summaryrefslogtreecommitdiff
path: root/src/lib
diff options
context:
space:
mode:
authortb <>2022-01-05 17:49:39 +0000
committertb <>2022-01-05 17:49:39 +0000
commitb3b250fb6f2d0a8ce608fadb8cde71b0be692e09 (patch)
tree0d08657071bb55be069f2575878a2cab7be96295 /src/lib
parent7905640e6a9e4d817579925f9993d5e1ab76e08a (diff)
downloadopenbsd-b3b250fb6f2d0a8ce608fadb8cde71b0be692e09.tar.gz
openbsd-b3b250fb6f2d0a8ce608fadb8cde71b0be692e09.tar.bz2
openbsd-b3b250fb6f2d0a8ce608fadb8cde71b0be692e09.zip
Globally rename all IPAddressFamily *f into af since this is slightly
more readable. Repeated complaints by jsing
Diffstat (limited to 'src/lib')
-rw-r--r--src/lib/libcrypto/x509/x509_addr.c129
1 files changed, 65 insertions, 64 deletions
diff --git a/src/lib/libcrypto/x509/x509_addr.c b/src/lib/libcrypto/x509/x509_addr.c
index cd04f815fa..90288445ab 100644
--- a/src/lib/libcrypto/x509/x509_addr.c
+++ b/src/lib/libcrypto/x509/x509_addr.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: x509_addr.c,v 1.69 2022/01/05 17:46:44 tb Exp $ */ 1/* $OpenBSD: x509_addr.c,v 1.70 2022/01/05 17:49:39 tb Exp $ */
2/* 2/*
3 * Contributed to the OpenSSL Project by the American Registry for 3 * Contributed to the OpenSSL Project by the American Registry for
4 * Internet Numbers ("ARIN"). 4 * Internet Numbers ("ARIN").
@@ -313,51 +313,51 @@ IPAddressFamily_free(IPAddressFamily *a)
313 */ 313 */
314 314
315static int 315static int
316IPAddressFamily_type(IPAddressFamily *f) 316IPAddressFamily_type(IPAddressFamily *af)
317{ 317{
318 /* XXX - can f->ipAddressChoice == NULL actually happen? */ 318 /* XXX - can af->ipAddressChoice == NULL actually happen? */
319 if (f == NULL || f->ipAddressChoice == NULL) 319 if (af == NULL || af->ipAddressChoice == NULL)
320 return -1; 320 return -1;
321 321
322 switch (f->ipAddressChoice->type) { 322 switch (af->ipAddressChoice->type) {
323 case IPAddressChoice_inherit: 323 case IPAddressChoice_inherit:
324 case IPAddressChoice_addressesOrRanges: 324 case IPAddressChoice_addressesOrRanges:
325 return f->ipAddressChoice->type; 325 return af->ipAddressChoice->type;
326 default: 326 default:
327 return -1; 327 return -1;
328 } 328 }
329} 329}
330 330
331static IPAddressOrRanges * 331static IPAddressOrRanges *
332IPAddressFamily_addressesOrRanges(IPAddressFamily *f) 332IPAddressFamily_addressesOrRanges(IPAddressFamily *af)
333{ 333{
334 if (IPAddressFamily_type(f) == IPAddressChoice_addressesOrRanges) 334 if (IPAddressFamily_type(af) == IPAddressChoice_addressesOrRanges)
335 return f->ipAddressChoice->u.addressesOrRanges; 335 return af->ipAddressChoice->u.addressesOrRanges;
336 336
337 return NULL; 337 return NULL;
338} 338}
339 339
340static ASN1_NULL * 340static ASN1_NULL *
341IPAddressFamily_inheritance(IPAddressFamily *f) 341IPAddressFamily_inheritance(IPAddressFamily *af)
342{ 342{
343 if (IPAddressFamily_type(f) == IPAddressChoice_inherit) 343 if (IPAddressFamily_type(af) == IPAddressChoice_inherit)
344 return f->ipAddressChoice->u.inherit; 344 return af->ipAddressChoice->u.inherit;
345 345
346 return NULL; 346 return NULL;
347} 347}
348 348
349static int 349static int
350IPAddressFamily_set_inheritance(IPAddressFamily *f) 350IPAddressFamily_set_inheritance(IPAddressFamily *af)
351{ 351{
352 if (IPAddressFamily_addressesOrRanges(f) != NULL) 352 if (IPAddressFamily_addressesOrRanges(af) != NULL)
353 return 0; 353 return 0;
354 354
355 if (IPAddressFamily_inheritance(f) != NULL) 355 if (IPAddressFamily_inheritance(af) != NULL)
356 return 1; 356 return 1;
357 357
358 if ((f->ipAddressChoice->u.inherit = ASN1_NULL_new()) == NULL) 358 if ((af->ipAddressChoice->u.inherit = ASN1_NULL_new()) == NULL)
359 return 0; 359 return 0;
360 f->ipAddressChoice->type = IPAddressChoice_inherit; 360 af->ipAddressChoice->type = IPAddressChoice_inherit;
361 361
362 return 1; 362 return 1;
363} 363}
@@ -388,7 +388,7 @@ length_from_afi(const unsigned afi)
388 * are optional; if |out_safi| is non-NULL, |safi_is_set| must be non-NULL. 388 * are optional; if |out_safi| is non-NULL, |safi_is_set| must be non-NULL.
