]> git.ipfire.org Git - thirdparty/openssl.git/blob - crypto/init.c
projects / thirdparty / openssl.git / blob
? search:


321ac11cf412f629a4acffed4067dddd157eac58
[thirdparty/openssl.git] / crypto / init.c
1 /*
2 * Copyright 2016-2018 The OpenSSL Project Authors. All Rights Reserved.
3 *
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
10 #include "e_os.h"
11 #include "internal/cryptlib_int.h"
12 #include <openssl/err.h>
13 #include "internal/rand_int.h"
14 #include "internal/bio.h"
15 #include <openssl/evp.h>
16 #include "internal/evp_int.h"
17 #include "internal/conf.h"
18 #include "internal/async.h"
19 #include "internal/engine.h"
20 #include "internal/comp.h"
21 #include "internal/err.h"
22 #include "internal/err_int.h"
23 #include "internal/objects.h"
24 #include <stdlib.h>
25 #include <assert.h>
26 #include "internal/thread_once.h"
27 #include "internal/dso_conf.h"
28 #include "internal/dso.h"
29 #include "internal/store.h"
30
31 static int stopped = 0;
32
33 /*
34 * Since per-thread-specific-data destructors are not universally
35 * available, i.e. not on Windows, only below CRYPTO_THREAD_LOCAL key
36 * is assumed to have destructor associated. And then an effort is made
37 * to call this single destructor on non-pthread platform[s].
38 *
39 * Initial value is "impossible". It is used as guard value to shortcut
40 * destructor for threads terminating before libcrypto is initialized or
41 * after it's de-initialized. Access to the key doesn't have to be
42 * serialized for the said threads, because they didn't use libcrypto
43 * and it doesn't matter if they pick "impossible" or derefernce real
44 * key value and pull NULL past initialization in the first thread that
45 * intends to use libcrypto.
46 */
47 static union {
48 long sane;
49 CRYPTO_THREAD_LOCAL value;
50 } destructor_key = { -1 };
51
52 static void ossl_init_thread_stop(struct thread_local_inits_st *locals);
53
54 static void ossl_init_thread_destructor(void *local)
55 {
56 ossl_init_thread_stop((struct thread_local_inits_st *)local);
57 }
58
59 static struct thread_local_inits_st *ossl_init_get_thread_local(int alloc)
60 {
61 struct thread_local_inits_st *local =
62 CRYPTO_THREAD_get_local(&destructor_key.value);
63
64 if (alloc) {
65 if (local == NULL
66 && (local = OPENSSL_zalloc(sizeof(*local))) != NULL
67 && !CRYPTO_THREAD_set_local(&destructor_key.value, local)) {
68 OPENSSL_free(local);
69 return NULL;
70 }
71 } else {
72 CRYPTO_THREAD_set_local(&destructor_key.value, NULL);
73 }
74
75 return local;
76 }
77
78 typedef struct ossl_init_stop_st OPENSSL_INIT_STOP;
79 struct ossl_init_stop_st {
80 void (*handler)(void);
81 OPENSSL_INIT_STOP *next;
82 };
83
84 static OPENSSL_INIT_STOP *stop_handlers = NULL;
85 static CRYPTO_RWLOCK *init_lock = NULL;
86
87 static CRYPTO_ONCE base = CRYPTO_ONCE_STATIC_INIT;
88 static int base_inited = 0;
