git.librecmc.org Git - oweals/openssl.git/commit

author	Richard Levitte <levitte@openssl.org>
	Tue, 12 May 2020 06:46:23 +0000 (08:46 +0200)
committer	Matt Caswell <matt@openssl.org>
	Wed, 13 May 2020 16:21:58 +0000 (17:21 +0100)
commit	05aa8790ac1ef2bb39c15ae241a591704664039c
tree	4fda5d8623ab69abcd5c7eed3cbd3ab740e4ed28	tree \| snapshot
parent	484c24c8d7318cc36f9b3c2b7b55cf5ac91619ca	commit \| diff

PROV: Add a proper provider context structure for OpenSSL providers

The provider context structure is made to include the following information:

- The core provider handle (first argument to the provider init
  function).  This handle is meant to be used in all upcalls that need
  it.

- A library context, used for any libcrypto calls that need it, done in
  the provider itself.

Regarding the library context, that's generally only needed if the
provider makes any libcrypto calls, i.e. is linked with libcrypto.  That
happens to be the case for all OpenSSL providers, but is applicable for
other providers that use libcrypto internally as well.

The normal thing to do for a provider init function is to create its own
library context.  For a provider that's meant to become a dynamically
loadable module, this is what MUST be done.
However, we do not do that in the default provider; it uses the library
context associated with the core provider handle instead.  This is
permissible, although generally discouraged, as long as the provider in
question is guaranteed to be built-in, into libcrypto or into the
application that uses it.

Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/11803)

providers/common/include/prov/provider_ctx.h		diff \| blob \| history
providers/common/provider_ctx.c	[new file with mode: 0644]	blob