grpc 1.35.0 → 1.38.0

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.


This version of grpc might be problematic. Click here for more details.

Files changed (885) hide show
  1. checksums.yaml +4 -4
  2. data/Makefile +168 -131
  3. data/include/grpc/event_engine/README.md +38 -0
  4. data/include/grpc/event_engine/channel_args.h +28 -0
  5. data/include/grpc/event_engine/event_engine.h +336 -0
  6. data/include/grpc/event_engine/port.h +39 -0
  7. data/include/grpc/event_engine/slice_allocator.h +81 -0
  8. data/include/grpc/grpc.h +15 -1
  9. data/include/grpc/grpc_security.h +16 -11
  10. data/include/grpc/grpc_security_constants.h +14 -0
  11. data/include/grpc/impl/codegen/grpc_types.h +11 -0
  12. data/include/grpc/impl/codegen/port_platform.h +7 -0
  13. data/include/grpc/module.modulemap +14 -14
  14. data/src/core/ext/filters/client_channel/backup_poller.cc +3 -3
  15. data/src/core/ext/filters/client_channel/channel_connectivity.cc +177 -202
  16. data/src/core/ext/filters/client_channel/client_channel.cc +740 -3185
  17. data/src/core/ext/filters/client_channel/client_channel.h +488 -56
  18. data/src/core/ext/filters/client_channel/client_channel_channelz.h +1 -1
  19. data/src/core/ext/filters/client_channel/client_channel_factory.h +2 -1
  20. data/src/core/ext/filters/client_channel/client_channel_plugin.cc +4 -1
  21. data/src/core/ext/filters/client_channel/config_selector.h +10 -2
  22. data/src/core/ext/filters/client_channel/connector.h +1 -1
  23. data/src/core/ext/filters/client_channel/dynamic_filters.cc +18 -14
  24. data/src/core/ext/filters/client_channel/dynamic_filters.h +3 -3
  25. data/src/core/ext/filters/client_channel/global_subchannel_pool.cc +24 -142
  26. data/src/core/ext/filters/client_channel/global_subchannel_pool.h +15 -10
  27. data/src/core/ext/filters/client_channel/health/health_check_client.cc +26 -27
  28. data/src/core/ext/filters/client_channel/health/health_check_client.h +27 -26
  29. data/src/core/ext/filters/client_channel/http_connect_handshaker.cc +26 -23
  30. data/src/core/ext/filters/client_channel/lb_policy.cc +4 -1
  31. data/src/core/ext/filters/client_channel/lb_policy.h +4 -4
  32. data/src/core/ext/filters/client_channel/lb_policy/grpclb/client_load_reporting_filter.cc +6 -6
  33. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb.cc +49 -48
  34. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_channel.h +1 -2
  35. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_channel_secure.cc +2 -3
  36. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_client_stats.h +2 -1
  37. data/src/core/ext/filters/client_channel/lb_policy/pick_first/pick_first.cc +5 -5
  38. data/src/core/ext/filters/client_channel/lb_policy/priority/priority.cc +22 -18
  39. data/src/core/ext/filters/client_channel/lb_policy/ring_hash/ring_hash.cc +23 -0
  40. data/src/core/ext/filters/client_channel/lb_policy/ring_hash/ring_hash.h +27 -0
  41. data/src/core/ext/filters/client_channel/lb_policy/round_robin/round_robin.cc +4 -4
  42. data/src/core/ext/filters/client_channel/lb_policy/subchannel_list.h +1 -1
  43. data/src/core/ext/filters/client_channel/lb_policy/weighted_target/weighted_target.cc +15 -15
  44. data/src/core/ext/filters/client_channel/lb_policy/xds/cds.cc +318 -193
  45. data/src/core/ext/filters/client_channel/lb_policy/xds/xds_channel_args.h +5 -0
  46. data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_impl.cc +30 -47
  47. data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_manager.cc +32 -47
  48. data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_resolver.cc +316 -171
  49. data/src/core/ext/filters/client_channel/lb_policy_factory.h +1 -1
  50. data/src/core/ext/filters/client_channel/lb_policy_registry.cc +4 -4
  51. data/src/core/ext/filters/client_channel/lb_policy_registry.h +1 -1
  52. data/src/core/ext/filters/client_channel/local_subchannel_pool.cc +27 -67
  53. data/src/core/ext/filters/client_channel/local_subchannel_pool.h +10 -9
  54. data/src/core/ext/filters/client_channel/resolver.cc +5 -5
  55. data/src/core/ext/filters/client_channel/resolver.h +3 -14
  56. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/dns_resolver_ares.cc +59 -60
  57. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver.h +1 -1
  58. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver_libuv.cc +3 -3
  59. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver_posix.cc +4 -4
  60. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver_windows.cc +17 -15
  61. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.cc +67 -74
  62. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.h +1 -1
  63. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper_libuv.cc +1 -1
  64. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper_windows.cc +1 -1
  65. data/src/core/ext/filters/client_channel/resolver/dns/native/dns_resolver.cc +33 -23
  66. data/src/core/ext/filters/client_channel/resolver/fake/fake_resolver.cc +38 -43
  67. data/src/core/ext/filters/client_channel/resolver/fake/fake_resolver.h +7 -5
  68. data/src/core/ext/filters/client_channel/resolver/google_c2p/google_c2p_resolver.cc +379 -0
  69. data/src/core/ext/filters/client_channel/resolver/sockaddr/sockaddr_resolver.cc +5 -5
  70. data/src/core/ext/filters/client_channel/resolver/xds/xds_resolver.cc +346 -178
  71. data/src/core/ext/filters/client_channel/resolver_result_parsing.cc +32 -239
  72. data/src/core/ext/filters/client_channel/resolver_result_parsing.h +20 -49
  73. data/src/core/ext/filters/client_channel/retry_filter.cc +2188 -0
  74. data/src/core/ext/filters/client_channel/retry_filter.h +30 -0
  75. data/src/core/ext/filters/client_channel/retry_service_config.cc +287 -0
  76. data/src/core/ext/filters/client_channel/retry_service_config.h +90 -0
  77. data/src/core/ext/filters/client_channel/server_address.cc +10 -1
  78. data/src/core/ext/filters/client_channel/server_address.h +31 -0
  79. data/src/core/ext/filters/client_channel/service_config.cc +15 -14
  80. data/src/core/ext/filters/client_channel/service_config.h +7 -6
  81. data/src/core/ext/filters/client_channel/service_config_channel_arg_filter.cc +5 -4
  82. data/src/core/ext/filters/client_channel/service_config_parser.cc +6 -6
  83. data/src/core/ext/filters/client_channel/service_config_parser.h +7 -4
  84. data/src/core/ext/filters/client_channel/subchannel.cc +86 -162
  85. data/src/core/ext/filters/client_channel/subchannel.h +68 -99
  86. data/src/core/ext/filters/client_channel/subchannel_pool_interface.cc +16 -2
  87. data/src/core/ext/filters/client_channel/subchannel_pool_interface.h +10 -8
  88. data/src/core/ext/filters/client_idle/client_idle_filter.cc +17 -16
  89. data/src/core/ext/filters/deadline/deadline_filter.cc +10 -10
  90. data/src/core/ext/filters/fault_injection/fault_injection_filter.cc +501 -0
  91. data/src/core/ext/filters/fault_injection/fault_injection_filter.h +39 -0
  92. data/src/core/ext/filters/fault_injection/service_config_parser.cc +189 -0
  93. data/src/core/ext/filters/fault_injection/service_config_parser.h +85 -0
  94. data/src/core/ext/filters/http/client/http_client_filter.cc +28 -21
  95. data/src/core/ext/filters/http/client_authority_filter.cc +3 -3
  96. data/src/core/ext/filters/http/message_compress/message_compress_filter.cc +23 -22
  97. data/src/core/ext/filters/http/message_compress/message_decompress_filter.cc +21 -21
  98. data/src/core/ext/filters/http/server/http_server_filter.cc +27 -23
  99. data/src/core/ext/filters/max_age/max_age_filter.cc +47 -42
  100. data/src/core/ext/filters/message_size/message_size_filter.cc +14 -11
  101. data/src/core/ext/filters/message_size/message_size_filter.h +1 -1
  102. data/src/core/ext/filters/workarounds/workaround_cronet_compression_filter.cc +5 -4
  103. data/src/core/ext/transport/chttp2/client/chttp2_connector.cc +8 -8
  104. data/src/core/ext/transport/chttp2/client/chttp2_connector.h +7 -7
  105. data/src/core/ext/transport/chttp2/client/insecure/channel_create.cc +5 -4
  106. data/src/core/ext/transport/chttp2/client/insecure/channel_create_posix.cc +2 -2
  107. data/src/core/ext/transport/chttp2/client/secure/secure_channel_create.cc +6 -5
  108. data/src/core/ext/transport/chttp2/server/chttp2_server.cc +507 -196
  109. data/src/core/ext/transport/chttp2/server/chttp2_server.h +11 -2
  110. data/src/core/ext/transport/chttp2/server/insecure/server_chttp2.cc +13 -4
  111. data/src/core/ext/transport/chttp2/server/insecure/server_chttp2_posix.cc +3 -3
  112. data/src/core/ext/transport/chttp2/server/secure/server_secure_chttp2.cc +64 -21
  113. data/src/core/ext/transport/chttp2/transport/chttp2_transport.cc +167 -122
  114. data/src/core/ext/transport/chttp2/transport/chttp2_transport.h +12 -1
  115. data/src/core/ext/transport/chttp2/transport/context_list.cc +4 -5
  116. data/src/core/ext/transport/chttp2/transport/context_list.h +4 -4
  117. data/src/core/ext/transport/chttp2/transport/flow_control.cc +3 -3
  118. data/src/core/ext/transport/chttp2/transport/flow_control.h +8 -8
  119. data/src/core/ext/transport/chttp2/transport/frame_data.cc +13 -9
  120. data/src/core/ext/transport/chttp2/transport/frame_data.h +10 -10
  121. data/src/core/ext/transport/chttp2/transport/frame_goaway.cc +7 -8
  122. data/src/core/ext/transport/chttp2/transport/frame_goaway.h +6 -6
  123. data/src/core/ext/transport/chttp2/transport/frame_ping.cc +7 -8
  124. data/src/core/ext/transport/chttp2/transport/frame_ping.h +7 -6
  125. data/src/core/ext/transport/chttp2/transport/frame_rst_stream.cc +7 -7
  126. data/src/core/ext/transport/chttp2/transport/frame_rst_stream.h +6 -6
  127. data/src/core/ext/transport/chttp2/transport/frame_settings.cc +6 -5
  128. data/src/core/ext/transport/chttp2/transport/frame_settings.h +6 -6
  129. data/src/core/ext/transport/chttp2/transport/frame_window_update.cc +4 -6
  130. data/src/core/ext/transport/chttp2/transport/frame_window_update.h +4 -6
  131. data/src/core/ext/transport/chttp2/transport/hpack_encoder.cc +1 -1
  132. data/src/core/ext/transport/chttp2/transport/hpack_parser.cc +237 -208
  133. data/src/core/ext/transport/chttp2/transport/hpack_parser.h +10 -10
  134. data/src/core/ext/transport/chttp2/transport/hpack_table.cc +4 -3
  135. data/src/core/ext/transport/chttp2/transport/hpack_table.h +4 -4
  136. data/src/core/ext/transport/chttp2/transport/incoming_metadata.cc +2 -2
  137. data/src/core/ext/transport/chttp2/transport/incoming_metadata.h +2 -2
  138. data/src/core/ext/transport/chttp2/transport/internal.h +32 -27
  139. data/src/core/ext/transport/chttp2/transport/parsing.cc +63 -56
  140. data/src/core/ext/transport/chttp2/transport/writing.cc +7 -3
  141. data/src/core/ext/transport/inproc/inproc_transport.cc +30 -29
  142. data/src/core/ext/upb-generated/envoy/admin/v3/config_dump.upb.c +406 -0
  143. data/src/core/ext/upb-generated/envoy/admin/v3/config_dump.upb.h +1459 -0
  144. data/src/core/ext/upb-generated/envoy/config/accesslog/v3/accesslog.upb.c +0 -1
  145. data/src/core/ext/upb-generated/envoy/config/bootstrap/v3/bootstrap.upb.c +350 -0
  146. data/src/core/ext/upb-generated/envoy/config/bootstrap/v3/bootstrap.upb.h +1348 -0
  147. data/src/core/ext/upb-generated/envoy/config/cluster/v3/cluster.upb.c +11 -16
  148. data/src/core/ext/upb-generated/envoy/config/cluster/v3/cluster.upb.h +42 -59
  149. data/src/core/ext/upb-generated/envoy/config/cluster/v3/outlier_detection.upb.c +3 -2
  150. data/src/core/ext/upb-generated/envoy/config/cluster/v3/outlier_detection.upb.h +15 -0
  151. data/src/core/ext/upb-generated/envoy/config/core/v3/base.upb.c +25 -1
  152. data/src/core/ext/upb-generated/envoy/config/core/v3/base.upb.h +75 -0
  153. data/src/core/ext/upb-generated/envoy/config/core/v3/config_source.upb.c +2 -2
  154. data/src/core/ext/upb-generated/envoy/config/core/v3/config_source.upb.h +9 -9
  155. data/src/core/ext/upb-generated/envoy/config/core/v3/health_check.upb.c +7 -7
  156. data/src/core/ext/upb-generated/envoy/config/core/v3/health_check.upb.h +28 -13
  157. data/src/core/ext/upb-generated/envoy/config/core/v3/protocol.upb.c +6 -0
  158. data/src/core/ext/upb-generated/envoy/config/core/v3/protocol.upb.h +25 -0
  159. data/src/core/ext/upb-generated/envoy/config/core/v3/proxy_protocol.upb.c +0 -1
  160. data/src/core/ext/upb-generated/envoy/config/core/v3/substitution_format_string.upb.c +11 -5
  161. data/src/core/ext/upb-generated/envoy/config/core/v3/substitution_format_string.upb.h +41 -7
  162. data/src/core/ext/upb-generated/envoy/config/endpoint/v3/endpoint.upb.c +0 -1
  163. data/src/core/ext/upb-generated/envoy/config/listener/v3/listener.upb.c +23 -21
  164. data/src/core/ext/upb-generated/envoy/config/listener/v3/listener.upb.h +122 -77
  165. data/src/core/ext/upb-generated/envoy/config/listener/v3/listener_components.upb.c +13 -9
  166. data/src/core/ext/upb-generated/envoy/config/listener/v3/listener_components.upb.h +37 -5
  167. data/src/core/ext/upb-generated/envoy/config/listener/v3/udp_listener_config.upb.c +0 -1
  168. data/src/core/ext/upb-generated/envoy/config/metrics/v3/stats.upb.c +144 -0
  169. data/src/core/ext/upb-generated/envoy/config/metrics/v3/stats.upb.h +488 -0
  170. data/src/core/ext/upb-generated/envoy/config/overload/v3/overload.upb.c +141 -0
  171. data/src/core/ext/upb-generated/envoy/config/overload/v3/overload.upb.h +452 -0
  172. data/src/core/ext/upb-generated/envoy/config/route/v3/route.upb.c +11 -9
  173. data/src/core/ext/upb-generated/envoy/config/route/v3/route.upb.h +44 -27
  174. data/src/core/ext/upb-generated/envoy/config/route/v3/route_components.upb.c +57 -16
  175. data/src/core/ext/upb-generated/envoy/config/route/v3/route_components.upb.h +150 -0
  176. data/src/core/ext/upb-generated/envoy/config/trace/v3/http_tracer.upb.c +0 -1
  177. data/src/core/ext/upb-generated/envoy/extensions/clusters/aggregate/v3/cluster.upb.c +29 -0
  178. data/src/core/ext/upb-generated/envoy/extensions/clusters/aggregate/v3/cluster.upb.h +67 -0
  179. data/src/core/ext/upb-generated/envoy/extensions/filters/common/fault/v3/fault.upb.c +79 -0
  180. data/src/core/ext/upb-generated/envoy/extensions/filters/common/fault/v3/fault.upb.h +268 -0
  181. data/src/core/ext/upb-generated/envoy/extensions/filters/http/fault/v3/fault.upb.c +78 -0
  182. data/src/core/ext/upb-generated/envoy/extensions/filters/http/fault/v3/fault.upb.h +281 -0
  183. data/src/core/ext/upb-generated/envoy/extensions/filters/http/router/v3/router.upb.c +41 -0
  184. data/src/core/ext/upb-generated/envoy/extensions/filters/http/router/v3/router.upb.h +113 -0
  185. data/src/core/ext/upb-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.c +19 -21
  186. data/src/core/ext/upb-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h +64 -51
  187. data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/cert.upb.c +0 -1
  188. data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/common.upb.c +16 -13
  189. data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/common.upb.h +50 -18
  190. data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/secret.upb.c +4 -7
  191. data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/secret.upb.h +0 -17
  192. data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/tls.upb.c +0 -1
  193. data/src/core/ext/upb-generated/envoy/service/discovery/v3/discovery.upb.c +30 -23
  194. data/src/core/ext/upb-generated/envoy/service/discovery/v3/discovery.upb.h +85 -73
  195. data/src/core/ext/upb-generated/envoy/service/endpoint/v3/eds.upb.c +0 -3
  196. data/src/core/ext/upb-generated/envoy/service/listener/v3/lds.upb.c +0 -3
  197. data/src/core/ext/upb-generated/envoy/service/load_stats/v3/lrs.upb.c +0 -1
  198. data/src/core/ext/upb-generated/envoy/service/route/v3/rds.upb.c +0 -2
  199. data/src/core/ext/upb-generated/envoy/service/status/v3/csds.upb.c +93 -0
  200. data/src/core/ext/upb-generated/envoy/service/status/v3/csds.upb.h +323 -0
  201. data/src/core/ext/upb-generated/envoy/type/matcher/v3/node.upb.c +36 -0
  202. data/src/core/ext/upb-generated/envoy/type/matcher/v3/node.upb.h +90 -0
  203. data/src/core/ext/upb-generated/envoy/type/matcher/v3/string.upb.c +0 -1
  204. data/src/core/ext/upb-generated/envoy/type/matcher/v3/struct.upb.c +46 -0
  205. data/src/core/ext/upb-generated/envoy/type/matcher/v3/struct.upb.h +124 -0
  206. data/src/core/ext/upb-generated/google/api/expr/v1alpha1/syntax.upb.c +21 -4
  207. data/src/core/ext/upb-generated/google/api/expr/v1alpha1/syntax.upb.h +29 -0
  208. data/src/core/ext/upb-generated/udpa/type/v1/typed_struct.upb.c +33 -0
  209. data/src/core/ext/upb-generated/udpa/type/v1/typed_struct.upb.h +77 -0
  210. data/src/core/ext/upb-generated/{udpa/core/v1 → xds/core/v3}/authority.upb.c +5 -5
  211. data/src/core/ext/upb-generated/xds/core/v3/authority.upb.h +60 -0
  212. data/src/core/ext/upb-generated/xds/core/v3/collection_entry.upb.c +52 -0
  213. data/src/core/ext/upb-generated/xds/core/v3/collection_entry.upb.h +143 -0
  214. data/src/core/ext/upb-generated/xds/core/v3/context_params.upb.c +42 -0
  215. data/src/core/ext/upb-generated/xds/core/v3/context_params.upb.h +84 -0
  216. data/src/core/ext/upb-generated/{udpa/core/v1 → xds/core/v3}/resource.upb.c +9 -9
  217. data/src/core/ext/upb-generated/xds/core/v3/resource.upb.h +94 -0
  218. data/src/core/ext/upb-generated/xds/core/v3/resource_locator.upb.c +54 -0
  219. data/src/core/ext/upb-generated/xds/core/v3/resource_locator.upb.h +166 -0
  220. data/src/core/ext/upb-generated/xds/core/v3/resource_name.upb.c +36 -0
  221. data/src/core/ext/upb-generated/xds/core/v3/resource_name.upb.h +85 -0
  222. data/src/core/ext/upbdefs-generated/envoy/admin/v3/config_dump.upbdefs.c +354 -0
  223. data/src/core/ext/upbdefs-generated/envoy/admin/v3/config_dump.upbdefs.h +140 -0
  224. data/src/core/ext/upbdefs-generated/envoy/config/accesslog/v3/accesslog.upbdefs.c +168 -171
  225. data/src/core/ext/upbdefs-generated/envoy/config/bootstrap/v3/bootstrap.upbdefs.c +383 -0
  226. data/src/core/ext/upbdefs-generated/envoy/config/bootstrap/v3/bootstrap.upbdefs.h +115 -0
  227. data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/cluster.upbdefs.c +405 -420
  228. data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/cluster.upbdefs.h +2 -2
  229. data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/outlier_detection.upbdefs.c +12 -9
  230. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/base.upbdefs.c +177 -171
  231. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/base.upbdefs.h +10 -0
  232. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/config_source.upbdefs.c +88 -88
  233. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/health_check.upbdefs.c +153 -153
  234. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/protocol.upbdefs.c +10 -7
  235. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/protocol.upbdefs.h +5 -0
  236. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/proxy_protocol.upbdefs.c +4 -7
  237. data/src/core/ext/upbdefs-generated/envoy/config/core/v3/substitution_format_string.upbdefs.c +33 -20
  238. data/src/core/ext/upbdefs-generated/envoy/config/endpoint/v3/endpoint.upbdefs.c +56 -59
  239. data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/listener.upbdefs.c +116 -111
  240. data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/listener_components.upbdefs.c +129 -121
  241. data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/udp_listener_config.upbdefs.c +21 -24
  242. data/src/core/ext/upbdefs-generated/envoy/config/metrics/v3/stats.upbdefs.c +141 -0
  243. data/src/core/ext/upbdefs-generated/envoy/config/metrics/v3/stats.upbdefs.h +70 -0
  244. data/src/core/ext/upbdefs-generated/envoy/config/overload/v3/overload.upbdefs.c +141 -0
  245. data/src/core/ext/upbdefs-generated/envoy/config/overload/v3/overload.upbdefs.h +70 -0
  246. data/src/core/ext/upbdefs-generated/envoy/config/route/v3/route.upbdefs.c +17 -13
  247. data/src/core/ext/upbdefs-generated/envoy/config/route/v3/route_components.upbdefs.c +753 -724
  248. data/src/core/ext/upbdefs-generated/envoy/config/route/v3/route_components.upbdefs.h +10 -0
  249. data/src/core/ext/upbdefs-generated/envoy/config/trace/v3/http_tracer.upbdefs.c +22 -25
  250. data/src/core/ext/upbdefs-generated/envoy/extensions/clusters/aggregate/v3/cluster.upbdefs.c +51 -0
  251. data/src/core/ext/upbdefs-generated/envoy/extensions/clusters/aggregate/v3/cluster.upbdefs.h +35 -0
  252. data/src/core/ext/upbdefs-generated/envoy/extensions/filters/common/fault/v3/fault.upbdefs.c +102 -0
  253. data/src/core/ext/upbdefs-generated/envoy/extensions/filters/common/fault/v3/fault.upbdefs.h +55 -0
  254. data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/fault/v3/fault.upbdefs.c +120 -0
  255. data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/fault/v3/fault.upbdefs.h +45 -0
  256. data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/router/v3/router.upbdefs.c +76 -0
  257. data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/router/v3/router.upbdefs.h +35 -0
  258. data/src/core/ext/upbdefs-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.c +371 -377
  259. data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/cert.upbdefs.c +12 -16
  260. data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.c +112 -108
  261. data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/secret.upbdefs.c +45 -53
  262. data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/tls.upbdefs.c +177 -180
  263. data/src/core/ext/upbdefs-generated/envoy/service/discovery/v3/discovery.upbdefs.c +92 -102
  264. data/src/core/ext/upbdefs-generated/envoy/service/discovery/v3/discovery.upbdefs.h +5 -0
  265. data/src/core/ext/upbdefs-generated/envoy/service/endpoint/v3/eds.upbdefs.c +32 -42
  266. data/src/core/ext/upbdefs-generated/envoy/service/listener/v3/lds.upbdefs.c +30 -40
  267. data/src/core/ext/upbdefs-generated/envoy/service/load_stats/v3/lrs.upbdefs.c +4 -7
  268. data/src/core/ext/upbdefs-generated/envoy/service/route/v3/rds.upbdefs.c +38 -44
  269. data/src/core/ext/upbdefs-generated/envoy/service/status/v3/csds.upbdefs.c +130 -0
  270. data/src/core/ext/upbdefs-generated/envoy/service/status/v3/csds.upbdefs.h +50 -0
  271. data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/node.upbdefs.c +56 -0
  272. data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/node.upbdefs.h +35 -0
  273. data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/string.upbdefs.c +30 -33
  274. data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/struct.upbdefs.c +63 -0
  275. data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/struct.upbdefs.h +40 -0
  276. data/src/core/ext/upbdefs-generated/udpa/type/v1/typed_struct.upbdefs.c +44 -0
  277. data/src/core/ext/upbdefs-generated/udpa/type/v1/typed_struct.upbdefs.h +35 -0
  278. data/src/core/ext/upbdefs-generated/validate/validate.upbdefs.c +14 -11
  279. data/src/core/ext/upbdefs-generated/xds/core/v3/authority.upbdefs.c +42 -0
  280. data/src/core/ext/upbdefs-generated/xds/core/v3/authority.upbdefs.h +35 -0
  281. data/src/core/ext/upbdefs-generated/xds/core/v3/collection_entry.upbdefs.c +62 -0
  282. data/src/core/ext/upbdefs-generated/xds/core/v3/collection_entry.upbdefs.h +40 -0
  283. data/src/core/ext/upbdefs-generated/xds/core/v3/context_params.upbdefs.c +45 -0
  284. data/src/core/ext/upbdefs-generated/xds/core/v3/context_params.upbdefs.h +40 -0
  285. data/src/core/ext/upbdefs-generated/xds/core/v3/resource.upbdefs.c +49 -0
  286. data/src/core/ext/upbdefs-generated/xds/core/v3/resource.upbdefs.h +35 -0
  287. data/src/core/ext/upbdefs-generated/xds/core/v3/resource_locator.upbdefs.c +67 -0
  288. data/src/core/ext/upbdefs-generated/xds/core/v3/resource_locator.upbdefs.h +40 -0
  289. data/src/core/ext/upbdefs-generated/xds/core/v3/resource_name.upbdefs.c +50 -0
  290. data/src/core/ext/upbdefs-generated/xds/core/v3/resource_name.upbdefs.h +35 -0
  291. data/src/core/ext/xds/certificate_provider_factory.h +1 -1
  292. data/src/core/ext/xds/certificate_provider_store.h +3 -3
  293. data/src/core/ext/xds/file_watcher_certificate_provider_factory.cc +3 -3
  294. data/src/core/ext/xds/file_watcher_certificate_provider_factory.h +2 -2
  295. data/src/core/ext/xds/xds_api.cc +2179 -688
  296. data/src/core/ext/xds/xds_api.h +326 -124
  297. data/src/core/ext/xds/xds_bootstrap.cc +115 -142
  298. data/src/core/ext/xds/xds_bootstrap.h +24 -17
  299. data/src/core/ext/xds/xds_certificate_provider.cc +184 -78
  300. data/src/core/ext/xds/xds_certificate_provider.h +84 -45
  301. data/src/core/ext/xds/xds_channel_args.h +5 -2
  302. data/src/core/ext/xds/xds_client.cc +462 -183
  303. data/src/core/ext/xds/xds_client.h +65 -22
  304. data/src/core/ext/xds/xds_client_stats.cc +2 -1
  305. data/src/core/ext/xds/xds_client_stats.h +5 -4
  306. data/src/core/ext/xds/xds_http_fault_filter.cc +226 -0
  307. data/src/core/ext/xds/xds_http_fault_filter.h +63 -0
  308. data/src/core/ext/xds/xds_http_filters.cc +114 -0
  309. data/src/core/ext/xds/xds_http_filters.h +130 -0
  310. data/src/core/ext/xds/xds_server_config_fetcher.cc +444 -29
  311. data/src/core/lib/{iomgr → address_utils}/parse_address.cc +17 -17
  312. data/src/core/lib/{iomgr → address_utils}/parse_address.h +7 -7
  313. data/src/core/lib/{iomgr → address_utils}/sockaddr_utils.cc +108 -5
  314. data/src/core/lib/{iomgr → address_utils}/sockaddr_utils.h +26 -6
  315. data/src/core/lib/channel/channel_stack.cc +22 -9
  316. data/src/core/lib/channel/channel_stack.h +17 -9
  317. data/src/core/lib/channel/channel_stack_builder.cc +2 -2
  318. data/src/core/lib/channel/channel_stack_builder.h +1 -1
  319. data/src/core/lib/channel/channelz.cc +108 -12
  320. data/src/core/lib/channel/channelz.h +30 -1
  321. data/src/core/lib/channel/channelz_registry.cc +14 -0
  322. data/src/core/lib/channel/connected_channel.cc +4 -4
  323. data/src/core/lib/channel/handshaker.cc +9 -50
  324. data/src/core/lib/channel/handshaker.h +6 -23
  325. data/src/core/lib/channel/status_util.cc +12 -2
  326. data/src/core/lib/channel/status_util.h +5 -0
  327. data/src/core/lib/event_engine/slice_allocator.cc +59 -0
  328. data/src/core/lib/event_engine/sockaddr.cc +38 -0
  329. data/src/core/lib/gpr/log.cc +6 -1
  330. data/src/core/lib/gpr/sync_abseil.cc +3 -6
  331. data/src/core/lib/gpr/sync_windows.cc +2 -2
  332. data/src/core/lib/gprpp/atomic.h +3 -3
  333. data/src/core/lib/gprpp/dual_ref_counted.h +3 -3
  334. data/src/core/lib/gprpp/mpscq.cc +2 -2
  335. data/src/core/lib/gprpp/ref_counted.h +29 -15
  336. data/src/core/lib/gprpp/ref_counted_ptr.h +2 -0
  337. data/src/core/lib/gprpp/status_helper.cc +407 -0
  338. data/src/core/lib/gprpp/status_helper.h +180 -0
  339. data/src/core/lib/gprpp/sync.h +129 -40
  340. data/src/core/lib/gprpp/thd.h +1 -1
  341. data/src/core/lib/gprpp/time_util.cc +77 -0
  342. data/src/core/lib/gprpp/time_util.h +42 -0
  343. data/src/core/lib/http/httpcli.cc +11 -11
  344. data/src/core/lib/http/httpcli_security_connector.cc +13 -9
  345. data/src/core/lib/http/parser.cc +16 -16
  346. data/src/core/lib/http/parser.h +4 -4
  347. data/src/core/lib/iomgr/buffer_list.cc +7 -9
  348. data/src/core/lib/iomgr/buffer_list.h +5 -6
  349. data/src/core/lib/iomgr/call_combiner.cc +15 -12
  350. data/src/core/lib/iomgr/call_combiner.h +12 -14
  351. data/src/core/lib/iomgr/cfstream_handle.cc +5 -5
  352. data/src/core/lib/iomgr/cfstream_handle.h +1 -1
  353. data/src/core/lib/iomgr/closure.h +7 -6
  354. data/src/core/lib/iomgr/combiner.cc +14 -12
  355. data/src/core/lib/iomgr/combiner.h +2 -2
  356. data/src/core/lib/iomgr/endpoint.cc +1 -1
  357. data/src/core/lib/iomgr/endpoint.h +2 -2
  358. data/src/core/lib/iomgr/endpoint_cfstream.cc +11 -13
  359. data/src/core/lib/iomgr/endpoint_pair_windows.cc +1 -1
  360. data/src/core/lib/iomgr/error.cc +167 -61
  361. data/src/core/lib/iomgr/error.h +218 -107
  362. data/src/core/lib/iomgr/error_cfstream.cc +3 -2
  363. data/src/core/lib/iomgr/error_cfstream.h +2 -2
  364. data/src/core/lib/iomgr/error_internal.h +5 -1
  365. data/src/core/lib/iomgr/ev_apple.cc +16 -13
  366. data/src/core/lib/iomgr/ev_epoll1_linux.cc +22 -22
  367. data/src/core/lib/iomgr/ev_epollex_linux.cc +52 -49
  368. data/src/core/lib/iomgr/ev_poll_posix.cc +26 -23
  369. data/src/core/lib/iomgr/ev_posix.cc +12 -11
  370. data/src/core/lib/iomgr/ev_posix.h +9 -9
  371. data/src/core/lib/iomgr/exec_ctx.cc +10 -6
  372. data/src/core/lib/iomgr/exec_ctx.h +1 -1
  373. data/src/core/lib/iomgr/executor.cc +8 -8
  374. data/src/core/lib/iomgr/executor.h +2 -2
  375. data/src/core/lib/iomgr/iomgr.cc +1 -1
  376. data/src/core/lib/iomgr/iomgr.h +1 -1
  377. data/src/core/lib/iomgr/iomgr_custom.cc +1 -1
  378. data/src/core/lib/iomgr/iomgr_internal.cc +2 -2
  379. data/src/core/lib/iomgr/iomgr_internal.h +3 -3
  380. data/src/core/lib/iomgr/iomgr_posix.cc +1 -2
  381. data/src/core/lib/iomgr/iomgr_posix_cfstream.cc +2 -3
  382. data/src/core/lib/iomgr/iomgr_windows.cc +1 -1
  383. data/src/core/lib/iomgr/load_file.cc +4 -4
  384. data/src/core/lib/iomgr/load_file.h +2 -2
  385. data/src/core/lib/iomgr/lockfree_event.cc +5 -5
  386. data/src/core/lib/iomgr/lockfree_event.h +1 -1
  387. data/src/core/lib/iomgr/pollset.cc +5 -5
  388. data/src/core/lib/iomgr/pollset.h +9 -9
  389. data/src/core/lib/iomgr/pollset_custom.cc +5 -5
  390. data/src/core/lib/iomgr/pollset_windows.cc +5 -5
  391. data/src/core/lib/iomgr/port.h +1 -1
  392. data/src/core/lib/iomgr/python_util.h +1 -1
  393. data/src/core/lib/iomgr/resolve_address.cc +3 -3
  394. data/src/core/lib/iomgr/resolve_address.h +6 -6
  395. data/src/core/lib/iomgr/resolve_address_custom.cc +10 -9
  396. data/src/core/lib/iomgr/resolve_address_custom.h +3 -3
  397. data/src/core/lib/iomgr/resolve_address_posix.cc +3 -3
  398. data/src/core/lib/iomgr/resolve_address_windows.cc +4 -4
  399. data/src/core/lib/iomgr/resource_quota.cc +12 -11
  400. data/src/core/lib/iomgr/socket_utils_common_posix.cc +23 -20
  401. data/src/core/lib/iomgr/socket_utils_posix.h +20 -20
  402. data/src/core/lib/iomgr/tcp_client_cfstream.cc +4 -4
  403. data/src/core/lib/iomgr/tcp_client_custom.cc +5 -6
  404. data/src/core/lib/iomgr/tcp_client_posix.cc +16 -18
  405. data/src/core/lib/iomgr/tcp_client_posix.h +3 -4
  406. data/src/core/lib/iomgr/tcp_client_windows.cc +5 -5
  407. data/src/core/lib/iomgr/tcp_custom.cc +14 -16
  408. data/src/core/lib/iomgr/tcp_custom.h +13 -12
  409. data/src/core/lib/iomgr/tcp_posix.cc +41 -42
  410. data/src/core/lib/iomgr/tcp_server.cc +6 -6
  411. data/src/core/lib/iomgr/tcp_server.h +12 -11
  412. data/src/core/lib/iomgr/tcp_server_custom.cc +23 -21
  413. data/src/core/lib/iomgr/tcp_server_posix.cc +22 -21
  414. data/src/core/lib/iomgr/tcp_server_utils_posix.h +13 -12
  415. data/src/core/lib/iomgr/tcp_server_utils_posix_common.cc +19 -17
  416. data/src/core/lib/iomgr/tcp_server_utils_posix_ifaddrs.cc +9 -9
  417. data/src/core/lib/iomgr/tcp_server_utils_posix_noifaddrs.cc +4 -4
  418. data/src/core/lib/iomgr/tcp_server_windows.cc +26 -25
  419. data/src/core/lib/iomgr/tcp_uv.cc +27 -25
  420. data/src/core/lib/iomgr/tcp_windows.cc +13 -13
  421. data/src/core/lib/iomgr/tcp_windows.h +2 -2
  422. data/src/core/lib/iomgr/timer_custom.cc +2 -1
  423. data/src/core/lib/iomgr/timer_custom.h +1 -1
  424. data/src/core/lib/iomgr/timer_generic.cc +8 -8
  425. data/src/core/lib/iomgr/timer_manager.cc +1 -1
  426. data/src/core/lib/iomgr/udp_server.cc +21 -20
  427. data/src/core/lib/iomgr/unix_sockets_posix.cc +3 -3
  428. data/src/core/lib/iomgr/unix_sockets_posix.h +2 -2
  429. data/src/core/lib/iomgr/unix_sockets_posix_noop.cc +10 -7
  430. data/src/core/lib/iomgr/wakeup_fd_eventfd.cc +3 -3
  431. data/src/core/lib/iomgr/wakeup_fd_nospecial.cc +1 -1
  432. data/src/core/lib/iomgr/wakeup_fd_pipe.cc +4 -4
  433. data/src/core/lib/iomgr/wakeup_fd_posix.cc +3 -3
  434. data/src/core/lib/iomgr/wakeup_fd_posix.h +8 -6
  435. data/src/core/lib/iomgr/work_serializer.h +17 -1
  436. data/src/core/lib/json/json.h +1 -1
  437. data/src/core/lib/json/json_reader.cc +4 -4
  438. data/src/core/lib/matchers/matchers.cc +339 -0
  439. data/src/core/lib/matchers/matchers.h +160 -0
  440. data/src/core/lib/security/credentials/alts/alts_credentials.cc +2 -1
  441. data/src/core/lib/security/credentials/alts/alts_credentials.h +1 -1
  442. data/src/core/lib/security/credentials/composite/composite_credentials.cc +4 -4
  443. data/src/core/lib/security/credentials/composite/composite_credentials.h +2 -2
  444. data/src/core/lib/security/credentials/credentials.h +4 -3
  445. data/src/core/lib/security/credentials/external/aws_external_account_credentials.cc +18 -14
  446. data/src/core/lib/security/credentials/external/aws_external_account_credentials.h +13 -11
  447. data/src/core/lib/security/credentials/external/aws_request_signer.cc +2 -1
  448. data/src/core/lib/security/credentials/external/aws_request_signer.h +1 -1
  449. data/src/core/lib/security/credentials/external/external_account_credentials.cc +17 -14
