First pass at updating the proftpd code to use the OpenSSL-1.1.0 APIs…

…. The code now compiles, but no guarantees that it runs/behaves properly yet.
proftpd · Jun 10, 2016 · a48596d · a48596d
1 parent e280569
commit a48596d
Show file tree

Hide file tree

Showing 14 changed files with 1,124 additions and 308 deletions.
diff --git a/contrib/mod_sftp/cipher.c b/contrib/mod_sftp/cipher.c
@@ -54,13 +54,13 @@ static struct sftp_cipher read_ciphers[2] = {
   { NULL, NULL, NULL, 0, NULL, 0, 0 },
   { NULL, NULL, NULL, 0, NULL, 0, 0 }
 };
-static EVP_CIPHER_CTX read_ctxs[2]; 
+static EVP_CIPHER_CTX *read_ctxs[2];
 
 static struct sftp_cipher write_ciphers[2] = {
   { NULL, NULL, NULL, 0, NULL, 0, 0 },
   { NULL, NULL, NULL, 0, NULL, 0, 0 }
 };
-static EVP_CIPHER_CTX write_ctxs[2];
+static EVP_CIPHER_CTX *write_ctxs[2];
 
 #define SFTP_CIPHER_DEFAULT_BLOCK_SZ		8
 static size_t cipher_blockszs[2] = {
@@ -94,7 +94,7 @@ static void switch_read_cipher(void) {
   /* First, clear the context of the existing read cipher, if any. */
   if (read_ciphers[read_cipher_idx].key) {
     clear_cipher(&(read_ciphers[read_cipher_idx]));
-    if (EVP_CIPHER_CTX_cleanup(&(read_ctxs[read_cipher_idx])) != 1) {
+    if (EVP_CIPHER_CTX_cleanup(read_ctxs[read_cipher_idx]) != 1) {
       (void) pr_log_writefile(sftp_logfd, MOD_SFTP_VERSION,
         "error clearing cipher context: %s", sftp_crypto_get_errors());
     }
@@ -115,7 +115,7 @@ static void switch_write_cipher(void) {
   /* First, clear the context of the existing read cipher, if any. */
   if (write_ciphers[write_cipher_idx].key) {
     clear_cipher(&(write_ciphers[write_cipher_idx]));
-    if (EVP_CIPHER_CTX_cleanup(&(write_ctxs[write_cipher_idx])) != 1) {
+    if (EVP_CIPHER_CTX_cleanup(write_ctxs[write_cipher_idx]) != 1) {
       (void) pr_log_writefile(sftp_logfd, MOD_SFTP_VERSION,
         "error clearing cipher context: %s", sftp_crypto_get_errors());
     }
@@ -154,8 +154,7 @@ static void clear_cipher(struct sftp_cipher *cipher) {
 static int set_cipher_iv(struct sftp_cipher *cipher, const EVP_MD *hash,
     const unsigned char *k, uint32_t klen, const char *h, uint32_t hlen,
     char *letter, const unsigned char *id, uint32_t id_len) {
-
-  EVP_MD_CTX ctx;
+  EVP_MD_CTX *ctx;
   unsigned char *iv = NULL;
   size_t cipher_iv_len = 0, iv_sz = 0;
   uint32_t iv_len = 0;
@@ -189,14 +188,16 @@ static int set_cipher_iv(struct sftp_cipher *cipher, const EVP_MD *hash,
     _exit(1);
   }
 
-  EVP_DigestInit(&ctx, hash);
+  ctx = EVP_MD_CTX_create();
+  EVP_DigestInit(ctx, hash);
   if (sftp_interop_supports_feature(SFTP_SSH2_FEAT_CIPHER_USE_K)) {
-    EVP_DigestUpdate(&ctx, k, klen);
+    EVP_DigestUpdate(ctx, k, klen);
   }
-  EVP_DigestUpdate(&ctx, h, hlen);
-  EVP_DigestUpdate(&ctx, letter, sizeof(char));
-  EVP_DigestUpdate(&ctx, (char *) id, id_len);
-  EVP_DigestFinal(&ctx, iv, &iv_len);
+  EVP_DigestUpdate(ctx, h, hlen);
+  EVP_DigestUpdate(ctx, letter, sizeof(char));
+  EVP_DigestUpdate(ctx, (char *) id, id_len);
+  EVP_DigestFinal(ctx, iv, &iv_len);
+  EVP_MD_CTX_destroy(ctx);
 
