commit a550fba3d26d878873956f128de7607ff4cc96e4
author Adam Langley <agl@google.com> Fri Feb 13 14:44:14 2015 -0800
committer Adam Langley <agl@google.com> Fri Feb 13 14:44:14 2015 -0800
tree d23c9d7e8188e4a2fdc0c1accbf00aac1a3775b7
parent 834d4130bab134a83b52bc66e25c3a57b202e0e2

More fixes for BoringSSL compilation.

EC_GROUP_set_point_conversion_form has been removed in BoringSSL because
it didn't do anything.

Also, BoringSSL uses size_t and keymaster builds with a signed/unsigned
mismatch as a fatal error. This means that the casts to int aren't
needed in BoringSSL and, in fact, cause an error.

Change-Id: I52b7d34a5c90f40cfcc84c60b746404f374b1e80

ecdsa_key.cpp

diff --git a/ecdsa_key.cpp b/ecdsa_key.cpp
index a9f4ba7..84d9649 100644
--- a/ecdsa_key.cpp
+++ b/ecdsa_key.cpp
@@ -49,8 +49,8 @@
         return NULL;
     }
 
-    EC_GROUP_set_point_conversion_form(group.get(), POINT_CONVERSION_UNCOMPRESSED);
 #if !defined(OPENSSL_IS_BORINGSSL)
+    EC_GROUP_set_point_conversion_form(group.get(), POINT_CONVERSION_UNCOMPRESSED);
     EC_GROUP_set_asn1_flag(group.get(), OPENSSL_EC_NAMED_CURVE);
 #endif
 

hmac_operation.cpp

diff --git a/hmac_operation.cpp b/hmac_operation.cpp
index a179655..9050f99 100644
--- a/hmac_operation.cpp
+++ b/hmac_operation.cpp
@@ -19,6 +19,12 @@
 #include <openssl/evp.h>
 #include <openssl/hmac.h>
 
+#if defined(OPENSSL_IS_BORINGSSL)
+typedef size_t openssl_size_t;
+#else
+typedef int openssl_size_t;
+#endif
+
 namespace keymaster {
 
 HmacOperation::HmacOperation(keymaster_purpose_t purpose, const Logger& logger,
@@ -47,7 +53,7 @@
         return;
     }
 
-    if ((int)tag_length_ > EVP_MD_size(md)) {
+    if ((openssl_size_t)tag_length_ > EVP_MD_size(md)) {
         error_ = KM_ERROR_UNSUPPORTED_MAC_LENGTH;
         return;
     }

rsa_key.cpp

diff --git a/rsa_key.cpp b/rsa_key.cpp
index c904c19..2e27883 100644
--- a/rsa_key.cpp
+++ b/rsa_key.cpp
@@ -19,6 +19,12 @@
 #include "rsa_operation.h"
 #include "unencrypted_key_blob.h"
 
+#if defined(OPENSSL_IS_BORINGSSL)
+typedef size_t openssl_size_t;
+#else
+typedef int openssl_size_t;
+#endif
+
 namespace keymaster {
 
 const uint32_t RSA_DEFAULT_KEY_SIZE = 2048;
@@ -95,7 +101,7 @@
     uint32_t key_size;
     if (authorizations.GetTagValue(TAG_KEY_SIZE, &key_size)) {
         // key_size specified, make sure it matches the key.
-        if (RSA_size(rsa_key.get()) != (int)key_size) {
+        if (RSA_size(rsa_key.get()) != (openssl_size_t)key_size) {
             *error = KM_ERROR_IMPORT_PARAMETER_MISMATCH;
             return NULL;
         }