89 DEFINE_RUN_ONCE_STATIC(ossl_init_base)
90 {
91 CRYPTO_THREAD_LOCAL key;
92
93 #ifdef OPENSSL_INIT_DEBUG
94 fprintf(stderr, "OPENSSL_INIT: ossl_init_base: Setting up stop handlers\n");
95 #endif
96 #ifndef OPENSSL_NO_CRYPTO_MDEBUG
97 ossl_malloc_setup_failures();
98 #endif
99 if (!CRYPTO_THREAD_init_local(&key, ossl_init_thread_destructor))
100 return 0;
101 if ((init_lock = CRYPTO_THREAD_lock_new()) == NULL)
102 goto err;
103 OPENSSL_cpuid_setup();
104
105 destructor_key.value = key;
106 base_inited = 1;
107 return 1;
108
109 err:
110 #ifdef OPENSSL_INIT_DEBUG
111 fprintf(stderr, "OPENSSL_INIT: ossl_init_base not ok!\n");
112 #endif
113 CRYPTO_THREAD_lock_free(init_lock);
114 init_lock = NULL;
115
116 CRYPTO_THREAD_cleanup_local(&key);
117 return 0;
118 }
119
120 static CRYPTO_ONCE register_atexit = CRYPTO_ONCE_STATIC_INIT;
121 DEFINE_RUN_ONCE_STATIC(ossl_init_register_atexit)
122 {
123 # ifdef OPENSSL_INIT_DEBUG
124 fprintf(stderr, "OPENSSL_INIT: ossl_init_register_atexit()\n");
125 # endif
126 #ifndef OPENSSL_SYS_UEFI
127 if (atexit(OPENSSL_cleanup) != 0)
128 return 0;
129 #endif
130
131 return 1;
132 }
133
134 DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_register_atexit,
135 ossl_init_register_atexit)
136 {
137 #ifdef OPENSSL_INIT_DEBUG
138 fprintf(stderr, "OPENSSL_INIT: ossl_init_no_register_atexit ok!\n");
139 #endif
140 /* Do nothing in this case */
141 return 1;
142 }
143
144 static CRYPTO_ONCE load_crypto_nodelete = CRYPTO_ONCE_STATIC_INIT;
145 DEFINE_RUN_ONCE_STATIC(ossl_init_load_crypto_nodelete)
146 {
147 #ifdef OPENSSL_INIT_DEBUG
148 fprintf(stderr, "OPENSSL_INIT: ossl_init_load_crypto_nodelete()\n");
149 #endif
150 #if !defined(OPENSSL_NO_DSO) && !defined(OPENSSL_USE_NODELETE)
151 # ifdef DSO_WIN32
152 {
153 HMODULE handle = NULL;
154 BOOL ret;
155
156 /* We don't use the DSO route for WIN32 because there is a better way */
157 ret = GetModuleHandleEx(GET_MODULE_HANDLE_EX_FLAG_FROM_ADDRESS
158 | GET_MODULE_HANDLE_EX_FLAG_PIN,
159 (void *)&base_inited, &handle);
160
161 # ifdef OPENSSL_INIT_DEBUG
162 fprintf(stderr, "OPENSSL_INIT: obtained DSO reference? %s\n",
163 (ret == TRUE ? "No!" : "Yes."));
164 # endif
165 return (ret == TRUE) ? 1 : 0;
166 }
167 # else
168 /*
169 * Deliberately leak a reference to ourselves. This will force the library
170 * to remain loaded until the atexit() handler is run at process exit.
171 */
172 {
173 DSO *dso;
174 void *err;
175
176 if (!err_shelve_state(&err))
177 return 0;
178
179 dso = DSO_dsobyaddr(&base_inited, DSO_FLAG_NO_UNLOAD_ON_FREE);
180 # ifdef OPENSSL_INIT_DEBUG
181 fprintf(stderr, "OPENSSL_INIT: obtained DSO reference? %s\n",
182 (dso == NULL ? "No!" : "Yes."));
183 /*
184 * In case of No!, it is uncertain our exit()-handlers can still be
185 * called. After dlclose() the whole library might have been unloaded
186 * already.