   /* If we need more, keep hashing, as per RFC, until we have enough
    * material.
@@ -206,13 +207,15 @@ static int set_cipher_iv(struct sftp_cipher *cipher, const EVP_MD *hash,
 
     pr_signals_handle();
 
-    EVP_DigestInit(&ctx, hash);
+    ctx = EVP_MD_CTX_create();
+    EVP_DigestInit(ctx, hash);
     if (sftp_interop_supports_feature(SFTP_SSH2_FEAT_CIPHER_USE_K)) {
-      EVP_DigestUpdate(&ctx, k, klen);
+      EVP_DigestUpdate(ctx, k, klen);
     }
-    EVP_DigestUpdate(&ctx, h, hlen);
-    EVP_DigestUpdate(&ctx, iv, len);
-    EVP_DigestFinal(&ctx, iv + len, &len);
+    EVP_DigestUpdate(ctx, h, hlen);
+    EVP_DigestUpdate(ctx, iv, len);
+    EVP_DigestFinal(ctx, iv + len, &len);
+    EVP_MD_CTX_destroy(ctx);
 
     iv_len += len;
   }
@@ -226,7 +229,7 @@ static int set_cipher_iv(struct sftp_cipher *cipher, const EVP_MD *hash,
 static int set_cipher_key(struct sftp_cipher *cipher, const EVP_MD *hash,
     const unsigned char *k, uint32_t klen, const char *h, uint32_t hlen,
     char *letter, const unsigned char *id, uint32_t id_len) {
-  EVP_MD_CTX ctx;
+  EVP_MD_CTX *ctx;
   unsigned char *key = NULL;
   size_t key_sz = 0;
   uint32_t key_len = 0;
@@ -255,12 +258,14 @@ static int set_cipher_key(struct sftp_cipher *cipher, const EVP_MD *hash,
     _exit(1);
   }
 
-  EVP_DigestInit(&ctx, hash);
-  EVP_DigestUpdate(&ctx, k, klen);
-  EVP_DigestUpdate(&ctx, h, hlen);
-  EVP_DigestUpdate(&ctx, letter, sizeof(char));
-  EVP_DigestUpdate(&ctx, (char *) id, id_len);
-  EVP_DigestFinal(&ctx, key, &key_len);
+  ctx = EVP_MD_CTX_create();
+  EVP_DigestInit(ctx, hash);
+  EVP_DigestUpdate(ctx, k, klen);
+  EVP_DigestUpdate(ctx, h, hlen);
+  EVP_DigestUpdate(ctx, letter, sizeof(char));
+  EVP_DigestUpdate(ctx, (char *) id, id_len);
+  EVP_DigestFinal(ctx, key, &key_len);
+  EVP_MD_CTX_destroy(ctx);
 
   /* If we need more, keep hashing, as per RFC, until we have enough
    * material.
@@ -270,11 +275,13 @@ static int set_cipher_key(struct sftp_cipher *cipher, const EVP_MD *hash,
 
     pr_signals_handle();
 
-    EVP_DigestInit(&ctx, hash);
-    EVP_DigestUpdate(&ctx, k, klen);
-    EVP_DigestUpdate(&ctx, h, hlen);
-    EVP_DigestUpdate(&ctx, key, len);
-    EVP_DigestFinal(&ctx, key + len, &len);
+    ctx = EVP_MD_CTX_create();
+    EVP_DigestInit(ctx, hash);
+    EVP_DigestUpdate(ctx, k, klen);
+    EVP_DigestUpdate(ctx, h, hlen);
+    EVP_DigestUpdate(ctx, key, len);
+    EVP_DigestFinal(ctx, key + len, &len);
+    EVP_MD_CTX_destroy(ctx);
 
     key_len += len;
   }
@@ -380,7 +387,7 @@ int sftp_cipher_set_read_key(pool *p, const EVP_MD *hash, const BIGNUM *k,
   switch_read_cipher();
 
   cipher = &(read_ciphers[read_cipher_idx]);
-  cipher_ctx = &(read_ctxs[read_cipher_idx]);
+  cipher_ctx = read_ctxs[read_cipher_idx];
 
