1 /*
2 * Copyright 2016-2026 The OpenSSL Project Authors. All Rights Reserved.
3 *
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
10 /* We need to use the OPENSSL_fork_*() deprecated APIs */
11 #define OPENSSL_SUPPRESS_DEPRECATED
12
13 #include <openssl/crypto.h>
14 #include <crypto/cryptlib.h>
15 #include "internal/cryptlib.h"
16 #include "internal/rcu.h"
17 #include "rcu_internal.h"
18
19 #if defined(__clang__) && defined(__has_feature)
20 #if __has_feature(thread_sanitizer)
21 #define __SANITIZE_THREAD__
22 #endif
23 #endif
24
25 #if defined(__SANITIZE_THREAD__)
26 #include <sanitizer/tsan_interface.h>
27 #define TSAN_FAKE_UNLOCK(x) \
28 __tsan_mutex_pre_unlock((x), 0); \
29 __tsan_mutex_post_unlock((x), 0)
30
31 #define TSAN_FAKE_LOCK(x) \
32 __tsan_mutex_pre_lock((x), 0); \
33 __tsan_mutex_post_lock((x), 0, 0)
34 #else
35 #define TSAN_FAKE_UNLOCK(x)
36 #define TSAN_FAKE_LOCK(x)
37 #endif
38
39 #if defined(__sun)
40 #include <atomic.h>
41 #endif
42
43 #if defined(__apple_build_version__) && __apple_build_version__ < 6000000
44 /*
45 * OS/X 10.7 and 10.8 had a weird version of clang which has __ATOMIC_ACQUIRE and
46 * __ATOMIC_ACQ_REL but which expects only one parameter for __atomic_is_lock_free()
47 * rather than two which has signature __atomic_is_lock_free(sizeof(_Atomic(T))).
48 * All of this makes impossible to use __atomic_is_lock_free here.
49 *
50 * See: https://github.com/llvm/llvm-project/commit/a4c2602b714e6c6edb98164550a5ae829b2de760
51 */
52 #define BROKEN_CLANG_ATOMICS
53 #endif
54
55 #if defined(OPENSSL_THREADS) && !defined(CRYPTO_TDEBUG) && !defined(OPENSSL_SYS_WINDOWS)
56
57 #if defined(OPENSSL_SYS_UNIX)
58 #include <sys/types.h>
59 #include <unistd.h>
60 #endif
61
62 #include <assert.h>
63
64 /*
65 * The Non-Stop KLT thread model currently seems broken in its rwlock
66 * implementation
67 * Likewise is there a problem with the glibc implementation on riscv.
68 */
69 #if defined(PTHREAD_RWLOCK_INITIALIZER) && !defined(_KLT_MODEL_) \
70 && !defined(__riscv)
71 #define USE_RWLOCK
72 #endif
73
74 /*
75 * For all GNU/clang atomic builtins, we also need fallbacks, to cover all
76 * other compilers.
77
78 * Unfortunately, we can't do that with some "generic type", because there's no
79 * guarantee that the chosen generic type is large enough to cover all cases.
80 * Therefore, we implement fallbacks for each applicable type, with composed
81 * names that include the type they handle.
82 *
83 * (an anecdote: we previously tried to use |void *| as the generic type, with
84 * the thought that the pointer itself is the largest type. However, this is
85 * not true on 32-bit pointer platforms, as a |uint64_t| is twice as large)
86 *
87 * All applicable ATOMIC_ macros take the intended type as first parameter, so
88 * they can map to the correct fallback function. In the GNU/clang case, that
89 * parameter is simply ignored.
90 */
91
92 /*
93 * Internal types used with the ATOMIC_ macros, to make it possible to compose
94 * fallback function names.