187 */
188 # endif
189 DSO_free(dso);
190 err_unshelve_state(err);
191 }
192 # endif
193 #endif
194
195 return 1;
196 }
197
198 static CRYPTO_ONCE load_crypto_strings = CRYPTO_ONCE_STATIC_INIT;
199 static int load_crypto_strings_inited = 0;
200 DEFINE_RUN_ONCE_STATIC(ossl_init_load_crypto_strings)
201 {
202 int ret = 1;
203 /*
204 * OPENSSL_NO_AUTOERRINIT is provided here to prevent at compile time
205 * pulling in all the error strings during static linking
206 */
207 #if !defined(OPENSSL_NO_ERR) && !defined(OPENSSL_NO_AUTOERRINIT)
208 # ifdef OPENSSL_INIT_DEBUG
209 fprintf(stderr, "OPENSSL_INIT: ossl_init_load_crypto_strings: "
210 "err_load_crypto_strings_int()\n");
211 # endif
212 ret = err_load_crypto_strings_int();
213 load_crypto_strings_inited = 1;
214 #endif
215 return ret;
216 }
217
218 DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_load_crypto_strings,
219 ossl_init_load_crypto_strings)
220 {
221 /* Do nothing in this case */
222 return 1;
223 }
224
225 static CRYPTO_ONCE add_all_ciphers = CRYPTO_ONCE_STATIC_INIT;
226 DEFINE_RUN_ONCE_STATIC(ossl_init_add_all_ciphers)
227 {
228 /*
229 * OPENSSL_NO_AUTOALGINIT is provided here to prevent at compile time
230 * pulling in all the ciphers during static linking
231 */
232 #ifndef OPENSSL_NO_AUTOALGINIT
233 # ifdef OPENSSL_INIT_DEBUG
234 fprintf(stderr, "OPENSSL_INIT: ossl_init_add_all_ciphers: "
235 "openssl_add_all_ciphers_int()\n");
236 # endif
237 openssl_add_all_ciphers_int();
238 #endif
239 return 1;
240 }
241
242 DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_add_all_ciphers,
243 ossl_init_add_all_ciphers)
244 {
245 /* Do nothing */
246 return 1;
247 }
248
249 static CRYPTO_ONCE add_all_digests = CRYPTO_ONCE_STATIC_INIT;
250 DEFINE_RUN_ONCE_STATIC(ossl_init_add_all_digests)
251 {
252 /*
253 * OPENSSL_NO_AUTOALGINIT is provided here to prevent at compile time
254 * pulling in all the ciphers during static linking
255 */
256 #ifndef OPENSSL_NO_AUTOALGINIT
257 # ifdef OPENSSL_INIT_DEBUG
258 fprintf(stderr, "OPENSSL_INIT: ossl_init_add_all_digests: "
259 "openssl_add_all_digests()\n");
260 # endif
261 openssl_add_all_digests_int();
262 #endif
263 return 1;
264 }
265
266 DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_add_all_digests,
267 ossl_init_add_all_digests)
268 {
269 /* Do nothing */
270 return 1;
271 }
272
273 static CRYPTO_ONCE add_all_macs = CRYPTO_ONCE_STATIC_INIT;
274 DEFINE_RUN_ONCE_STATIC(ossl_init_add_all_macs)
275 {
276 /*
277 * OPENSSL_NO_AUTOALGINIT is provided here to prevent at compile time
278 * pulling in all the macs during static linking
279 */
280 #ifndef OPENSSL_NO_AUTOALGINIT
281 # ifdef OPENSSL_INIT_DEBUG
282 fprintf(stderr, "OPENSSL_INIT: ossl_init_add_all_macs: "
283 "openssl_add_all_macs_int()\n");
284 # endif
285 openssl_add_all_macs_int();
286 #endif
287 return 1;
288 }
289
290 DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_add_all_macs, ossl_init_add_all_macs)
291 {
292 /* Do nothing */
293 return 1;
294 }
295
296 static CRYPTO_ONCE config = CRYPTO_ONCE_STATIC_INIT;
297 static int config_inited = 0;
298 static const char *appname;
299 DEFINE_RUN_ONCE_STATIC(ossl_init_config)
300 {
301 #ifdef OPENSSL_INIT_DEBUG
302 fprintf(stderr,
303 "OPENSSL_INIT: ossl_init_config: openssl_config(%s)\n",
