git.ipfire.org Git - thirdparty/openssl.git/commit

author	Matt Caswell <matt@openssl.org>
	Fri, 20 Nov 2020 17:23:57 +0000 (17:23 +0000)
committer	Matt Caswell <matt@openssl.org>
	Mon, 23 Nov 2020 09:31:23 +0000 (09:31 +0000)
commit	a68eee679a4b85f6846519412e1895c56475959c
tree	820c23d80703597540634c1579a3549a27f0bba5	tree \| snapshot
parent	97485aec7f16714f309aeb6637bc4faa2f61f98a	commit \| diff

Move some libssl global variables into SSL_CTX

disabled_enc_mask et al were global. Now that cipher loading is done
individually for each SSL_CTX, based on the libctx configured for that
SSL_CTX this means that some things will be disabled for one SSL_CTX but
not for another. The global variables set up the potential for different
SSL_CTXs to trample on each other. We move these variables into the SSL_CTX
structure.

Fixes #12040

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/13465)

ssl/ssl_ciph.c		diff \| blob \| blame \| history
ssl/ssl_lib.c		diff \| blob \| blame \| history
ssl/ssl_local.h		diff \| blob \| blame \| history
ssl/t1_lib.c		diff \| blob \| blame \| history