return NULL;
	450	}
	451
	452	return ctx;
	453	}
	454
f12a5690 MC	455	OSSL_LIB_CTX OSSL_LIB_CTX_new_child(const OSSL_CORE_HANDLE handle,
	456	const OSSL_DISPATCH *in)
	457	{
	458	OSSL_LIB_CTX *ctx = OSSL_LIB_CTX_new_from_dispatch(handle, in);
	459
	460	if (ctx == NULL)
	461	return NULL;
	462
	463	if (!ossl_provider_init_as_child(ctx, handle, in)) {
	464	OSSL_LIB_CTX_free(ctx);
	465	return NULL;
	466	}
	467	ctx->ischild = 1;
	468
	469	return ctx;
	470	}
	471
b4250010	472	int OSSL_LIB_CTX_load_config(OSSL_LIB_CTX ctx, const char config_file)
22e27978	473	{
d8652be0	474	return CONF_modules_load_file_ex(ctx, config_file, NULL, 0) > 0;
22e27978 SL	475	}
	476	#endif
	477
b4250010	478	void OSSL_LIB_CTX_free(OSSL_LIB_CTX *ctx)
d64b6299	479	{
b4250010	480	if (ossl_lib_ctx_is_default(ctx))
5a975275 RL	481	return;
5a975275 RL	482
cad22202 MC	483	#ifndef FIPS_MODULE
	484	if (ctx->ischild)
	485	ossl_provider_deinit_child(ctx);
	486	#endif
5a975275	487	context_deinit(ctx);
d64b6299 RL	488	OPENSSL_free(ctx);
	489	}
	490
978e323a MC	491	#ifndef FIPS_MODULE
	492	OSSL_LIB_CTX *OSSL_LIB_CTX_get0_global_default(void)
	493	{
	494	if (!RUN_ONCE(&default_context_init, default_context_do_init))
	495	return NULL;
	496
	497	return &default_context_int;
	498	}
	499
b4250010	500	OSSL_LIB_CTX OSSL_LIB_CTX_set0_default(OSSL_LIB_CTX libctx)
5a975275	501	{
b4250010	502	OSSL_LIB_CTX *current_defctx;
5a975275	503
92b20fb8 MC	504	if ((current_defctx = get_default_context()) != NULL) {
	505	if (libctx != NULL)
	506	set_default_context(libctx);
5a975275	507	return current_defctx;
92b20fb8	508	}
5a975275 RL	509
	510	return NULL;
	511	}
a88e97fc TM	512
	513	void ossl_release_default_drbg_ctx(void)
	514	{
	515	/* early release of the DRBG in global default libctx */
	516	if (default_context_int.drbg != NULL) {
	517	ossl_rand_ctx_free(default_context_int.drbg);
	518	default_context_int.drbg = NULL;
	519	}
	520	}
978e323a	521	#endif
5a975275	522
b4250010	523	OSSL_LIB_CTX ossl_lib_ctx_get_concrete(OSSL_LIB_CTX ctx)
d4c051ce	524	{
f844f9eb	525	#ifndef FIPS_MODULE
5a975275 RL	526	if (ctx == NULL)
5a975275 RL	527	return get_default_context();
d4c051ce MC	528	#endif
	529	return ctx;
	530	}
	531
b4250010	532	int ossl_lib_ctx_is_default(OSSL_LIB_CTX *ctx)
6b1e5fa4	533	{
f844f9eb	534	#ifndef FIPS_MODULE
5a975275	535	if (ctx == NULL \|\| ctx == get_default_context())
6b1e5fa4	536	return 1;
cfbd76c1 RL	537	#endif
	538	return 0;
	539	}
	540
b4250010	541	int ossl_lib_ctx_is_global_default(OSSL_LIB_CTX *ctx)
cfbd76c1 RL	542	{
cfbd76c1 RL	543	#ifndef FIPS_MODULE
b4250010	544	if (ossl_lib_ctx_get_concrete(ctx) == &default_context_int)
cfbd76c1	545	return 1;
6b1e5fa4 MC	546	#endif
	547	return 0;
	548	}
	549
927d0566	550	void ossl_lib_ctx_get_data(OSSL_LIB_CTX ctx, int index)
d64b6299	551	{
927d0566	552	void *p;
1aedc35f	553
b4250010	554	ctx = ossl_lib_ctx_get_concrete(ctx);
1aedc35f	555	if (ctx == NULL)
927d0566	556	return NULL;
1aedc35f	557
927d0566 HL	558	switch (index) {
	559	case OSSL_LIB_CTX_PROPERTY_STRING_INDEX:
	560	return ctx->property_string_data;
	561	case OSSL_LIB_CTX_EVP_METHOD_STORE_INDEX:
	562	return ctx->evp_method_store;
	563	case OSSL_LIB_CTX_PROVIDER_STORE_INDEX:
	564	return ctx->provider_store;
	565	case OSSL_LIB_CTX_NAMEMAP_INDEX:
	566	return ctx->namemap;