95 */
96 typedef void *pvoid;
97
98 #if defined(__GNUC__) && defined(__ATOMIC_ACQUIRE) && !defined(BROKEN_CLANG_ATOMICS) \
99 && !defined(USE_ATOMIC_FALLBACKS)
100 #define ATOMIC_LOAD_N(t, p, o) __atomic_load_n(p, o)
101 #define ATOMIC_STORE_N(t, p, v, o) __atomic_store_n(p, v, o)
102 #define ATOMIC_STORE(t, p, v, o) __atomic_store(p, v, o)
103 #define ATOMIC_ADD_FETCH(p, v, o) __atomic_add_fetch(p, v, o)
104 #define ATOMIC_SUB_FETCH(p, v, o) __atomic_sub_fetch(p, v, o)
105 #else
106 static pthread_mutex_t atomic_sim_lock = PTHREAD_MUTEX_INITIALIZER;
107
108 #define IMPL_fallback_atomic_load_n(t) \
109 static ossl_inline t fallback_atomic_load_n_##t(t *p) \
110 { \
111 t ret; \
112 \
113 pthread_mutex_lock(&atomic_sim_lock); \
114 ret = *p; \
115 pthread_mutex_unlock(&atomic_sim_lock); \
116 return ret; \
117 }
118 IMPL_fallback_atomic_load_n(uint32_t)
IMPL_fallback_atomic_load_n(uint64_t)119 IMPL_fallback_atomic_load_n(uint64_t)
120 IMPL_fallback_atomic_load_n(pvoid)
121
122 #define ATOMIC_LOAD_N(t, p, o) fallback_atomic_load_n_##t(p)
123
124 #define IMPL_fallback_atomic_store_n(t) \
125 static ossl_inline t fallback_atomic_store_n_##t(t *p, t v) \
126 { \
127 t ret; \
128 \
129 pthread_mutex_lock(&atomic_sim_lock); \
130 ret = *p; \
131 *p = v; \
132 pthread_mutex_unlock(&atomic_sim_lock); \
133 return ret; \
134 }
135 IMPL_fallback_atomic_store_n(uint32_t)
136
137 #define ATOMIC_STORE_N(t, p, v, o) fallback_atomic_store_n_##t(p, v)
138
139 #define IMPL_fallback_atomic_store(t) \
140 static ossl_inline void fallback_atomic_store_##t(t *p, t *v) \
141 { \
142 pthread_mutex_lock(&atomic_sim_lock); \
143 *p = *v; \
144 pthread_mutex_unlock(&atomic_sim_lock); \
145 }
146 IMPL_fallback_atomic_store(pvoid)
147
148 #define ATOMIC_STORE(t, p, v, o) fallback_atomic_store_##t(p, v)
149
150 /*
151 * The fallbacks that follow don't need any per type implementation, as
152 * they are designed for uint64_t only. If there comes a time when multiple
153 * types need to be covered, it's relatively easy to refactor them the same
154 * way as the fallbacks above.
155 */
156
157 static ossl_inline uint64_t fallback_atomic_add_fetch(uint64_t *p, uint64_t v)
158 {
159 uint64_t ret;
160
161 pthread_mutex_lock(&atomic_sim_lock);
162 *p += v;
163 ret = *p;
164 pthread_mutex_unlock(&atomic_sim_lock);
165 return ret;
166 }
167
168 #define ATOMIC_ADD_FETCH(p, v, o) fallback_atomic_add_fetch(p, v)
169
fallback_atomic_sub_fetch(uint64_t * p,uint64_t v)170 static ossl_inline uint64_t fallback_atomic_sub_fetch(uint64_t *p, uint64_t v)
171 {
172 uint64_t ret;
173
174 pthread_mutex_lock(&atomic_sim_lock);
175 *p -= v;
176 ret = *p;
177 pthread_mutex_unlock(&atomic_sim_lock);
178 return ret;
179 }
180
181 #define ATOMIC_SUB_FETCH(p, v, o) fallback_atomic_sub_fetch(p, v)
182 #endif
183
184 /*
185 * This is the core of an rcu lock. It tracks the readers and writers for the
186 * current quiescence point for a given lock. Users is the 64 bit value that
187 * stores the READERS/ID as defined above
188 *
189 */
190 struct rcu_qp {
191 uint64_t users;
192 };
193
194 struct thread_qp {
195 struct rcu_qp *qp;
196 unsigned int depth;
197 CRYPTO_RCU_LOCK *lock;
198 };
199
200 #define MAX_QPS 10
201 /*
202 * This is the per thread tracking data
203 * that is assigned to each thread participating
204 * in an rcu qp
205 *
206 * qp points to the qp that it last acquired
207 *
208 */
209 struct rcu_thr_data {
210 struct thread_qp thread_qps[MAX_QPS];
211 };
212
213 /*
214 * This is the internal version of a CRYPTO_RCU_LOCK
215 * it is cast from CRYPTO_RCU_LOCK
216 */
217 struct rcu_lock_st {
218 /* Callbacks to call for next ossl_synchronize_rcu */
219 struct rcu_cb_item *cb_items;
220
221 /* The context we are being created against */
222 OSSL_LIB_CTX *ctx;
223
224 /* Array of quiescent points for synchronization */
225 struct rcu_qp *qp_group;
226
227 /* rcu generation counter for in-order retirement */
228 uint32_t id_ctr;
229
230 /* Number of elements in qp_group array */
231 uint32_t group_count;
232
233 /* Index of the current qp in the qp_group array */
234 uint32_t reader_idx;
235
236 /* value of the next id_ctr value to be retired */
237 uint32_t next_to_retire;
238
239 /* index of the next free rcu_qp in the qp_group */
240 uint32_t current_alloc_idx;
241
