From: Matt Caswell Date: Tue, 9 Nov 2021 14:32:14 +0000 (+0000) Subject: Use a write lock during ossl_provider_find() X-Git-Tag: openssl-3.2.0-alpha1~3344 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=4aced11785f2e54875ad56f30c05bdee02b6e4e2;p=thirdparty%2Fopenssl.git Use a write lock during ossl_provider_find() A "find" operation on a stack can end up sorting the underlying stack. In this case it is necessary to use a "write" lock to synchronise access to the stack across multiple threads. Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/16980) --- diff --git a/crypto/provider_core.c b/crypto/provider_core.c index c9dba6dd862..a46a96cc93e 100644 --- a/crypto/provider_core.c +++ b/crypto/provider_core.c @@ -423,7 +423,11 @@ OSSL_PROVIDER *ossl_provider_find(OSSL_LIB_CTX *libctx, const char *name, #endif tmpl.name = (char *)name; - if (!CRYPTO_THREAD_read_lock(store->lock)) + /* + * A "find" operation can sort the stack, and therefore a write lock is + * required. + */ + if (!CRYPTO_THREAD_write_lock(store->lock)) return NULL; if ((i = sk_OSSL_PROVIDER_find(store->providers, &tmpl)) != -1) prov = sk_OSSL_PROVIDER_value(store->providers, i); diff --git a/doc/man3/DEFINE_STACK_OF.pod b/doc/man3/DEFINE_STACK_OF.pod index d7152466f4d..ec9eda81c6f 100644 --- a/doc/man3/DEFINE_STACK_OF.pod +++ b/doc/man3/DEFINE_STACK_OF.pod @@ -178,7 +178,10 @@ where a comparison function has been specified, I is sorted and B_find>() returns the index of a matching element or B<-1> if there is no match. Note that, in this case the comparison function will usually compare the values pointed to rather than the pointers themselves and -the order of elements in I can change. +the order of elements in I can change. Note that because the stack may be +sorted as the result of a B_find>() call, if a lock is being used to +synchronise access to the stack across multiple threads, then that lock must be +a "write" lock. B_find_ex>() operates like B_find>() except when a comparison function has been specified and no matching element is found.