Fix wrong lock claimed in x509 dir lookup.

x509 store's objects cache can get corrupted when using dir lookup method in multithreaded application. Claim x509 store's lock when accessing objects cache. CLA: trivial Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de> Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9326)
2025-01-18 13:44:20 +08:00 · 2019-07-08 13:43:09 -07:00 · 2019-07-08 13:43:09 -07:00 · a161738a70
commit a161738a70
parent 5fe6e2311d
1 changed files with 2 additions and 2 deletions
--- a/crypto/x509/by_dir.c
+++ b/crypto/x509/by_dir.c
@ -327,10 +327,10 @@ static int get_cert_by_subject(X509_LOOKUP *xl, X509_LOOKUP_TYPE type,
        /*
         * we have added it to the cache so now pull it out again
         */
-        CRYPTO_THREAD_write_lock(ctx->lock);
+        X509_STORE_lock(xl->store_ctx);
        j = sk_X509_OBJECT_find(xl->store_ctx->objs, &stmp);
        tmp = sk_X509_OBJECT_value(xl->store_ctx->objs, j);
-        CRYPTO_THREAD_unlock(ctx->lock);
+        X509_STORE_unlock(xl->store_ctx);

        /* If a CRL, update the last file suffix added for this */