304 appname == NULL ? "NULL" : appname);
305 #endif
306 openssl_config_int(appname);
307 config_inited = 1;
308 return 1;
309 }
310 DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_config, ossl_init_config)
311 {
312 #ifdef OPENSSL_INIT_DEBUG
313 fprintf(stderr,
314 "OPENSSL_INIT: ossl_init_config: openssl_no_config_int()\n");
315 #endif
316 openssl_no_config_int();
317 config_inited = 1;
318 return 1;
319 }
320
321 static CRYPTO_ONCE async = CRYPTO_ONCE_STATIC_INIT;
322 static int async_inited = 0;
323 DEFINE_RUN_ONCE_STATIC(ossl_init_async)
324 {
325 #ifdef OPENSSL_INIT_DEBUG
326 fprintf(stderr, "OPENSSL_INIT: ossl_init_async: async_init()\n");
327 #endif
328 if (!async_init())
329 return 0;
330 async_inited = 1;
331 return 1;
332 }
333
334 #ifndef OPENSSL_NO_ENGINE
335 static CRYPTO_ONCE engine_openssl = CRYPTO_ONCE_STATIC_INIT;
336 DEFINE_RUN_ONCE_STATIC(ossl_init_engine_openssl)
337 {
338 # ifdef OPENSSL_INIT_DEBUG
339 fprintf(stderr, "OPENSSL_INIT: ossl_init_engine_openssl: "
340 "engine_load_openssl_int()\n");
341 # endif
342 engine_load_openssl_int();
343 return 1;
344 }
345 # ifndef OPENSSL_NO_DEVCRYPTOENG
346 static CRYPTO_ONCE engine_devcrypto = CRYPTO_ONCE_STATIC_INIT;
347 DEFINE_RUN_ONCE_STATIC(ossl_init_engine_devcrypto)
348 {
349 # ifdef OPENSSL_INIT_DEBUG
350 fprintf(stderr, "OPENSSL_INIT: ossl_init_engine_devcrypto: "
351 "engine_load_devcrypto_int()\n");
352 # endif
353 engine_load_devcrypto_int();
354 return 1;
355 }
356 # endif
357
358 # ifndef OPENSSL_NO_RDRAND
359 static CRYPTO_ONCE engine_rdrand = CRYPTO_ONCE_STATIC_INIT;
360 DEFINE_RUN_ONCE_STATIC(ossl_init_engine_rdrand)
361 {
362 # ifdef OPENSSL_INIT_DEBUG
363 fprintf(stderr, "OPENSSL_INIT: ossl_init_engine_rdrand: "
364 "engine_load_rdrand_int()\n");
365 # endif
366 engine_load_rdrand_int();
367 return 1;
368 }
369 # endif
370 static CRYPTO_ONCE engine_dynamic = CRYPTO_ONCE_STATIC_INIT;
371 DEFINE_RUN_ONCE_STATIC(ossl_init_engine_dynamic)
372 {
373 # ifdef OPENSSL_INIT_DEBUG
374 fprintf(stderr, "OPENSSL_INIT: ossl_init_engine_dynamic: "
375 "engine_load_dynamic_int()\n");
376 # endif
377 engine_load_dynamic_int();
378 return 1;
379 }
380 # ifndef OPENSSL_NO_STATIC_ENGINE
381 # if !defined(OPENSSL_NO_HW) && !defined(OPENSSL_NO_HW_PADLOCK)
382 static CRYPTO_ONCE engine_padlock = CRYPTO_ONCE_STATIC_INIT;
383 DEFINE_RUN_ONCE_STATIC(ossl_init_engine_padlock)
384 {
385 # ifdef OPENSSL_INIT_DEBUG
386 fprintf(stderr, "OPENSSL_INIT: ossl_init_engine_padlock: "
387 "engine_load_padlock_int()\n");
388 # endif
389 engine_load_padlock_int();
390 return 1;
391 }
392 # endif
393 # if defined(OPENSSL_SYS_WIN32) && !defined(OPENSSL_NO_CAPIENG)
394 static CRYPTO_ONCE engine_capi = CRYPTO_ONCE_STATIC_INIT;
395 DEFINE_RUN_ONCE_STATIC(ossl_init_engine_capi)
396 {
397 # ifdef OPENSSL_INIT_DEBUG
398 fprintf(stderr, "OPENSSL_INIT: ossl_init_engine_capi: "
399 "engine_load_capi_int()\n");
400 # endif
401 engine_load_capi_int();
402 return 1;
403 }
404 # endif
405 # if !defined(OPENSSL_NO_AFALGENG)
406 static CRYPTO_ONCE engine_afalg = CRYPTO_ONCE_STATIC_INIT;
407 DEFINE_RUN_ONCE_STATIC(ossl_init_engine_afalg)
408 {
409 # ifdef OPENSSL_INIT_DEBUG
410 fprintf(stderr, "OPENSSL_INIT: ossl_init_engine_afalg: "
411 "engine_load_afalg_int()\n");
