Make EVP_{CIPHER,MD}_CTX_{cleanup,reset}() NULL-safe

We have a bunch of code that relies on this. Surely there is code out there in the wider ecosystem that relies on these being NULL-safe by now since upstream sprinkles NULL checks wherever they can. ok beck joshua
author: tb <> 2024-01-30 17:41:01 +0000
committer: tb <> 2024-01-30 17:41:01 +0000
commit: 2fbdb4b0166f2045307f159118bab16fecbe9eaf (patch)
tree: fcd57cecbbca04066b0143b0d083d850b5252a9d /src/lib/libcrypto/evp/evp_cipher.c
parent: ca1b3f4909994173a0d16311ece0a91761d7ecce (diff)
download: openbsd-2fbdb4b0166f2045307f159118bab16fecbe9eaf.tar.gz
openbsd-2fbdb4b0166f2045307f159118bab16fecbe9eaf.tar.bz2
openbsd-2fbdb4b0166f2045307f159118bab16fecbe9eaf.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/src/lib/libcrypto/evp/evp_cipher.c b/src/lib/libcrypto/evp/evp_cipher.c
index 51bbf70654..abdc33eace 100644
--- a/src/lib/libcrypto/evp/evp_cipher.c
+++ b/src/lib/libcrypto/evp/evp_cipher.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: evp_cipher.c,v 1.16 2024/01/07 15:21:04 tb Exp $ */
+/* $OpenBSD: evp_cipher.c,v 1.17 2024/01/30 17:41:01 tb Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -627,6 +627,9 @@ EVP_CIPHER_CTX_reset(EVP_CIPHER_CTX *ctx)
 int
 EVP_CIPHER_CTX_cleanup(EVP_CIPHER_CTX *ctx)
 {
+        if (ctx == NULL)
+                return 1;
        if (ctx->cipher != NULL) {
                /* XXX - Avoid leaks, so ignore return value of cleanup()... */
                if (ctx->cipher->cleanup != NULL)
author	tb <>	2024-01-30 17:41:01 +0000
committer	tb <>	2024-01-30 17:41:01 +0000
commit	2fbdb4b0166f2045307f159118bab16fecbe9eaf (patch)
tree	fcd57cecbbca04066b0143b0d083d850b5252a9d /src/lib/libcrypto/evp/evp_cipher.c
parent	ca1b3f4909994173a0d16311ece0a91761d7ecce (diff)
download	openbsd-2fbdb4b0166f2045307f159118bab16fecbe9eaf.tar.gz openbsd-2fbdb4b0166f2045307f159118bab16fecbe9eaf.tar.bz2 openbsd-2fbdb4b0166f2045307f159118bab16fecbe9eaf.zip