	567	case OSSL_LIB_CTX_PROPERTY_DEFN_INDEX:
	568	return ctx->property_defns;
	569	case OSSL_LIB_CTX_GLOBAL_PROPERTIES:
	570	return ctx->global_properties;
	571	case OSSL_LIB_CTX_DRBG_INDEX:
	572	return ctx->drbg;
	573	case OSSL_LIB_CTX_DRBG_NONCE_INDEX:
	574	return ctx->drbg_nonce;
	575	#ifndef FIPS_MODULE
	576	case OSSL_LIB_CTX_PROVIDER_CONF_INDEX:
	577	return ctx->provider_conf;
	578	case OSSL_LIB_CTX_BIO_CORE_INDEX:
	579	return ctx->bio_core;
	580	case OSSL_LIB_CTX_CHILD_PROVIDER_INDEX:
	581	return ctx->child_provider;
	582	case OSSL_LIB_CTX_DECODER_STORE_INDEX:
	583	return ctx->decoder_store;
32d3c3ab MC	584	case OSSL_LIB_CTX_DECODER_CACHE_INDEX:
32d3c3ab MC	585	return ctx->decoder_cache;
927d0566 HL	586	case OSSL_LIB_CTX_ENCODER_STORE_INDEX:
	587	return ctx->encoder_store;
	588	case OSSL_LIB_CTX_STORE_LOADER_STORE_INDEX:
	589	return ctx->store_loader_store;
	590	case OSSL_LIB_CTX_SELF_TEST_CB_INDEX:
	591	return ctx->self_test_cb;
	592	#endif
f5a3669c	593	#ifndef OPENSSL_NO_THREAD_POOL
4574a7fd ČK	594	case OSSL_LIB_CTX_THREAD_INDEX:
	595	return ctx->threads;
	596	#endif
d64b6299	597
927d0566 HL	598	case OSSL_LIB_CTX_RAND_CRNGT_INDEX: {
	599
	600	/*
	601	* rand_crngt must be lazily initialized because it calls into
	602	* libctx, so must not be called from context_init, else a deadlock
	603	* will occur.
	604	*
	605	* We use a separate lock because code called by the instantiation
	606	* of rand_crngt is liable to try and take the libctx lock.
	607	*/
	608	if (CRYPTO_THREAD_read_lock(ctx->rand_crngt_lock) != 1)
	609	return NULL;
d64b6299	610
927d0566 HL	611	if (ctx->rand_crngt == NULL) {
927d0566 HL	612	CRYPTO_THREAD_unlock(ctx->rand_crngt_lock);
d64b6299	613
927d0566 HL	614	if (CRYPTO_THREAD_write_lock(ctx->rand_crngt_lock) != 1)
927d0566 HL	615	return NULL;
770de346	616
927d0566 HL	617	if (ctx->rand_crngt == NULL)
927d0566 HL	618	ctx->rand_crngt = ossl_rand_crng_ctx_new(ctx);
cd3f8c1b	619	}
d64b6299	620
927d0566	621	p = ctx->rand_crngt;
770de346	622
927d0566	623	CRYPTO_THREAD_unlock(ctx->rand_crngt_lock);
770de346	624
927d0566	625	return p;
1aedc35f MC	626	}
1aedc35f MC	627
927d0566 HL	628	#ifdef FIPS_MODULE
	629	case OSSL_LIB_CTX_THREAD_EVENT_HANDLER_INDEX:
	630	return ctx->thread_event_handler;
d64b6299	631
927d0566 HL	632	case OSSL_LIB_CTX_FIPS_PROV_INDEX:
	633	return ctx->fips_prov;
	634	#endif
	635
	636	default:
	637	return NULL;
	638	}
d64b6299 RL	639	}
d64b6299 RL	640
b4250010	641	OSSL_EX_DATA_GLOBAL ossl_lib_ctx_get_ex_data_global(OSSL_LIB_CTX ctx)
1aedc35f	642	{
b4250010	643	ctx = ossl_lib_ctx_get_concrete(ctx);
1aedc35f MC	644	if (ctx == NULL)
	645	return NULL;
	646	return &ctx->global;
	647	}
	648
d6d42cda RL	649	const char ossl_lib_ctx_get_descriptor(OSSL_LIB_CTX libctx)
	650	{
	651	#ifdef FIPS_MODULE
	652	return "FIPS internal library context";
	653	#else
	654	if (ossl_lib_ctx_is_global_default(libctx))
	655	return "Global default library context";
	656	if (ossl_lib_ctx_is_default(libctx))
	657	return "Thread-local default library context";
	658	return "Non-default library context";
	659	#endif
	660	}
24d16d3a NH	661
	662	CRYPTO_THREAD_LOCAL ossl_lib_ctx_get_rcukey(OSSL_LIB_CTX libctx)
	663	{
	664	libctx = ossl_lib_ctx_get_concrete(libctx);
	665	if (libctx == NULL)
	666	return NULL;
	667	return &libctx->rcu_local_key;
	668	}