389 */ 389 */
390static int 390static int
391IPAddressFamily_afi_safi(const IPAddressFamily *f, uint16_t *out_afi, 391IPAddressFamily_afi_safi(const IPAddressFamily *af, uint16_t *out_afi,
392 uint8_t *out_safi, int *safi_is_set) 392 uint8_t *out_safi, int *safi_is_set)
393{ 393{
394 CBS cbs; 394 CBS cbs;
@@ -396,7 +396,7 @@ IPAddressFamily_afi_safi(const IPAddressFamily *f, uint16_t *out_afi,
396 uint8_t safi = 0; 396 uint8_t safi = 0;
397 int got_safi = 0; 397 int got_safi = 0;
398 398
399 CBS_init(&cbs, f->addressFamily->data, f->addressFamily->length); 399 CBS_init(&cbs, af->addressFamily->data, af->addressFamily->length);
400 400
401 if (!CBS_get_u16(&cbs, &afi)) 401 if (!CBS_get_u16(&cbs, &afi))
402 return 0; 402 return 0;
@@ -426,25 +426,25 @@ IPAddressFamily_afi_safi(const IPAddressFamily *f, uint16_t *out_afi,
426} 426}
427 427
428static int 428static int
429IPAddressFamily_afi(const IPAddressFamily *f, uint16_t *out_afi) 429IPAddressFamily_afi(const IPAddressFamily *af, uint16_t *out_afi)
430{ 430{
431 return IPAddressFamily_afi_safi(f, out_afi, NULL, NULL); 431 return IPAddressFamily_afi_safi(af, out_afi, NULL, NULL);
432} 432}
433 433
434static int 434static int
435IPAddressFamily_afi_is_valid(const IPAddressFamily *f) 435IPAddressFamily_afi_is_valid(const IPAddressFamily *af)
436{ 436{
437 return IPAddressFamily_afi_safi(f, NULL, NULL, NULL); 437 return IPAddressFamily_afi_safi(af, NULL, NULL, NULL);
438} 438}
439 439
440static int 440static int
441IPAddressFamily_afi_length(const IPAddressFamily *f, int *out_length) 441IPAddressFamily_afi_length(const IPAddressFamily *af, int *out_length)
442{ 442{
443 uint16_t afi; 443 uint16_t afi;
444 444
445 *out_length = 0; 445 *out_length = 0;
446 446
447 if (!IPAddressFamily_afi(f, &afi)) 447 if (!IPAddressFamily_afi(af, &afi))
448 return 0; 448 return 0;
449 449
450 *out_length = length_from_afi(afi); 450 *out_length = length_from_afi(afi);
@@ -500,19 +500,19 @@ IPAddressFamily_find_in_parent(IPAddrBlocks *parent, IPAddressFamily *child_af)
500 * while it doesn't care about the reserved AFI 65535... 500 * while it doesn't care about the reserved AFI 65535...
501 */ 501 */
502unsigned int 502unsigned int
503X509v3_addr_get_afi(const IPAddressFamily *f) 503X509v3_addr_get_afi(const IPAddressFamily *af)
504{ 504{
505 uint16_t afi; 505 uint16_t afi;
506 506
507 /* 507 /*
508 * XXX are these NULL checks really sensible? If f is non-NULL, it 508 * XXX are these NULL checks really sensible? If af is non-NULL, it
509 * should have both addressFamily and ipAddressChoice... 509 * should have both addressFamily and ipAddressChoice...