242 /* number of qp's in qp_group array currently being retired */
243 uint32_t writers_alloced;
244
245 /* lock protecting write side operations */
246 pthread_mutex_t write_lock;
247
248 /* lock protecting updates to writers_alloced/current_alloc_idx */
249 pthread_mutex_t alloc_lock;
250
251 /* signal to wake threads waiting on alloc_lock */
252 pthread_cond_t alloc_signal;
253
254 /* lock to enforce in-order retirement */
255 pthread_mutex_t prior_lock;
256
257 /* signal to wake threads waiting on prior_lock */
258 pthread_cond_t prior_signal;
259 };
260
261 /* Read side acquisition of the current qp */
get_hold_current_qp(struct rcu_lock_st * lock)262 static struct rcu_qp *get_hold_current_qp(struct rcu_lock_st *lock)
263 {
264 uint32_t qp_idx;
265
266 /* get the current qp index */
267 for (;;) {
268 qp_idx = ATOMIC_LOAD_N(uint32_t, &lock->reader_idx, __ATOMIC_RELAXED);
269
270 /*
271 * Notes on use of __ATOMIC_ACQUIRE
272 * We need to ensure the following:
273 * 1) That subsequent operations aren't optimized by hoisting them above
274 * this operation. Specifically, we don't want the below re-load of
275 * qp_idx to get optimized away
276 * 2) We want to ensure that any updating of reader_idx on the write side
277 * of the lock is flushed from a local cpu cache so that we see any
278 * updates prior to the load. This is a non-issue on cache coherent
279 * systems like x86, but is relevant on other arches
280 */
281 ATOMIC_ADD_FETCH(&lock->qp_group[qp_idx].users, (uint64_t)1,
282 __ATOMIC_ACQUIRE);
283
284 /* if the idx hasn't changed, we're good, else try again */
285 if (qp_idx == ATOMIC_LOAD_N(uint32_t, &lock->reader_idx, __ATOMIC_ACQUIRE))
286 break;
287
288 ATOMIC_SUB_FETCH(&lock->qp_group[qp_idx].users, (uint64_t)1,
289 __ATOMIC_RELAXED);
290 }
291
292 return &lock->qp_group[qp_idx];
293 }
294
ossl_rcu_free_local_data(void * arg)295 static void ossl_rcu_free_local_data(void *arg)
296 {
297 OSSL_LIB_CTX *ctx = arg;
298 CRYPTO_THREAD_LOCAL *lkey = ossl_lib_ctx_get_rcukey(ctx);
299 struct rcu_thr_data *data = CRYPTO_THREAD_get_local(lkey);
300
301 OPENSSL_free(data);
302 CRYPTO_THREAD_set_local(lkey, NULL);
303 }
304
ossl_rcu_read_lock(CRYPTO_RCU_LOCK * lock)305 void ossl_rcu_read_lock(CRYPTO_RCU_LOCK *lock)
306 {
307 struct rcu_thr_data *data;
308 int i, available_qp = -1;
309 CRYPTO_THREAD_LOCAL *lkey = ossl_lib_ctx_get_rcukey(lock->ctx);
310
311 /*
312 * we're going to access current_qp here so ask the
313 * processor to fetch it
314 */
315 data = CRYPTO_THREAD_get_local(lkey);
316
317 if (data == NULL) {
318 data = OPENSSL_zalloc(sizeof(*data));
319 OPENSSL_assert(data != NULL);
320 CRYPTO_THREAD_set_local(lkey, data);
321 ossl_init_thread_start(NULL, lock->ctx, ossl_rcu_free_local_data);
322 }
323
324 for (i = 0; i < MAX_QPS; i++) {
325 if (data->thread_qps[i].qp == NULL && available_qp == -1)
326 available_qp = i;
327 /* If we have a hold on this lock already, we're good */
328 if (data->thread_qps[i].lock == lock) {
329 data->thread_qps[i].depth++;
330 return;
331 }
332 }
333
334 /*
335 * if we get here, then we don't have a hold on this lock yet
336 */
337 assert(available_qp != -1);
338
339 data->thread_qps[available_qp].qp = get_hold_current_qp(lock);
340 data->thread_qps[available_qp].depth = 1;
341 data->thread_qps[available_qp].lock = lock;
342 }
343
ossl_rcu_read_unlock(CRYPTO_RCU_LOCK * lock)344 void ossl_rcu_read_unlock(CRYPTO_RCU_LOCK *lock)
345 {
346 int i;
347 CRYPTO_THREAD_LOCAL *lkey = ossl_lib_ctx_get_rcukey(lock->ctx);
348 struct rcu_thr_data *data = CRYPTO_THREAD_get_local(lkey);
349 uint64_t ret;
350
351 assert(data != NULL);
352
353 for (i = 0; i < MAX_QPS; i++) {
354 if (data->thread_qps[i].lock == lock) {
355 /*
356 * we have to use __ATOMIC_RELEASE here
357 * to ensure that all preceding read instructions complete
358 * before the decrement is visible to ossl_synchronize_rcu
359 */
360 data->thread_qps[i].depth--;
361 if (data->thread_qps[i].depth == 0) {
362 ret = ATOMIC_SUB_FETCH(&data->thread_qps[i].qp->users,
363 (uint64_t)1, __ATOMIC_RELEASE);
364 OPENSSL_assert(ret != UINT64_MAX);
365 data->thread_qps[i].qp = NULL;
366 data->thread_qps[i].lock = NULL;
367 }
368 return;
369 }
370 }
371 /*
372 * If we get here, we're trying to unlock a lock that we never acquired -
373 * that's fatal.
