Home Explore Help
Sign In
OWEALs
/
openssl
mirror of git://git.openssl.org/openssl.git
2
0
Fork 0
Files Issues 1 Wiki
Tree: 450f96e965
Branches Tags
openssl
/
doc
/
man3
/
OSSL_LIB_CTX.pod

OSSL_LIB_CTX.pod 6.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136 
  1. =pod
    2. 

  2. 

  3. =head1 NAME
    4. 

  4. 

  5. OSSL_LIB_CTX, OSSL_LIB_CTX_new, OSSL_LIB_CTX_new_from_dispatch,
    6. 

  6. OSSL_LIB_CTX_new_child, OSSL_LIB_CTX_free, OSSL_LIB_CTX_load_config,
    7. 

  7. OSSL_LIB_CTX_get0_global_default, OSSL_LIB_CTX_set0_default
    8. 

  8. - OpenSSL library context
    9. 

  9. 

  10. =head1 SYNOPSIS
    11. 

  11. 

  12.  #include <openssl/crypto.h>
    13. 

  13. 

  14.  typedef struct ossl_lib_ctx_st OSSL_LIB_CTX;
    15. 

  15. 

  16.  OSSL_LIB_CTX *OSSL_LIB_CTX_new(void);
    17. 

  17.  OSSL_LIB_CTX *OSSL_LIB_CTX_new_from_dispatch(const OSSL_CORE_HANDLE *handle,
    18. 

  18.                                               const OSSL_DISPATCH *in);
    19. 

  19.  OSSL_LIB_CTX *OSSL_LIB_CTX_new_child(const OSSL_CORE_HANDLE *handle,
    20. 

  20.                                       const OSSL_DISPATCH *in);
    21. 

  21.  int OSSL_LIB_CTX_load_config(OSSL_LIB_CTX *ctx, const char *config_file);
    22. 

  22.  void OSSL_LIB_CTX_free(OSSL_LIB_CTX *ctx);
    23. 

  23.  OSSL_LIB_CTX *OSSL_LIB_CTX_get0_global_default(void);
    24. 

  24.  OSSL_LIB_CTX *OSSL_LIB_CTX_set0_default(OSSL_LIB_CTX *ctx);
    25. 

  25. 

  26. =head1 DESCRIPTION
    27. 

  27. 

  28. B<OSSL_LIB_CTX> is an internal OpenSSL library context type.
    29. 

  29. Applications may allocate their own, but may also use NULL to use
    30. 

  30. a default context with functions that take an B<OSSL_LIB_CTX>
    31. 

  31. argument.
    32. 

  32. 

  33. When a non default library context is in use care should be taken with
    34. 

  34. multi-threaded applications to properly clean up thread local resources before
    35. 

  35. the OSSL_LIB_CTX is freed.
    36. 

  36. See L<OPENSSL_thread_stop_ex(3)> for more information.
    37. 

  37. 

  38. OSSL_LIB_CTX_new() creates a new OpenSSL library context.
    39. 

  39. 

  40. OSSL_LIB_CTX_new_from_dispatch() creates a new OpenSSL library context
    41. 

  41. initialised to use callbacks from the OSSL_DISPATCH structure. This is primarily
    42. 

  42. useful for provider authors. The I<handle> and dispatch structure arguments
    43. 

  43. passed should be the same ones as passed to a provider's
    44. 

  44. OSSL_provider_init function. Some OpenSSL functions, such as
    45. 

  45. L<BIO_new_from_core_bio(3)>, require the library context to be created in this
    46. 

  46. way in order to work.
    47. 

  47. 

  48. OSSL_LIB_CTX_new_child() is only useful to provider authors and does the same
    49. 

  49. thing as OSSL_LIB_CTX_new_from_dispatch() except that it additionally links the
    50. 

  50. new library context to the application library context. The new library context
    51. 

  51. is a full library context in its own right, but will have all the same providers
    52. 

  52. available to it that are available in the application library context (without
    53. 

  53. having to reload them). If the application loads or unloads providers from the
    54. 

  54. application library context then this will be automatically mirrored in the
    55. 

  55. child library context.
    56. 

  56. 

  57. In addition providers that are not loaded in the parent library context can be
    58. 

  58. explicitly loaded into the child library context independently from the parent
    59. 

  59. library context. Providers loaded independently in this way will not be mirrored
    60. 

  60. in the parent library context and will not be affected if the parent library
    61. 

