Fix i686 build failures in cipher.c

simo5 · simo5 · commit fc49a4fedf6f · 2026-02-19T16:09:03.000-05:00
Update AEAD functions to use CK_ULONG pointers for lengths and
introduce a temporary size_t variable for OSSL_PARAM calls. This
corrects pointer type mismatches that caused build failures in
Fedora Rawhide i686 scratch builds.

Signed-off-by: Simo Sorce &lt;simo@redhat.com&gt;
diff --git a/serv.out b/serv.out
@@ -0,0 +1,21 @@
+Using default temp DH parameters
+ACCEPT
+ERROR
+40A7FDD0F97F0000:error:0680007B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:105:
+40A7FDD0F97F0000:error:06800066:asn1 encoding routines:asn1_check_tlen:bad object header:crypto/asn1/tasn_dec.c:1176:
+40A7FDD0F97F0000:error:0688010A:asn1 encoding routines:asn1_d2i_ex_primitive:nested asn1 error:crypto/asn1/tasn_dec.c:752:
+40A7FDD0F97F0000:error:0A0C0103:SSL routines:ssl_handshake_hash:internal error:ssl/ssl_lib.c:5834:
+shutting down SSL
+CONNECTION CLOSED
+   0 items in the session cache
+   0 client connects (SSL_connect())
+   0 client renegotiates (SSL_connect())
+   0 client connects that finished
+   1 server accepts (SSL_accept())
+   0 server renegotiates (SSL_accept())
+   0 server accepts that finished
+   0 session cache hits
+   0 session cache misses
+   0 session cache timeouts
+   0 callback cache hits
+   0 cache full overflows (128 allowed)
diff --git a/src/cipher.c b/src/cipher.c
@@ -867,7 +867,7 @@ static CK_RV tls_aead_get_data(CK_MECHANISM_PTR mech, data_buffer *explicitiv,
 
 static CK_RV tls_pre_aead(struct p11prov_cipher_ctx *cctx,
                           const unsigned char **in, size_t *inl,
-                          unsigned char **out, size_t *outl)
+                          unsigned char **out, CK_ULONG *outl)
 {
     data_buffer iv = { 0 };
     data_buffer tag = { 0 };
@@ -906,7 +906,7 @@ static CK_RV tls_pre_aead(struct p11prov_cipher_ctx *cctx,
 }
 
 static CK_RV tls_post_aead(struct p11prov_cipher_ctx *cctx, unsigned char *out,
-                           size_t *outl)
+                           CK_ULONG *outl)
 {
     data_buffer explicitiv = { 0 };
     data_buffer tag = { 0 };
@@ -1475,15 +1475,16 @@ static int p11prov_common_set_ctx_params(void *vctx, const OSSL_PARAM params[])
                 return RET_OSSL_ERR;
             }
 
+            size_t iv_size;
             int ret = OSSL_PARAM_get_octet_string(
-                p, (void **)&gcm->pIv, gcm->ulIvLen, &gcm->ulIvFixedBits);
+                p, (void **)&gcm->pIv, gcm->ulIvLen, &iv_size);
             if (ret != RET_OSSL_OK || gcm->pIv == NULL) {
                 P11PROV_raise(ctx->provctx, CKR_HOST_MEMORY,
                               "Memory allocation failed");
                 return RET_OSSL_ERR;
             }
 
-            gcm->ulIvFixedBits = BYTES_TO_BITS(gcm->ulIvFixedBits);
+            gcm->ulIvFixedBits = BYTES_TO_BITS(iv_size);
             gcm->ivGenerator = CKG_GENERATE_COUNTER;
         } else {
             P11PROV_raise(ctx->provctx, CKR_MECHANISM_PARAM_INVALID,
