grpc 1.0.1 → 1.1.2
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of grpc might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/Makefile +3696 -867
- data/etc/roots.pem +39 -111
- data/include/grpc/byte_buffer.h +64 -1
- data/include/grpc/census.h +40 -96
- data/include/grpc/compression.h +2 -1
- data/include/grpc/grpc.h +42 -7
- data/include/grpc/grpc_posix.h +8 -5
- data/include/grpc/impl/codegen/atm.h +3 -0
- data/include/grpc/impl/codegen/atm_gcc_atomic.h +2 -0
- data/include/grpc/impl/codegen/atm_gcc_sync.h +8 -0
- data/include/grpc/impl/codegen/atm_windows.h +4 -0
- data/include/grpc/impl/codegen/byte_buffer_reader.h +4 -4
- data/include/grpc/impl/codegen/compression_types.h +1 -1
- data/include/grpc/impl/codegen/connectivity_state.h +2 -0
- data/include/grpc/impl/codegen/exec_ctx_fwd.h +41 -0
- data/include/grpc/impl/codegen/gpr_slice.h +84 -0
- data/include/grpc/impl/codegen/{alloc.h → gpr_types.h} +30 -29
- data/include/grpc/impl/codegen/grpc_types.h +91 -9
- data/include/grpc/impl/codegen/port_platform.h +25 -92
- data/include/grpc/impl/codegen/slice.h +54 -97
- data/include/grpc/impl/codegen/sync.h +0 -253
- data/include/grpc/module.modulemap +0 -2
- data/include/grpc/slice.h +132 -0
- data/include/grpc/{impl/codegen/slice_buffer.h → slice_buffer.h} +22 -39
- data/include/grpc/support/alloc.h +40 -1
- data/include/grpc/support/log.h +80 -1
- data/include/grpc/support/log_windows.h +2 -0
- data/include/grpc/support/string_util.h +1 -1
- data/include/grpc/support/sync.h +252 -0
- data/include/grpc/support/time.h +67 -1
- data/src/boringssl/err_data.c +639 -627
- data/src/core/ext/census/base_resources.c +71 -0
- data/src/core/ext/census/base_resources.h +39 -0
- data/src/core/ext/census/gen/census.pb.c +26 -29
- data/src/core/ext/census/gen/census.pb.h +68 -67
- data/src/core/ext/census/gen/trace_context.pb.c +81 -0
- data/src/core/ext/census/gen/trace_context.pb.h +99 -0
- data/src/core/ext/census/grpc_filter.c +22 -16
- data/src/core/ext/census/grpc_plugin.c +2 -1
- data/src/core/ext/census/initialize.c +16 -4
- data/src/core/ext/census/mlog.h +1 -1
- data/src/core/ext/census/placeholders.c +0 -45
- data/src/core/ext/census/resource.c +312 -0
- data/src/core/ext/census/resource.h +63 -0
- data/src/core/ext/census/trace_context.c +86 -0
- data/src/core/ext/census/trace_context.h +68 -0
- data/src/core/ext/census/tracing.c +8 -2
- data/src/core/ext/{client_config → client_channel}/channel_connectivity.c +8 -4
- data/src/core/ext/client_channel/client_channel.c +1218 -0
- data/src/core/ext/{client_config → client_channel}/client_channel.h +8 -11
- data/src/core/ext/{client_config → client_channel}/client_channel_factory.c +33 -3
- data/src/core/ext/{client_config → client_channel}/client_channel_factory.h +15 -8
- data/src/core/ext/{client_config/client_config_plugin.c → client_channel/client_channel_plugin.c} +16 -15
- data/src/core/ext/{client_config → client_channel}/connector.c +1 -1
- data/src/core/ext/{client_config → client_channel}/connector.h +5 -8
- data/{include/grpc/support/slice_buffer.h → src/core/ext/client_channel/default_initial_connect_string.c} +4 -5
- data/src/core/ext/client_channel/http_connect_handshaker.c +399 -0
- data/src/core/ext/client_channel/http_connect_handshaker.h +52 -0
- data/src/core/ext/{client_config → client_channel}/initial_connect_string.c +6 -7
- data/src/core/ext/{client_config → client_channel}/initial_connect_string.h +10 -10
- data/src/core/ext/{client_config → client_channel}/lb_policy.c +11 -11
- data/src/core/ext/{client_config → client_channel}/lb_policy.h +68 -27
- data/src/core/ext/client_channel/lb_policy_factory.c +163 -0
- data/src/core/ext/{client_config → client_channel}/lb_policy_factory.h +64 -9
- data/src/core/ext/{client_config → client_channel}/lb_policy_registry.c +6 -4
- data/src/core/ext/{client_config → client_channel}/lb_policy_registry.h +4 -4
- data/src/core/ext/{client_config → client_channel}/parse_address.c +21 -14
- data/src/core/ext/{client_config → client_channel}/parse_address.h +8 -10
- data/src/core/ext/{client_config → client_channel}/resolver.c +3 -4
- data/src/core/ext/{client_config → client_channel}/resolver.h +11 -15
- data/src/core/ext/{client_config → client_channel}/resolver_factory.c +4 -3
- data/src/core/ext/{client_config → client_channel}/resolver_factory.h +13 -11
- data/src/core/ext/{client_config → client_channel}/resolver_registry.c +54 -34
- data/src/core/ext/{client_config → client_channel}/resolver_registry.h +21 -8
- data/src/core/ext/{client_config → client_channel}/subchannel.c +208 -119
- data/src/core/ext/{client_config → client_channel}/subchannel.h +21 -11
- data/src/core/ext/{client_config → client_channel}/subchannel_index.c +6 -17
- data/src/core/ext/{client_config → client_channel}/subchannel_index.h +7 -7
- data/src/core/ext/{client_config → client_channel}/uri_parser.c +21 -28
- data/src/core/ext/{client_config → client_channel}/uri_parser.h +3 -3
- data/src/core/ext/lb_policy/grpclb/grpclb.c +1406 -0
- data/src/core/ext/lb_policy/grpclb/grpclb.h +44 -0
- data/src/core/ext/lb_policy/grpclb/load_balancer_api.c +117 -37
- data/src/core/ext/lb_policy/grpclb/load_balancer_api.h +31 -12
- data/src/core/ext/lb_policy/grpclb/proto/grpc/lb/v1/load_balancer.pb.c +6 -36
- data/src/core/ext/lb_policy/grpclb/proto/grpc/lb/v1/load_balancer.pb.h +22 -42
- data/src/core/ext/lb_policy/pick_first/pick_first.c +64 -46
- data/src/core/ext/lb_policy/round_robin/round_robin.c +324 -160
- data/src/core/ext/load_reporting/load_reporting.c +7 -56
- data/src/core/ext/load_reporting/load_reporting.h +41 -28
- data/src/core/ext/load_reporting/load_reporting_filter.c +132 -42
- data/src/core/ext/load_reporting/load_reporting_filter.h +1 -0
- data/src/core/ext/resolver/dns/native/dns_resolver.c +88 -80
- data/src/core/ext/resolver/sockaddr/sockaddr_resolver.c +57 -102
- data/src/core/ext/transport/chttp2/alpn/alpn.c +1 -1
- data/src/core/ext/transport/chttp2/client/chttp2_connector.c +253 -0
- data/src/core/{lib/iomgr/ev_poll_and_epoll_posix.h → ext/transport/chttp2/client/chttp2_connector.h} +5 -5
- data/src/core/ext/transport/chttp2/client/insecure/channel_create.c +31 -160
- data/src/core/ext/transport/chttp2/client/insecure/channel_create_posix.c +5 -5
- data/src/core/ext/transport/chttp2/client/secure/secure_channel_create.c +44 -243
- data/src/core/ext/transport/chttp2/server/chttp2_server.c +342 -0
- data/src/core/ext/transport/chttp2/server/chttp2_server.h +47 -0
- data/src/core/ext/transport/chttp2/server/insecure/server_chttp2.c +11 -124
- data/src/core/ext/transport/chttp2/server/insecure/server_chttp2_posix.c +20 -9
- data/src/core/ext/transport/chttp2/server/secure/server_secure_chttp2.c +28 -236
- data/src/core/ext/transport/chttp2/transport/bin_decoder.c +31 -27
- data/src/core/ext/transport/chttp2/transport/bin_decoder.h +5 -4
- data/src/core/ext/transport/chttp2/transport/bin_encoder.c +25 -22
- data/src/core/ext/transport/chttp2/transport/bin_encoder.h +8 -7
- data/src/core/ext/transport/chttp2/transport/chttp2_plugin.c +0 -3
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.c +1345 -1521
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.h +3 -1
- data/src/core/ext/transport/chttp2/transport/frame.h +3 -5
- data/src/core/ext/transport/chttp2/transport/frame_data.c +50 -47
- data/src/core/ext/transport/chttp2/transport/frame_data.h +8 -9
- data/src/core/ext/transport/chttp2/transport/frame_goaway.c +19 -21
- data/src/core/ext/transport/chttp2/transport/frame_goaway.h +9 -8
- data/src/core/ext/transport/chttp2/transport/frame_ping.c +13 -12
- data/src/core/ext/transport/chttp2/transport/frame_ping.h +6 -6
- data/src/core/ext/transport/chttp2/transport/frame_rst_stream.c +31 -19
- data/src/core/ext/transport/chttp2/transport/frame_rst_stream.h +8 -7
- data/src/core/ext/transport/chttp2/transport/frame_settings.c +22 -25
- data/src/core/ext/transport/chttp2/transport/frame_settings.h +9 -8
- data/src/core/ext/transport/chttp2/transport/frame_window_update.c +26 -18