510 */ 510 */
511 if (f == NULL || f->addressFamily == NULL || 511 if (af == NULL || af->addressFamily == NULL ||
512 f->addressFamily->data == NULL) 512 af->addressFamily->data == NULL)
513 return 0; 513 return 0;
514 514
515 if (!IPAddressFamily_afi(f, &afi)) 515 if (!IPAddressFamily_afi(af, &afi))
516 return 0; 516 return 0;
517 517
518 return afi; 518 return afi;
@@ -650,15 +650,15 @@ i2r_IPAddrBlocks(const X509V3_EXT_METHOD *method, void *ext, BIO *out,
650 int indent) 650 int indent)
651{ 651{
652 const IPAddrBlocks *addr = ext; 652 const IPAddrBlocks *addr = ext;
653 IPAddressFamily *f; 653 IPAddressFamily *af;
654 uint16_t afi; 654 uint16_t afi;
655 uint8_t safi; 655 uint8_t safi;
656 int i, safi_is_set; 656 int i, safi_is_set;
657 657
658 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { 658 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) {
659 f = sk_IPAddressFamily_value(addr, i); 659 af = sk_IPAddressFamily_value(addr, i);
660 660
661 if (!IPAddressFamily_afi_safi(f, &afi, &safi, &safi_is_set)) 661 if (!IPAddressFamily_afi_safi(af, &afi, &safi, &safi_is_set))
662 goto print_addresses; 662 goto print_addresses;
663 663
664 switch (afi) { 664 switch (afi) {
@@ -705,14 +705,14 @@ i2r_IPAddrBlocks(const X509V3_EXT_METHOD *method, void *ext, BIO *out,
705 } 705 }
706 706
707 print_addresses: 707 print_addresses:
708 switch (IPAddressFamily_type(f)) { 708 switch (IPAddressFamily_type(af)) {
709 case IPAddressChoice_inherit: 709 case IPAddressChoice_inherit:
710 BIO_puts(out, ": inherit\n"); 710 BIO_puts(out, ": inherit\n");
711 break; 711 break;
712 case IPAddressChoice_addressesOrRanges: 712 case IPAddressChoice_addressesOrRanges:
713 BIO_puts(out, ":\n"); 713 BIO_puts(out, ":\n");
714 if (!i2r_IPAddressOrRanges(out, indent + 2, 714 if (!i2r_IPAddressOrRanges(out, indent + 2,
715 IPAddressFamily_addressesOrRanges(f), afi)) 715 IPAddressFamily_addressesOrRanges(af), afi))
716 return 0; 716 return 0;
717 break; 717 break;
718 /* XXX - how should we handle -1 here? */ 718 /* XXX - how should we handle -1 here? */
@@ -959,7 +959,7 @@ static IPAddressFamily *
959make_IPAddressFamily(IPAddrBlocks *addr, const unsigned afi, 959make_IPAddressFamily(IPAddrBlocks *addr, const unsigned afi,
960 const unsigned *safi) 960 const unsigned *safi)
961{ 961{
962 IPAddressFamily *f = NULL; 962 IPAddressFamily *af = NULL;
963 CBB cbb; 963 CBB cbb;
964 CBS cbs; 964 CBS cbs;
965 uint8_t *key = NULL; 965 uint8_t *key = NULL;
@@ -982,29 +982,30 @@ make_IPAddressFamily(IPAddrBlocks *addr, const unsigned afi,
982 goto err; 982 goto err;
983 983
984 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { 984 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) {
985 f = sk_IPAddressFamily_value(addr, i); 985 af = sk_IPAddressFamily_value(addr, i);
986 986
987 CBS_init(&cbs, f->addressFamily->data, f->addressFamily->length); 987 CBS_init(&cbs, af->addressFamily->data,
988 af->addressFamily->length);
988 if (CBS_mem_equal(&cbs, key, keylen)) 989 if (CBS_mem_equal(&cbs, key, keylen))
989 goto done; 990 goto done;
990 } 991 }
991 992
992 if ((f = IPAddressFamily_new()) == NULL) 993 if ((af = IPAddressFamily_new()) == NULL)
993 goto err; 994 goto err;
994 if (!ASN1_OCTET_STRING_set(f->addressFamily, key, keylen)) 995 if (!ASN1_OCTET_STRING_set(af->addressFamily, key, keylen))