  450. data/src/core/lib/security/credentials/external/external_account_credentials.h +9 -8
  451. data/src/core/lib/security/credentials/external/file_external_account_credentials.cc +6 -5
  452. data/src/core/lib/security/credentials/external/file_external_account_credentials.h +4 -3
  453. data/src/core/lib/security/credentials/external/url_external_account_credentials.cc +9 -9
  454. data/src/core/lib/security/credentials/external/url_external_account_credentials.h +9 -7
  455. data/src/core/lib/security/credentials/fake/fake_credentials.cc +3 -3
  456. data/src/core/lib/security/credentials/fake/fake_credentials.h +2 -2
  457. data/src/core/lib/security/credentials/google_default/google_default_credentials.cc +16 -15
  458. data/src/core/lib/security/credentials/iam/iam_credentials.cc +2 -2
  459. data/src/core/lib/security/credentials/iam/iam_credentials.h +2 -2
  460. data/src/core/lib/security/credentials/insecure/insecure_credentials.cc +2 -2
  461. data/src/core/lib/security/credentials/jwt/json_token.cc +2 -5
  462. data/src/core/lib/security/credentials/jwt/jwt_credentials.cc +3 -3
  463. data/src/core/lib/security/credentials/jwt/jwt_credentials.h +2 -2
  464. data/src/core/lib/security/credentials/jwt/jwt_verifier.cc +7 -8
  465. data/src/core/lib/security/credentials/local/local_credentials.cc +2 -1
  466. data/src/core/lib/security/credentials/local/local_credentials.h +1 -1
  467. data/src/core/lib/security/credentials/oauth2/oauth2_credentials.cc +21 -19
  468. data/src/core/lib/security/credentials/oauth2/oauth2_credentials.h +5 -5
  469. data/src/core/lib/security/credentials/plugin/plugin_credentials.cc +5 -5
  470. data/src/core/lib/security/credentials/plugin/plugin_credentials.h +2 -2
  471. data/src/core/lib/security/credentials/ssl/ssl_credentials.cc +2 -1
  472. data/src/core/lib/security/credentials/ssl/ssl_credentials.h +1 -1
  473. data/src/core/lib/security/credentials/tls/grpc_tls_certificate_distributor.cc +8 -7
  474. data/src/core/lib/security/credentials/tls/grpc_tls_certificate_distributor.h +9 -9
  475. data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc +19 -13
  476. data/src/core/lib/security/credentials/tls/grpc_tls_credentials_options.cc +4 -0
  477. data/src/core/lib/security/credentials/tls/tls_credentials.cc +2 -1
  478. data/src/core/lib/security/credentials/tls/tls_credentials.h +1 -1
  479. data/src/core/lib/security/credentials/xds/xds_credentials.cc +130 -61
  480. data/src/core/lib/security/credentials/xds/xds_credentials.h +3 -3
  481. data/src/core/lib/security/security_connector/alts/alts_security_connector.cc +13 -3
  482. data/src/core/lib/security/security_connector/fake/fake_security_connector.cc +13 -3
  483. data/src/core/lib/security/security_connector/insecure/insecure_security_connector.cc +5 -5
  484. data/src/core/lib/security/security_connector/insecure/insecure_security_connector.h +12 -2
  485. data/src/core/lib/security/security_connector/load_system_roots_linux.cc +1 -1
  486. data/src/core/lib/security/security_connector/local/local_security_connector.cc +14 -4
  487. data/src/core/lib/security/security_connector/security_connector.h +9 -4
  488. data/src/core/lib/security/security_connector/ssl/ssl_security_connector.cc +16 -6
  489. data/src/core/lib/security/security_connector/ssl_utils.cc +31 -8
  490. data/src/core/lib/security/security_connector/ssl_utils.h +4 -4
  491. data/src/core/lib/security/security_connector/tls/tls_security_connector.cc +88 -74
  492. data/src/core/lib/security/security_connector/tls/tls_security_connector.h +66 -48
  493. data/src/core/lib/security/transport/client_auth_filter.cc +18 -10
  494. data/src/core/lib/security/transport/secure_endpoint.cc +4 -4
  495. data/src/core/lib/security/transport/security_handshaker.cc +66 -37
  496. data/src/core/lib/security/transport/server_auth_filter.cc +24 -11
  497. data/src/core/lib/security/transport/tsi_error.cc +2 -1
  498. data/src/core/lib/security/transport/tsi_error.h +2 -1
  499. data/src/core/lib/security/util/json_util.cc +2 -2
  500. data/src/core/lib/security/util/json_util.h +1 -1
  501. data/src/core/lib/slice/slice_intern.cc +5 -6
  502. data/src/core/lib/surface/call.cc +46 -45
  503. data/src/core/lib/surface/call.h +2 -2
  504. data/src/core/lib/surface/channel.cc +6 -6
  505. data/src/core/lib/surface/channel.h +6 -5
  506. data/src/core/lib/surface/channel_ping.cc +1 -1
  507. data/src/core/lib/surface/completion_queue.cc +46 -47
  508. data/src/core/lib/surface/completion_queue.h +2 -1
  509. data/src/core/lib/surface/init.cc +13 -15
  510. data/src/core/lib/surface/lame_client.cc +43 -24
  511. data/src/core/lib/surface/lame_client.h +4 -3
  512. data/src/core/lib/surface/server.cc +71 -58
  513. data/src/core/lib/surface/server.h +91 -28
  514. data/src/core/lib/surface/validate_metadata.cc +7 -7
  515. data/src/core/lib/surface/validate_metadata.h +3 -2
  516. data/src/core/lib/surface/version.cc +4 -2
  517. data/src/core/lib/transport/byte_stream.cc +5 -5
  518. data/src/core/lib/transport/byte_stream.h +8 -8
  519. data/src/core/lib/transport/connectivity_state.cc +1 -1
  520. data/src/core/lib/transport/error_utils.cc +19 -8
  521. data/src/core/lib/transport/error_utils.h +11 -5
  522. data/src/core/lib/transport/metadata.cc +6 -2
  523. data/src/core/lib/transport/metadata_batch.cc +64 -37
  524. data/src/core/lib/transport/metadata_batch.h +33 -18
  525. data/src/core/lib/transport/transport.cc +4 -3
  526. data/src/core/lib/transport/transport.h +4 -4
  527. data/src/core/lib/transport/transport_op_string.cc +5 -5
  528. data/src/core/plugin_registry/grpc_plugin_registry.cc +12 -0
  529. data/src/core/tsi/alts/crypt/gsec.h +4 -0
  530. data/src/core/tsi/alts/handshaker/alts_handshaker_client.cc +23 -28
  531. data/src/core/tsi/alts/handshaker/alts_tsi_handshaker.cc +23 -27
  532. data/src/core/tsi/alts/handshaker/alts_tsi_handshaker.h +1 -1
  533. data/src/core/tsi/alts/handshaker/alts_tsi_handshaker_private.h +2 -1
  534. data/src/core/tsi/alts/handshaker/transport_security_common_api.cc +1 -3
  535. data/src/core/tsi/fake_transport_security.cc +11 -2
  536. data/src/core/tsi/ssl/session_cache/ssl_session.h +0 -3
  537. data/src/core/tsi/ssl/session_cache/ssl_session_cache.cc +0 -2
  538. data/src/core/tsi/ssl/session_cache/ssl_session_cache.h +2 -4
  539. data/src/core/tsi/ssl_transport_security.cc +32 -17
  540. data/src/core/tsi/ssl_transport_security.h +3 -7
  541. data/src/ruby/bin/math_services_pb.rb +1 -1
  542. data/src/ruby/ext/grpc/extconf.rb +9 -1
  543. data/src/ruby/ext/grpc/rb_channel.c +10 -1
  544. data/src/ruby/ext/grpc/rb_channel_credentials.c +11 -1
  545. data/src/ruby/ext/grpc/rb_channel_credentials.h +4 -0
  546. data/src/ruby/ext/grpc/rb_compression_options.c +1 -1
  547. data/src/ruby/ext/grpc/rb_enable_cpp.cc +1 -1
  548. data/src/ruby/ext/grpc/rb_grpc.c +4 -0
  549. data/src/ruby/ext/grpc/rb_grpc_imports.generated.c +2 -0
  550. data/src/ruby/ext/grpc/rb_grpc_imports.generated.h +4 -1
  551. data/src/ruby/ext/grpc/rb_server.c +13 -1
  552. data/src/ruby/ext/grpc/rb_server_credentials.c +19 -3
  553. data/src/ruby/ext/grpc/rb_server_credentials.h +4 -0
  554. data/src/ruby/ext/grpc/rb_xds_channel_credentials.c +215 -0
  555. data/src/ruby/ext/grpc/rb_xds_channel_credentials.h +35 -0
  556. data/src/ruby/ext/grpc/rb_xds_server_credentials.c +169 -0
  557. data/src/ruby/ext/grpc/rb_xds_server_credentials.h +35 -0
  558. data/src/ruby/lib/grpc/generic/client_stub.rb +4 -2
  559. data/src/ruby/lib/grpc/version.rb +1 -1
  560. data/src/ruby/pb/grpc/health/v1/health_services_pb.rb +1 -1
  561. data/src/ruby/pb/src/proto/grpc/testing/messages_pb.rb +7 -0
  562. data/src/ruby/pb/src/proto/grpc/testing/test_services_pb.rb +6 -6
  563. data/src/ruby/spec/call_spec.rb +1 -1
  564. data/src/ruby/spec/channel_credentials_spec.rb +32 -0
  565. data/src/ruby/spec/channel_spec.rb +17 -6
  566. data/src/ruby/spec/client_auth_spec.rb +27 -1
  567. data/src/ruby/spec/errors_spec.rb +1 -1
  568. data/src/ruby/spec/generic/active_call_spec.rb +2 -2
  569. data/src/ruby/spec/generic/client_stub_spec.rb +4 -4
  570. data/src/ruby/spec/generic/rpc_server_spec.rb +1 -1
  571. data/src/ruby/spec/server_credentials_spec.rb +25 -0
  572. data/src/ruby/spec/server_spec.rb +22 -0
  573. data/third_party/abseil-cpp/absl/algorithm/container.h +3 -3
  574. data/third_party/abseil-cpp/absl/base/attributes.h +24 -4
  575. data/third_party/abseil-cpp/absl/base/call_once.h +2 -9
  576. data/third_party/abseil-cpp/absl/base/config.h +37 -9
  577. data/third_party/abseil-cpp/absl/base/dynamic_annotations.h +24 -10
  578. data/third_party/abseil-cpp/absl/base/internal/direct_mmap.h +4 -1
  579. data/third_party/abseil-cpp/absl/base/internal/endian.h +61 -0
  580. data/third_party/abseil-cpp/absl/base/internal/low_level_scheduling.h +2 -3
  581. data/third_party/abseil-cpp/absl/base/internal/raw_logging.cc +34 -32
  582. data/third_party/abseil-cpp/absl/base/internal/raw_logging.h +16 -6
  583. data/third_party/abseil-cpp/absl/base/internal/spinlock.cc +11 -2
  584. data/third_party/abseil-cpp/absl/base/internal/spinlock.h +14 -5
  585. data/third_party/abseil-cpp/absl/base/internal/spinlock_akaros.inc +2 -2
  586. data/third_party/abseil-cpp/absl/base/internal/spinlock_linux.inc +3 -3
  587. data/third_party/abseil-cpp/absl/base/internal/spinlock_posix.inc +2 -2
  588. data/third_party/abseil-cpp/absl/base/internal/spinlock_wait.h +11 -11
  589. data/third_party/abseil-cpp/absl/base/internal/spinlock_win32.inc +5 -5
  590. data/third_party/abseil-cpp/absl/base/internal/sysinfo.cc +1 -1
  591. data/third_party/abseil-cpp/absl/base/internal/thread_identity.cc +5 -2
  592. data/third_party/abseil-cpp/absl/base/internal/thread_identity.h +43 -42
  593. data/third_party/abseil-cpp/absl/base/internal/throw_delegate.cc +111 -7
  594. data/third_party/abseil-cpp/absl/base/internal/unaligned_access.h +0 -76
  595. data/third_party/abseil-cpp/absl/base/internal/unscaledcycleclock.cc +1 -3
  596. data/third_party/abseil-cpp/absl/base/log_severity.h +4 -4
  597. data/third_party/abseil-cpp/absl/base/macros.h +11 -0
  598. data/third_party/abseil-cpp/absl/base/optimization.h +10 -7
  599. data/third_party/abseil-cpp/absl/base/options.h +1 -1
  600. data/third_party/abseil-cpp/absl/base/port.h +0 -1
  601. data/third_party/abseil-cpp/absl/base/thread_annotations.h +1 -1
  602. data/third_party/abseil-cpp/absl/container/fixed_array.h +2 -2
  603. data/third_party/abseil-cpp/absl/container/inlined_vector.h +5 -3
  604. data/third_party/abseil-cpp/absl/container/internal/compressed_tuple.h +1 -1
  605. data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.cc +5 -1
  606. data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.h +2 -1
  607. data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler_force_weak_definition.cc +2 -1
  608. data/third_party/abseil-cpp/absl/container/internal/inlined_vector.h +141 -66
  609. data/third_party/abseil-cpp/absl/container/internal/layout.h +4 -4