412 # endif
413 engine_load_afalg_int();
414 return 1;
415 }
416 # endif
417 # endif
418 #endif
419
420 #ifndef OPENSSL_NO_COMP
421 static CRYPTO_ONCE zlib = CRYPTO_ONCE_STATIC_INIT;
422
423 static int zlib_inited = 0;
424 DEFINE_RUN_ONCE_STATIC(ossl_init_zlib)
425 {
426 /* Do nothing - we need to know about this for the later cleanup */
427 zlib_inited = 1;
428 return 1;
429 }
430 #endif
431
432 static void ossl_init_thread_stop(struct thread_local_inits_st *locals)
433 {
434 /* Can't do much about this */
435 if (locals == NULL)
436 return;
437
438 if (locals->async) {
439 #ifdef OPENSSL_INIT_DEBUG
440 fprintf(stderr, "OPENSSL_INIT: ossl_init_thread_stop: "
441 "async_delete_thread_state()\n");
442 #endif
443 async_delete_thread_state();
444 }
445
446 if (locals->err_state) {
447 #ifdef OPENSSL_INIT_DEBUG
448 fprintf(stderr, "OPENSSL_INIT: ossl_init_thread_stop: "
449 "err_delete_thread_state()\n");
450 #endif
451 err_delete_thread_state();
452 }
453
454 if (locals->rand) {
455 #ifdef OPENSSL_INIT_DEBUG
456 fprintf(stderr, "OPENSSL_INIT: ossl_init_thread_stop: "
457 "drbg_delete_thread_state()\n");
458 #endif
459 drbg_delete_thread_state();
460 }
461
462 OPENSSL_free(locals);
463 }
464
465 void OPENSSL_thread_stop(void)
466 {
467 if (destructor_key.sane != -1)
468 ossl_init_thread_stop(ossl_init_get_thread_local(0));
469 }
470
471 int ossl_init_thread_start(uint64_t opts)
472 {
473 struct thread_local_inits_st *locals;
474
475 if (!OPENSSL_init_crypto(0, NULL))
476 return 0;
477
478 locals = ossl_init_get_thread_local(1);
479
480 if (locals == NULL)
481 return 0;
482
483 if (opts & OPENSSL_INIT_THREAD_ASYNC) {
484 #ifdef OPENSSL_INIT_DEBUG
485 fprintf(stderr, "OPENSSL_INIT: ossl_init_thread_start: "
486 "marking thread for async\n");
487 #endif
488 locals->async = 1;
489 }
490
491 if (opts & OPENSSL_INIT_THREAD_ERR_STATE) {
492 #ifdef OPENSSL_INIT_DEBUG
493 fprintf(stderr, "OPENSSL_INIT: ossl_init_thread_start: "
494 "marking thread for err_state\n");
495 #endif
496 locals->err_state = 1;
497 }
498
499 if (opts & OPENSSL_INIT_THREAD_RAND) {
500 #ifdef OPENSSL_INIT_DEBUG
501 fprintf(stderr, "OPENSSL_INIT: ossl_init_thread_start: "
502 "marking thread for rand\n");
503 #endif
504 locals->rand = 1;
505 }
506
507 return 1;
508 }
509
510 void OPENSSL_cleanup(void)
511 {
512 OPENSSL_INIT_STOP *currhandler, *lasthandler;
513 CRYPTO_THREAD_LOCAL key;
514
515 /* If we've not been inited then no need to deinit */
516 if (!base_inited)
517 return;
518
519 /* Might be explicitly called and also by atexit */
520 if (stopped)
521 return;
522 stopped = 1;
523
524 /*
525 * Thread stop may not get automatically called by the thread library for
526 * the very last thread in some situations, so call it directly.
527 */
528 ossl_init_thread_stop(ossl_init_get_thread_local(0));
529
530 currhandler = stop_handlers;
531 while (currhandler != NULL) {
532 currhandler->handler();
533 lasthandler = currhandler;
534 currhandler = currhandler->next;
535 OPENSSL_free(lasthandler);
536 }
537 stop_handlers = NULL;
538
539 CRYPTO_THREAD_lock_free(init_lock);
540 init_lock = NULL;
541
542 /*
543 * We assume we are single-threaded for this function, i.e. no race
544 * conditions for the various "*_inited" vars below.