374 */
375 assert(0);
376 }
377
378 /*
379 * Write side allocation routine to get the current qp
380 * and replace it with a new one
381 */
update_qp(CRYPTO_RCU_LOCK * lock,uint32_t * curr_id)382 static struct rcu_qp *update_qp(CRYPTO_RCU_LOCK *lock, uint32_t *curr_id)
383 {
384 uint32_t current_idx;
385
386 pthread_mutex_lock(&lock->alloc_lock);
387
388 /*
389 * we need at least one qp to be available with one
390 * left over, so that readers can start working on
391 * one that isn't yet being waited on
392 */
393 while (lock->group_count - lock->writers_alloced < 2)
394 /* we have to wait for one to be free */
395 pthread_cond_wait(&lock->alloc_signal, &lock->alloc_lock);
396
397 current_idx = lock->current_alloc_idx;
398
399 /* Allocate the qp */
400 lock->writers_alloced++;
401
402 /* increment the allocation index */
403 lock->current_alloc_idx = (lock->current_alloc_idx + 1) % lock->group_count;
404
405 *curr_id = lock->id_ctr;
406 lock->id_ctr++;
407
408 /*
409 * make the current state of everything visible by this release
410 * when get_hold_current_qp acquires the next qp
411 */
412 ATOMIC_STORE_N(uint32_t, &lock->reader_idx, lock->current_alloc_idx,
413 __ATOMIC_RELEASE);
414
415 /*
416 * this should make sure that the new value of reader_idx is visible in
417 * get_hold_current_qp, directly after incrementing the users count
418 */
419 ATOMIC_ADD_FETCH(&lock->qp_group[current_idx].users, (uint64_t)0,
420 __ATOMIC_RELEASE);
421
422 /* wake up any waiters */
423 pthread_cond_signal(&lock->alloc_signal);
424 pthread_mutex_unlock(&lock->alloc_lock);
425 return &lock->qp_group[current_idx];
426 }
427
retire_qp(CRYPTO_RCU_LOCK * lock,struct rcu_qp * qp)428 static void retire_qp(CRYPTO_RCU_LOCK *lock, struct rcu_qp *qp)
429 {
430 pthread_mutex_lock(&lock->alloc_lock);
431 lock->writers_alloced--;
432 pthread_cond_signal(&lock->alloc_signal);
433 pthread_mutex_unlock(&lock->alloc_lock);
434 }
435
allocate_new_qp_group(CRYPTO_RCU_LOCK * lock,uint32_t count)436 static struct rcu_qp *allocate_new_qp_group(CRYPTO_RCU_LOCK *lock,
437 uint32_t count)
438 {
439 struct rcu_qp *new = OPENSSL_zalloc(sizeof(*new) * count);
440
441 lock->group_count = count;
442 return new;
443 }
444
ossl_rcu_write_lock(CRYPTO_RCU_LOCK * lock)445 void ossl_rcu_write_lock(CRYPTO_RCU_LOCK *lock)
446 {
447 pthread_mutex_lock(&lock->write_lock);
448 TSAN_FAKE_UNLOCK(&lock->write_lock);
449 }
450
ossl_rcu_write_unlock(CRYPTO_RCU_LOCK * lock)451 void ossl_rcu_write_unlock(CRYPTO_RCU_LOCK *lock)
452 {
453 TSAN_FAKE_LOCK(&lock->write_lock);
454 pthread_mutex_unlock(&lock->write_lock);
455 }
456
ossl_synchronize_rcu(CRYPTO_RCU_LOCK * lock)457 void ossl_synchronize_rcu(CRYPTO_RCU_LOCK *lock)
458 {
459 struct rcu_qp *qp;
460 uint64_t count;
461 uint32_t curr_id;
462 struct rcu_cb_item *cb_items, *tmpcb;
463
464 pthread_mutex_lock(&lock->write_lock);
465 cb_items = lock->cb_items;
466 lock->cb_items = NULL;
467 pthread_mutex_unlock(&lock->write_lock);
468
469 qp = update_qp(lock, &curr_id);
470
471 /* retire in order */
472 pthread_mutex_lock(&lock->prior_lock);
473 while (lock->next_to_retire != curr_id)
474 pthread_cond_wait(&lock->prior_signal, &lock->prior_lock);
475
476 /*
477 * wait for the reader count to reach zero
478 * Note the use of __ATOMIC_ACQUIRE here to ensure that any
479 * prior __ATOMIC_RELEASE write operation in ossl_rcu_read_unlock
480 * is visible prior to our read
481 * however this is likely just necessary to silence a tsan warning
482 * because the read side should not do any write operation
483 * outside the atomic itself
484 */
485 do {
486 count = ATOMIC_LOAD_N(uint64_t, &qp->users, __ATOMIC_ACQUIRE);
487 } while (count != (uint64_t)0);
488
489 lock->next_to_retire++;
490 pthread_cond_broadcast(&lock->prior_signal);
491 pthread_mutex_unlock(&lock->prior_lock);
492
493 retire_qp(lock, qp);
494
495 /* handle any callbacks that we have */
496 while (cb_items != NULL) {
497 tmpcb = cb_items;
498 cb_items = cb_items->next;