- data/src/core/ext/transport/chttp2/transport/frame_window_update.h +5 -6
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.c +68 -58
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.h +8 -5
- data/src/core/ext/transport/chttp2/transport/hpack_parser.c +327 -214
- data/src/core/ext/transport/chttp2/transport/hpack_parser.h +14 -9
- data/src/core/ext/transport/chttp2/transport/hpack_table.c +24 -19
- data/src/core/ext/transport/chttp2/transport/hpack_table.h +9 -6
- data/src/core/ext/transport/chttp2/transport/incoming_metadata.c +2 -2
- data/src/core/ext/transport/chttp2/transport/incoming_metadata.h +1 -1
- data/src/core/ext/transport/chttp2/transport/internal.h +284 -436
- data/src/core/ext/transport/chttp2/transport/parsing.c +355 -590
- data/src/core/ext/transport/chttp2/transport/stream_lists.c +36 -309
- data/src/core/ext/transport/chttp2/transport/stream_map.c +13 -34
- data/src/core/ext/transport/chttp2/transport/stream_map.h +3 -4
- data/src/core/ext/transport/chttp2/transport/writing.c +174 -286
- data/src/core/lib/channel/channel_args.c +70 -13
- data/src/core/lib/channel/channel_args.h +28 -2
- data/src/core/lib/channel/channel_stack.c +77 -28
- data/src/core/lib/channel/channel_stack.h +61 -23
- data/src/core/lib/channel/channel_stack_builder.c +33 -25
- data/src/core/lib/channel/channel_stack_builder.h +17 -8
- data/src/core/lib/channel/compress_filter.c +52 -36
- data/src/core/lib/channel/connected_channel.c +20 -12
- data/src/core/lib/channel/connected_channel.h +2 -1
- data/src/core/lib/channel/context.h +13 -1
- data/src/core/lib/channel/deadline_filter.c +344 -0
- data/src/core/lib/channel/deadline_filter.h +99 -0
- data/src/core/lib/channel/handshaker.c +240 -0
- data/src/core/lib/channel/handshaker.h +164 -0
- data/src/core/lib/{security/credentials/google_default/credentials_windows.c → channel/handshaker_factory.c} +16 -23
- data/src/core/lib/channel/handshaker_factory.h +66 -0
- data/src/core/lib/channel/handshaker_registry.c +113 -0
- data/src/core/{ext/client_config/client_config.h → lib/channel/handshaker_registry.h} +26 -16
- data/src/core/lib/channel/http_client_filter.c +248 -46
- data/src/core/lib/channel/http_client_filter.h +3 -0
- data/src/core/lib/channel/http_server_filter.c +136 -24
- data/src/core/lib/channel/message_size_filter.c +261 -0
- data/src/core/lib/channel/message_size_filter.h +39 -0
- data/src/core/lib/compression/message_compress.c +43 -37
- data/src/core/lib/compression/message_compress.h +7 -5
- data/src/core/lib/http/format_request.c +26 -11
- data/src/core/lib/http/format_request.h +7 -5
- data/src/core/lib/http/httpcli.c +45 -27
- data/src/core/lib/http/httpcli.h +4 -4
- data/src/core/lib/http/httpcli_security_connector.c +56 -46
- data/src/core/lib/http/parser.c +17 -14
- data/src/core/lib/http/parser.h +4 -2
- data/src/core/lib/iomgr/closure.c +49 -7
- data/src/core/lib/iomgr/closure.h +56 -14
- data/src/core/lib/iomgr/combiner.c +422 -0
- data/src/core/lib/iomgr/combiner.h +64 -0
- data/src/core/lib/iomgr/endpoint.c +8 -2
- data/src/core/lib/iomgr/endpoint.h +17 -7
- data/src/core/lib/iomgr/endpoint_pair.h +3 -2
- data/src/core/lib/iomgr/endpoint_pair_posix.c +9 -8
- data/src/core/{ext/client_config/lb_policy_factory.c → lib/iomgr/endpoint_pair_uv.c} +18 -13
- data/src/core/lib/iomgr/endpoint_pair_windows.c +7 -6
- data/src/core/lib/iomgr/error.c +72 -6
- data/src/core/lib/iomgr/error.h +30 -3
- data/src/core/lib/iomgr/ev_epoll_linux.c +500 -382
- data/src/core/lib/iomgr/ev_epoll_linux.h +3 -2
- data/src/core/lib/iomgr/ev_poll_posix.c +317 -30
- data/src/core/lib/iomgr/ev_poll_posix.h +1 -0
- data/src/core/lib/iomgr/ev_posix.c +26 -5
- data/src/core/lib/iomgr/ev_posix.h +12 -1
- data/src/core/lib/iomgr/exec_ctx.c +27 -94
- data/src/core/lib/iomgr/exec_ctx.h +19 -22
- data/src/core/lib/iomgr/executor.c +29 -8
- data/src/core/lib/iomgr/executor.h +2 -4
- data/src/core/lib/iomgr/iocp_windows.c +3 -4
- data/src/core/lib/iomgr/iomgr.c +14 -10
- data/src/core/lib/iomgr/iomgr.h +6 -2
- data/src/core/lib/iomgr/iomgr_posix.c +2 -2
- data/src/core/lib/iomgr/iomgr_uv.c +49 -0
- data/src/core/lib/iomgr/iomgr_windows.c +2 -2
- data/src/core/lib/iomgr/load_file.c +3 -3
- data/src/core/lib/iomgr/load_file.h +2 -2
- data/src/core/lib/iomgr/network_status_tracker.c +1 -1
- data/src/core/lib/iomgr/pollset_set_uv.c +62 -0
- data/src/core/lib/iomgr/pollset_set_windows.c +3 -3
- data/src/core/lib/iomgr/pollset_uv.c +142 -0
- data/src/core/lib/iomgr/pollset_uv.h +42 -0
- data/src/core/lib/iomgr/pollset_windows.c +5 -6
- data/src/core/lib/iomgr/port.h +129 -0
- data/src/core/lib/iomgr/resolve_address.h +2 -1
- data/src/core/lib/iomgr/resolve_address_posix.c +14 -13
- data/src/core/lib/iomgr/resolve_address_uv.c +233 -0
- data/src/core/lib/iomgr/resolve_address_windows.c +14 -12
- data/src/core/lib/iomgr/resource_quota.c +832 -0
- data/src/core/lib/iomgr/resource_quota.h +159 -0
- data/src/core/lib/iomgr/sockaddr.h +10 -2
- data/src/core/lib/iomgr/sockaddr_utils.c +63 -36
- data/src/core/lib/iomgr/sockaddr_utils.h +14 -14
- data/src/core/lib/iomgr/socket_mutator.c +98 -0
- data/src/core/lib/iomgr/socket_mutator.h +80 -0
- data/src/core/lib/iomgr/socket_utils.h +42 -0
- data/src/core/lib/iomgr/socket_utils_common_posix.c +28 -13
- data/src/core/lib/iomgr/socket_utils_linux.c +11 -5
- data/src/core/lib/iomgr/socket_utils_posix.c +10 -7
- data/src/core/lib/iomgr/socket_utils_posix.h +11 -4
- data/src/core/lib/iomgr/socket_utils_uv.c +49 -0
- data/src/core/lib/iomgr/socket_utils_windows.c +52 -0
- data/src/core/lib/iomgr/socket_windows.c +14 -6
- data/src/core/lib/iomgr/socket_windows.h +1 -0
- data/src/core/lib/iomgr/tcp_client.h +8 -2
- data/src/core/lib/iomgr/tcp_client_posix.c +131 -82
- data/src/core/lib/iomgr/tcp_client_posix.h +45 -0
- data/src/core/lib/iomgr/tcp_client_uv.c +190 -0
- data/src/core/lib/iomgr/tcp_client_windows.c +54 -30
- data/src/core/lib/iomgr/tcp_posix.c +135 -56
- data/src/core/lib/iomgr/tcp_posix.h +2 -2
- data/src/core/lib/iomgr/tcp_server.h +14 -6
- data/src/core/lib/iomgr/tcp_server_posix.c +154 -118
- data/src/core/lib/iomgr/tcp_server_uv.c +388 -0
- data/src/core/lib/iomgr/tcp_server_windows.c +127 -100
- data/src/core/lib/iomgr/tcp_uv.c +367 -0
- data/src/core/lib/iomgr/tcp_uv.h +59 -0
- data/src/core/lib/iomgr/tcp_windows.c +65 -48
- data/src/core/lib/iomgr/tcp_windows.h +3 -1
- data/src/core/lib/iomgr/timer.h +21 -21
- data/src/core/lib/iomgr/{timer.c → timer_generic.c} +15 -10
- data/src/core/lib/iomgr/timer_generic.h +49 -0
- data/src/core/lib/iomgr/timer_heap.c +6 -0
- data/src/core/lib/iomgr/timer_uv.c +99 -0
- data/src/core/lib/iomgr/timer_uv.h +47 -0
- data/src/core/lib/iomgr/udp_server.c +116 -98
- data/src/core/lib/iomgr/udp_server.h +5 -3
- data/src/core/lib/iomgr/unix_sockets_posix.c +14 -6
- data/src/core/lib/iomgr/unix_sockets_posix.h +6 -5
- data/src/core/lib/iomgr/unix_sockets_posix_noop.c +4 -4
- data/src/core/lib/iomgr/wakeup_fd_cv.c +118 -0
- data/src/core/lib/iomgr/wakeup_fd_cv.h +80 -0
- data/src/core/lib/iomgr/wakeup_fd_eventfd.c +3 -3
- data/src/core/lib/iomgr/wakeup_fd_nospecial.c +3 -3
- data/src/core/lib/iomgr/wakeup_fd_pipe.c +12 -6
- data/src/core/lib/iomgr/wakeup_fd_posix.c +34 -5
- data/src/core/lib/iomgr/wakeup_fd_posix.h +5 -0
- data/src/core/lib/iomgr/workqueue.h +12 -20
- data/src/core/{ext/client_config/client_config.c → lib/iomgr/workqueue_uv.c} +24 -33
- data/{include/grpc/support/slice.h → src/core/lib/iomgr/workqueue_uv.h} +4 -6
- data/src/core/lib/iomgr/workqueue_windows.c +9 -8
- data/src/core/lib/json/json.c +3 -3
- data/src/core/lib/json/json.h +11 -11
- data/src/core/lib/json/json_reader.c +9 -5
- data/src/core/lib/profiling/basic_timers.c +10 -1
- data/src/core/lib/profiling/timers.h +2 -0
- data/src/core/lib/security/context/security_context.c +13 -3
- data/src/core/lib/security/context/security_context.h +20 -0
- data/src/core/lib/security/credentials/composite/composite_credentials.c +28 -14
