commit d736bc1a7d45744300b2c81f7296b0d1e550ae0d
author Matt Caswell <matt@openssl.org> Tue Oct 04 21:22:19 2016 +0100
committer Matt Caswell <matt@openssl.org> Fri Nov 04 12:09:45 2016 +0000
tree 0da891364d559bd07ba68661d94da3e908bf9fbd
parent 6db6bc5a8f0663e679a99ea91a6f490db0f183ba

Update misc function params in libssl for size_t

Reviewed-by: Rich Salz <rsalz@openssl.org>

ssl/t1_lib.c

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 3918caf..3621fbb 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -20,7 +20,7 @@
 #include "ssl_locl.h"
 #include <openssl/ct.h>
 
-static int tls_decrypt_ticket(SSL *s, const unsigned char *tick, int ticklen,
+static int tls_decrypt_ticket(SSL *s, const unsigned char *tick, size_t ticklen,
                               const unsigned char *sess_id, size_t sesslen,
                               SSL_SESSION **psess);
 static int ssl_check_clienthello_tlsext_early(SSL *s);
@@ -2963,7 +2963,7 @@
  *    4: same as 3, but the ticket needs to be renewed.
  */
 static int tls_decrypt_ticket(SSL *s, const unsigned char *etick,
-                              int eticklen, const unsigned char *sess_id,
+                              size_t eticklen, const unsigned char *sess_id,
                               size_t sesslen, SSL_SESSION **psess)
 {
     SSL_SESSION *sess;
@@ -3017,13 +3017,14 @@
      * Attempt to process session ticket, first conduct sanity and integrity
      * checks on ticket.
      */
+    /* TODO(size_t) : convert me */
     mlen = HMAC_size(hctx);
     if (mlen < 0) {
         goto err;
     }
     /* Sanity check ticket length: must exceed keyname + IV + HMAC */
     if (eticklen <=
-        TLSEXT_KEYNAME_LENGTH + EVP_CIPHER_CTX_iv_length(ctx) + mlen) {
+        TLSEXT_KEYNAME_LENGTH + EVP_CIPHER_CTX_iv_length(ctx) + (size_t)mlen) {
         ret = 2;
         goto err;
     }
@@ -3411,7 +3412,7 @@
 
 /* Set preferred digest for each key type */
 
-int tls1_save_sigalgs(SSL *s, const unsigned char *data, int dsize)
+int tls1_save_sigalgs(SSL *s, const unsigned char *data, size_t dsize)
 {
     CERT *c = s->cert;
     /* Extension ignored for inappropriate versions */