1 /* $OpenBSD: rfc3779.c,v 1.2 2023/10/18 06:30:40 tb Exp $ */
2 /*
3 * Copyright (c) 2021 Theo Buehler <tb@openbsd.org>
4 *
5 * Permission to use, copy, modify, and distribute this software for any
6 * purpose with or without fee is hereby granted, provided that the above
7 * copyright notice and this permission notice appear in all copies.
8 *
9 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16 */
17
18 #include <stddef.h>
19
20 #include <openssl/asn1.h>
21 #include <openssl/x509v3.h>
22
23 #include "extern.h"
24
25 /*
26 * These should really have been part of the public OpenSSL RFC 3779 API...
27 */
28
29 IPAddrBlocks *
IPAddrBlocks_new(void)30 IPAddrBlocks_new(void)
31 {
32 IPAddrBlocks *addrs;
33
34 /*
35 * XXX The comparison function IPAddressFamily_cmp() isn't public.
36 * Install it using a side effect of the lovely X509v3_addr_canonize().
37 */
38 if ((addrs = sk_IPAddressFamily_new_null()) == NULL)
39 return NULL;
40 if (!X509v3_addr_canonize(addrs)) {
41 IPAddrBlocks_free(addrs);
42 return NULL;
43 }
44
45 return addrs;
46 }
47
48 void
IPAddrBlocks_free(IPAddrBlocks * addr)49 IPAddrBlocks_free(IPAddrBlocks *addr)
50 {
51 sk_IPAddressFamily_pop_free(addr, IPAddressFamily_free);
52 }
53