artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ffa43a1) | patch
Deserialize ASIdentifiers in libcrypto
authortb <tb@openbsd.org>
Wed, 11 May 2022 08:59:00 +0000 (08:59 +0000)
committertb <tb@openbsd.org>
Wed, 11 May 2022 08:59:00 +0000 (08:59 +0000)
commit230ecba3cfa4be440b6562e83b976caa9f941055
treea8f5d409ac93b6bd38163a0da1c4ce550f9c7ad8tree | snapshot
parentffa43a13a476c88639471575ff918c63363c9f80commit | diff
Deserialize ASIdentifiers in libcrypto

Let the RFC 3779 code in libcrypto do its job: deserialize the ASIdentifiers
extension using X509V3_EXT_d2i() and then simply walk the returned struct.
This replaces quite a bit of low level ASN.1 fiddling with much simpler
reaching into structs with names that have some meaning.

Additionally, RFC 6487, 4.8.10 forbids RDI entries, so throw an error
instead of ignoring them.

ok claudio
usr.sbin/rpki-client/cert.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim