Remove remaining calls to the old lock functions. |SSL_CTX| and |X509_STORE| have grown their own locks. Several static locks have been added to hack around not being able to use a |CRYPTO_once_t| in public headers. Lastly, support for calling |SSL_CTX_set_generate_session_id| concurrently with active connections has been removed. No other property of an |SSL_CTX| works like that. Change-Id: Iff5fe3ee3fdd6ea9c9daee96f850b107ad8a6bca Reviewed-on: https://boringssl-review.googlesource.com/4775 Reviewed-by: Adam Langley <agl@google.com>

commit: 4bdb6e43fa285df88d57ce3b79f3711097328d28 [log] [tgz]
author: Adam Langley <alangley@gmail.com> Fri May 15 15:29:21 2015 -0700
committer: Adam Langley <agl@google.com> Wed May 20 19:18:13 2015 +0000
tree: d2533a32138c1004fb084a87bd8bfefe1309eb8a
parent: 03163f3a115e5305adf5410e7092a65b6e6d534d [diff] [blame]
diff --git a/include/openssl/x509_vfy.h b/include/openssl/x509_vfy.h
index 32ba134..146e047 100644
--- a/include/openssl/x509_vfy.h
+++ b/include/openssl/x509_vfy.h

@@ -184,6 +184,7 @@
 	/* The following is a cache of trusted certs */
 	int cache; 	/* if true, stash any hits */
 	STACK_OF(X509_OBJECT) *objs;	/* Cache of all objects */
+	CRYPTO_MUTEX objs_lock;
 
 	/* These are external lookup methods */
 	STACK_OF(X509_LOOKUP) *get_cert_methods;
commit	4bdb6e43fa285df88d57ce3b79f3711097328d28	[log] [tgz]
author	Adam Langley <alangley@gmail.com>	Fri May 15 15:29:21 2015 -0700
committer	Adam Langley <agl@google.com>	Wed May 20 19:18:13 2015 +0000
tree	d2533a32138c1004fb084a87bd8bfefe1309eb8a
parent	03163f3a115e5305adf5410e7092a65b6e6d534d [diff] [blame]