  610. data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.cc +14 -1
  611. data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.h +136 -136
  612. data/third_party/abseil-cpp/absl/debugging/internal/demangle.cc +16 -12
  613. data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_aarch64-inl.inc +5 -2
  614. data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_config.h +3 -12
  615. data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_powerpc-inl.inc +6 -1
  616. data/third_party/abseil-cpp/absl/debugging/internal/symbolize.h +3 -5
  617. data/third_party/abseil-cpp/absl/debugging/symbolize_darwin.inc +2 -2
  618. data/third_party/abseil-cpp/absl/debugging/symbolize_elf.inc +2 -2
  619. data/third_party/abseil-cpp/absl/hash/internal/city.cc +15 -12
  620. data/third_party/abseil-cpp/absl/hash/internal/city.h +1 -19
  621. data/third_party/abseil-cpp/absl/hash/internal/hash.cc +25 -10
  622. data/third_party/abseil-cpp/absl/hash/internal/hash.h +86 -37
  623. data/third_party/abseil-cpp/absl/hash/internal/wyhash.cc +111 -0
  624. data/third_party/abseil-cpp/absl/hash/internal/wyhash.h +48 -0
  625. data/third_party/abseil-cpp/absl/meta/type_traits.h +16 -2
  626. data/third_party/abseil-cpp/absl/numeric/bits.h +177 -0
  627. data/third_party/abseil-cpp/absl/numeric/int128.cc +3 -3
  628. data/third_party/abseil-cpp/absl/numeric/internal/bits.h +358 -0
  629. data/third_party/abseil-cpp/absl/numeric/internal/representation.h +55 -0
  630. data/third_party/abseil-cpp/absl/status/internal/status_internal.h +18 -0
  631. data/third_party/abseil-cpp/absl/status/internal/statusor_internal.h +4 -7
  632. data/third_party/abseil-cpp/absl/status/status.cc +29 -22
  633. data/third_party/abseil-cpp/absl/status/status.h +81 -20
  634. data/third_party/abseil-cpp/absl/status/statusor.h +3 -3
  635. data/third_party/abseil-cpp/absl/strings/charconv.cc +5 -5
  636. data/third_party/abseil-cpp/absl/strings/cord.cc +326 -371
  637. data/third_party/abseil-cpp/absl/strings/cord.h +182 -64
  638. data/third_party/abseil-cpp/absl/strings/escaping.cc +4 -4
  639. data/third_party/abseil-cpp/absl/strings/internal/charconv_parse.cc +6 -6
  640. data/third_party/abseil-cpp/absl/strings/internal/cord_internal.cc +83 -0
  641. data/third_party/abseil-cpp/absl/strings/internal/cord_internal.h +387 -17
  642. data/third_party/abseil-cpp/absl/strings/internal/cord_rep_flat.h +146 -0
  643. data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring.cc +897 -0
  644. data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring.h +589 -0
  645. data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring_reader.h +114 -0
  646. data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.cc +14 -0
  647. data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.h +14 -0
  648. data/third_party/abseil-cpp/absl/strings/internal/str_format/bind.cc +15 -1
  649. data/third_party/abseil-cpp/absl/strings/internal/str_format/bind.h +19 -4
  650. data/third_party/abseil-cpp/absl/strings/internal/str_format/checker.h +14 -0
  651. data/third_party/abseil-cpp/absl/strings/internal/str_format/float_conversion.cc +36 -18
  652. data/third_party/abseil-cpp/absl/strings/internal/str_format/float_conversion.h +14 -0
  653. data/third_party/abseil-cpp/absl/strings/internal/str_format/parser.cc +14 -0
  654. data/third_party/abseil-cpp/absl/strings/internal/str_format/parser.h +14 -0
  655. data/third_party/abseil-cpp/absl/strings/internal/str_split_internal.h +15 -40
  656. data/third_party/abseil-cpp/absl/strings/internal/string_constant.h +64 -0
  657. data/third_party/abseil-cpp/absl/strings/match.cc +6 -3
  658. data/third_party/abseil-cpp/absl/strings/match.h +16 -6
  659. data/third_party/abseil-cpp/absl/strings/numbers.cc +132 -4
  660. data/third_party/abseil-cpp/absl/strings/numbers.h +10 -10
  661. data/third_party/abseil-cpp/absl/strings/str_join.h +1 -1
  662. data/third_party/abseil-cpp/absl/strings/str_split.h +38 -4
  663. data/third_party/abseil-cpp/absl/synchronization/internal/futex.h +154 -0
  664. data/third_party/abseil-cpp/absl/synchronization/internal/graphcycles.cc +1 -0
  665. data/third_party/abseil-cpp/absl/synchronization/internal/kernel_timeout.h +2 -1
  666. data/third_party/abseil-cpp/absl/synchronization/internal/per_thread_sem.cc +2 -2
  667. data/third_party/abseil-cpp/absl/synchronization/internal/per_thread_sem.h +4 -4
  668. data/third_party/abseil-cpp/absl/synchronization/internal/waiter.cc +1 -65
  669. data/third_party/abseil-cpp/absl/synchronization/internal/waiter.h +2 -6
  670. data/third_party/abseil-cpp/absl/synchronization/mutex.cc +71 -59
  671. data/third_party/abseil-cpp/absl/synchronization/mutex.h +79 -62
  672. data/third_party/abseil-cpp/absl/time/clock.cc +146 -130
  673. data/third_party/abseil-cpp/absl/time/clock.h +2 -2
  674. data/third_party/abseil-cpp/absl/time/duration.cc +3 -2
  675. data/third_party/abseil-cpp/absl/time/internal/cctz/include/cctz/civil_time_detail.h +7 -11
  676. data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_libc.cc +7 -1
  677. data/third_party/abseil-cpp/absl/time/internal/cctz/src/tzfile.h +4 -4
  678. data/third_party/abseil-cpp/absl/time/time.cc +4 -3
  679. data/third_party/abseil-cpp/absl/time/time.h +26 -24
  680. data/third_party/abseil-cpp/absl/types/internal/variant.h +1 -1
  681. data/third_party/abseil-cpp/absl/types/variant.h +9 -4
  682. data/third_party/boringssl-with-bazel/err_data.c +742 -724
  683. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bitstr.c +3 -3
  684. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bool.c +1 -1
  685. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_enum.c +2 -2
  686. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_int.c +5 -5
  687. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_object.c +4 -11
  688. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_octet.c +3 -3
  689. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_type.c +22 -10
  690. data/third_party/boringssl-with-bazel/src/crypto/asn1/a_utctm.c +2 -2
  691. data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_lib.c +16 -16
  692. data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_locl.h +35 -0
  693. data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_dec.c +28 -79
  694. data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_enc.c +40 -86
  695. data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_fre.c +6 -17
  696. data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_new.c +10 -61
  697. data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_typ.c +0 -2
  698. data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_utl.c +2 -2
  699. data/third_party/boringssl-with-bazel/src/crypto/bio/socket_helper.c +4 -0
  700. data/third_party/boringssl-with-bazel/src/crypto/blake2/blake2.c +158 -0
  701. data/third_party/boringssl-with-bazel/src/crypto/bn_extra/bn_asn1.c +3 -10
  702. data/third_party/boringssl-with-bazel/src/crypto/bytestring/ber.c +8 -9
  703. data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbs.c +60 -45
  704. data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_chacha20poly1305.c +6 -81
  705. data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_tls.c +1 -88
  706. data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/internal.h +101 -3
  707. data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/tls_cbc.c +119 -273
  708. data/third_party/boringssl-with-bazel/src/crypto/cpu-aarch64-win.c +41 -0
  709. data/third_party/boringssl-with-bazel/src/crypto/cpu-arm-linux.c +11 -2
  710. data/third_party/boringssl-with-bazel/src/crypto/cpu-arm.c +3 -3
  711. data/third_party/boringssl-with-bazel/src/crypto/{dh → dh_extra}/dh_asn1.c +0 -0
  712. data/third_party/boringssl-with-bazel/src/crypto/{dh → dh_extra}/params.c +179 -0
  713. data/third_party/boringssl-with-bazel/src/crypto/digest_extra/digest_extra.c +25 -0
  714. data/third_party/boringssl-with-bazel/src/crypto/ec_extra/ec_asn1.c +2 -17
  715. data/third_party/boringssl-with-bazel/src/crypto/err/err.c +87 -80
  716. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bcm.c +4 -1
  717. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/bn.c +13 -20
  718. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/div.c +2 -3
  719. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/internal.h +10 -2
  720. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/cipher.c +32 -16
  721. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aes.c +25 -2
  722. data/third_party/boringssl-with-bazel/src/crypto/{dh → fipsmodule/dh}/check.c +0 -0
  723. data/third_party/boringssl-with-bazel/src/crypto/{dh → fipsmodule/dh}/dh.c +136 -213
  724. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/digests.c +10 -2
  725. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/md32_common.h +4 -43
  726. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec.c +16 -0
  727. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_key.c +9 -2
  728. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/internal.h +0 -4
  729. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/ecdsa.c +104 -93
  730. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/internal.h +39 -0
  731. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/md4/md4.c +43 -46
  732. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/md5/md5.c +43 -46
  733. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/cbc.c +33 -22
  734. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/cfb.c +9 -8
  735. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/ctr.c +9 -8
  736. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/gcm.c +17 -13
  737. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/internal.h +1 -22
  738. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/ofb.c +2 -1
  739. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/internal.h +28 -0
  740. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/rand.c +135 -43
  741. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/urandom.c +26 -14
  742. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa_impl.c +51 -32
  743. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/fips.c +79 -0
  744. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/self_check.c +161 -9
  745. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha1.c +45 -48
  746. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha256.c +38 -43
  747. data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha512.c +37 -45
  748. data/third_party/boringssl-with-bazel/src/crypto/hpke/hpke.c +121 -71
  749. data/third_party/boringssl-with-bazel/src/crypto/hpke/internal.h +71 -41
  750. data/third_party/boringssl-with-bazel/src/crypto/internal.h +65 -0
  751. data/third_party/boringssl-with-bazel/src/crypto/mem.c +14 -0
  752. data/third_party/boringssl-with-bazel/src/crypto/obj/obj.c +3 -3
  753. data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7_x509.c +1 -1
  754. data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8_x509.c +95 -48
