Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support OpenSSL 1.1.0 #9

Open
hvenev opened this issue Apr 10, 2017 · 1 comment
Open

Support OpenSSL 1.1.0 #9

hvenev opened this issue Apr 10, 2017 · 1 comment

Comments

@hvenev
Copy link

hvenev commented Apr 10, 2017

In OpenSSL 1.1.0 EVP_MD_CTX is an opaque struct. This patch adds support for OpenSSL 1.1.0. It also compiles with 1.0.2.

diff --git a/src/hash.c b/src/hash.c
index b7c016b..b16b001 100644
--- a/src/hash.c
+++ b/src/hash.c
@@ -364,6 +364,11 @@ looser:
 #include "oauth.h" // base64 encode fn's.
 #include <openssl/hmac.h>
 
+#if OPENSSL_VERSION_NUMBER < 0x10100000
+#define EVP_MD_CTX_new EVP_MD_CTX_create
+#define EVP_MD_CTX_free EVP_MD_CTX_destroy
+#endif
+
 char *oauth_sign_hmac_sha1 (const char *m, const char *k) {
 	return(oauth_sign_hmac_sha1_raw (m, strlen(m), k, strlen(k)));
 }
@@ -388,7 +393,7 @@ char *oauth_sign_rsa_sha1 (const char *m, const char *k) {
 	unsigned char *sig = NULL;
 	unsigned char *passphrase = NULL;
 	unsigned int len=0;
-	EVP_MD_CTX md_ctx;
+	EVP_MD_CTX *md_ctx;
 
 	EVP_PKEY *pkey;
 	BIO *in;
@@ -401,24 +406,31 @@ char *oauth_sign_rsa_sha1 (const char *m, const char *k) {
 		return xstrdup("liboauth/OpenSSL: can not read private key");
 	}
 
+	md_ctx = EVP_MD_CTX_new();
+	if (md_ctx == NULL) {
+		return xstrdup("liboauth/OpenSSL: failed to allocate EVP_MD_CTX");
+	}
+
 	len = EVP_PKEY_size(pkey);
 	sig = (unsigned char*)xmalloc((len+1)*sizeof(char));
 
-	EVP_SignInit(&md_ctx, EVP_sha1());
-	EVP_SignUpdate(&md_ctx, m, strlen(m));
-	if (EVP_SignFinal (&md_ctx, sig, &len, pkey)) {
+	EVP_SignInit(md_ctx, EVP_sha1());
+	EVP_SignUpdate(md_ctx, m, strlen(m));
+	if (EVP_SignFinal (md_ctx, sig, &len, pkey)) {
 		char *tmp;
 		sig[len] = '\0';
 		tmp = oauth_encode_base64(len,sig);
 		OPENSSL_free(sig);
 		EVP_PKEY_free(pkey);
+		EVP_MD_CTX_free(md_ctx);
 		return tmp;
 	}
+	EVP_MD_CTX_free(md_ctx);
 	return xstrdup("liboauth/OpenSSL: rsa-sha1 signing failed");
 }
 
 int oauth_verify_rsa_sha1 (const char *m, const char *c, const char *s) {
-	EVP_MD_CTX md_ctx;
+	EVP_MD_CTX *md_ctx;
 	EVP_PKEY *pkey;
 	BIO *in;
 	X509 *cert = NULL;
@@ -439,13 +451,18 @@ int oauth_verify_rsa_sha1 (const char *m, const char *c, const char *s) {
 		return -2;
 	}
 
+	md_ctx = EVP_MD_CTX_new();
+	if (md_ctx == NULL) {
+		return -2;
+	}
+
 	b64d= (unsigned char*) xmalloc(sizeof(char)*strlen(s));
 	slen = oauth_decode_base64(b64d, s);
 
-	EVP_VerifyInit(&md_ctx, EVP_sha1());
-	EVP_VerifyUpdate(&md_ctx, m, strlen(m));
-	err = EVP_VerifyFinal(&md_ctx, b64d, slen, pkey);
-	EVP_MD_CTX_cleanup(&md_ctx);
+	EVP_VerifyInit(md_ctx, EVP_sha1());
+	EVP_VerifyUpdate(md_ctx, m, strlen(m));
+	err = EVP_VerifyFinal(md_ctx, b64d, slen, pkey);
+	EVP_MD_CTX_free(md_ctx);
 	EVP_PKEY_free(pkey);
 	xfree(b64d);
 	return (err);
@@ -457,35 +474,41 @@ int oauth_verify_rsa_sha1 (const char *m, const char *c, const char *s) {
  */
 char *oauth_body_hash_file(char *filename) {
 	unsigned char fb[BUFSIZ];
-	EVP_MD_CTX ctx;
+	EVP_MD_CTX *ctx;
 	size_t len=0;
 	unsigned char *md;
 	FILE *F= fopen(filename, "r");
 	if (!F) return NULL;
 