   /* XXX EVP_CIPHER_CTX_init() first appeared in OpenSSL 0.9.7.  What to do
    * for older OpenSSL installations?
@@ -459,7 +466,7 @@ int sftp_cipher_read_data(pool *p, unsigned char *data, uint32_t data_len,
   size_t cipher_blocksz;
 
   cipher = &(read_ciphers[read_cipher_idx]);
-  cipher_ctx = &(read_ctxs[read_cipher_idx]);
+  cipher_ctx = read_ctxs[read_cipher_idx];
   cipher_blocksz = cipher_blockszs[read_cipher_idx];
 
   if (cipher->key) {
@@ -545,7 +552,7 @@ int sftp_cipher_set_write_key(pool *p, const EVP_MD *hash, const BIGNUM *k,
   switch_write_cipher();
 
   cipher = &(write_ciphers[write_cipher_idx]);
-  cipher_ctx = &(write_ctxs[write_cipher_idx]);
+  cipher_ctx = write_ctxs[write_cipher_idx];
 
   /* XXX EVP_CIPHER_CTX_init() first appeared in OpenSSL 0.9.7.  What to do
    * for older OpenSSL installations?
@@ -622,7 +629,7 @@ int sftp_cipher_write_data(struct ssh2_packet *pkt, unsigned char *buf,
   EVP_CIPHER_CTX *cipher_ctx;
 
   cipher = &(write_ciphers[write_cipher_idx]);
-  cipher_ctx = &(write_ctxs[write_cipher_idx]);
+  cipher_ctx = write_ctxs[write_cipher_idx];
 
   if (cipher->key) {
     int res;
@@ -672,3 +679,37 @@ int sftp_cipher_write_data(struct ssh2_packet *pkt, unsigned char *buf,
   *buflen = 0;
   return 0;
 }
+
+#if OPENSSL_VERSION_NUMBER < 0x1000000fL
+/* In older versions of OpenSSL, there was not a way to dynamically allocate
+ * an EVP_CIPHER_CTX object.  Thus we have these static objects for those
+ * older versions.
+ */
+static EVP_CIPHER_CTX read_ctx1, read_ctx2;
+static EVP_CIPHER_CTX write_ctx1, write_ctx2;
+#endif /* prior to OpenSSL-1.0.0 */
+
+int sftp_cipher_init(void) {
+#if OPENSSL_VERSION_NUMBER < 0x1000000fL
+  read_ctxs[0] = &read_ctx1;
+  read_ctxs[1] = &read_ctx2;
+  write_ctxs[0] = &write_ctx1;
+  write_ctxs[1] = &write_ctx2;
+#else
+  read_ctxs[0] = EVP_CIPHER_CTX_new();
+  read_ctxs[1] = EVP_CIPHER_CTX_new();
+  write_ctxs[0] = EVP_CIPHER_CTX_new();
+  write_ctxs[1] = EVP_CIPHER_CTX_new();
+#endif /* OpenSSL-1.0.0 and later */
+  return 0;
+}
+
+int sftp_cipher_free(void) {
+#if OPENSSL_VERSION_NUMBER >= 0x1000000fL
+  EVP_CIPHER_CTX_free(read_ctxs[0]);
+  EVP_CIPHER_CTX_free(read_ctxs[1]);
+  EVP_CIPHER_CTX_free(write_ctxs[0]);
+  EVP_CIPHER_CTX_free(write_ctxs[1]);
+#endif /* OpenSSL-1.0.0 and later */
+  return 0;
+}
diff --git a/contrib/mod_sftp/cipher.h b/contrib/mod_sftp/cipher.h
@@ -1,6 +1,6 @@
 /*
  * ProFTPD - mod_sftp cipher mgmt
- * Copyright (c) 2008-2013 TJ Saunders
+ * Copyright (c) 2008-2016 TJ Saunders
  *
  * This program is free software; you can redistribute it and/or modify
  * it under the terms of the GNU General Public License as published by
@@ -20,15 +20,16 @@
  * give permission to link this program with OpenSSL, and distribute the
  * resulting executable, without including the source code for OpenSSL in the
  * source distribution.
- *
- * $Id: cipher.h,v 1.4 2013-01-29 07:29:22 castaglia Exp $
  */
 
 #include "mod_sftp.h"
 
 #ifndef MOD_SFTP_CIPHER_H
 #define MOD_SFTP_CIPHER_H
 
+int sftp_cipher_init(void);
+int sftp_cipher_free(void);
+
 /* Returns the cipher block size, or 8, whichever is larger. This value is
  * used when reading in the first bytes of a packet in order to determine
  * the packet length.  See RFC4253, Section 6, "Binary Packet Protocol".