- data/src/core/lib/security/credentials/composite/composite_credentials.h +2 -2
- data/src/core/lib/security/credentials/credentials.c +48 -19
- data/src/core/lib/security/credentials/credentials.h +36 -19
- data/src/core/lib/security/credentials/credentials_metadata.c +11 -8
- data/src/core/lib/security/credentials/fake/fake_credentials.c +15 -11
- data/src/core/lib/security/credentials/google_default/{credentials_posix.c → credentials_generic.c} +7 -14
- data/src/core/lib/security/credentials/google_default/google_default_credentials.c +33 -21
- data/src/core/lib/security/credentials/google_default/google_default_credentials.h +14 -0
- data/src/core/lib/security/credentials/iam/iam_credentials.c +3 -2
- data/src/core/lib/security/credentials/jwt/json_token.c +1 -0
- data/src/core/lib/security/credentials/jwt/json_token.h +1 -1
- data/src/core/lib/security/credentials/jwt/jwt_credentials.c +54 -19
- data/src/core/lib/security/credentials/jwt/jwt_credentials.h +2 -1
- data/src/core/lib/security/credentials/jwt/jwt_verifier.c +129 -79
- data/src/core/lib/security/credentials/jwt/jwt_verifier.h +9 -6
- data/src/core/lib/security/credentials/oauth2/oauth2_credentials.c +63 -28
- data/src/core/lib/security/credentials/oauth2/oauth2_credentials.h +1 -1
- data/src/core/lib/security/credentials/plugin/plugin_credentials.c +32 -11
- data/src/core/lib/security/credentials/ssl/ssl_credentials.c +13 -9
- data/src/core/lib/security/transport/client_auth_filter.c +33 -27
- data/src/core/lib/security/transport/secure_endpoint.c +93 -68
- data/src/core/lib/security/transport/secure_endpoint.h +2 -2
- data/src/core/lib/security/transport/security_connector.c +133 -168
- data/src/core/lib/security/transport/security_connector.h +31 -46
- data/src/core/lib/security/transport/security_handshaker.c +501 -0
- data/src/core/lib/security/transport/{handshake.h → security_handshaker.h} +10 -10
- data/src/core/lib/security/transport/server_auth_filter.c +50 -38
- data/src/core/lib/security/util/b64.c +11 -8
- data/src/core/lib/security/util/b64.h +5 -4
- data/src/core/lib/slice/percent_encoding.c +182 -0
- data/src/core/lib/slice/percent_encoding.h +78 -0
- data/src/core/lib/{support → slice}/slice.c +81 -50
- data/src/core/lib/{support → slice}/slice_buffer.c +78 -60
- data/src/core/lib/slice/slice_internal.h +49 -0
- data/src/core/lib/slice/slice_string_helpers.c +90 -0
- data/src/core/lib/{iomgr/workqueue_posix.h → slice/slice_string_helpers.h} +18 -18
- data/src/core/lib/support/backoff.c +24 -13
- data/src/core/lib/support/backoff.h +5 -2
- data/src/core/lib/support/env.h +0 -2
- data/src/core/lib/support/log.c +5 -4
- data/src/core/lib/support/log_linux.c +0 -1
- data/src/core/lib/support/log_posix.c +1 -1
- data/src/core/lib/support/mpscq.c +83 -0
- data/src/core/lib/support/mpscq.h +65 -0
- data/src/core/lib/support/string.c +58 -49
- data/src/core/lib/support/string.h +11 -8
- data/src/core/lib/support/subprocess_posix.c +5 -2
- data/src/core/lib/support/thd.c +1 -1
- data/src/core/lib/support/time.c +43 -79
- data/src/core/lib/support/time_posix.c +1 -1
- data/src/core/lib/support/tmpfile.h +0 -2
- data/src/core/lib/surface/alarm.c +4 -1
- data/src/core/lib/surface/byte_buffer.c +17 -11
- data/src/core/lib/surface/byte_buffer_reader.c +23 -15
- data/src/core/lib/surface/call.c +294 -276
- data/src/core/lib/surface/call.h +24 -9
- data/src/core/lib/surface/call_log_batch.c +5 -3
- data/src/core/lib/surface/channel.c +127 -111
- data/src/core/lib/surface/channel.h +14 -5
- data/src/core/lib/surface/channel_init.c +1 -1
- data/src/core/lib/surface/channel_init.h +10 -1
- data/src/core/lib/surface/channel_ping.c +7 -6
- data/src/core/lib/surface/completion_queue.c +154 -18
- data/src/core/lib/surface/completion_queue.h +5 -0
- data/src/core/lib/surface/init.c +40 -6
- data/src/core/lib/surface/init.h +1 -0
- data/src/core/lib/surface/init_secure.c +5 -2
- data/src/core/lib/surface/lame_client.c +28 -18
- data/src/core/lib/surface/server.c +134 -87
- data/src/core/lib/surface/server.h +8 -0
- data/src/core/lib/surface/validate_metadata.c +1 -1
- data/src/core/lib/surface/version.c +3 -1
- data/src/core/lib/transport/byte_stream.c +7 -4
- data/src/core/lib/transport/byte_stream.h +6 -10
- data/src/core/lib/transport/connectivity_state.c +21 -12
- data/src/core/lib/transport/connectivity_state.h +4 -1
- data/src/core/lib/transport/mdstr_hash_table.c +118 -0
- data/src/core/lib/transport/mdstr_hash_table.h +77 -0
- data/src/core/lib/transport/metadata.c +83 -60
- data/src/core/lib/transport/metadata.h +41 -23
- data/src/core/lib/transport/metadata_batch.c +17 -11
- data/src/core/lib/transport/metadata_batch.h +20 -6
- data/src/core/lib/transport/pid_controller.c +57 -0
- data/src/core/lib/transport/pid_controller.h +64 -0
- data/src/core/lib/transport/service_config.c +251 -0
- data/src/core/lib/transport/service_config.h +71 -0
- data/src/core/lib/transport/static_metadata.c +18 -16
- data/src/core/lib/transport/static_metadata.h +113 -107
- data/src/core/{ext/transport/chttp2 → lib}/transport/timeout_encoding.c +3 -3
- data/src/core/{ext/transport/chttp2 → lib}/transport/timeout_encoding.h +7 -7
- data/src/core/lib/transport/transport.c +84 -23
- data/src/core/lib/transport/transport.h +53 -8
- data/src/core/lib/transport/transport_impl.h +3 -0
- data/src/core/lib/transport/transport_op_string.c +92 -20
- data/src/core/lib/tsi/ssl_transport_security.c +3 -1
- data/src/core/plugin_registry/grpc_plugin_registry.c +8 -4
- data/src/ruby/ext/grpc/extconf.rb +0 -1
- data/src/ruby/ext/grpc/rb_byte_buffer.c +8 -7
- data/src/ruby/ext/grpc/rb_call.c +15 -5
- data/src/ruby/ext/grpc/rb_channel.c +1 -1
- data/src/ruby/ext/grpc/rb_compression_options.c +466 -0
- data/src/{core/ext/client_config/default_initial_connect_string.c → ruby/ext/grpc/rb_compression_options.h} +10 -5
- data/src/ruby/ext/grpc/rb_grpc.c +3 -1
- data/src/ruby/ext/grpc/rb_grpc_imports.generated.c +198 -190
- data/src/ruby/ext/grpc/rb_grpc_imports.generated.h +306 -294
- data/src/ruby/ext/grpc/rb_server.c +18 -12
- data/src/ruby/lib/grpc/errors.rb +154 -2
- data/src/ruby/lib/grpc/generic/active_call.rb +144 -63
- data/src/ruby/lib/grpc/generic/bidi_call.rb +18 -2
- data/src/ruby/lib/grpc/generic/client_stub.rb +7 -5
- data/src/ruby/lib/grpc/generic/rpc_desc.rb +39 -13
- data/src/ruby/lib/grpc/generic/rpc_server.rb +51 -24
- data/src/ruby/lib/grpc/generic/service.rb +3 -2
- data/src/ruby/lib/grpc/version.rb +1 -1
- data/src/ruby/pb/grpc/health/checker.rb +3 -1
- data/src/ruby/pb/src/proto/grpc/testing/test_services_pb.rb +7 -0
- data/src/ruby/pb/test/client.rb +307 -7
- data/src/ruby/pb/test/server.rb +26 -1
- data/src/ruby/spec/compression_options_spec.rb +164 -0
- data/src/ruby/spec/error_sanity_spec.rb +64 -0
- data/src/ruby/spec/generic/active_call_spec.rb +290 -12
- data/src/ruby/spec/generic/client_stub_spec.rb +91 -41
- data/src/ruby/spec/generic/rpc_desc_spec.rb +36 -16
- data/src/ruby/spec/generic/rpc_server_pool_spec.rb +22 -28
- data/src/ruby/spec/generic/rpc_server_spec.rb +6 -6
- data/src/ruby/spec/pb/health/checker_spec.rb +27 -19
- data/src/ruby/spec/spec_helper.rb +2 -0
- data/third_party/boringssl/crypto/aes/aes.c +12 -12
- data/third_party/boringssl/crypto/aes/mode_wrappers.c +6 -2
- data/third_party/boringssl/crypto/asn1/a_d2i_fp.c +28 -13
- data/third_party/boringssl/crypto/asn1/a_gentm.c +2 -0
- data/third_party/boringssl/crypto/asn1/a_object.c +7 -3
- data/third_party/boringssl/crypto/asn1/a_strnid.c +1 -0
- data/third_party/boringssl/crypto/asn1/a_time.c +0 -11
- data/third_party/boringssl/crypto/asn1/a_type.c +0 -2
- data/third_party/boringssl/crypto/asn1/a_utctm.c +1 -30
- data/third_party/boringssl/crypto/asn1/asn1_lib.c +56 -76
- data/third_party/boringssl/crypto/asn1/asn1_locl.h +0 -10
- data/third_party/boringssl/crypto/asn1/asn1_par.c +0 -322
- data/third_party/boringssl/crypto/asn1/f_enum.c +1 -108
- data/third_party/boringssl/crypto/asn1/f_int.c +1 -106
- data/third_party/boringssl/crypto/asn1/f_string.c +1 -106