-	EVP_MD_CTX_init(&ctx);
-	EVP_DigestInit(&ctx,EVP_sha1());
+	ctx = EVP_MD_CTX_new();
+	if (ctx == NULL) {
+		return xstrdup("liboauth/OpenSSL: failed to allocate EVP_MD_CTX");
+	}
+	EVP_DigestInit(ctx,EVP_sha1());
 	while (!feof(F) && (len=fread(fb,sizeof(char),BUFSIZ, F))>0) {
-		EVP_DigestUpdate(&ctx, fb, len);
+		EVP_DigestUpdate(ctx, fb, len);
 	}
 	fclose(F);
 	len=0;
 	md=(unsigned char*) xcalloc(EVP_MD_size(EVP_sha1()),sizeof(unsigned char));
-	EVP_DigestFinal(&ctx, md,(unsigned int*) &len);
-	EVP_MD_CTX_cleanup(&ctx);
+	EVP_DigestFinal(ctx, md,(unsigned int*) &len);
+	EVP_MD_CTX_free(ctx);
 	return oauth_body_hash_encode(len, md);
 }
 
 char *oauth_body_hash_data(size_t length, const char *data) {
-	EVP_MD_CTX ctx;
+	EVP_MD_CTX *ctx;
 	size_t len=0;
 	unsigned char *md;
 	md=(unsigned char*) xcalloc(EVP_MD_size(EVP_sha1()),sizeof(unsigned char));
-	EVP_MD_CTX_init(&ctx);
-	EVP_DigestInit(&ctx,EVP_sha1());
-	EVP_DigestUpdate(&ctx, data, length);
-	EVP_DigestFinal(&ctx, md,(unsigned int*) &len);
-	EVP_MD_CTX_cleanup(&ctx);
+	ctx = EVP_MD_CTX_new();
+	if (ctx == NULL) {
+		return xstrdup("liboauth/OpenSSL: failed to allocate EVP_MD_CTX");
+	}
+	EVP_DigestInit(ctx,EVP_sha1());
+	EVP_DigestUpdate(ctx, data, length);
+	EVP_DigestFinal(ctx, md,(unsigned int*) &len);
+	EVP_MD_CTX_free(ctx);
 	return oauth_body_hash_encode(len, md);
 }
@fredbcode fredbcode mentioned this issue Aug 17, 2017
Closed
@Keruspe
Copy link

Keruspe commented Sep 14, 2018

@x42 Any chance of getting a release compatible with openssl 1.1?

gnomesysadmins pushed a commit to GNOME/gnome-build-meta that referenced this issue Sep 19, 2018
@jjardon
elements/core-deps/liboauth.bst: Add support for OpenSSL 1.1
7d02225 
Patch taken from x42/liboauth#9
gnomesysadmins pushed a commit to GNOME/gnome-photos that referenced this issue Sep 26, 2018
@alatiera @debarshiray
flatpak: Build liboauth against NSS
886d93b 
Currently available versions of liboauth, such as 1.0.3, don't build
against OpenSSL 1.1.0, and that has been failing the nightly builds.
It does work with NSS, though; and, for what it's worth, Fedora builds
liboauth against NSS too.

x42/liboauth#9
gnomesysadmins pushed a commit to GNOME/totem that referenced this issue Sep 26, 2018
@alatiera
flatpak: Build liboauth against NSS
de9fbd9 
Currently available versions of liboauth, such as 1.0.3, don't build
against OpenSSL 1.1.0, and that has been failing the nightly builds.
It does work with NSS, though; and, for what it's worth, Fedora builds
liboauth against NSS too.

x42/liboauth#9
uqs pushed a commit to freebsd/freebsd-ports that referenced this issue Oct 10, 2018
Fix build with openssl 1.1.1
1e93866 
PR:		225919
Submitted by:	Nathan Owens
Obtained from:	x42/liboauth#9
With hat:	portmgr


git-svn-id: svn+ssh://svn.freebsd.org/ports/head@481766 35697150-7ecd-e111-bb59-0022644237b5
uqs pushed a commit to freebsd/freebsd-ports that referenced this issue Oct 10, 2018
@ant1
Fix build with openssl 1.1.1
121e6c7 
PR:		225919
Submitted by:	Nathan Owens
Obtained from:	x42/liboauth#9
With hat:	portmgr
Jehops pushed a commit to Jehops/freebsd-ports-legacy that referenced this issue Oct 10, 2018
@ant1
Fix build with openssl 1.1.1
df9de35 
PR:		225919
Submitted by:	Nathan Owens
Obtained from:	x42/liboauth#9
With hat:	portmgr


git-svn-id: svn+ssh://svn.freebsd.org/ports/head@481766 35697150-7ecd-e111-bb59-0022644237b5
swills pushed a commit to swills/freebsd-ports that referenced this issue Oct 11, 2018
@ant1
Fix build with openssl 1.1.1
68d078c 
PR:		225919
Submitted by:	Nathan Owens
Obtained from:	x42/liboauth#9
With hat:	portmgr


git-svn-id: svn+ssh://svn.freebsd.org/ports/head@481766 35697150-7ecd-e111-bb59-0022644237b5
uqs pushed a commit to freebsd/freebsd-ports that referenced this issue Oct 19, 2018
@ant1
MFH: r481766
d0da4ea 
Fix build with openssl 1.1.1

PR:		225919
Submitted by:	Nathan Owens
Obtained from:	x42/liboauth#9
With hat:	portmgr
uqs pushed a commit to freebsd/freebsd-ports that referenced this issue Apr 1, 2021
@ant1
MFH: r481766
a944cdf 
Fix build with openssl 1.1.1

PR:		225919
Submitted by:	Nathan Owens
Obtained from:	x42/liboauth#9
With hat:	portmgr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Keruspe @hvenev