Apple has a one-shot you can use too. It would look something like this:

 HRESULT Sha256Hash(BYTE* pSrc, DWORD srcSize, BYTE* pDst, DWORD dstSize)
 {
     if (dstSize < CC_SHA256_DIGEST_LENGTH)
     {
         return E_FAIL;
     }
         
     CC_SHA256(pSrc, (CC_LONG)srcSize, pDst);
     return S_OK;
 }

If there is an actual need for it, you can copy to a temp buffer like Windows and Linux do.

Why do we use min here? Is there a real scenario where dstSize is not big enough to hold the whole SHA-256 and it needs to be truncated?

In #109091, it's convenient to be able to get a truncated hash that can be used as a checksum (example). We could move the temp buffer logic to the caller, and require that pDst in Sha256Hash is big enough for a whole SHA-256 digest, if you'd prefer.

We could move the temp buffer logic to the caller

I think it would make more sense.

This can be just #else as CryptoNative_EvpDigestOneShot is available on any Unix.

I am not sure why we need to check this - we do not have the same check for other OSes. SHA256 is defined as returning 32 bytes. If the crypto provider returns something else here, something is seriously broken.

nit: perhaps a bit simpler this way:

I agree it looks a bit redundant in its current form. The intent behind IsOpenSslAvailable is to allow ILAsm to disable features based on OpenSSL availability, without leaking the CryptoNative API surface to it. Including it in this PR is probably premature, though I will want something like it when ILAsm starts using these wrappers.

I thought I saw a comment from Jan K that said that we should treat OpenSSL here as required as it is for the platform... which is to say "it's required for 'Linux'" (which includes OpenBSD/NetBSD/etc).

If you're taking it as required, you can drop the call to CryptoNative_OpenSslAvailable; CryptoNative_EnsureOpenSslInitialized will do the same dlopen that Available does, it just fails (via assert) if the library isn't found.

If you're taking it as optional, then using OpenSslAvailable is correct.

I suppose it makes sense to delegate the responsibility of checking for OpenSSL availability to the caller, if we're going to provide IsOpenSslAvailable anyway.

If you just call CryptoNative_EnsureOpenSslInitialized and nothing else, CryptoNative_EnsureOpenSslInitialized is going to print "No usable version of libssl was found" and abort if there is not openssl available on the machine.

I think it is good enough. Explicitly calling OpenSslAvailable makes sense only if you would like to provide a different error message or handle the error situation differently.

Should this check for exact match?

Taking output buffer, filling part of it, and not telling the caller how much of it was filled is odd. The typical patterns for output buffers are:

• Take output buffer and fill it completely, fail if it is not possible to fill it completely
• Take output buffer and return how much of it was filled

CryptoNative_OpenSslAvailable call is unnecessary here. It is done by CryptoNative_EnsureOpenSslInitialized