  755. data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305.c +10 -7
  756. data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305_arm.c +13 -11
  757. data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305_vec.c +4 -0
  758. data/third_party/boringssl-with-bazel/src/crypto/{fipsmodule/is_fips.c → rand_extra/passive.c} +16 -11
  759. data/third_party/boringssl-with-bazel/src/crypto/rand_extra/rand_extra.c +5 -1
  760. data/third_party/boringssl-with-bazel/src/crypto/stack/stack.c +7 -13
  761. data/third_party/boringssl-with-bazel/src/crypto/thread_pthread.c +0 -28
  762. data/third_party/boringssl-with-bazel/src/crypto/x509/internal.h +19 -0
  763. data/third_party/boringssl-with-bazel/src/crypto/x509/rsa_pss.c +5 -1
  764. data/third_party/boringssl-with-bazel/src/crypto/x509/t_req.c +2 -0
  765. data/third_party/boringssl-with-bazel/src/crypto/x509/x509_att.c +19 -25
  766. data/third_party/boringssl-with-bazel/src/crypto/x509/x509_cmp.c +4 -31
  767. data/third_party/boringssl-with-bazel/src/crypto/x509/x509_ext.c +10 -7
  768. data/third_party/boringssl-with-bazel/src/crypto/x509/x509_req.c +39 -89
  769. data/third_party/boringssl-with-bazel/src/crypto/x509/x509_set.c +17 -24
  770. data/third_party/boringssl-with-bazel/src/crypto/x509/x509_v3.c +1 -1
  771. data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vfy.c +1 -1
  772. data/third_party/boringssl-with-bazel/src/crypto/x509/x509cset.c +29 -23
  773. data/third_party/boringssl-with-bazel/src/crypto/x509/x_algor.c +21 -17
  774. data/third_party/boringssl-with-bazel/src/crypto/x509/x_attrib.c +21 -34
  775. data/third_party/boringssl-with-bazel/src/crypto/x509/x_crl.c +6 -2
  776. data/third_party/boringssl-with-bazel/src/crypto/x509/x_pkey.c +2 -2
  777. data/third_party/boringssl-with-bazel/src/crypto/x509/x_pubkey.c +25 -22
  778. data/third_party/boringssl-with-bazel/src/crypto/x509/x_val.c +2 -0
  779. data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509.c +39 -4
  780. data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509a.c +2 -2
  781. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_akey.c +3 -3
  782. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_alt.c +11 -10
  783. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_bitst.c +3 -3
  784. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_conf.c +25 -25
  785. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_cpols.c +4 -6
  786. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_enum.c +2 -1
  787. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_genn.c +40 -20
  788. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_ia5.c +3 -4
  789. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_lib.c +25 -36
  790. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_prn.c +1 -1
  791. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_purp.c +1 -1
  792. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_skey.c +7 -6
  793. data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_utl.c +6 -6
  794. data/third_party/boringssl-with-bazel/src/include/openssl/aead.h +0 -3
  795. data/third_party/boringssl-with-bazel/src/include/openssl/arm_arch.h +3 -3
  796. data/third_party/boringssl-with-bazel/src/include/openssl/asn1.h +737 -551
  797. data/third_party/boringssl-with-bazel/src/include/openssl/asn1t.h +0 -167
  798. data/third_party/boringssl-with-bazel/src/include/openssl/base.h +19 -5
  799. data/third_party/boringssl-with-bazel/src/include/openssl/blake2.h +62 -0
  800. data/third_party/boringssl-with-bazel/src/include/openssl/bytestring.h +22 -7
  801. data/third_party/boringssl-with-bazel/src/include/openssl/cipher.h +15 -4
  802. data/third_party/boringssl-with-bazel/src/include/openssl/cpu.h +22 -32
  803. data/third_party/boringssl-with-bazel/src/include/openssl/crypto.h +24 -4
  804. data/third_party/boringssl-with-bazel/src/include/openssl/dh.h +56 -26
  805. data/third_party/boringssl-with-bazel/src/include/openssl/digest.h +1 -0
  806. data/third_party/boringssl-with-bazel/src/include/openssl/ec.h +20 -2
  807. data/third_party/boringssl-with-bazel/src/include/openssl/ecdsa.h +19 -0
  808. data/third_party/boringssl-with-bazel/src/include/openssl/err.h +3 -2
  809. data/third_party/boringssl-with-bazel/src/include/openssl/evp.h +13 -40
  810. data/third_party/boringssl-with-bazel/src/{crypto/x509/x509_r2x.c → include/openssl/evp_errors.h} +41 -58
  811. data/third_party/boringssl-with-bazel/src/include/openssl/obj.h +24 -5
  812. data/third_party/boringssl-with-bazel/src/include/openssl/pkcs7.h +2 -0
  813. data/third_party/boringssl-with-bazel/src/include/openssl/pkcs8.h +9 -1
  814. data/third_party/boringssl-with-bazel/src/include/openssl/rand.h +5 -2
  815. data/third_party/boringssl-with-bazel/src/include/openssl/span.h +2 -1
  816. data/third_party/boringssl-with-bazel/src/include/openssl/ssl.h +239 -37
  817. data/third_party/boringssl-with-bazel/src/include/openssl/tls1.h +28 -8
  818. data/third_party/boringssl-with-bazel/src/include/openssl/x509.h +702 -219
  819. data/third_party/boringssl-with-bazel/src/include/openssl/x509v3.h +141 -36
  820. data/third_party/boringssl-with-bazel/src/ssl/d1_both.cc +5 -0
  821. data/third_party/boringssl-with-bazel/src/ssl/encrypted_client_hello.cc +444 -0
  822. data/third_party/boringssl-with-bazel/src/ssl/handoff.cc +244 -1
  823. data/third_party/boringssl-with-bazel/src/ssl/handshake.cc +47 -15
  824. data/third_party/boringssl-with-bazel/src/ssl/handshake_client.cc +11 -20
  825. data/third_party/boringssl-with-bazel/src/ssl/handshake_server.cc +159 -13
  826. data/third_party/boringssl-with-bazel/src/ssl/internal.h +253 -58
  827. data/third_party/boringssl-with-bazel/src/ssl/s3_both.cc +7 -1
  828. data/third_party/boringssl-with-bazel/src/ssl/s3_lib.cc +0 -1
  829. data/third_party/boringssl-with-bazel/src/ssl/ssl_asn1.cc +7 -8
  830. data/third_party/boringssl-with-bazel/src/ssl/ssl_cert.cc +4 -6
  831. data/third_party/boringssl-with-bazel/src/ssl/ssl_key_share.cc +23 -26
  832. data/third_party/boringssl-with-bazel/src/ssl/ssl_lib.cc +90 -25
  833. data/third_party/boringssl-with-bazel/src/ssl/ssl_session.cc +7 -8
  834. data/third_party/boringssl-with-bazel/src/ssl/ssl_transcript.cc +2 -2
  835. data/third_party/boringssl-with-bazel/src/ssl/t1_enc.cc +5 -7
  836. data/third_party/boringssl-with-bazel/src/ssl/t1_lib.cc +450 -104
  837. data/third_party/boringssl-with-bazel/src/ssl/tls13_both.cc +34 -4
  838. data/third_party/boringssl-with-bazel/src/ssl/tls13_client.cc +2 -2
  839. data/third_party/boringssl-with-bazel/src/ssl/tls13_enc.cc +48 -15
  840. data/third_party/boringssl-with-bazel/src/ssl/tls13_server.cc +232 -85
  841. data/third_party/boringssl-with-bazel/src/ssl/tls_method.cc +4 -2
  842. data/third_party/xxhash/xxhash.h +5443 -0
  843. metadata +174 -95
  844. data/src/core/ext/upb-generated/udpa/core/v1/authority.upb.h +0 -60
  845. data/src/core/ext/upb-generated/udpa/core/v1/collection_entry.upb.c +0 -52
  846. data/src/core/ext/upb-generated/udpa/core/v1/collection_entry.upb.h +0 -143
  847. data/src/core/ext/upb-generated/udpa/core/v1/context_params.upb.c +0 -42
  848. data/src/core/ext/upb-generated/udpa/core/v1/context_params.upb.h +0 -84
  849. data/src/core/ext/upb-generated/udpa/core/v1/resource.upb.h +0 -94
  850. data/src/core/ext/upb-generated/udpa/core/v1/resource_locator.upb.c +0 -54
  851. data/src/core/ext/upb-generated/udpa/core/v1/resource_locator.upb.h +0 -173
  852. data/src/core/ext/upb-generated/udpa/core/v1/resource_name.upb.c +0 -36
  853. data/src/core/ext/upb-generated/udpa/core/v1/resource_name.upb.h +0 -92
  854. data/src/core/ext/upbdefs-generated/udpa/core/v1/authority.upbdefs.c +0 -42
  855. data/src/core/ext/upbdefs-generated/udpa/core/v1/authority.upbdefs.h +0 -35
  856. data/src/core/ext/upbdefs-generated/udpa/core/v1/collection_entry.upbdefs.c +0 -62
  857. data/src/core/ext/upbdefs-generated/udpa/core/v1/collection_entry.upbdefs.h +0 -40
  858. data/src/core/ext/upbdefs-generated/udpa/core/v1/context_params.upbdefs.c +0 -45
  859. data/src/core/ext/upbdefs-generated/udpa/core/v1/context_params.upbdefs.h +0 -40
  860. data/src/core/ext/upbdefs-generated/udpa/core/v1/resource.upbdefs.c +0 -49
  861. data/src/core/ext/upbdefs-generated/udpa/core/v1/resource.upbdefs.h +0 -35
  862. data/src/core/ext/upbdefs-generated/udpa/core/v1/resource_locator.upbdefs.c +0 -68
  863. data/src/core/ext/upbdefs-generated/udpa/core/v1/resource_locator.upbdefs.h +0 -40
  864. data/src/core/ext/upbdefs-generated/udpa/core/v1/resource_name.upbdefs.c +0 -51
  865. data/src/core/ext/upbdefs-generated/udpa/core/v1/resource_name.upbdefs.h +0 -35
  866. data/src/core/lib/iomgr/iomgr_posix.h +0 -26
  867. data/src/core/lib/iomgr/poller/eventmanager_libuv.cc +0 -88
  868. data/src/core/lib/iomgr/poller/eventmanager_libuv.h +0 -88
  869. data/src/core/lib/security/authorization/authorization_engine.cc +0 -177
  870. data/src/core/lib/security/authorization/authorization_engine.h +0 -84
  871. data/src/core/lib/security/authorization/evaluate_args.cc +0 -148
  872. data/src/core/lib/security/authorization/evaluate_args.h +0 -59
  873. data/src/core/lib/security/authorization/mock_cel/activation.h +0 -57
  874. data/src/core/lib/security/authorization/mock_cel/cel_expr_builder_factory.h +0 -44
  875. data/src/core/lib/security/authorization/mock_cel/cel_expression.h +0 -69
  876. data/src/core/lib/security/authorization/mock_cel/cel_value.h +0 -97
  877. data/src/core/lib/security/authorization/mock_cel/evaluator_core.h +0 -67
  878. data/src/core/lib/security/authorization/mock_cel/flat_expr_builder.h +0 -57
  879. data/third_party/abseil-cpp/absl/base/internal/bits.h +0 -219
  880. data/third_party/abseil-cpp/absl/container/flat_hash_set.h +0 -504
  881. data/third_party/abseil-cpp/absl/synchronization/internal/mutex_nonprod.inc +0 -249
  882. data/third_party/upb/upb/json_decode.c +0 -1443
  883. data/third_party/upb/upb/json_decode.h +0 -23
  884. data/third_party/upb/upb/json_encode.c +0 -713
  885. data/third_party/upb/upb/json_encode.h +0 -36
@@ -183,7 +183,7 @@ int X509V3_extensions_print(BIO *bp, const char *title,
183
183
  return 0;
184
184
  if (!X509V3_EXT_print(bp, ex, flag, indent + 4)) {
185
185
  BIO_printf(bp, "%*s", indent + 4, "");
186
- M_ASN1_OCTET_STRING_print(bp, ex->value);
186
+ ASN1_STRING_print(bp, ex->value);
187
187
  }
188
188
  if (BIO_write(bp, "\n", 1) <= 0)
189
189
  return 0;
@@ -440,7 +440,7 @@ int x509v3_cache_extensions(X509 *x)
440
440
  if (!X509_digest(x, EVP_sha1(), x->sha1_hash, NULL))
441
441
  x->ex_flags |= EXFLAG_INVALID;
442
442
  /* V1 should mean no extensions ... */
443
- if (!X509_get_version(x))
443
+ if (X509_get_version(x) == X509V1_VERSION)
444
444
  x->ex_flags |= EXFLAG_V1;
445
445
  /* Handle basic constraints */
446
446
  if ((bs = X509_get_ext_d2i(x, NID_basic_constraints, &j, NULL))) {
@@ -63,6 +63,7 @@
63
63
  #include <openssl/obj.h>
64
64
  #include <openssl/x509v3.h>
65
65
 