- data/third_party/boringssl/crypto/asn1/tasn_dec.c +10 -14
- data/third_party/boringssl/crypto/asn1/tasn_enc.c +17 -11
- data/third_party/boringssl/crypto/asn1/tasn_typ.c +29 -42
- data/third_party/boringssl/crypto/asn1/tasn_utl.c +1 -1
- data/third_party/boringssl/crypto/base64/base64.c +249 -285
- data/third_party/boringssl/crypto/bio/bio.c +13 -23
- data/third_party/boringssl/crypto/bio/bio_mem.c +3 -2
- data/third_party/boringssl/crypto/bio/connect.c +12 -3
- data/third_party/boringssl/crypto/bio/fd.c +22 -15
- data/third_party/boringssl/crypto/bio/file.c +2 -38
- data/third_party/boringssl/crypto/bio/hexdump.c +1 -2
- data/third_party/boringssl/crypto/bio/internal.h +3 -0
- data/third_party/boringssl/crypto/bio/pair.c +1 -1
- data/third_party/boringssl/crypto/bio/socket.c +10 -2
- data/third_party/boringssl/crypto/bio/socket_helper.c +2 -2
- data/third_party/boringssl/crypto/bn/asm/x86_64-gcc.c +0 -8
- data/third_party/boringssl/crypto/bn/bn.c +38 -0
- data/third_party/boringssl/crypto/bn/cmp.c +25 -0
- data/third_party/boringssl/crypto/bn/convert.c +73 -76
- data/third_party/boringssl/crypto/bn/div.c +136 -70
- data/third_party/boringssl/crypto/bn/exponentiation.c +86 -381
- data/third_party/boringssl/crypto/bn/gcd.c +213 -296
- data/third_party/boringssl/crypto/bn/generic.c +0 -80
- data/third_party/boringssl/crypto/bn/internal.h +15 -3
- data/third_party/boringssl/crypto/bn/montgomery.c +57 -207
- data/third_party/boringssl/crypto/bn/montgomery_inv.c +160 -0
- data/third_party/boringssl/crypto/bn/mul.c +2 -1
- data/third_party/boringssl/crypto/bn/prime.c +24 -8
- data/third_party/boringssl/crypto/bn/random.c +47 -33
- data/third_party/boringssl/crypto/bn/sqrt.c +4 -5
- data/third_party/boringssl/crypto/buf/buf.c +25 -21
- data/third_party/boringssl/crypto/bytestring/ber.c +1 -0
- data/third_party/boringssl/crypto/bytestring/cbb.c +50 -22
- data/third_party/boringssl/crypto/bytestring/cbs.c +28 -4
- data/third_party/boringssl/crypto/chacha/{chacha_generic.c → chacha.c} +56 -29
- data/third_party/boringssl/crypto/cipher/aead.c +11 -22
- data/third_party/boringssl/crypto/cipher/cipher.c +2 -2
- data/third_party/boringssl/crypto/cipher/e_aes.c +53 -103
- data/third_party/boringssl/crypto/cipher/e_chacha20poly1305.c +2 -8
- data/third_party/boringssl/crypto/cipher/e_des.c +3 -5
- data/third_party/boringssl/crypto/cipher/e_null.c +1 -1
- data/third_party/boringssl/crypto/cipher/e_rc2.c +1 -1
- data/third_party/boringssl/crypto/cipher/e_rc4.c +1 -1
- data/third_party/boringssl/crypto/cipher/e_ssl3.c +3 -63
- data/third_party/boringssl/crypto/cipher/e_tls.c +12 -83
- data/third_party/boringssl/crypto/cipher/internal.h +8 -10
- data/third_party/boringssl/crypto/cipher/tls_cbc.c +69 -40
- data/third_party/boringssl/crypto/conf/conf.c +2 -1
- data/third_party/boringssl/crypto/cpu-aarch64-linux.c +61 -0
- data/third_party/boringssl/crypto/cpu-arm-linux.c +360 -0
- data/third_party/boringssl/crypto/cpu-arm.c +0 -161
- data/third_party/boringssl/crypto/cpu-intel.c +5 -3
- data/third_party/boringssl/{ssl/test/scoped_types.h → crypto/cpu-ppc64le.c} +21 -9
- data/third_party/boringssl/crypto/crypto.c +29 -7
- data/third_party/boringssl/crypto/curve25519/curve25519.c +284 -242
- data/third_party/boringssl/crypto/curve25519/internal.h +64 -0
- data/third_party/boringssl/crypto/curve25519/spake25519.c +464 -0
- data/third_party/boringssl/crypto/curve25519/x25519-x86_64.c +21 -0
- data/third_party/boringssl/crypto/dh/check.c +22 -6
- data/third_party/boringssl/crypto/dh/dh.c +45 -21
- data/third_party/boringssl/crypto/dh/dh_asn1.c +96 -20
- data/third_party/boringssl/crypto/dh/params.c +30 -78
- data/third_party/boringssl/crypto/digest/digest.c +3 -3
- data/third_party/boringssl/crypto/dsa/dsa.c +59 -29
- data/third_party/boringssl/crypto/dsa/dsa_asn1.c +4 -0
- data/third_party/boringssl/crypto/ec/ec.c +84 -140
- data/third_party/boringssl/crypto/ec/ec_asn1.c +82 -52
- data/third_party/boringssl/crypto/ec/ec_key.c +15 -15
- data/third_party/boringssl/crypto/ec/ec_montgomery.c +87 -50
- data/third_party/boringssl/crypto/ec/internal.h +12 -36
- data/third_party/boringssl/crypto/ec/oct.c +11 -11
- data/third_party/boringssl/crypto/ec/p224-64.c +59 -116
- data/third_party/boringssl/crypto/ec/p256-64.c +88 -163
- data/third_party/boringssl/crypto/ec/p256-x86_64.c +46 -58
- data/third_party/boringssl/crypto/ec/simple.c +81 -201
- data/third_party/boringssl/crypto/ec/util-64.c +0 -74
- data/third_party/boringssl/crypto/ecdh/ecdh.c +7 -1
- data/third_party/boringssl/crypto/ecdsa/ecdsa.c +28 -46
- data/third_party/boringssl/crypto/ecdsa/ecdsa_asn1.c +1 -0
- data/third_party/boringssl/crypto/engine/engine.c +1 -1
- data/third_party/boringssl/crypto/err/err.c +3 -3
- data/third_party/boringssl/crypto/evp/evp.c +14 -59
- data/third_party/boringssl/crypto/evp/evp_asn1.c +144 -87
- data/third_party/boringssl/crypto/evp/evp_ctx.c +7 -7
- data/third_party/boringssl/crypto/evp/internal.h +4 -46
- data/third_party/boringssl/crypto/evp/p_dsa_asn1.c +8 -157
- data/third_party/boringssl/crypto/evp/p_ec.c +1 -1
- data/third_party/boringssl/crypto/evp/p_ec_asn1.c +22 -170
- data/third_party/boringssl/crypto/evp/p_rsa.c +1 -1
- data/third_party/boringssl/crypto/evp/p_rsa_asn1.c +10 -548
- data/third_party/boringssl/crypto/evp/print.c +520 -0
- data/third_party/boringssl/crypto/ex_data.c +4 -6
- data/third_party/boringssl/crypto/hkdf/hkdf.c +38 -17
- data/third_party/boringssl/crypto/hmac/hmac.c +6 -6
- data/third_party/boringssl/crypto/internal.h +57 -77
- data/third_party/boringssl/crypto/lhash/lhash.c +6 -10
- data/third_party/boringssl/crypto/md4/md4.c +9 -0
- data/third_party/boringssl/crypto/mem.c +19 -19
- data/third_party/boringssl/crypto/modes/cfb.c +5 -6
- data/third_party/boringssl/crypto/modes/ctr.c +10 -18
- data/third_party/boringssl/crypto/modes/gcm.c +100 -66
- data/third_party/boringssl/crypto/modes/internal.h +15 -27
- data/third_party/boringssl/crypto/modes/ofb.c +9 -22
- data/third_party/boringssl/crypto/newhope/error_correction.c +131 -0
- data/third_party/boringssl/crypto/newhope/internal.h +71 -0
- data/third_party/boringssl/crypto/newhope/newhope.c +174 -0
- data/third_party/boringssl/crypto/newhope/ntt.c +148 -0
- data/third_party/boringssl/crypto/newhope/poly.c +183 -0
- data/third_party/boringssl/crypto/newhope/precomp.c +306 -0
- data/third_party/boringssl/crypto/newhope/reduce.c +42 -0
- data/third_party/boringssl/crypto/obj/obj.c +111 -135
- data/third_party/boringssl/crypto/obj/obj_dat.h +4 -10
- data/third_party/boringssl/crypto/pem/pem_lib.c +6 -43
- data/third_party/boringssl/crypto/pem/pem_pkey.c +10 -19
- data/third_party/boringssl/crypto/pkcs8/p5_pbe.c +1 -0
- data/third_party/boringssl/crypto/pkcs8/p5_pbev2.c +2 -1
- data/third_party/boringssl/crypto/pkcs8/p8_pkey.c +2 -2
- data/third_party/boringssl/crypto/pkcs8/pkcs8.c +95 -87
- data/third_party/boringssl/crypto/{test/test_util.h → poly1305/internal.h} +15 -10
- data/third_party/boringssl/crypto/poly1305/poly1305.c +8 -15
- data/third_party/boringssl/crypto/poly1305/poly1305_arm.c +1 -0
- data/third_party/boringssl/crypto/poly1305/poly1305_vec.c +3 -3
- data/third_party/boringssl/crypto/rand/deterministic.c +47 -0
- data/third_party/boringssl/crypto/rand/rand.c +4 -1
- data/third_party/boringssl/crypto/rand/urandom.c +5 -7
- data/third_party/boringssl/crypto/rand/windows.c +5 -8
- data/third_party/boringssl/crypto/rc4/rc4.c +24 -209
- data/third_party/boringssl/crypto/refcount_lock.c +2 -2
- data/third_party/boringssl/crypto/rsa/blinding.c +74 -232
- data/third_party/boringssl/crypto/rsa/internal.h +5 -13
- data/third_party/boringssl/crypto/rsa/padding.c +64 -63
- data/third_party/boringssl/crypto/rsa/rsa.c +50 -28
- data/third_party/boringssl/crypto/rsa/rsa_asn1.c +8 -16
- data/third_party/boringssl/crypto/rsa/rsa_impl.c +134 -122
- data/third_party/boringssl/crypto/sha/sha256.c +2 -2
- data/third_party/boringssl/crypto/sha/sha512.c +7 -7
- data/third_party/boringssl/crypto/stack/stack.c +13 -22