499 tmpcb->fn(tmpcb->data);
500 OPENSSL_free(tmpcb);
501 }
502 }
503
504 /*
505 * Note: This call assumes its made under the protection of
506 * ossl_rcu_write_lock
507 */
ossl_rcu_call(CRYPTO_RCU_LOCK * lock,rcu_cb_fn cb,void * data)508 int ossl_rcu_call(CRYPTO_RCU_LOCK *lock, rcu_cb_fn cb, void *data)
509 {
510 struct rcu_cb_item *new = OPENSSL_zalloc(sizeof(*new));
511
512 if (new == NULL)
513 return 0;
514
515 new->data = data;
516 new->fn = cb;
517
518 new->next = lock->cb_items;
519 lock->cb_items = new;
520
521 return 1;
522 }
523
ossl_rcu_uptr_deref(void ** p)524 void *ossl_rcu_uptr_deref(void **p)
525 {
526 return ATOMIC_LOAD_N(pvoid, p, __ATOMIC_ACQUIRE);
527 }
528
ossl_rcu_assign_uptr(void ** p,void ** v)529 void ossl_rcu_assign_uptr(void **p, void **v)
530 {
531 ATOMIC_STORE(pvoid, p, v, __ATOMIC_RELEASE);
532 }
533
ossl_rcu_lock_new(int num_writers,OSSL_LIB_CTX * ctx)534 CRYPTO_RCU_LOCK *ossl_rcu_lock_new(int num_writers, OSSL_LIB_CTX *ctx)
535 {
536 struct rcu_lock_st *new;
537 pthread_mutex_t *mutexes[3] = { NULL };
538 pthread_cond_t *conds[2] = { NULL };
539 int i;
540
541 /*
542 * We need a minimum of 2 qp's
543 */
544 if (num_writers < 2)
545 num_writers = 2;
546
547 ctx = ossl_lib_ctx_get_concrete(ctx);
548 if (ctx == NULL)
549 return 0;
550
551 new = OPENSSL_zalloc(sizeof(*new));
552 if (new == NULL)
553 return NULL;
554
555 new->ctx = ctx;
556 i = 0;
557 mutexes[i] = pthread_mutex_init(&new->write_lock, NULL) == 0 ? &new->write_lock : NULL;
558 if (mutexes[i++] == NULL)
559 goto err;
560 mutexes[i] = pthread_mutex_init(&new->prior_lock, NULL) == 0 ? &new->prior_lock : NULL;
561 if (mutexes[i++] == NULL)
562 goto err;
563 mutexes[i] = pthread_mutex_init(&new->alloc_lock, NULL) == 0 ? &new->alloc_lock : NULL;
564 if (mutexes[i++] == NULL)
565 goto err;
566 conds[i - 3] = pthread_cond_init(&new->prior_signal, NULL) == 0 ? &new->prior_signal : NULL;
567 if (conds[i - 3] == NULL)
568 goto err;
569 i++;
570 conds[i - 3] = pthread_cond_init(&new->alloc_signal, NULL) == 0 ? &new->alloc_signal : NULL;
571 if (conds[i - 3] == NULL)
572 goto err;
573 i++;
574 new->qp_group = allocate_new_qp_group(new, num_writers);
575 if (new->qp_group == NULL)
576 goto err;
577
578 return new;
579
580 err:
581 for (i = 0; i < 3; i++)
582 if (mutexes[i] != NULL)
583 pthread_mutex_destroy(mutexes[i]);
584 for (i = 0; i < 2; i++)
585 if (conds[i] != NULL)
586 pthread_cond_destroy(conds[i]);
587 OPENSSL_free(new->qp_group);
588 OPENSSL_free(new);
589 return NULL;
590 }
591
ossl_rcu_lock_free(CRYPTO_RCU_LOCK * lock)592 void ossl_rcu_lock_free(CRYPTO_RCU_LOCK *lock)
593 {
594 struct rcu_lock_st *rlock = (struct rcu_lock_st *)lock;
595
596 if (lock == NULL)
597 return;
598
599 /* make sure we're synchronized */
600 ossl_synchronize_rcu(rlock);
601
602 OPENSSL_free(rlock->qp_group);
603 /*
604 * Some targets (BSD) allocate heap when initializing
605 * a mutex or condition, to prevent leaks, those need
606 * to be destroyed here
607 */
608 pthread_mutex_destroy(&rlock->write_lock);
609 pthread_mutex_destroy(&rlock->prior_lock);
610 pthread_mutex_destroy(&rlock->alloc_lock);
611 pthread_cond_destroy(&rlock->prior_signal);
612 pthread_cond_destroy(&rlock->alloc_signal);
613
614 /* There should only be a single qp left now */
615 OPENSSL_free(rlock);
616 }
617
CRYPTO_THREAD_lock_new(void)618 CRYPTO_RWLOCK *CRYPTO_THREAD_lock_new(void)
619 {
620 #ifdef USE_RWLOCK
621 CRYPTO_RWLOCK *lock;
622
623 if ((lock = OPENSSL_zalloc(sizeof(pthread_rwlock_t))) == NULL)
624 /* Don't set error, to avoid recursion blowup. */
625 return NULL;
626
627 if (pthread_rwlock_init(lock, NULL) != 0) {
628 OPENSSL_free(lock);
629 return NULL;
630 }
631 #else
632 pthread_mutexattr_t attr;
633 CRYPTO_RWLOCK *lock;
634
635 if ((lock = OPENSSL_zalloc(sizeof(pthread_mutex_t))) == NULL)
636 /* Don't set error, to avoid recursion blowup. */
637 return NULL;
638
639 /*
640 * We don't use recursive mutexes, but try to catch errors if we do.