545 */
546
547 #ifndef OPENSSL_NO_COMP
548 if (zlib_inited) {
549 #ifdef OPENSSL_INIT_DEBUG
550 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
551 "comp_zlib_cleanup_int()\n");
552 #endif
553 comp_zlib_cleanup_int();
554 }
555 #endif
556
557 if (async_inited) {
558 # ifdef OPENSSL_INIT_DEBUG
559 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
560 "async_deinit()\n");
561 # endif
562 async_deinit();
563 }
564
565 if (load_crypto_strings_inited) {
566 #ifdef OPENSSL_INIT_DEBUG
567 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
568 "err_free_strings_int()\n");
569 #endif
570 err_free_strings_int();
571 }
572
573 key = destructor_key.value;
574 destructor_key.sane = -1;
575 CRYPTO_THREAD_cleanup_local(&key);
576
577 #ifdef OPENSSL_INIT_DEBUG
578 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
579 "rand_cleanup_int()\n");
580 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
581 "conf_modules_free_int()\n");
582 #ifndef OPENSSL_NO_ENGINE
583 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
584 "engine_cleanup_int()\n");
585 #endif
586 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
587 "crypto_cleanup_all_ex_data_int()\n");
588 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
589 "bio_sock_cleanup_int()\n");
590 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
591 "bio_cleanup()\n");
592 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
593 "evp_cleanup_int()\n");
594 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
595 "obj_cleanup_int()\n");
596 fprintf(stderr, "OPENSSL_INIT: OPENSSL_cleanup: "
597 "err_cleanup()\n");
598 #endif
599 /*
600 * Note that cleanup order is important:
601 * - rand_cleanup_int could call an ENGINE's RAND cleanup function so
602 * must be called before engine_cleanup_int()
603 * - ENGINEs use CRYPTO_EX_DATA and therefore, must be cleaned up
604 * before the ex data handlers are wiped in CRYPTO_cleanup_all_ex_data().
605 * - conf_modules_free_int() can end up in ENGINE code so must be called
606 * before engine_cleanup_int()
607 * - ENGINEs and additional EVP algorithms might use added OIDs names so
608 * obj_cleanup_int() must be called last
609 */
610 rand_cleanup_int();
611 rand_drbg_cleanup_int();
612 conf_modules_free_int();
613 #ifndef OPENSSL_NO_ENGINE
614 engine_cleanup_int();
615 #endif
616 ossl_store_cleanup_int();
617 crypto_cleanup_all_ex_data_int();
618 bio_cleanup();
619 evp_cleanup_int();
620 obj_cleanup_int();
621 err_cleanup();
622
623 CRYPTO_secure_malloc_done();
624
625 base_inited = 0;
626 }
627
628 /*
629 * If this function is called with a non NULL settings value then it must be
630 * called prior to any threads making calls to any OpenSSL functions,
631 * i.e. passing a non-null settings value is assumed to be single-threaded.
