xref: /openbsd-src/usr.sbin/rpki-client/rfc3779.c (revision 0f561386ffdeae2308d5d088114264194c453fd4)
1 /*	$OpenBSD: rfc3779.c,v 1.2 2023/10/18 06:30:40 tb Exp $ */
2 /*
3  * Copyright (c) 2021 Theo Buehler <tb@openbsd.org>
4  *
5  * Permission to use, copy, modify, and distribute this software for any
6  * purpose with or without fee is hereby granted, provided that the above
7  * copyright notice and this permission notice appear in all copies.
8  *
9  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12  * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14  * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15  * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16  */
17 
18 #include <stddef.h>
19 
20 #include <openssl/asn1.h>
21 #include <openssl/x509v3.h>
22 
23 #include "extern.h"
24 
25 /*
26  * These should really have been part of the public OpenSSL RFC 3779 API...
27  */
28 
29 IPAddrBlocks *
IPAddrBlocks_new(void)30 IPAddrBlocks_new(void)
31 {
32 	IPAddrBlocks *addrs;
33 
34 	/*
35 	 * XXX The comparison function IPAddressFamily_cmp() isn't public.
36 	 * Install it using a side effect of the lovely X509v3_addr_canonize().
37 	 */
38 	if ((addrs = sk_IPAddressFamily_new_null()) == NULL)
39 		return NULL;
40 	if (!X509v3_addr_canonize(addrs)) {
41 		IPAddrBlocks_free(addrs);
42 		return NULL;
43 	}
44 
45 	return addrs;
46 }
47 
48 void
IPAddrBlocks_free(IPAddrBlocks * addr)49 IPAddrBlocks_free(IPAddrBlocks *addr)
50 {
51 	sk_IPAddressFamily_pop_free(addr, IPAddressFamily_free);
52 }
53