- data/third_party/boringssl/crypto/thread.c +21 -12
- data/third_party/boringssl/crypto/thread_none.c +6 -2
- data/third_party/boringssl/crypto/thread_pthread.c +16 -7
- data/third_party/boringssl/crypto/thread_win.c +38 -85
- data/third_party/boringssl/crypto/x509/a_sign.c +3 -3
- data/third_party/boringssl/crypto/x509/a_strex.c +1 -1
- data/third_party/boringssl/crypto/x509/a_verify.c +2 -2
- data/third_party/boringssl/crypto/{evp → x509}/algorithm.c +37 -53
- data/third_party/boringssl/crypto/x509/asn1_gen.c +1 -2
- data/third_party/boringssl/crypto/x509/by_dir.c +6 -6
- data/third_party/boringssl/crypto/x509/internal.h +66 -0
- data/third_party/boringssl/crypto/x509/rsa_pss.c +385 -0
- data/third_party/boringssl/crypto/x509/t_x509.c +10 -12
- data/third_party/boringssl/crypto/x509/x509.c +5 -0
- data/third_party/boringssl/crypto/x509/x509_att.c +9 -3
- data/third_party/boringssl/crypto/x509/x509_lu.c +34 -44
- data/third_party/boringssl/crypto/x509/x509_obj.c +19 -2
- data/third_party/boringssl/crypto/x509/x509_r2x.c +9 -5
- data/third_party/boringssl/crypto/x509/x509_set.c +5 -0
- data/third_party/boringssl/crypto/x509/x509_txt.c +5 -0
- data/third_party/boringssl/crypto/x509/x509_vfy.c +63 -32
- data/third_party/boringssl/crypto/x509/x509_vpm.c +29 -18
- data/third_party/boringssl/crypto/x509/x509cset.c +2 -1
- data/third_party/boringssl/crypto/x509/x_crl.c +2 -2
- data/third_party/boringssl/crypto/x509/x_name.c +14 -17
- data/third_party/boringssl/crypto/x509/x_pubkey.c +10 -7
- data/third_party/boringssl/crypto/x509/x_x509.c +67 -6
- data/third_party/boringssl/crypto/x509v3/pcy_cache.c +2 -2
- data/third_party/boringssl/crypto/x509v3/pcy_tree.c +2 -1
- data/third_party/boringssl/crypto/x509v3/v3_conf.c +4 -3
- data/third_party/boringssl/crypto/x509v3/v3_cpols.c +5 -0
- data/third_party/boringssl/crypto/x509v3/v3_prn.c +0 -3
- data/third_party/boringssl/crypto/x509v3/v3_purp.c +2 -2
- data/third_party/boringssl/crypto/x509v3/v3_utl.c +2 -1
- data/third_party/boringssl/include/openssl/aead.h +72 -73
- data/third_party/boringssl/include/openssl/arm_arch.h +0 -6
- data/third_party/boringssl/include/openssl/asn1.h +103 -235
- data/third_party/boringssl/include/openssl/asn1_mac.h +17 -74
- data/third_party/boringssl/include/openssl/asn1t.h +1 -11
- data/third_party/boringssl/include/openssl/base.h +145 -3
- data/third_party/boringssl/include/openssl/base64.h +20 -17
- data/third_party/boringssl/include/openssl/bio.h +59 -34
- data/third_party/boringssl/include/openssl/bn.h +118 -51
- data/third_party/boringssl/include/openssl/buf.h +15 -0
- data/third_party/boringssl/include/openssl/bytestring.h +52 -4
- data/third_party/boringssl/include/openssl/chacha.h +2 -2
- data/third_party/boringssl/include/openssl/cipher.h +18 -1
- data/third_party/boringssl/include/openssl/cmac.h +11 -0
- data/third_party/boringssl/include/openssl/conf.h +13 -2
- data/third_party/boringssl/include/openssl/cpu.h +20 -23
- data/third_party/boringssl/include/openssl/crypto.h +22 -1
- data/third_party/boringssl/include/openssl/curve25519.h +96 -4
- data/third_party/boringssl/include/openssl/dh.h +71 -16
- data/third_party/boringssl/include/openssl/digest.h +38 -11
- data/third_party/boringssl/include/openssl/dsa.h +40 -4
- data/third_party/boringssl/include/openssl/ec.h +44 -18
- data/third_party/boringssl/include/openssl/ec_key.h +27 -6
- data/third_party/boringssl/include/openssl/ecdsa.h +11 -0
- data/third_party/boringssl/include/openssl/engine.h +11 -0
- data/third_party/boringssl/include/openssl/evp.h +52 -88
- data/third_party/boringssl/include/openssl/hkdf.h +24 -4
- data/third_party/boringssl/include/openssl/hmac.h +20 -6
- data/third_party/boringssl/include/openssl/md4.h +4 -0
- data/third_party/boringssl/include/openssl/mem.h +19 -0
- data/third_party/boringssl/include/openssl/newhope.h +158 -0
- data/third_party/boringssl/include/openssl/nid.h +4166 -0
- data/third_party/boringssl/include/openssl/obj.h +31 -3
- data/third_party/boringssl/include/openssl/obj_mac.h +17 -4143
- data/third_party/boringssl/include/openssl/{opensslfeatures.h → opensslconf.h} +3 -3
- data/third_party/boringssl/include/openssl/pem.h +5 -0
- data/third_party/boringssl/include/openssl/pkcs8.h +12 -0
- data/third_party/boringssl/include/openssl/rand.h +6 -0
- data/third_party/boringssl/include/openssl/rc4.h +6 -0
- data/third_party/boringssl/{crypto/dh/internal.h → include/openssl/ripemd.h} +38 -11
- data/third_party/boringssl/include/openssl/rsa.h +127 -65
- data/third_party/boringssl/include/openssl/sha.h +14 -10
- data/third_party/boringssl/include/openssl/ssl.h +561 -275
- data/third_party/boringssl/include/openssl/ssl3.h +18 -25
- data/third_party/boringssl/include/openssl/stack.h +2 -4
- data/third_party/boringssl/include/openssl/stack_macros.h +321 -353
- data/third_party/boringssl/include/openssl/thread.h +31 -13
- data/third_party/boringssl/include/openssl/time_support.h +1 -0
- data/third_party/boringssl/include/openssl/tls1.h +37 -33
- data/third_party/boringssl/include/openssl/x509.h +69 -26
- data/third_party/boringssl/include/openssl/x509_vfy.h +12 -10
- data/third_party/boringssl/include/openssl/x509v3.h +23 -2
- data/third_party/boringssl/ssl/custom_extensions.c +3 -5
- data/third_party/boringssl/ssl/d1_both.c +463 -499
- data/third_party/boringssl/ssl/d1_lib.c +38 -109
- data/third_party/boringssl/ssl/d1_pkt.c +173 -334
- data/third_party/boringssl/ssl/d1_srtp.c +20 -18
- data/third_party/boringssl/ssl/{d1_meth.c → dtls_method.c} +88 -15
- data/third_party/boringssl/ssl/dtls_record.c +27 -26
- data/third_party/boringssl/ssl/{s3_clnt.c → handshake_client.c} +816 -904
- data/third_party/boringssl/ssl/handshake_server.c +1932 -0
- data/third_party/boringssl/ssl/internal.h +712 -439
- data/third_party/boringssl/ssl/s3_both.c +445 -257
- data/third_party/boringssl/ssl/s3_enc.c +53 -36
- data/third_party/boringssl/ssl/s3_lib.c +23 -268
- data/third_party/boringssl/ssl/s3_pkt.c +168 -364
- data/third_party/boringssl/ssl/ssl_aead_ctx.c +46 -17
- data/third_party/boringssl/ssl/ssl_asn1.c +56 -26
- data/third_party/boringssl/ssl/ssl_buffer.c +16 -24
- data/third_party/boringssl/ssl/ssl_cert.c +324 -49
- data/third_party/boringssl/ssl/ssl_cipher.c +205 -150
- data/third_party/boringssl/ssl/ssl_ecdh.c +287 -51
- data/third_party/boringssl/ssl/ssl_file.c +21 -68
- data/third_party/boringssl/ssl/ssl_lib.c +881 -510
- data/third_party/boringssl/ssl/ssl_rsa.c +404 -34
- data/third_party/boringssl/ssl/ssl_session.c +324 -103
- data/third_party/boringssl/ssl/ssl_stat.c +6 -88
- data/third_party/boringssl/ssl/t1_enc.c +23 -39
- data/third_party/boringssl/ssl/t1_lib.c +1120 -622
- data/third_party/boringssl/ssl/tls13_both.c +440 -0
- data/third_party/boringssl/ssl/tls13_client.c +682 -0
- data/third_party/boringssl/ssl/tls13_enc.c +391 -0
- data/third_party/boringssl/ssl/tls13_server.c +672 -0
- data/third_party/boringssl/ssl/{s3_meth.c → tls_method.c} +100 -21
- data/third_party/boringssl/ssl/tls_record.c +159 -77
- data/third_party/nanopb/pb.h +60 -28
- data/third_party/nanopb/pb_decode.c +120 -92
- data/third_party/nanopb/pb_decode.h +3 -3
- data/third_party/nanopb/pb_encode.c +73 -67
- data/third_party/nanopb/pb_encode.h +4 -4
- metadata +155 -89
- data/include/grpc/impl/codegen/byte_buffer.h +0 -122
- data/include/grpc/impl/codegen/log.h +0 -118
- data/include/grpc/impl/codegen/time.h +0 -130
- data/src/core/ext/client_config/client_channel.c +0 -593
- data/src/core/ext/client_config/subchannel_call_holder.c +0 -272
- data/src/core/ext/client_config/subchannel_call_holder.h +0 -99
- data/src/core/lib/iomgr/ev_poll_and_epoll_posix.c +0 -2046
- data/src/core/lib/iomgr/workqueue_posix.c +0 -151
- data/src/core/lib/security/transport/handshake.c +0 -368
- data/third_party/boringssl/crypto/asn1/a_bytes.c +0 -308
- data/third_party/boringssl/crypto/asn1/bio_asn1.c +0 -477
- data/third_party/boringssl/crypto/asn1/bio_ndef.c +0 -251
- data/third_party/boringssl/crypto/asn1/t_pkey.c +0 -110