  61. context subsequently loads the same provider.
    62. 

  62. 

  63. A provider may call the function L<OSSL_PROVIDER_load(3)> with the child library
    64. 

  64. context as required. If the provider already exists due to it being mirrored
    65. 

  65. from the parent library context then it will remain available and its reference
    66. 

  66. count will be increased. If L<OSSL_PROVIDER_load(3)> is called in this way then
    67. 

  67. L<OSSL_PROVIDER_unload(3)> should be subsequently called to decrement the
    68. 

  68. reference count. L<OSSL_PROVIDER_unload(3)> must not be called for a provider in
    69. 

  69. the child library context that did not have an earlier L<OSSL_PROVIDER_load(3)>
    70. 

  70. call for that provider in that child library context.
    71. 

  71. 

  72. In addition to providers, a child library context will also mirror the default
    73. 

  73. properties (set via L<EVP_set_default_properties(3)>) from the parent library
    74. 

  74. context. If L<EVP_set_default_properties(3)> is called directly on a child
    75. 

  75. library context then the new properties will override anything from the parent
    76. 

  76. library context and mirroring of the properties will stop.
    77. 

  77. 

  78. When OSSL_LIB_CTX_new_child() is called from within the scope of a provider's
    79. 

  79. B<OSSL_provider_init> function the currently initialising provider is not yet
    80. 

  80. available in the application's library context and therefore will similarly not
    81. 

  81. yet be available in the newly constructed child library context. As soon as the
    82. 

  82. B<OSSL_provider_init> function returns then the new provider is available in the
    83. 

  83. application's library context and will be similarly mirrored in the child
    84. 

  84. library context.
    85. 

  85. 

  86. OSSL_LIB_CTX_load_config() loads a configuration file using the given I<ctx>.
    87. 

  87. This can be used to associate a library context with providers that are loaded
    88. 

  88. from a configuration.
    89. 

  89. 

  90. OSSL_LIB_CTX_free() frees the given I<ctx>, unless it happens to be the
    91. 

  91. default OpenSSL library context.
    92. 

  92. 

  93. OSSL_LIB_CTX_get0_global_default() returns a concrete (non NULL) reference to
    94. 

  94. the global default library context.
    95. 

  95. 

  96. OSSL_LIB_CTX_set0_default() sets the default OpenSSL library context to be
    97. 

  97. I<ctx> in the current thread.  The previous default library context is
    98. 

  98. returned.  Care should be taken by the caller to restore the previous
    99. 

  99. default library context with a subsequent call of this function. If I<ctx> is
    100. 

  100. NULL then no change is made to the default library context, but a pointer to
    101. 

  101. the current library context is still returned. On a successful call of this
    102. 

  102. function the returned value will always be a concrete (non NULL) library
    103. 

  103. context.
    104. 

  104. 

  105. Care should be taken when changing the default library context and starting
    106. 

  106. async jobs (see L<ASYNC_start_job(3)>), as the default library context when
    107. 

  107. the job is started will be used throughout the lifetime of an async job, no
    108. 

  108. matter how the calling thread makes further default library context changes
    109. 

  109. in the mean time.  This means that the calling thread must not free the
    110. 

  110. library context that was the default at the start of the async job before
    111. 

  111. that job has finished.
    112. 

  112. 

  113. =head1 RETURN VALUES
    114. 

  114. 

  115. OSSL_LIB_CTX_new(), OSSL_LIB_CTX_get0_global_default() and
    116. 

  116. OSSL_LIB_CTX_set0_default() return a library context pointer on success, or NULL
    117. 

  117. on error.
    118. 

  118. 

  119. OSSL_LIB_CTX_free() doesn't return any value.
    120. 

  120. 

  121. OSSL_LIB_CTX_load_config() returns 1 on success, 0 on error.
    122. 

  122. 

  123. =head1 HISTORY
    124. 

  124. 

  125. All of the functions described on this page were added in OpenSSL 3.0.
    126. 

  126. 

  127. =head1 COPYRIGHT
    128. 

  128. 

  129. Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.
    130. 

  130. 

  131. Licensed under the Apache License 2.0 (the "License").  You may not use
    132. 

  132. this file except in compliance with the License.  You can obtain a copy
    133. 

  133. in the file LICENSE in the source distribution or at
    134. 

  134. L<https://www.openssl.org/source/license.html>.
    135. 

  135. 

  136. =cut
    137.