66
+ #include "../x509/internal.h"
66
67
  #include "internal.h"
67
68
 
68
69
 
@@ -83,18 +84,18 @@ char *i2s_ASN1_OCTET_STRING(X509V3_EXT_METHOD *method, const ASN1_OCTET_STRING *
83
84
  }
84
85
 
85
86
  ASN1_OCTET_STRING *s2i_ASN1_OCTET_STRING(X509V3_EXT_METHOD *method,
86
- X509V3_CTX *ctx, char *str)
87
+ X509V3_CTX *ctx, const char *str)
87
88
  {
88
89
  ASN1_OCTET_STRING *oct;
89
90
  long length;
90
91
 
91
- if (!(oct = M_ASN1_OCTET_STRING_new())) {
92
+ if (!(oct = ASN1_OCTET_STRING_new())) {
92
93
  OPENSSL_PUT_ERROR(X509V3, ERR_R_MALLOC_FAILURE);
93
94
  return NULL;
94
95
  }
95
96
 
96
97
  if (!(oct->data = x509v3_hex_to_bytes(str, &length))) {
97
- M_ASN1_OCTET_STRING_free(oct);
98
+ ASN1_OCTET_STRING_free(oct);
98
99
  return NULL;
99
100
  }
100
101
 
@@ -115,7 +116,7 @@ static ASN1_OCTET_STRING *s2i_skey_id(X509V3_EXT_METHOD *method,
115
116
  if (strcmp(str, "hash"))
116
117
  return s2i_ASN1_OCTET_STRING(method, ctx, str);
117
118
 
118
- if (!(oct = M_ASN1_OCTET_STRING_new())) {
119
+ if (!(oct = ASN1_OCTET_STRING_new())) {
119
120
  OPENSSL_PUT_ERROR(X509V3, ERR_R_MALLOC_FAILURE);
120
121
  return NULL;
121
122
  }
@@ -142,7 +143,7 @@ static ASN1_OCTET_STRING *s2i_skey_id(X509V3_EXT_METHOD *method,
142
143
  (pk->data, pk->length, pkey_dig, &diglen, EVP_sha1(), NULL))
143
144
  goto err;
144
145
 
145
- if (!M_ASN1_OCTET_STRING_set(oct, pkey_dig, diglen)) {
146
+ if (!ASN1_OCTET_STRING_set(oct, pkey_dig, diglen)) {
146
147
  OPENSSL_PUT_ERROR(X509V3, ERR_R_MALLOC_FAILURE);
147
148
  goto err;
148
149
  }
@@ -150,6 +151,6 @@ static ASN1_OCTET_STRING *s2i_skey_id(X509V3_EXT_METHOD *method,
150
151
  return oct;
151
152
 
152
153
  err:
153
- M_ASN1_OCTET_STRING_free(oct);
154
+ ASN1_OCTET_STRING_free(oct);
154
155
  return NULL;
155
156
  }
@@ -147,7 +147,7 @@ int X509V3_add_value_bool(const char *name, int asn1_bool,
147
147
  return X509V3_add_value(name, "FALSE", extlist);
148
148
  }
149
149
 
150
- int X509V3_add_value_bool_nf(char *name, int asn1_bool,
150
+ int X509V3_add_value_bool_nf(const char *name, int asn1_bool,
151
151
  STACK_OF(CONF_VALUE) **extlist)
152
152
  {
153
153
  if (asn1_bool)
@@ -194,7 +194,7 @@ static char *bignum_to_string(const BIGNUM *bn)
194
194
  return ret;
195
195
  }
196
196
 
197
- char *i2s_ASN1_ENUMERATED(X509V3_EXT_METHOD *method, ASN1_ENUMERATED *a)
197
+ char *i2s_ASN1_ENUMERATED(X509V3_EXT_METHOD *method, const ASN1_ENUMERATED *a)
198
198
  {
199
199
  BIGNUM *bntmp = NULL;
200
200
  char *strtmp = NULL;
@@ -207,7 +207,7 @@ char *i2s_ASN1_ENUMERATED(X509V3_EXT_METHOD *method, ASN1_ENUMERATED *a)
207
207
  return strtmp;
208
208
  }
209
209
 
210
- char *i2s_ASN1_INTEGER(X509V3_EXT_METHOD *method, ASN1_INTEGER *a)
210
+ char *i2s_ASN1_INTEGER(X509V3_EXT_METHOD *method, const ASN1_INTEGER *a)
211
211
  {
212
212
  BIGNUM *bntmp = NULL;
213
213
  char *strtmp = NULL;
@@ -220,7 +220,7 @@ char *i2s_ASN1_INTEGER(X509V3_EXT_METHOD *method, ASN1_INTEGER *a)
220
220
  return strtmp;
221
221
  }
222
222
 
223
- ASN1_INTEGER *s2i_ASN1_INTEGER(X509V3_EXT_METHOD *method, char *value)
223
+ ASN1_INTEGER *s2i_ASN1_INTEGER(X509V3_EXT_METHOD *method, const char *value)
224
224
  {
225
225
  BIGNUM *bn = NULL;
226
226
  ASN1_INTEGER *aint;
@@ -282,7 +282,7 @@ int X509V3_add_value_int(const char *name, ASN1_INTEGER *aint,
282
282
  return ret;
283
283
  }
284
284
 
285
- int X509V3_get_value_bool(CONF_VALUE *value, int *asn1_bool)
285
+ int X509V3_get_value_bool(const CONF_VALUE *value, int *asn1_bool)
286
286
  {
287
287
  char *btmp;
288
288
  if (!(btmp = value->value))
@@ -304,7 +304,7 @@ int X509V3_get_value_bool(CONF_VALUE *value, int *asn1_bool)
304
304
  return 0;
305
305
  }
306
306
 
307
- int X509V3_get_value_int(CONF_VALUE *value, ASN1_INTEGER **aint)
307
+ int X509V3_get_value_int(const CONF_VALUE *value, ASN1_INTEGER **aint)
308
308
  {
309
309
  ASN1_INTEGER *itmp;
310
310
  if (!(itmp = s2i_ASN1_INTEGER(NULL, value->value))) {
@@ -397,12 +397,9 @@ OPENSSL_EXPORT const EVP_AEAD *EVP_AEAD_CTX_aead(const EVP_AEAD_CTX *ctx);
397
397
 
398
398
  OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_128_cbc_sha1_tls(void);
399
399
  OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_128_cbc_sha1_tls_implicit_iv(void);
400
- OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_128_cbc_sha256_tls(void);
401
400
 