641 */
642 pthread_mutexattr_init(&attr);
643 #if !defined(__TANDEM) && !defined(_SPT_MODEL_)
644 #if !defined(NDEBUG) && !defined(OPENSSL_NO_MUTEX_ERRORCHECK)
645 pthread_mutexattr_settype(&attr, PTHREAD_MUTEX_ERRORCHECK);
646 #endif
647 #else
648 /* The SPT Thread Library does not define MUTEX attributes. */
649 #endif
650
651 if (pthread_mutex_init(lock, &attr) != 0) {
652 pthread_mutexattr_destroy(&attr);
653 OPENSSL_free(lock);
654 return NULL;
655 }
656
657 pthread_mutexattr_destroy(&attr);
658 #endif
659
660 return lock;
661 }
662
CRYPTO_THREAD_read_lock(CRYPTO_RWLOCK * lock)663 __owur int CRYPTO_THREAD_read_lock(CRYPTO_RWLOCK *lock)
664 {
665 #ifdef USE_RWLOCK
666 if (!ossl_assert(pthread_rwlock_rdlock(lock) == 0))
667 return 0;
668 #else
669 if (pthread_mutex_lock(lock) != 0) {
670 assert(errno != EDEADLK && errno != EBUSY);
671 return 0;
672 }
673 #endif
674
675 return 1;
676 }
677
CRYPTO_THREAD_write_lock(CRYPTO_RWLOCK * lock)678 __owur int CRYPTO_THREAD_write_lock(CRYPTO_RWLOCK *lock)
679 {
680 #ifdef USE_RWLOCK
681 if (!ossl_assert(pthread_rwlock_wrlock(lock) == 0))
682 return 0;
683 #else
684 if (pthread_mutex_lock(lock) != 0) {
685 assert(errno != EDEADLK && errno != EBUSY);
686 return 0;
687 }
688 #endif
689
690 return 1;
691 }
692
CRYPTO_THREAD_unlock(CRYPTO_RWLOCK * lock)693 int CRYPTO_THREAD_unlock(CRYPTO_RWLOCK *lock)
694 {
695 #ifdef USE_RWLOCK
696 if (pthread_rwlock_unlock(lock) != 0)
697 return 0;
698 #else
699 if (pthread_mutex_unlock(lock) != 0) {
700 assert(errno != EPERM);
701 return 0;
702 }
703 #endif
704
705 return 1;
706 }
707
CRYPTO_THREAD_lock_free(CRYPTO_RWLOCK * lock)708 void CRYPTO_THREAD_lock_free(CRYPTO_RWLOCK *lock)
709 {
710 if (lock == NULL)
711 return;
712
713 #ifdef USE_RWLOCK
714 pthread_rwlock_destroy(lock);
715 #else
716 pthread_mutex_destroy(lock);
717 #endif
718 OPENSSL_free(lock);
719
720 return;
721 }
722
CRYPTO_THREAD_run_once(CRYPTO_ONCE * once,void (* init)(void))723 int CRYPTO_THREAD_run_once(CRYPTO_ONCE *once, void (*init)(void))
724 {
725 if (pthread_once(once, init) != 0)
726 return 0;
727
728 return 1;
729 }
730
CRYPTO_THREAD_init_local(CRYPTO_THREAD_LOCAL * key,void (* cleanup)(void *))731 int CRYPTO_THREAD_init_local(CRYPTO_THREAD_LOCAL *key, void (*cleanup)(void *))
732 {
733
734 #ifndef FIPS_MODULE
735 if (!ossl_init_thread())
736 return 0;
737 #endif
738
739 if (pthread_key_create(key, cleanup) != 0)
740 return 0;
741
742 return 1;
743 }
744
CRYPTO_THREAD_get_local(CRYPTO_THREAD_LOCAL * key)745 void *CRYPTO_THREAD_get_local(CRYPTO_THREAD_LOCAL *key)
746 {
747 return pthread_getspecific(*key);
748 }
749
CRYPTO_THREAD_set_local(CRYPTO_THREAD_LOCAL * key,void * val)750 int CRYPTO_THREAD_set_local(CRYPTO_THREAD_LOCAL *key, void *val)
751 {
752 if (pthread_setspecific(*key, val) != 0)
753 return 0;
754
755 return 1;
756 }
757
CRYPTO_THREAD_cleanup_local(CRYPTO_THREAD_LOCAL * key)758 int CRYPTO_THREAD_cleanup_local(CRYPTO_THREAD_LOCAL *key)
759 {
760 if (pthread_key_delete(*key) != 0)
761 return 0;
762
763 return 1;
764 }
765