995 goto err; 996 goto err;
996 if (!sk_IPAddressFamily_push(addr, f)) 997 if (!sk_IPAddressFamily_push(addr, af))
997 goto err; 998 goto err;
998 999
999 done: 1000 done:
1000 free(key); 1001 free(key);
1001 1002
1002 return f; 1003 return af;
1003 1004
1004 err: 1005 err:
1005 CBB_cleanup(&cbb); 1006 CBB_cleanup(&cbb);
1006 free(key); 1007 free(key);
1007 IPAddressFamily_free(f); 1008 IPAddressFamily_free(af);
1008 1009
1009 return NULL; 1010 return NULL;
1010} 1011}
@@ -1016,12 +1017,12 @@ int
1016X509v3_addr_add_inherit(IPAddrBlocks *addr, const unsigned afi, 1017X509v3_addr_add_inherit(IPAddrBlocks *addr, const unsigned afi,
1017 const unsigned *safi) 1018 const unsigned *safi)
1018{ 1019{
1019 IPAddressFamily *f; 1020 IPAddressFamily *af;
1020 1021
1021 if ((f = make_IPAddressFamily(addr, afi, safi)) == NULL) 1022 if ((af = make_IPAddressFamily(addr, afi, safi)) == NULL)
1022 return 0; 1023 return 0;
1023 1024
1024 return IPAddressFamily_set_inheritance(f); 1025 return IPAddressFamily_set_inheritance(af);
1025} 1026}
1026 1027
1027/* 1028/*
@@ -1031,16 +1032,16 @@ static IPAddressOrRanges *
1031make_prefix_or_range(IPAddrBlocks *addr, const unsigned afi, 1032make_prefix_or_range(IPAddrBlocks *addr, const unsigned afi,
1032 const unsigned *safi) 1033 const unsigned *safi)
1033{ 1034{
1034 IPAddressFamily *f; 1035 IPAddressFamily *af;
1035 IPAddressOrRanges *aors = NULL; 1036 IPAddressOrRanges *aors = NULL;
1036 1037
1037 if ((f = make_IPAddressFamily(addr, afi, safi)) == NULL) 1038 if ((af = make_IPAddressFamily(addr, afi, safi)) == NULL)
1038 return NULL; 1039 return NULL;
1039 1040
1040 if (IPAddressFamily_inheritance(f) != NULL) 1041 if (IPAddressFamily_inheritance(af) != NULL)
1041 return NULL; 1042 return NULL;
1042 1043
1043 if ((aors = IPAddressFamily_addressesOrRanges(f)) != NULL) 1044 if ((aors = IPAddressFamily_addressesOrRanges(af)) != NULL)
1044 return aors; 1045 return aors;
1045 1046
1046 if ((aors = sk_IPAddressOrRange_new_null()) == NULL) 1047 if ((aors = sk_IPAddressOrRange_new_null()) == NULL)
@@ -1055,8 +1056,8 @@ make_prefix_or_range(IPAddrBlocks *addr, const unsigned afi,
1055 break; 1056 break;
1056 } 1057 }
1057 1058
1058 f->ipAddressChoice->type = IPAddressChoice_addressesOrRanges; 1059 af->ipAddressChoice->type = IPAddressChoice_addressesOrRanges;
1059 f->ipAddressChoice->u.addressesOrRanges = aors; 1060 af->ipAddressChoice->u.addressesOrRanges = aors;
1060 1061
1061 return aors; 1062 return aors;
1062} 1063}
@@ -1179,7 +1180,7 @@ X509v3_addr_is_canonical(IPAddrBlocks *addr)
1179{ 1180{
1180 unsigned char a_min[ADDR_RAW_BUF_LEN], a_max[ADDR_RAW_BUF_LEN]; 1181 unsigned char a_min[ADDR_RAW_BUF_LEN], a_max[ADDR_RAW_BUF_LEN];
1181 unsigned char b_min[ADDR_RAW_BUF_LEN], b_max[ADDR_RAW_BUF_LEN]; 1182 unsigned char b_min[ADDR_RAW_BUF_LEN], b_max[ADDR_RAW_BUF_LEN];
1182 IPAddressFamily *f; 1183 IPAddressFamily *af;
1183 IPAddressOrRanges *aors; 1184 IPAddressOrRanges *aors;
1184 IPAddressOrRange *aor, *aor_a, *aor_b; 1185 IPAddressOrRange *aor, *aor_a, *aor_b;
1185 int i, j, k, length; 1186 int i, j, k, length;
@@ -1211,22 +1212,22 @@ X509v3_addr_is_canonical(IPAddrBlocks *addr)
1211 * Top level's ok, now check each address family. 1212 * Top level's ok, now check each address family.