- data/third_party/boringssl/crypto/asn1/tasn_prn.c +0 -596
- data/third_party/boringssl/crypto/chacha/chacha_vec.c +0 -328
- data/third_party/boringssl/crypto/directory.h +0 -66
- data/third_party/boringssl/crypto/directory_posix.c +0 -108
- data/third_party/boringssl/crypto/directory_win.c +0 -144
- data/third_party/boringssl/crypto/test/scoped_types.h +0 -140
- data/third_party/boringssl/include/openssl/pqueue.h +0 -146
- data/third_party/boringssl/ssl/d1_clnt.c +0 -561
- data/third_party/boringssl/ssl/d1_srvr.c +0 -476
- data/third_party/boringssl/ssl/pqueue/pqueue.c +0 -197
- data/third_party/boringssl/ssl/s3_srvr.c +0 -2272
- data/third_party/boringssl/ssl/test/async_bio.h +0 -45
- data/third_party/boringssl/ssl/test/packeted_bio.h +0 -44
- data/third_party/boringssl/ssl/test/test_config.h +0 -110
|
@@ -136,21 +136,16 @@
|
|
|
136
136
|
#include <openssl/ssl.h>
|
|
137
137
|
|
|
138
138
|
#include <assert.h>
|
|
139
|
-
#include <stdio.h>
|
|
140
139
|
#include <string.h>
|
|
141
140
|
|
|
142
141
|
#include <openssl/err.h>
|
|
143
142
|
#include <openssl/evp.h>
|
|
144
143
|
#include <openssl/mem.h>
|
|
145
144
|
#include <openssl/md5.h>
|
|
146
|
-
#include <openssl/
|
|
145
|
+
#include <openssl/nid.h>
|
|
147
146
|
|
|
148
147
|
#include "internal.h"
|
|
149
148
|
|
|
150
|
-
|
|
151
|
-
static int ssl3_handshake_mac(SSL *ssl, int md_nid, const char *sender,
|
|
152
|
-
size_t sender_len, uint8_t *p);
|
|
153
|
-
|
|
154
149
|
static int ssl3_prf(const SSL *ssl, uint8_t *out, size_t out_len,
|
|
155
150
|
const uint8_t *secret, size_t secret_len, const char *label,
|
|
156
151
|
size_t label_len, const uint8_t *seed1, size_t seed1_len,
|
|
@@ -295,31 +290,6 @@ int ssl3_update_handshake_hash(SSL *ssl, const uint8_t *in, size_t in_len) {
|
|
|
295
290
|
return 1;
|
|
296
291
|
}
|
|
297
292
|
|
|
298
|
-
static int ssl3_cert_verify_mac(SSL *ssl, int md_nid, uint8_t *p) {
|
|
299
|
-
return ssl3_handshake_mac(ssl, md_nid, NULL, 0, p);
|
|
300
|
-
}
|
|
301
|
-
|
|
302
|
-
static int ssl3_final_finish_mac(SSL *ssl, int from_server, uint8_t *out) {
|
|
303
|
-
const char *sender = from_server ? SSL3_MD_SERVER_FINISHED_CONST
|
|
304
|
-
: SSL3_MD_CLIENT_FINISHED_CONST;
|
|
305
|
-
const size_t sender_len = 4;
|
|
306
|
-
int ret, sha1len;
|
|
307
|
-
ret = ssl3_handshake_mac(ssl, NID_md5, sender, sender_len, out);
|
|
308
|
-
if (ret == 0) {
|
|
309
|
-
return 0;
|
|
310
|
-
}
|
|
311
|
-
|
|
312
|
-
out += ret;
|
|
313
|
-
|
|
314
|
-
sha1len = ssl3_handshake_mac(ssl, NID_sha1, sender, sender_len, out);
|
|
315
|
-
if (sha1len == 0) {
|
|
316
|
-
return 0;
|
|
317
|
-
}
|
|
318
|
-
|
|
319
|
-
ret += sha1len;
|
|
320
|
-
return ret;
|
|
321
|
-
}
|
|
322
|
-
|
|
323
293
|
static int ssl3_handshake_mac(SSL *ssl, int md_nid, const char *sender,
|
|
324
294
|
size_t sender_len, uint8_t *p) {
|
|
325
295
|
unsigned int ret;
|
|
@@ -361,12 +331,16 @@ static int ssl3_handshake_mac(SSL *ssl, int md_nid, const char *sender,
|
|
|
361
331
|
|
|
362
332
|
n = EVP_MD_CTX_size(&ctx);
|
|
363
333
|
|
|
334
|
+
SSL_SESSION *session = ssl->session;
|
|
335
|
+
if (ssl->s3->new_session != NULL) {
|
|
336
|
+
session = ssl->s3->new_session;
|
|
337
|
+
}
|
|
338
|
+
|
|
364
339
|
npad = (48 / n) * n;
|
|
365
340
|
if (sender != NULL) {
|
|
366
341
|
EVP_DigestUpdate(&ctx, sender, sender_len);
|
|
367
342
|
}
|
|
368
|
-
EVP_DigestUpdate(&ctx,
|
|
369
|
-
ssl->session->master_key_length);
|
|
343
|
+
EVP_DigestUpdate(&ctx, session->master_key, session->master_key_length);
|
|
370
344
|
EVP_DigestUpdate(&ctx, kPad1, npad);
|
|
371
345
|
EVP_DigestFinal_ex(&ctx, md_buf, &i);
|
|
372
346
|
|
|
@@ -375,8 +349,7 @@ static int ssl3_handshake_mac(SSL *ssl, int md_nid, const char *sender,
|
|
|
375
349
|
OPENSSL_PUT_ERROR(SSL, ERR_LIB_EVP);
|
|
376
350
|
return 0;
|
|
377
351
|
}
|
|
378
|
-
EVP_DigestUpdate(&ctx,
|
|
379
|
-
ssl->session->master_key_length);
|
|
352
|
+
EVP_DigestUpdate(&ctx, session->master_key, session->master_key_length);
|
|
380
353
|
EVP_DigestUpdate(&ctx, kPad2, npad);
|
|
381
354
|
EVP_DigestUpdate(&ctx, md_buf, i);
|
|
382
355
|
EVP_DigestFinal_ex(&ctx, p, &ret);
|
|
@@ -386,10 +359,54 @@ static int ssl3_handshake_mac(SSL *ssl, int md_nid, const char *sender,
|
|
|
386
359
|
return ret;
|
|
387
360
|
}
|
|
388
361
|
|
|
362
|
+
static int ssl3_final_finish_mac(SSL *ssl, int from_server, uint8_t *out) {
|
|
363
|
+
const char *sender = from_server ? SSL3_MD_SERVER_FINISHED_CONST
|
|
364
|
+
: SSL3_MD_CLIENT_FINISHED_CONST;
|
|
365
|
+
const size_t sender_len = 4;
|
|
366
|
+
int ret, sha1len;
|
|
367
|
+
ret = ssl3_handshake_mac(ssl, NID_md5, sender, sender_len, out);
|
|
368
|
+
if (ret == 0) {
|
|
369
|
+
return 0;
|
|
370
|
+
}
|
|
389
371
|
|
|
372
|
+
out += ret;
|
|
373
|
+
|
|
374
|
+
sha1len = ssl3_handshake_mac(ssl, NID_sha1, sender, sender_len, out);
|
|
375
|
+
if (sha1len == 0) {
|
|
376
|
+
return 0;
|
|
377
|
+
}
|
|
378
|
+
|
|
379
|
+
ret += sha1len;
|
|
380
|
+
return ret;
|
|
381
|
+
}
|
|
382
|
+
|
|
383
|
+
int ssl3_cert_verify_hash(SSL *ssl, const EVP_MD **out_md, uint8_t *out,
|
|
384
|
+
size_t *out_len, uint16_t signature_algorithm) {
|
|
385
|
+
assert(ssl3_protocol_version(ssl) == SSL3_VERSION);
|
|
386
|
+
|
|
387
|
+
if (signature_algorithm == SSL_SIGN_RSA_PKCS1_MD5_SHA1) {
|
|
388
|
+
if (ssl3_handshake_mac(ssl, NID_md5, NULL, 0, out) == 0 ||
|
|
389
|
+
ssl3_handshake_mac(ssl, NID_sha1, NULL, 0,
|
|
390
|
+
out + MD5_DIGEST_LENGTH) == 0) {
|
|
391
|
+
return 0;
|
|
392
|
+
}
|
|
393
|
+
*out_md = EVP_md5_sha1();
|
|
394
|
+
*out_len = MD5_DIGEST_LENGTH + SHA_DIGEST_LENGTH;
|
|
395
|
+
} else if (signature_algorithm == SSL_SIGN_ECDSA_SHA1) {
|
|
396
|
+
if (ssl3_handshake_mac(ssl, NID_sha1, NULL, 0, out) == 0) {
|
|
397
|
+
return 0;
|
|
398
|
+
}
|
|
399
|
+
*out_md = EVP_sha1();
|
|
400
|
+
*out_len = SHA_DIGEST_LENGTH;
|
|
401
|
+
} else {
|
|
402
|
+
OPENSSL_PUT_ERROR(SSL, ERR_R_INTERNAL_ERROR);
|
|
403
|
+
return 0;
|
|
404
|
+
}
|
|
405
|
+
|
|
406
|
+
return 1;
|
|
407
|
+
}
|
|
390
408
|
|
|
391
409
|
const SSL3_ENC_METHOD SSLv3_enc_data = {
|
|
392
410
|
ssl3_prf,
|
|
393
411
|
ssl3_final_finish_mac,
|
|
394
|
-
ssl3_cert_verify_mac,
|
|
395
412
|
};
|
|
@@ -149,7 +149,6 @@
|
|
|
149
149
|
#include <openssl/ssl.h>
|
|
150
150
|
|
|
151
151
|
#include <assert.h>
|
|
152
|
-
#include <stdio.h>
|
|
153
152
|
#include <string.h>
|
|
154
153
|
|
|
155
154
|
#include <openssl/buf.h>
|
|
@@ -158,7 +157,7 @@
|
|
|
158
157
|
#include <openssl/err.h>
|
|
159
158
|
#include <openssl/md5.h>
|
|
160
159
|
#include <openssl/mem.h>
|
|
161
|
-
#include <openssl/
|
|
160
|
+
#include <openssl/nid.h>
|
|
162
161
|
|
|
163
162
|
#include "internal.h"
|
|
164
163
|
|
|
@@ -167,21 +166,9 @@ int ssl3_supports_cipher(const SSL_CIPHER *cipher) {
|
|
|
167
166
|
return 1;
|
|
168
167
|
}
|
|
169
168
|
|
|
170
|
-
|
|
171
|
-
uint8_t *p = (uint8_t *)ssl->init_buf->data;
|
|
172
|
-
*(p++) = htype;
|
|
173
|
-
l2n3(len, p);
|
|
174
|
-
ssl->init_num = (int)len + SSL3_HM_HEADER_LENGTH;
|
|
175
|
-
ssl->init_off = 0;
|
|
169
|
+
void ssl3_expect_flight(SSL *ssl) {}
|
|
176
170
|
|
|
177
|
-
|
|
178
|
-
return ssl3_update_handshake_hash(ssl, (uint8_t *)ssl->init_buf->data,
|
|
179
|
-
ssl->init_num);
|
|
180
|
-
}
|
|
181
|
-
|
|
182
|
-
int ssl3_handshake_write(SSL *ssl) {
|
|
183
|
-
return ssl3_do_write(ssl, SSL3_RT_HANDSHAKE);
|
|
184
|
-
}
|
|
171
|
+
void ssl3_received_flight(SSL *ssl) {}
|
|
185
172
|
|
|
186
173
|
int ssl3_new(SSL *ssl) {
|
|
187
174
|
SSL3_STATE *s3;
|
|
@@ -218,245 +205,41 @@ void ssl3_free(SSL *ssl) {
|
|
|
218
205
|
ssl_write_buffer_clear(ssl);
|
|
219
206
|
SSL_ECDH_CTX_cleanup(&ssl->s3->tmp.ecdh_ctx);
|
|
220
207
|
OPENSSL_free(ssl->s3->tmp.peer_key);
|
|
208
|
+
OPENSSL_free(ssl->s3->tmp.server_params);
|
|
221
209
|
|
|
222
210
|
sk_X509_NAME_pop_free(ssl->s3->tmp.ca_names, X509_NAME_free);
|
|
223
211
|
OPENSSL_free(ssl->s3->tmp.certificate_types);
|
|
224
|
-
OPENSSL_free(ssl->s3->tmp.
