| // Copyright (c) 2011 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "crypto/openssl_util.h" |
| |
| #include <openssl/err.h> |
| #include <openssl/ssl.h> |
| #include <openssl/cpu.h> |
| #include <stddef.h> |
| #include <stdint.h> |
| |
| #include "base/logging.h" |
| #include "base/macros.h" |
| #include "base/memory/singleton.h" |
| #include "base/strings/string_piece.h" |
| #include "build/build_config.h" |
| |
| #if defined(OS_ANDROID) && defined(ARCH_CPU_ARMEL) |
| #include <cpu-features.h> |
| #include "base/cpu.h" |
| #endif |
| |
| namespace crypto { |
| |
| namespace { |
| |
| // Singleton for initializing and cleaning up the OpenSSL library. |
| class OpenSSLInitSingleton { |
| public: |
| static OpenSSLInitSingleton* GetInstance() { |
| // We allow the SSL environment to leak for multiple reasons: |
| // - it is used from a non-joinable worker thread that is not stopped on |
| // shutdown, hence may still be using OpenSSL library after the AtExit |
| // runner has completed. |
| // - There are other OpenSSL related singletons (e.g. the client socket |
| // context) who's cleanup depends on the global environment here, but |
| // we can't control the order the AtExit handlers will run in so |
| // allowing the global environment to leak at least ensures it is |
| // available for those other singletons to reliably cleanup. |
| return base::Singleton< |
| OpenSSLInitSingleton, |
| base::LeakySingletonTraits<OpenSSLInitSingleton>>::get(); |
| } |
| private: |
| friend struct base::DefaultSingletonTraits<OpenSSLInitSingleton>; |
| OpenSSLInitSingleton() { |
| #if defined(OS_ANDROID) && defined(ARCH_CPU_ARMEL) |
| const bool has_neon = |
| (android_getCpuFeatures() & ANDROID_CPU_ARM_FEATURE_NEON) != 0; |
| // CRYPTO_set_NEON_capable is called before |SSL_library_init| because this |
| // stops BoringSSL from probing for NEON support via SIGILL in the case |
| // that getauxval isn't present. |
| CRYPTO_set_NEON_capable(has_neon); |
| // See https://code.google.com/p/chromium/issues/detail?id=341598 |
| base::CPU cpu; |
| CRYPTO_set_NEON_functional(!cpu.has_broken_neon()); |
| #endif |
| |
| SSL_library_init(); |
| } |
| |
| ~OpenSSLInitSingleton() {} |
| |
| DISALLOW_COPY_AND_ASSIGN(OpenSSLInitSingleton); |
| }; |
| |
| // Callback routine for OpenSSL to print error messages. |str| is a |
| // NULL-terminated string of length |len| containing diagnostic information |
| // such as the library, function and reason for the error, the file and line |
| // where the error originated, plus potentially any context-specific |
| // information about the error. |context| contains a pointer to user-supplied |
| // data, which is currently unused. |
| // If this callback returns a value <= 0, OpenSSL will stop processing the |
| // error queue and return, otherwise it will continue calling this function |
| // until all errors have been removed from the queue. |
| int OpenSSLErrorCallback(const char* str, size_t len, void* context) { |
| DVLOG(1) << "\t" << base::StringPiece(str, len); |
| return 1; |
| } |
| |
| } // namespace |
| |
| void EnsureOpenSSLInit() { |
| (void)OpenSSLInitSingleton::GetInstance(); |
| } |
| |
| void ClearOpenSSLERRStack(const tracked_objects::Location& location) { |
| if (logging::DEBUG_MODE && VLOG_IS_ON(1)) { |
| uint32_t error_num = ERR_peek_error(); |
| if (error_num == 0) |
| return; |
| |
| std::string message; |
| location.Write(true, true, &message); |
| DVLOG(1) << "OpenSSL ERR_get_error stack from " << message; |
| ERR_print_errors_cb(&OpenSSLErrorCallback, NULL); |
| } else { |
| ERR_clear_error(); |
| } |
| } |
| |
| } // namespace crypto |