632 */
633 int OPENSSL_init_crypto(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings)
634 {
635 if (stopped) {
636 if (!(opts & OPENSSL_INIT_BASE_ONLY))
637 CRYPTOerr(CRYPTO_F_OPENSSL_INIT_CRYPTO, ERR_R_INIT_FAIL);
638 return 0;
639 }
640
641 if (!RUN_ONCE(&base, ossl_init_base))
642 return 0;
643
644 if ((opts & OPENSSL_INIT_NO_ATEXIT) != 0) {
645 if (!RUN_ONCE_ALT(&register_atexit, ossl_init_no_register_atexit,
646 ossl_init_register_atexit))
647 return 0;
648 } else if (!RUN_ONCE(&register_atexit, ossl_init_register_atexit)) {
649 return 0;
650 }
651
652 if (!(opts & OPENSSL_INIT_BASE_ONLY)
653 && !RUN_ONCE(&load_crypto_nodelete,
654 ossl_init_load_crypto_nodelete))
655 return 0;
656
657 if ((opts & OPENSSL_INIT_NO_LOAD_CRYPTO_STRINGS)
658 && !RUN_ONCE_ALT(&load_crypto_strings,
659 ossl_init_no_load_crypto_strings,
660 ossl_init_load_crypto_strings))
661 return 0;
662
663 if ((opts & OPENSSL_INIT_LOAD_CRYPTO_STRINGS)
664 && !RUN_ONCE(&load_crypto_strings, ossl_init_load_crypto_strings))
665 return 0;
666
667 if ((opts & OPENSSL_INIT_NO_ADD_ALL_CIPHERS)
668 && !RUN_ONCE_ALT(&add_all_ciphers, ossl_init_no_add_all_ciphers,
669 ossl_init_add_all_ciphers))
670 return 0;
671
672 if ((opts & OPENSSL_INIT_ADD_ALL_CIPHERS)
673 && !RUN_ONCE(&add_all_ciphers, ossl_init_add_all_ciphers))
674 return 0;
675
676 if ((opts & OPENSSL_INIT_NO_ADD_ALL_DIGESTS)
677 && !RUN_ONCE_ALT(&add_all_digests, ossl_init_no_add_all_digests,
678 ossl_init_add_all_digests))
679 return 0;
680
681 if ((opts & OPENSSL_INIT_ADD_ALL_DIGESTS)
682 && !RUN_ONCE(&add_all_digests, ossl_init_add_all_digests))
683 return 0;
684
685 if ((opts & OPENSSL_INIT_NO_ADD_ALL_MACS)
686 && !RUN_ONCE_ALT(&add_all_macs, ossl_init_no_add_all_macs,
687 ossl_init_add_all_macs))
688 return 0;
689
690 if ((opts & OPENSSL_INIT_ADD_ALL_MACS)
691 && !RUN_ONCE(&add_all_macs, ossl_init_add_all_macs))
692 return 0;
693
694 if ((opts & OPENSSL_INIT_ATFORK)
695 && !openssl_init_fork_handlers())
696 return 0;
697
698 if ((opts & OPENSSL_INIT_NO_LOAD_CONFIG)
699 && !RUN_ONCE_ALT(&config, ossl_init_no_config, ossl_init_config))
700 return 0;
701
702 if (opts & OPENSSL_INIT_LOAD_CONFIG) {
703 int ret;
704 CRYPTO_THREAD_write_lock(init_lock);
705 appname = (settings == NULL) ? NULL : settings->appname;
706 ret = RUN_ONCE(&config, ossl_init_config);
707 CRYPTO_THREAD_unlock(init_lock);
708 if (!ret)
709 return 0;
710 }
711
712 if ((opts & OPENSSL_INIT_ASYNC)
713 && !RUN_ONCE(&async, ossl_init_async))
714 return 0;
715
716 #ifndef OPENSSL_NO_ENGINE
717 if ((opts & OPENSSL_INIT_ENGINE_OPENSSL)
718 && !RUN_ONCE(&engine_openssl, ossl_init_engine_openssl))
719 return 0;
720 # if !defined(OPENSSL_NO_HW) && !defined(OPENSSL_NO_DEVCRYPTOENG)
721 if ((opts & OPENSSL_INIT_ENGINE_CRYPTODEV)
722 && !RUN_ONCE(&engine_devcrypto, ossl_init_engine_devcrypto))
723 return 0;
724 # endif
725 # ifndef OPENSSL_NO_RDRAND
726 if ((opts & OPENSSL_INIT_ENGINE_RDRAND)
727 && !RUN_ONCE(&engine_rdrand, ossl_init_engine_rdrand))
728 return 0;
729 # endif
730 if ((opts & OPENSSL_INIT_ENGINE_DYNAMIC)
731 && !RUN_ONCE(&engine_dynamic, ossl_init_engine_dynamic))
732 return 0;
733 # ifndef OPENSSL_NO_STATIC_ENGINE