|
|
225
|
-
|
|
212
|
+
OPENSSL_free(ssl->s3->tmp.peer_supported_group_list);
|
|
213
|
+
SSL_SESSION_free(ssl->s3->new_session);
|
|
214
|
+
SSL_SESSION_free(ssl->s3->established_session);
|
|
226
215
|
ssl3_free_handshake_buffer(ssl);
|
|
227
216
|
ssl3_free_handshake_hash(ssl);
|
|
217
|
+
ssl_handshake_free(ssl->s3->hs);
|
|
228
218
|
OPENSSL_free(ssl->s3->next_proto_negotiated);
|
|
229
219
|
OPENSSL_free(ssl->s3->alpn_selected);
|
|
230
220
|
SSL_AEAD_CTX_free(ssl->s3->aead_read_ctx);
|
|
231
221
|
SSL_AEAD_CTX_free(ssl->s3->aead_write_ctx);
|
|
222
|
+
OPENSSL_free(ssl->s3->pending_message);
|
|
232
223
|
|
|
233
224
|
OPENSSL_cleanse(ssl->s3, sizeof *ssl->s3);
|
|
234
225
|
OPENSSL_free(ssl->s3);
|
|
235
226
|
ssl->s3 = NULL;
|
|
236
227
|
}
|
|
237
228
|
|
|
238
|
-
int SSL_session_reused(const SSL *ssl) {
|
|
239
|
-
return ssl->hit;
|
|
240
|
-
}
|
|
241
|
-
|
|
242
|
-
int SSL_total_renegotiations(const SSL *ssl) {
|
|
243
|
-
return ssl->s3->total_renegotiations;
|
|
244
|
-
}
|
|
245
|
-
|
|
246
|
-
int SSL_num_renegotiations(const SSL *ssl) {
|
|
247
|
-
return SSL_total_renegotiations(ssl);
|
|
248
|
-
}
|
|
249
|
-
|
|
250
|
-
int SSL_CTX_need_tmp_RSA(const SSL_CTX *ctx) {
|
|
251
|
-
return 0;
|
|
252
|
-
}
|
|
253
|
-
|
|
254
|
-
int SSL_need_rsa(const SSL *ssl) {
|
|
255
|
-
return 0;
|
|
256
|
-
}
|
|
257
|
-
|
|
258
|
-
int SSL_CTX_set_tmp_rsa(SSL_CTX *ctx, const RSA *rsa) {
|
|
259
|
-
return 1;
|
|
260
|
-
}
|
|
261
|
-
|
|
262
|
-
int SSL_set_tmp_rsa(SSL *ssl, const RSA *rsa) {
|
|
263
|
-
return 1;
|
|
264
|
-
}
|
|
265
|
-
|
|
266
|
-
int SSL_CTX_set_tmp_dh(SSL_CTX *ctx, const DH *dh) {
|
|
267
|
-
DH_free(ctx->cert->dh_tmp);
|
|
268
|
-
ctx->cert->dh_tmp = DHparams_dup(dh);
|
|
269
|
-
if (ctx->cert->dh_tmp == NULL) {
|
|
270
|
-
OPENSSL_PUT_ERROR(SSL, ERR_R_DH_LIB);
|
|
271
|
-
return 0;
|
|
272
|
-
}
|
|
273
|
-
return 1;
|
|
274
|
-
}
|
|
275
|
-
|
|
276
|
-
int SSL_set_tmp_dh(SSL *ssl, const DH *dh) {
|
|
277
|
-
DH_free(ssl->cert->dh_tmp);
|
|
278
|
-
ssl->cert->dh_tmp = DHparams_dup(dh);
|
|
279
|
-
if (ssl->cert->dh_tmp == NULL) {
|
|
280
|
-
OPENSSL_PUT_ERROR(SSL, ERR_R_DH_LIB);
|
|
281
|
-
return 0;
|
|
282
|
-
}
|
|
283
|
-
return 1;
|
|
284
|
-
}
|
|
285
|
-
|
|
286
|
-
int SSL_CTX_set_tmp_ecdh(SSL_CTX *ctx, const EC_KEY *ec_key) {
|
|
287
|
-
if (ec_key == NULL || EC_KEY_get0_group(ec_key) == NULL) {
|
|
288
|
-
OPENSSL_PUT_ERROR(SSL, ERR_R_PASSED_NULL_PARAMETER);
|
|
289
|
-
return 0;
|
|
290
|
-
}
|
|
291
|
-
int nid = EC_GROUP_get_curve_name(EC_KEY_get0_group(ec_key));
|
|
292
|
-
return SSL_CTX_set1_curves(ctx, &nid, 1);
|
|
293
|
-
}
|
|
294
|
-
|
|
295
|
-
int SSL_set_tmp_ecdh(SSL *ssl, const EC_KEY *ec_key) {
|
|
296
|
-
if (ec_key == NULL || EC_KEY_get0_group(ec_key) == NULL) {
|
|
297
|
-
OPENSSL_PUT_ERROR(SSL, ERR_R_PASSED_NULL_PARAMETER);
|
|
298
|
-
return 0;
|
|
299
|
-
}
|
|
300
|
-
int nid = EC_GROUP_get_curve_name(EC_KEY_get0_group(ec_key));
|
|
301
|
-
return SSL_set1_curves(ssl, &nid, 1);
|
|
302
|
-
}
|
|
303
|
-
|
|
304
|
-
int SSL_CTX_enable_tls_channel_id(SSL_CTX *ctx) {
|
|
305
|
-
ctx->tlsext_channel_id_enabled = 1;
|
|
306
|
-
return 1;
|
|
307
|
-
}
|
|
308
|
-
|
|
309
|
-
int SSL_enable_tls_channel_id(SSL *ssl) {
|
|
310
|
-
ssl->tlsext_channel_id_enabled = 1;
|
|
311
|
-
return 1;
|
|
312
|
-
}
|
|
313
|
-
|
|
314
|
-
static int is_p256_key(EVP_PKEY *private_key) {
|
|
315
|
-
const EC_KEY *ec_key = EVP_PKEY_get0_EC_KEY(private_key);
|
|
316
|
-
return ec_key != NULL &&
|
|
317
|
-
EC_GROUP_get_curve_name(EC_KEY_get0_group(ec_key)) ==
|
|
318
|
-
NID_X9_62_prime256v1;
|
|
319
|
-
}
|
|
320
|
-
|
|
321
|
-
int SSL_CTX_set1_tls_channel_id(SSL_CTX *ctx, EVP_PKEY *private_key) {
|
|
322
|
-
if (!is_p256_key(private_key)) {
|
|
323
|
-
OPENSSL_PUT_ERROR(SSL, SSL_R_CHANNEL_ID_NOT_P256);
|
|
324
|
-
return 0;
|
|
325
|
-
}
|
|
326
|
-
|
|
327
|
-
EVP_PKEY_free(ctx->tlsext_channel_id_private);
|
|
328
|
-
ctx->tlsext_channel_id_private = EVP_PKEY_up_ref(private_key);
|
|
329
|
-
ctx->tlsext_channel_id_enabled = 1;
|
|
330
|
-
|
|
331
|
-
return 1;
|
|
332
|
-
}
|
|
333
|
-
|
|
334
|
-
int SSL_set1_tls_channel_id(SSL *ssl, EVP_PKEY *private_key) {
|
|
335
|
-
if (!is_p256_key(private_key)) {
|
|
336
|
-
OPENSSL_PUT_ERROR(SSL, SSL_R_CHANNEL_ID_NOT_P256);
|
|
337
|
-
return 0;
|
|
338
|
-
}
|
|
339
|
-
|
|
340
|
-
EVP_PKEY_free(ssl->tlsext_channel_id_private);
|
|
341
|
-
ssl->tlsext_channel_id_private = EVP_PKEY_up_ref(private_key);
|
|
342
|
-
ssl->tlsext_channel_id_enabled = 1;
|
|
343
|
-
|
|
344
|
-
return 1;
|
|
345
|
-
}
|
|
346
|
-
|
|
347
|
-
size_t SSL_get_tls_channel_id(SSL *ssl, uint8_t *out, size_t max_out) {
|
|
348
|
-
if (!ssl->s3->tlsext_channel_id_valid) {
|
|
349
|
-
return 0;
|
|
350
|
-
}
|
|
351
|
-
memcpy(out, ssl->s3->tlsext_channel_id, (max_out < 64) ? max_out : 64);
|
|
352
|
-
return 64;
|
|
353
|
-
}
|
|
354
|
-
|
|
355
|
-
int SSL_set_tlsext_host_name(SSL *ssl, const char *name) {
|
|
356
|
-
OPENSSL_free(ssl->tlsext_hostname);
|
|
357
|
-
ssl->tlsext_hostname = NULL;
|
|
358
|
-
|
|
359
|
-
if (name == NULL) {
|
|
360
|
-
return 1;
|
|
361
|
-
}
|
|
362
|
-
if (strlen(name) > TLSEXT_MAXLEN_host_name) {
|
|
363
|
-
OPENSSL_PUT_ERROR(SSL, SSL_R_SSL3_EXT_INVALID_SERVERNAME);
|
|
364
|
-
return 0;
|
|
365
|
-
}
|
|
366
|
-
ssl->tlsext_hostname = BUF_strdup(name);
|
|
367
|
-
if (ssl->tlsext_hostname == NULL) {
|
|
368
|
-
OPENSSL_PUT_ERROR(SSL, ERR_R_MALLOC_FAILURE);
|
|
369
|
-
return 0;
|
|
370
|
-
}
|
|
371
|
-
return 1;
|
|
372
|
-
}
|
|
373
|
-
|
|
374
|
-
size_t SSL_get0_certificate_types(SSL *ssl, const uint8_t **out_types) {
|
|
375
|
-
if (ssl->server || !ssl->s3->tmp.cert_req) {
|
|
376
|
-
*out_types = NULL;
|
|
377
|
-
return 0;
|
|
378
|
-
}
|
|
379
|
-
*out_types = ssl->s3->tmp.certificate_types;
|
|
380
|
-
return ssl->s3->tmp.num_certificate_types;
|
|
381
|
-
}
|
|
382
|
-
|
|
383
|
-
int SSL_CTX_set1_curves(SSL_CTX *ctx, const int *curves, size_t curves_len) {
|
|
384
|
-
return tls1_set_curves(&ctx->tlsext_ellipticcurvelist,
|
|
385
|
-
&ctx->tlsext_ellipticcurvelist_length, curves,
|
|
386
|
-
curves_len);
|
|
387
|
-
}
|
|
388
|
-
|
|
389
|
-