CRYPTO_THREAD_get_current_id(void)766 CRYPTO_THREAD_ID CRYPTO_THREAD_get_current_id(void)
767 {
768 return pthread_self();
769 }
770
CRYPTO_THREAD_compare_id(CRYPTO_THREAD_ID a,CRYPTO_THREAD_ID b)771 int CRYPTO_THREAD_compare_id(CRYPTO_THREAD_ID a, CRYPTO_THREAD_ID b)
772 {
773 return pthread_equal(a, b);
774 }
775
CRYPTO_atomic_add(int * val,int amount,int * ret,CRYPTO_RWLOCK * lock)776 int CRYPTO_atomic_add(int *val, int amount, int *ret, CRYPTO_RWLOCK *lock)
777 {
778 #if defined(__GNUC__) && defined(__ATOMIC_ACQ_REL) && !defined(BROKEN_CLANG_ATOMICS)
779 if (__atomic_is_lock_free(sizeof(*val), val)) {
780 *ret = __atomic_add_fetch(val, amount, __ATOMIC_ACQ_REL);
781 return 1;
782 }
783 #elif defined(__sun) && (defined(__SunOS_5_10) || defined(__SunOS_5_11))
784 /* This will work for all future Solaris versions. */
785 if (ret != NULL) {
786 *ret = atomic_add_int_nv((volatile unsigned int *)val, amount);
787 return 1;
788 }
789 #endif
790 if (lock == NULL || !CRYPTO_THREAD_write_lock(lock))
791 return 0;
792
793 *val += amount;
794 *ret = *val;
795
796 if (!CRYPTO_THREAD_unlock(lock))
797 return 0;
798
799 return 1;
800 }
801
CRYPTO_atomic_add64(uint64_t * val,uint64_t op,uint64_t * ret,CRYPTO_RWLOCK * lock)802 int CRYPTO_atomic_add64(uint64_t *val, uint64_t op, uint64_t *ret,
803 CRYPTO_RWLOCK *lock)
804 {
805 #if defined(__GNUC__) && defined(__ATOMIC_ACQ_REL) && !defined(BROKEN_CLANG_ATOMICS)
806 if (__atomic_is_lock_free(sizeof(*val), val)) {
807 *ret = __atomic_add_fetch(val, op, __ATOMIC_ACQ_REL);
808 return 1;
809 }
810 #elif defined(__sun) && (defined(__SunOS_5_10) || defined(__SunOS_5_11))
811 /* This will work for all future Solaris versions. */
812 if (ret != NULL) {
813 *ret = atomic_add_64_nv(val, op);
814 return 1;
815 }
816 #endif
817 if (lock == NULL || !CRYPTO_THREAD_write_lock(lock))
818 return 0;
819 *val += op;
820 *ret = *val;
821
822 if (!CRYPTO_THREAD_unlock(lock))
823 return 0;
824
825 return 1;
826 }
827
CRYPTO_atomic_and(uint64_t * val,uint64_t op,uint64_t * ret,CRYPTO_RWLOCK * lock)828 int CRYPTO_atomic_and(uint64_t *val, uint64_t op, uint64_t *ret,
829 CRYPTO_RWLOCK *lock)
830 {
831 #if defined(__GNUC__) && defined(__ATOMIC_ACQ_REL) && !defined(BROKEN_CLANG_ATOMICS)
832 if (__atomic_is_lock_free(sizeof(*val), val)) {
833 *ret = __atomic_and_fetch(val, op, __ATOMIC_ACQ_REL);
834 return 1;
835 }
836 #elif defined(__sun) && (defined(__SunOS_5_10) || defined(__SunOS_5_11))
837 /* This will work for all future Solaris versions. */
838 if (ret != NULL) {
839 *ret = atomic_and_64_nv(val, op);
840 return 1;
841 }
842 #endif
843 if (lock == NULL || !CRYPTO_THREAD_write_lock(lock))
844 return 0;
845 *val &= op;
846 *ret = *val;
847
848 if (!CRYPTO_THREAD_unlock(lock))
849 return 0;
850
851 return 1;
852 }
853
CRYPTO_atomic_or(uint64_t * val,uint64_t op,uint64_t * ret,CRYPTO_RWLOCK * lock)854 int CRYPTO_atomic_or(uint64_t *val, uint64_t op, uint64_t *ret,
855 CRYPTO_RWLOCK *lock)
856 {
857 #if defined(__GNUC__) && defined(__ATOMIC_ACQ_REL) && !defined(BROKEN_CLANG_ATOMICS)