734 # if !defined(OPENSSL_NO_HW) && !defined(OPENSSL_NO_HW_PADLOCK)
735 if ((opts & OPENSSL_INIT_ENGINE_PADLOCK)
736 && !RUN_ONCE(&engine_padlock, ossl_init_engine_padlock))
737 return 0;
738 # endif
739 # if defined(OPENSSL_SYS_WIN32) && !defined(OPENSSL_NO_CAPIENG)
740 if ((opts & OPENSSL_INIT_ENGINE_CAPI)
741 && !RUN_ONCE(&engine_capi, ossl_init_engine_capi))
742 return 0;
743 # endif
744 # if !defined(OPENSSL_NO_AFALGENG)
745 if ((opts & OPENSSL_INIT_ENGINE_AFALG)
746 && !RUN_ONCE(&engine_afalg, ossl_init_engine_afalg))
747 return 0;
748 # endif
749 # endif
750 if (opts & (OPENSSL_INIT_ENGINE_ALL_BUILTIN
751 | OPENSSL_INIT_ENGINE_OPENSSL
752 | OPENSSL_INIT_ENGINE_AFALG)) {
753 ENGINE_register_all_complete();
754 }
755 #endif
756
757 #ifndef OPENSSL_NO_COMP
758 if ((opts & OPENSSL_INIT_ZLIB)
759 && !RUN_ONCE(&zlib, ossl_init_zlib))
760 return 0;
761 #endif
762
763 return 1;
764 }
765
766 int OPENSSL_atexit(void (*handler)(void))
767 {
768 OPENSSL_INIT_STOP *newhand;
769
770 #if !defined(OPENSSL_NO_DSO) && !defined(OPENSSL_USE_NODELETE)
771 {
772 union {
773 void *sym;
774 void (*func)(void);
775 } handlersym;
776
777 handlersym.func = handler;
778 # ifdef DSO_WIN32
779 {
780 HMODULE handle = NULL;
781 BOOL ret;
782
783 /*
784 * We don't use the DSO route for WIN32 because there is a better
785 * way
786 */
787 ret = GetModuleHandleEx(GET_MODULE_HANDLE_EX_FLAG_FROM_ADDRESS
788 | GET_MODULE_HANDLE_EX_FLAG_PIN,
789 handlersym.sym, &handle);
790
791 if (!ret)
792 return 0;
793 }
794 # else
795 /*
796 * Deliberately leak a reference to the handler. This will force the
797 * library/code containing the handler to remain loaded until we run the
798 * atexit handler. If -znodelete has been used then this is
799 * unnecessary.
800 */
801 {
802 DSO *dso = NULL;
803
804 ERR_set_mark();
805 dso = DSO_dsobyaddr(handlersym.sym, DSO_FLAG_NO_UNLOAD_ON_FREE);
806 # ifdef OPENSSL_INIT_DEBUG
807 fprintf(stderr,
808 "OPENSSL_INIT: OPENSSL_atexit: obtained DSO reference? %s\n",
809 (dso == NULL ? "No!" : "Yes."));
810 /* See same code above in ossl_init_base() for an explanation. */
811 # endif
812 DSO_free(dso);
813 ERR_pop_to_mark();
814 }
815 # endif
816 }
817 #endif
818
819 if ((newhand = OPENSSL_malloc(sizeof(*newhand))) == NULL) {
820 CRYPTOerr(CRYPTO_F_OPENSSL_ATEXIT, ERR_R_MALLOC_FAILURE);
821 return 0;
822 }
823
824 newhand->handler = handler;
825 newhand->next = stop_handlers;
826 stop_handlers = newhand;
827
828 return 1;
829 }
830
831 #ifdef OPENSSL_SYS_UNIX
832 /*
833 * The following three functions are for OpenSSL developers. This is
834 * where we set/reset state across fork (called via pthread_atfork when
835 * it exists, or manually by the application when it doesn't).
836 *
837 * WARNING! If you put code in either OPENSSL_fork_parent or
838 * OPENSSL_fork_child, you MUST MAKE SURE that they are async-signal-
839 * safe. See this link, for example:
840 * http://man7.org/linux/man-pages/man7/signal-safety.7.html
841 */
842
843 void OPENSSL_fork_prepare(void)
844 {
845 }
846
847 void OPENSSL_fork_parent(void)
848 {
849 }
850
851 void OPENSSL_fork_child(void)
852 {
853 rand_fork();
854 }
855 #endif
A mirror of the official openssl repository