int SSL_set1_curves(SSL *ssl, const int *curves, size_t curves_len) {
|
|
390
|
-
return tls1_set_curves(&ssl->tlsext_ellipticcurvelist,
|
|
391
|
-
&ssl->tlsext_ellipticcurvelist_length, curves,
|
|
392
|
-
curves_len);
|
|
393
|
-
}
|
|
394
|
-
|
|
395
|
-
int SSL_CTX_set_tlsext_servername_callback(
|
|
396
|
-
SSL_CTX *ctx, int (*callback)(SSL *ssl, int *out_alert, void *arg)) {
|
|
397
|
-
ctx->tlsext_servername_callback = callback;
|
|
398
|
-
return 1;
|
|
399
|
-
}
|
|
400
|
-
|
|
401
|
-
int SSL_CTX_set_tlsext_servername_arg(SSL_CTX *ctx, void *arg) {
|
|
402
|
-
ctx->tlsext_servername_arg = arg;
|
|
403
|
-
return 1;
|
|
404
|
-
}
|
|
405
|
-
|
|
406
|
-
int SSL_CTX_get_tlsext_ticket_keys(SSL_CTX *ctx, void *out, size_t len) {
|
|
407
|
-
if (out == NULL) {
|
|
408
|
-
return 48;
|
|
409
|
-
}
|
|
410
|
-
if (len != 48) {
|
|
411
|
-
OPENSSL_PUT_ERROR(SSL, SSL_R_INVALID_TICKET_KEYS_LENGTH);
|
|
412
|
-
return 0;
|
|
413
|
-
}
|
|
414
|
-
uint8_t *out_bytes = out;
|
|
415
|
-
memcpy(out_bytes, ctx->tlsext_tick_key_name, 16);
|
|
416
|
-
memcpy(out_bytes + 16, ctx->tlsext_tick_hmac_key, 16);
|
|
417
|
-
memcpy(out_bytes + 32, ctx->tlsext_tick_aes_key, 16);
|
|
418
|
-
return 1;
|
|
419
|
-
}
|
|
420
|
-
|
|
421
|
-
int SSL_CTX_set_tlsext_ticket_keys(SSL_CTX *ctx, const void *in, size_t len) {
|
|
422
|
-
if (in == NULL) {
|
|
423
|
-
return 48;
|
|
424
|
-
}
|
|
425
|
-
if (len != 48) {
|
|
426
|
-
OPENSSL_PUT_ERROR(SSL, SSL_R_INVALID_TICKET_KEYS_LENGTH);
|
|
427
|
-
return 0;
|
|
428
|
-
}
|
|
429
|
-
const uint8_t *in_bytes = in;
|
|
430
|
-
memcpy(ctx->tlsext_tick_key_name, in_bytes, 16);
|
|
431
|
-
memcpy(ctx->tlsext_tick_hmac_key, in_bytes + 16, 16);
|
|
432
|
-
memcpy(ctx->tlsext_tick_aes_key, in_bytes + 32, 16);
|
|
433
|
-
return 1;
|
|
434
|
-
}
|
|
435
|
-
|
|
436
|
-
int SSL_CTX_set_tlsext_ticket_key_cb(
|
|
437
|
-
SSL_CTX *ctx, int (*callback)(SSL *ssl, uint8_t *key_name, uint8_t *iv,
|
|
438
|
-
EVP_CIPHER_CTX *ctx, HMAC_CTX *hmac_ctx,
|
|
439
|
-
int encrypt)) {
|
|
440
|
-
ctx->tlsext_ticket_key_cb = callback;
|
|
441
|
-
return 1;
|
|
442
|
-
}
|
|
443
|
-
|
|
444
229
|
struct ssl_cipher_preference_list_st *ssl_get_cipher_preferences(SSL *ssl) {
|
|
445
230
|
if (ssl->cipher_list != NULL) {
|
|
446
231
|
return ssl->cipher_list;
|
|
447
232
|
}
|
|
448
233
|
|
|
449
|
-
if (ssl->version >= TLS1_1_VERSION && ssl->ctx != NULL
|
|
450
|
-
ssl->ctx->cipher_list_tls11 != NULL) {
|
|
234
|
+
if (ssl->version >= TLS1_1_VERSION && ssl->ctx->cipher_list_tls11 != NULL) {
|
|
451
235
|
return ssl->ctx->cipher_list_tls11;
|
|
452
236
|
}
|
|
453
237
|
|
|
454
|
-
if (ssl->version >= TLS1_VERSION && ssl->ctx != NULL
|
|
455
|
-
ssl->ctx->cipher_list_tls10 != NULL) {
|
|
238
|
+
if (ssl->version >= TLS1_VERSION && ssl->ctx->cipher_list_tls10 != NULL) {
|
|
456
239
|
return ssl->ctx->cipher_list_tls10;
|
|
457
240
|
}
|
|
458
241
|
|
|
459
|
-
if (ssl->ctx
|
|
242
|
+
if (ssl->ctx->cipher_list != NULL) {
|
|
460
243
|
return ssl->ctx->cipher_list;
|
|
461
244
|
}
|
|
462
245
|
|
|
@@ -464,11 +247,10 @@ struct ssl_cipher_preference_list_st *ssl_get_cipher_preferences(SSL *ssl) {
|
|
|
464
247
|
}
|
|
465
248
|
|
|
466
249
|
const SSL_CIPHER *ssl3_choose_cipher(
|
|
467
|
-
SSL *ssl,
|
|
468
|
-
struct ssl_cipher_preference_list_st *server_pref) {
|
|
250
|
+
SSL *ssl, const struct ssl_early_callback_ctx *client_hello,
|
|
251
|
+
const struct ssl_cipher_preference_list_st *server_pref) {
|
|
469
252
|
const SSL_CIPHER *c, *ret = NULL;
|
|
470
253
|
STACK_OF(SSL_CIPHER) *srvr = server_pref->ciphers, *prio, *allow;
|
|
471
|
-
size_t i;
|
|
472
254
|
int ok;
|
|
473
255
|
size_t cipher_index;
|
|
474
256
|
uint32_t alg_k, alg_a, mask_k, mask_a;
|
|
@@ -481,6 +263,11 @@ const SSL_CIPHER *ssl3_choose_cipher(
|
|
|
481
263
|
* such value exists yet. */
|
|
482
264
|
int group_min = -1;
|
|
483
265
|
|
|
266
|
+
STACK_OF(SSL_CIPHER) *clnt = ssl_parse_client_cipher_list(client_hello);
|
|
267
|
+
if (clnt == NULL) {
|
|
268
|
+
return NULL;
|
|
269
|
+
}
|
|
270
|
+
|
|
484
271
|
if (ssl->options & SSL_OP_CIPHER_SERVER_PREFERENCE) {
|
|
485
272
|
prio = srvr;
|
|
486
273
|
in_group_flags = server_pref->in_group_flags;
|
|
@@ -493,13 +280,14 @@ const SSL_CIPHER *ssl3_choose_cipher(
|
|
|
493
280
|
|
|
494
281
|
ssl_get_compatible_server_ciphers(ssl, &mask_k, &mask_a);
|
|
495
282
|
|
|
496
|
-
for (i = 0; i < sk_SSL_CIPHER_num(prio); i++) {
|
|
283
|
+
for (size_t i = 0; i < sk_SSL_CIPHER_num(prio); i++) {
|
|
497
284
|
c = sk_SSL_CIPHER_value(prio, i);
|
|
498
285
|
|
|
499
286
|
ok = 1;
|
|
500
287
|
|
|
501
288
|
/* Check the TLS version. */
|
|
502
|
-
if (SSL_CIPHER_get_min_version(c) > ssl3_protocol_version(ssl)
|
|
289
|
+
if (SSL_CIPHER_get_min_version(c) > ssl3_protocol_version(ssl) ||
|
|
290
|
+
SSL_CIPHER_get_max_version(c) < ssl3_protocol_version(ssl)) {
|
|
503
291
|
ok = 0;
|
|
504
292
|
}
|
|
505
293
|
|
|
@@ -532,40 +320,7 @@ const SSL_CIPHER *ssl3_choose_cipher(
|
|
|
532
320
|
}
|
|
533
321
|
}
|
|
534
322
|
|
|
535
|
-
|
|
536
|
-
}
|
|
537
|
-
|
|
538
|
-
int ssl3_get_req_cert_type(SSL *ssl, uint8_t *p) {
|
|
539
|
-
int ret = 0;
|
|
540
|
-
const uint8_t *sig;
|
|
541
|
-
size_t i, siglen;
|
|
542
|
-
int have_rsa_sign = 0;
|
|
543
|
-
int have_ecdsa_sign = 0;
|
|
544
|
-
|
|
545
|
-
/* get configured sigalgs */
|
|
546
|
-
siglen = tls12_get_psigalgs(ssl, &sig);
|
|
547
|
-
for (i = 0; i < siglen; i += 2, sig += 2) {
|
|
548
|
-
switch (sig[1]) {
|
|
549
|
-
case TLSEXT_signature_rsa:
|
|
550
|
-
have_rsa_sign = 1;
|
|
551
|
-
break;
|
|
552
|
-
|
|
553
|
-
case TLSEXT_signature_ecdsa:
|
|
554
|
-
have_ecdsa_sign = 1;
|
|
555
|
-
break;
|
|
556
|
-
}
|
|
557
|
-
}
|
|
558
|
-
|
|
559
|
-
if (have_rsa_sign) {
|
|
560
|
-
p[ret++] = SSL3_CT_RSA_SIGN;
|
|
561
|
-
}
|
|
562
|
-
|
|
563
|
-
/* ECDSA certs can be used with RSA cipher suites as well so we don't need to
|
|
564
|
-
* check for SSL_kECDH or SSL_kECDHE. */
|
|
565
|
-
if (ssl->version >= TLS1_VERSION && have_ecdsa_sign) {
|
|
566
|
-
p[ret++] = TLS_CT_ECDSA_SIGN;
|
|
567
|
-
}
|
|
568
|
-
|
|
323
|
+
sk_SSL_CIPHER_free(clnt);
|
|
569
324
|
return ret;
|
|
570
325
|
}
|
|
571
326
|
|