add OpenSSL 1.1.0-pre1 compatibility

* close https://github.com/libssh2/libssh2/issues/69 * sync a declaration with the rest of similar ones * handle EVP_MD_CTX_new() returning NULL with OpenSSL 1.1.0 * fix potential memory leak with OpenSSL 1.1.0 in _libssh2_*_init() functions, when EVP_MD_CTX_new() succeeds, but EVP_DigestInit() fails.
2025-11-21 14:00:51 +03:00 · 2015-12-25 19:18:33 +01:00
parent cf544d0f4c
commit 73930e6577
2 changed files with 132 additions and 1 deletions
--- a/src/openssl.c
+++ b/src/openssl.c
@@ -569,14 +569,43 @@ _libssh2_dsa_sha1_sign(libssh2_dsa_ctx * dsactx,
 int
 _libssh2_sha1_init(libssh2_sha1_ctx *ctx)
 {
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+    *ctx = EVP_MD_CTX_new();
+
+    if (*ctx == NULL)
+        return 0;
+
+    if (EVP_DigestInit(*ctx, EVP_get_digestbyname("sha1")))
+        return 1;
+
+    EVP_MD_CTX_free(*ctx);
+    *ctx = NULL;
+
+    return 0;
+#else
    EVP_MD_CTX_init(ctx);
    return EVP_DigestInit(ctx, EVP_get_digestbyname("sha1"));
+#endif
 }

 int
 _libssh2_sha1(const unsigned char *message, unsigned long len,
              unsigned char *out)
 {
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+    EVP_MD_CTX * ctx = EVP_MD_CTX_new();
+
+    if (ctx == NULL)
+        return 1; /* error */
+
+    if (EVP_DigestInit(ctx, EVP_get_digestbyname("sha1"))) {
+        EVP_DigestUpdate(ctx, message, len);
+        EVP_DigestFinal(ctx, out, NULL);
+        EVP_MD_CTX_free(ctx);
+        return 0; /* success */
+    }
+    EVP_MD_CTX_free(ctx);
+#else
    EVP_MD_CTX ctx;

    EVP_MD_CTX_init(&ctx);
@@ -585,20 +614,50 @@ _libssh2_sha1(const unsigned char *message, unsigned long len,
        EVP_DigestFinal(&ctx, out, NULL);
        return 0; /* success */
    }
+#endif
    return 1; /* error */
 }

 int
 _libssh2_sha256_init(libssh2_sha256_ctx *ctx)
 {
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+    *ctx = EVP_MD_CTX_new();
+
+    if (*ctx == NULL)
+        return 0;
+
+    if (EVP_DigestInit(*ctx, EVP_get_digestbyname("sha256")))
+        return 1;
+
+    EVP_MD_CTX_free(*ctx);
+    *ctx = NULL;
+
+    return 0;
+#else
    EVP_MD_CTX_init(ctx);
    return EVP_DigestInit(ctx, EVP_get_digestbyname("sha256"));
+#endif
 }

 int
 _libssh2_sha256(const unsigned char *message, unsigned long len,
                unsigned char *out)
 {
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+    EVP_MD_CTX * ctx = EVP_MD_CTX_new();
+
+    if (ctx == NULL)
+        return 1; /* error */
+
+    if(EVP_DigestInit(ctx, EVP_get_digestbyname("sha256"))) {
+        EVP_DigestUpdate(ctx, message, len);
+        EVP_DigestFinal(ctx, out, NULL);
+        EVP_MD_CTX_free(ctx);
+        return 0; /* success */
+    }
+    EVP_MD_CTX_free(ctx);
+#else
    EVP_MD_CTX ctx;

    EVP_MD_CTX_init(&ctx);
@@ -607,14 +666,30 @@ _libssh2_sha256(const unsigned char *message, unsigned long len,
        EVP_DigestFinal(&ctx, out, NULL);
        return 0; /* success */
    }
+#endif
    return 1; /* error */
 }

 int
 _libssh2_md5_init(libssh2_md5_ctx *ctx)
 {
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+    *ctx = EVP_MD_CTX_new();
+
+    if (*ctx == NULL)
+        return 0;
+
+    if (EVP_DigestInit(*ctx, EVP_get_digestbyname("md5")))
+        return 1;
+
+    EVP_MD_CTX_free(*ctx);
+    *ctx = NULL;
+
+    return 0;
+#else
    EVP_MD_CTX_init(ctx);
    return EVP_DigestInit(ctx, EVP_get_digestbyname("md5"));
+#endif
 }

 static unsigned char *