From bae607fd8e3d938f0f6baad365dc4180b6ca58c8 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tobias=20Nie=C3=9Fen?= Date: Wed, 23 Feb 2022 19:12:52 +0000 Subject: [PATCH] src: prefer bool over int in crypto_common --- src/crypto/crypto_common.cc | 7 ++++--- src/crypto/crypto_common.h | 4 ++-- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/src/crypto/crypto_common.cc b/src/crypto/crypto_common.cc index dce0774e8fa632..676bc7713dba9b 100644 --- a/src/crypto/crypto_common.cc +++ b/src/crypto/crypto_common.cc @@ -53,7 +53,7 @@ static constexpr int kX509NameFlagsRFC2253WithinUtf8JSON = ~ASN1_STRFLGS_ESC_MSB & ~ASN1_STRFLGS_ESC_CTRL; -int SSL_CTX_get_issuer(SSL_CTX* ctx, X509* cert, X509** issuer) { +bool SSL_CTX_get_issuer(SSL_CTX* ctx, X509* cert, X509** issuer) { X509_STORE* store = SSL_CTX_get_cert_store(ctx); DeleteFnPtr store_ctx( X509_STORE_CTX_new()); @@ -163,7 +163,8 @@ long VerifyPeerCertificate( // NOLINT(runtime/int) return err; } -int UseSNIContext(const SSLPointer& ssl, BaseObjectPtr context) { +bool UseSNIContext( + const SSLPointer& ssl, BaseObjectPtr context) { SSL_CTX* ctx = context->ctx_.get(); X509* x509 = SSL_CTX_get0_certificate(ctx); EVP_PKEY* pkey = SSL_CTX_get0_privatekey(ctx); @@ -173,7 +174,7 @@ int UseSNIContext(const SSLPointer& ssl, BaseObjectPtr context) { if (err == 1) err = SSL_use_certificate(ssl.get(), x509); if (err == 1) err = SSL_use_PrivateKey(ssl.get(), pkey); if (err == 1 && chain != nullptr) err = SSL_set1_chain(ssl.get(), chain); - return err; + return err == 1; } const char* GetClientHelloALPN(const SSLPointer& ssl) { diff --git a/src/crypto/crypto_common.h b/src/crypto/crypto_common.h index 2e7ea236b40184..7cf72022230c8e 100644 --- a/src/crypto/crypto_common.h +++ b/src/crypto/crypto_common.h @@ -25,7 +25,7 @@ struct StackOfXASN1Deleter { }; using StackOfASN1 = std::unique_ptr; -int SSL_CTX_get_issuer(SSL_CTX* ctx, X509* cert, X509** issuer); +bool SSL_CTX_get_issuer(SSL_CTX* ctx, X509* cert, X509** issuer); void LogSecret( const SSLPointer& ssl, @@ -59,7 +59,7 @@ long VerifyPeerCertificate( // NOLINT(runtime/int) const SSLPointer& ssl, long def = X509_V_ERR_UNSPECIFIED); // NOLINT(runtime/int) -int UseSNIContext(const SSLPointer& ssl, BaseObjectPtr context); +bool UseSNIContext(const SSLPointer& ssl, BaseObjectPtr context); const char* GetClientHelloALPN(const SSLPointer& ssl);