858 if (__atomic_is_lock_free(sizeof(*val), val)) {
859 *ret = __atomic_or_fetch(val, op, __ATOMIC_ACQ_REL);
860 return 1;
861 }
862 #elif defined(__sun) && (defined(__SunOS_5_10) || defined(__SunOS_5_11))
863 /* This will work for all future Solaris versions. */
864 if (ret != NULL) {
865 *ret = atomic_or_64_nv(val, op);
866 return 1;
867 }
868 #endif
869 if (lock == NULL || !CRYPTO_THREAD_write_lock(lock))
870 return 0;
871 *val |= op;
872 *ret = *val;
873
874 if (!CRYPTO_THREAD_unlock(lock))
875 return 0;
876
877 return 1;
878 }
879
CRYPTO_atomic_load(uint64_t * val,uint64_t * ret,CRYPTO_RWLOCK * lock)880 int CRYPTO_atomic_load(uint64_t *val, uint64_t *ret, CRYPTO_RWLOCK *lock)
881 {
882 #if defined(__GNUC__) && defined(__ATOMIC_ACQ_REL) && !defined(BROKEN_CLANG_ATOMICS)
883 if (__atomic_is_lock_free(sizeof(*val), val)) {
884 __atomic_load(val, ret, __ATOMIC_ACQUIRE);
885 return 1;
886 }
887 #elif defined(__sun) && (defined(__SunOS_5_10) || defined(__SunOS_5_11))
888 /* This will work for all future Solaris versions. */
889 if (ret != NULL) {
890 *ret = atomic_or_64_nv(val, 0);
891 return 1;
892 }
893 #endif
894 if (lock == NULL || !CRYPTO_THREAD_read_lock(lock))
895 return 0;
896 *ret = *val;
897 if (!CRYPTO_THREAD_unlock(lock))
898 return 0;
899
900 return 1;
901 }
902
CRYPTO_atomic_store(uint64_t * dst,uint64_t val,CRYPTO_RWLOCK * lock)903 int CRYPTO_atomic_store(uint64_t *dst, uint64_t val, CRYPTO_RWLOCK *lock)
904 {
905 #if defined(__GNUC__) && defined(__ATOMIC_ACQ_REL) && !defined(BROKEN_CLANG_ATOMICS)
906 if (__atomic_is_lock_free(sizeof(*dst), dst)) {
907 __atomic_store(dst, &val, __ATOMIC_RELEASE);
908 return 1;
909 }
910 #elif defined(__sun) && (defined(__SunOS_5_10) || defined(__SunOS_5_11))
911 /* This will work for all future Solaris versions. */
912 if (dst != NULL) {
913 atomic_swap_64(dst, val);
914 return 1;
915 }
916 #endif
917 if (lock == NULL || !CRYPTO_THREAD_write_lock(lock))
918 return 0;
919 *dst = val;
920 if (!CRYPTO_THREAD_unlock(lock))
921 return 0;
922
923 return 1;
924 }
925
CRYPTO_atomic_load_int(int * val,int * ret,CRYPTO_RWLOCK * lock)926 int CRYPTO_atomic_load_int(int *val, int *ret, CRYPTO_RWLOCK *lock)
927 {
928 #if defined(__GNUC__) && defined(__ATOMIC_ACQ_REL) && !defined(BROKEN_CLANG_ATOMICS)
929 if (__atomic_is_lock_free(sizeof(*val), val)) {
930 __atomic_load(val, ret, __ATOMIC_ACQUIRE);
931 return 1;
932 }
933 #elif defined(__sun) && (defined(__SunOS_5_10) || defined(__SunOS_5_11))
934 /* This will work for all future Solaris versions. */
935 if (ret != NULL) {
936 *ret = (int)atomic_or_uint_nv((unsigned int *)val, 0);
937 return 1;
938 }
939 #endif
940 if (lock == NULL || !CRYPTO_THREAD_read_lock(lock))
941 return 0;
942 *ret = *val;
943 if (!CRYPTO_THREAD_unlock(lock))
944 return 0;
945
946 return 1;
947 }
948
949 #ifndef FIPS_MODULE
openssl_init_fork_handlers(void)950 int openssl_init_fork_handlers(void)
951 {
952 return 1;
953 }
954 #endif /* FIPS_MODULE */
955
openssl_get_fork_id(void)956 int openssl_get_fork_id(void)
957 {
958 return getpid();
959 }
960 #endif
961