1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
|
// Copyright (c) 2010 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "base/openssl_util.h"
#include <openssl/err.h>
#include <openssl/ssl.h>
#include "base/lock.h"
#include "base/logging.h"
#include "base/scoped_vector.h"
#include "base/singleton.h"
namespace base {
namespace {
unsigned long CurrentThreadId() {
return static_cast<unsigned long>(PlatformThread::CurrentId());
}
// Singleton for initializing and cleaning up the OpenSSL library.
class OpenSSLInitSingleton {
public:
static OpenSSLInitSingleton* Get() {
// We allow the SSL environment to leak for multiple reasons:
// - it is used from a non-joinable worker thread that is not stopped on
// shutdown, hence may still be using OpenSSL library after the AtExit
// runner has completed.
// - There are other OpenSSL related singletons (e.g. the client socket
// context) who's cleanup depends on the global environment here, but
// we can't control the order the AtExit handlers will run in so
// allowing the global environment to leak at least ensures it is
// available for those other singletons to reliably cleanup.
return Singleton<OpenSSLInitSingleton,
LeakySingletonTraits<OpenSSLInitSingleton> >::get();
}
private:
friend struct DefaultSingletonTraits<OpenSSLInitSingleton>;
OpenSSLInitSingleton() {
SSL_load_error_strings();
SSL_library_init();
OpenSSL_add_all_algorithms();
int num_locks = CRYPTO_num_locks();
locks_.reserve(num_locks);
for (int i = 0; i < num_locks; ++i)
locks_.push_back(new Lock());
CRYPTO_set_locking_callback(LockingCallback);
CRYPTO_set_id_callback(CurrentThreadId);
}
~OpenSSLInitSingleton() {
CRYPTO_set_locking_callback(NULL);
EVP_cleanup();
ERR_free_strings();
}
static void LockingCallback(int mode, int n, const char* file, int line) {
OpenSSLInitSingleton::Get()->OnLockingCallback(mode, n, file, line);
}
void OnLockingCallback(int mode, int n, const char* file, int line) {
CHECK_LT(static_cast<size_t>(n), locks_.size());
if (mode & CRYPTO_LOCK)
locks_[n]->Acquire();
else
locks_[n]->Release();
}
// These locks are used and managed by OpenSSL via LockingCallback().
ScopedVector<Lock> locks_;
DISALLOW_COPY_AND_ASSIGN(OpenSSLInitSingleton);
};
} // namespace
void EnsureOpenSSLInit() {
(void)OpenSSLInitSingleton::Get();
}
void ClearOpenSSLERRStack(const tracked_objects::Location& location) {
if (logging::DEBUG_MODE && VLOG_IS_ON(1)) {
int error_num = ERR_get_error();
if (error_num == 0)
return;
std::string message;
location.Write(true, true, &message);
DVLOG(1) << "OpenSSL ERR_get_error stack from " << message;
char buf[140];
do {
ERR_error_string_n(error_num, buf, arraysize(buf));
DVLOG(1) << "\t" << error_num << ": " << buf;
error_num = ERR_get_error();
} while (error_num != 0);
} else {
ERR_clear_error();
}
}
} // namespace base
|