1212 */ 1213 */
1213 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { 1214 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) {
1214 f = sk_IPAddressFamily_value(addr, i); 1215 af = sk_IPAddressFamily_value(addr, i);
1215 1216
1216 if (!IPAddressFamily_afi_length(f, &length)) 1217 if (!IPAddressFamily_afi_length(af, &length))
1217 return 0; 1218 return 0;
1218 1219
1219 /* 1220 /*
1220 * If this family has an inheritance element, it is canonical. 1221 * If this family has an inheritance element, it is canonical.
1221 */ 1222 */
1222 if (IPAddressFamily_inheritance(f) != NULL) 1223 if (IPAddressFamily_inheritance(af) != NULL)
1223 continue; 1224 continue;
1224 1225
1225 /* 1226 /*
1226 * If this family has neither an inheritance element nor an 1227 * If this family has neither an inheritance element nor an
1227 * addressesOrRanges, we don't know what this is. 1228 * addressesOrRanges, we don't know what this is.
1228 */ 1229 */
1229 if ((aors = IPAddressFamily_addressesOrRanges(f)) == NULL) 1230 if ((aors = IPAddressFamily_addressesOrRanges(af)) == NULL)
1230 return 0; 1231 return 0;
1231 1232
1232 if (sk_IPAddressOrRange_num(aors) == 0) 1233 if (sk_IPAddressOrRange_num(aors) == 0)
@@ -1379,19 +1380,19 @@ IPAddressOrRanges_canonize(IPAddressOrRanges *aors, const unsigned afi)
1379int 1380int
1380X509v3_addr_canonize(IPAddrBlocks *addr) 1381X509v3_addr_canonize(IPAddrBlocks *addr)
1381{ 1382{
1382 IPAddressFamily *f; 1383 IPAddressFamily *af;
1383 IPAddressOrRanges *aors; 1384 IPAddressOrRanges *aors;
1384 uint16_t afi; 1385 uint16_t afi;
1385 int i; 1386 int i;
1386 1387
1387 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { 1388 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) {
1388 f = sk_IPAddressFamily_value(addr, i); 1389 af = sk_IPAddressFamily_value(addr, i);
1389 1390
1390 /* Check AFI/SAFI here - IPAddressFamily_cmp() can't error. */ 1391 /* Check AFI/SAFI here - IPAddressFamily_cmp() can't error. */
1391 if (!IPAddressFamily_afi(f, &afi)) 1392 if (!IPAddressFamily_afi(af, &afi))
1392 return 0; 1393 return 0;
1393 1394
1394 if ((aors = IPAddressFamily_addressesOrRanges(f)) == NULL) 1395 if ((aors = IPAddressFamily_addressesOrRanges(af)) == NULL)
1395 continue; 1396 continue;
1396 1397
1397 if (!IPAddressOrRanges_canonize(aors, afi)) 1398 if (!IPAddressOrRanges_canonize(aors, afi))
@@ -1631,16 +1632,16 @@ const X509V3_EXT_METHOD v3_addr = {
1631int 1632int
1632X509v3_addr_inherits(IPAddrBlocks *addr) 1633X509v3_addr_inherits(IPAddrBlocks *addr)
1633{ 1634{
1634 IPAddressFamily *f; 1635 IPAddressFamily *af;
1635 int i; 1636 int i;
1636 1637
1637 if (addr == NULL) 1638 if (addr == NULL)
1638 return 0; 1639 return 0;
1639 1640
1640 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { 1641 for (i = 0; i < sk_IPAddressFamily_num(addr); i++) {
1641 f = sk_IPAddressFamily_value(addr, i); 1642 af = sk_IPAddressFamily_value(addr, i);
1642 1643
1643 if (IPAddressFamily_inheritance(f) != NULL) 1644 if (IPAddressFamily_inheritance(af) != NULL)
1644 return 1; 1645 return 1;
1645 } 1646 }
1646 1647
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-01 00:49:08 +0000