GitList

Browse code

ssl_verify: Change backend_x509_* functions to size_t for lengths

Fix conversion warnings without actual code changes.

Change-Id: If971006b6d3a1a93d87b29627d91dd72faf5ceb2
Signed-off-by: Frank Lichtenheld <frank@lichtenheld.com>
Acked-by: Gert Doering <gert@greenie.muc.de>
Gerrit URL: https://gerrit.openvpn.net/c/openvpn/+/1138
Message-Id: <20250922204329.23460-1-gert@greenie.muc.de>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg33152.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>

Frank Lichtenheld authored on 2025/09/23 05:43:23
Showing 3 changed files

src/openvpn/ssl_verify_backend.h index ceaef3f..1d56533 100644
src/openvpn/ssl_verify_mbedtls.c index 61f64af..c92eaf1 100644
src/openvpn/ssl_verify_openssl.c index 9cd2418..7a7b21e 100644

src/openvpn/ssl_verify_backend.h

History View file @ 38f2ced

@@ -123,7 +123,7 @@ struct buffer x509_get_sha256_fingerprint(openvpn_x509_cert_t *cert, struct gc_a
+                      *
                       * @return              \c FAILURE, \c or SUCCESS
                       */
                     -result_t backend_x509_get_username(char *common_name, int cn_len, char *x509_username_field,
                     +result_t backend_x509_get_username(char *common_name, size_t cn_len, char *x509_username_field,
                                                         openvpn_x509_cert_t *peer_cert);
                      #ifdef ENABLE_X509ALTUSERNAME

src/openvpn/ssl_verify_mbedtls.c

History View file @ 38f2ced

@@ -128,7 +128,7 @@ verify_callback(void *session_obj, mbedtls_x509_crt *cert, int cert_depth, uint3
                      #endif
                      result_t
                     -backend_x509_get_username(char *cn, int cn_len, char *x509_username_field, mbedtls_x509_crt *cert)
                     +backend_x509_get_username(char *cn, size_t cn_len, char *x509_username_field, mbedtls_x509_crt *cert)
+                     {
                          mbedtls_x509_name *name;

src/openvpn/ssl_verify_openssl.c

History View file @ 38f2ced

@@ -120,7 +120,7 @@ x509_username_field_ext_supported(const char *fieldname)
+                     }
                      static bool
                     -extract_x509_extension(X509 *cert, char *fieldname, char *out, int size)
                     +extract_x509_extension(X509 *cert, char *fieldname, char *out, size_t size)
+                     {
                          bool retval = false;
                          char *buf = 0;
@@ -195,7 +195,7 @@ extract_x509_extension(X509 *cert, char *fieldname, char *out, int size)
                       * to contain result is grounds for error).
                       */
                      static result_t
                     -extract_x509_field_ssl(X509_NAME *x509, const char *field_name, char *out, int size)
                     +extract_x509_field_ssl(X509_NAME *x509, const char *field_name, char *out, size_t size)
+                     {
                          int lastpos = -1;
                          int tmp = -1;
@@ -252,7 +252,7 @@ extract_x509_field_ssl(X509_NAME *x509, const char *field_name, char *out, int s
+                     }
                      result_t
                     -backend_x509_get_username(char *common_name, int cn_len, char *x509_username_field, X509 *peer_cert)
                     +backend_x509_get_username(char *common_name, size_t cn_len, char *x509_username_field, X509 *peer_cert)
+                     {
                      #ifdef ENABLE_X509ALTUSERNAME
                          if (strncmp("ext:", x509_username_field, 4) == 0)