402
401
  OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_256_cbc_sha1_tls(void);
403
402
  OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_256_cbc_sha1_tls_implicit_iv(void);
404
- OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_256_cbc_sha256_tls(void);
405
- OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_256_cbc_sha384_tls(void);
406
403
 
407
404
  OPENSSL_EXPORT const EVP_AEAD *EVP_aead_des_ede3_cbc_sha1_tls(void);
408
405
  OPENSSL_EXPORT const EVP_AEAD *EVP_aead_des_ede3_cbc_sha1_tls_implicit_iv(void);
@@ -157,7 +157,7 @@
157
157
  #endif
158
158
 
159
159
  #if GNU_PROPERTY_AARCH64_POINTER_AUTH != 0 || GNU_PROPERTY_AARCH64_BTI != 0
160
- .pushsection note.gnu.property, "a";
160
+ .pushsection .note.gnu.property, "a";
161
161
  .balign 8;
162
162
  .long 4;
163
163
  .long 0x10;
@@ -166,8 +166,8 @@
166
166
  .long 0xc0000000; /* GNU_PROPERTY_AARCH64_FEATURE_1_AND */
167
167
  .long 4;
168
168
  .long (GNU_PROPERTY_AARCH64_POINTER_AUTH | GNU_PROPERTY_AARCH64_BTI);
169
- .long 0
170
- .popsection
169
+ .long 0;
170
+ .popsection;
171
171
  #endif
172
172
 
173
173
  #endif /* defined __ASSEMBLER__ */
@@ -4,21 +4,21 @@
4
4
  * This package is an SSL implementation written
5
5
  * by Eric Young (eay@cryptsoft.com).
6
6
  * The implementation was written so as to conform with Netscapes SSL.
7
- *
7
+ *
8
8
  * This library is free for commercial and non-commercial use as long as
9
9
  * the following conditions are aheared to. The following conditions
10
10
  * apply to all code found in this distribution, be it the RC4, RSA,
11
11
  * lhash, DES, etc., code; not just the SSL code. The SSL documentation
12
12
  * included with this distribution is covered by the same copyright terms
13
13
  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
14
- *
14
+ *
15
15
  * Copyright remains Eric Young's, and as such any Copyright notices in
16
16
  * the code are not to be removed.
17
17
  * If this package is used in a product, Eric Young should be given attribution
18
18
  * as the author of the parts of the library used.
19
19
  * This can be in the form of a textual message at program startup or
20
20
  * in documentation (online or textual) provided with the package.
21
- *
21
+ *
22
22
  * Redistribution and use in source and binary forms, with or without
23
23
  * modification, are permitted provided that the following conditions
24
24
  * are met:
@@ -33,10 +33,10 @@
33
33
  * Eric Young (eay@cryptsoft.com)"
34
34
  * The word 'cryptographic' can be left out if the rouines from the library
35
35
  * being used are not cryptographic related :-).
36
- * 4. If you include any Windows specific code (or a derivative thereof) from
36
+ * 4. If you include any Windows specific code (or a derivative thereof) from
37
37
  * the apps directory (application code) you must include an acknowledgement:
38
38
  * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
39
- *
39
+ *
40
40
  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
41
41
  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42
42
  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
@@ -48,7 +48,7 @@
48
48
  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
49
49
  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50
50
  * SUCH DAMAGE.
51
- *
51
+ *
52
52
  * The licence and distribution terms for any publically available version or
53
53
  * derivative of this code cannot be changed. i.e. this code cannot simply be
54
54
  * copied and put under another distribution licence
@@ -67,401 +67,632 @@
67
67
 
68
68
  #include <openssl/bn.h>
69
69
 
70
- #ifdef __cplusplus
70
+ #ifdef __cplusplus
71
71
  extern "C" {
72
72
  #endif
73
73
 
74
74
 
75
- /* Legacy ASN.1 library.
76
- *
77
- * This header is part of OpenSSL's ASN.1 implementation. It is retained for
78
- * compatibility but otherwise underdocumented and not actively maintained. Use
79
- * the new |CBS| and |CBB| library in <openssl/bytestring.h> instead. */
80
-
81
-
82
- #define V_ASN1_UNIVERSAL 0x00
83
- #define V_ASN1_APPLICATION 0x40
84
- #define V_ASN1_CONTEXT_SPECIFIC 0x80
85
- #define V_ASN1_PRIVATE 0xc0
86
-
87
- #define V_ASN1_CONSTRUCTED 0x20
88
- #define V_ASN1_PRIMITIVE_TAG 0x1f
89
-
90
- #define V_ASN1_APP_CHOOSE -2 /* let the recipient choose */
91
- #define V_ASN1_OTHER -3 /* used in ASN1_TYPE */
92
- #define V_ASN1_ANY -4 /* used in ASN1 template code */
93
-
94
- #define V_ASN1_NEG 0x100 /* negative flag */
95
- /* No supported universal tags may exceed this value, to avoid ambiguity with
96
- * V_ASN1_NEG. */
97
- #define V_ASN1_MAX_UNIVERSAL 0xff
98
-
99
- #define V_ASN1_UNDEF -1
100
- #define V_ASN1_EOC 0
101
- #define V_ASN1_BOOLEAN 1 /**/
102
- #define V_ASN1_INTEGER 2
103
- #define V_ASN1_NEG_INTEGER (2 | V_ASN1_NEG)
104
- #define V_ASN1_BIT_STRING 3
105
- #define V_ASN1_OCTET_STRING 4
106
- #define V_ASN1_NULL 5
107
- #define V_ASN1_OBJECT 6
108
- #define V_ASN1_OBJECT_DESCRIPTOR 7
109
- #define V_ASN1_EXTERNAL 8
110
- #define V_ASN1_REAL 9
111
- #define V_ASN1_ENUMERATED 10
112
- #define V_ASN1_NEG_ENUMERATED (10 | V_ASN1_NEG)
113
- #define V_ASN1_UTF8STRING 12
114
- #define V_ASN1_SEQUENCE 16
115
- #define V_ASN1_SET 17
116
- #define V_ASN1_NUMERICSTRING 18 /**/
117
- #define V_ASN1_PRINTABLESTRING 19
118
- #define V_ASN1_T61STRING 20
119
- #define V_ASN1_TELETEXSTRING 20 /* alias */
120
- #define V_ASN1_VIDEOTEXSTRING 21 /**/
121
- #define V_ASN1_IA5STRING 22
122
- #define V_ASN1_UTCTIME 23
123
- #define V_ASN1_GENERALIZEDTIME 24 /**/
124
- #define V_ASN1_GRAPHICSTRING 25 /**/
125
- #define V_ASN1_ISO64STRING 26 /**/
126
- #define V_ASN1_VISIBLESTRING 26 /* alias */
127
- #define V_ASN1_GENERALSTRING 27 /**/
128
- #define V_ASN1_UNIVERSALSTRING 28 /**/
129
- #define V_ASN1_BMPSTRING 30
130
-
131
- /* For use with d2i_ASN1_type_bytes() */
132
- #define B_ASN1_NUMERICSTRING 0x0001
133
- #define B_ASN1_PRINTABLESTRING 0x0002
134
- #define B_ASN1_T61STRING 0x0004
135
- #define B_ASN1_TELETEXSTRING 0x0004
136
- #define B_ASN1_VIDEOTEXSTRING 0x0008
137
- #define B_ASN1_IA5STRING 0x0010
138
- #define B_ASN1_GRAPHICSTRING 0x0020
139
- #define B_ASN1_ISO64STRING 0x0040
140
- #define B_ASN1_VISIBLESTRING 0x0040
141
- #define B_ASN1_GENERALSTRING 0x0080
142
- #define B_ASN1_UNIVERSALSTRING 0x0100
143
- #define B_ASN1_OCTET_STRING 0x0200
144
- #define B_ASN1_BIT_STRING 0x0400
145
- #define B_ASN1_BMPSTRING 0x0800
146
- #define B_ASN1_UNKNOWN 0x1000
147
- #define B_ASN1_UTF8STRING 0x2000
148
- #define B_ASN1_UTCTIME 0x4000
149
- #define B_ASN1_GENERALIZEDTIME 0x8000
150
- #define B_ASN1_SEQUENCE 0x10000
151
-
152
- /* For use with ASN1_mbstring_copy() */
153
- #define MBSTRING_FLAG 0x1000
154
- #define MBSTRING_UTF8 (MBSTRING_FLAG)
155
- /* |MBSTRING_ASC| refers to Latin-1, not ASCII. It is used with TeletexString
156
- * which, in turn, is treated as Latin-1 rather than T.61 by OpenSSL and most
157
- * other software. */
158
- #define MBSTRING_ASC (MBSTRING_FLAG|1)
159
- #define MBSTRING_BMP (MBSTRING_FLAG|2)
160
- #define MBSTRING_UNIV (MBSTRING_FLAG|4)
161
-
162
- #define DECLARE_ASN1_SET_OF(type) /* filled in by mkstack.pl */
163
- #define IMPLEMENT_ASN1_SET_OF(type) /* nothing, no longer needed */
164
-
165
- /* These are used internally in the ASN1_OBJECT to keep track of
166
- * whether the names and data need to be free()ed */
167
- #define ASN1_OBJECT_FLAG_DYNAMIC 0x01 /* internal use */
168
- #define ASN1_OBJECT_FLAG_DYNAMIC_STRINGS 0x04 /* internal use */
169
- #define ASN1_OBJECT_FLAG_DYNAMIC_DATA 0x08 /* internal use */
170
- struct asn1_object_st
171
- {
172
- const char *sn,*ln;
173
- int nid;
174
- int length;
175
- const unsigned char *data; /* data remains const after init */
176
- int flags; /* Should we free this one */
177
- };
75
+ // Legacy ASN.1 library.
76
+ //
77
+ // This header is part of OpenSSL's ASN.1 implementation. It is retained for
78
+ // compatibility but otherwise underdocumented and not actively maintained. Use
79
+ // the new |CBS| and |CBB| library in <openssl/bytestring.h> instead.
80
+
81
+
82
+ // Tag constants.
83
+ //
84
+ // These constants are used in various APIs to specify ASN.1 types and tag
85
+ // components. See the specific API's documentation for details on which values
86
+ // are used and how.
87
+
88
+ // The following constants are tag classes.
89
+ #define V_ASN1_UNIVERSAL 0x00
90
+ #define V_ASN1_APPLICATION 0x40
91
+ #define V_ASN1_CONTEXT_SPECIFIC 0x80
92
+ #define V_ASN1_PRIVATE 0xc0
93
+
94
+ // V_ASN1_CONSTRUCTED indicates an element is constructed, rather than
95
+ // primitive.
96
+ #define V_ASN1_CONSTRUCTED 0x20
97
+
98
+ // V_ASN1_PRIMITIVE_TAG is the highest tag number which can be encoded in a
99
+ // single byte. Note this is unrelated to whether an element is constructed or
100
+ // primitive.
101
+ //
102
+ // TODO(davidben): Make this private.
103
+ #define V_ASN1_PRIMITIVE_TAG 0x1f
104
+
105
+ // V_ASN1_MAX_UNIVERSAL is the highest supported universal tag number. It is
106
+ // necessary to avoid ambiguity with |V_ASN1_NEG| and |MBSTRING_FLAG|.
107
+ //
108
+ // TODO(davidben): Make this private.
109
+ #define V_ASN1_MAX_UNIVERSAL 0xff
110
+
111
+ // V_ASN1_UNDEF is used in some APIs to indicate an ASN.1 element is omitted.
112
+ #define V_ASN1_UNDEF (-1)
113
+
114
+ // V_ASN1_APP_CHOOSE is used in some APIs to specify a default ASN.1 type based
115
+ // on the context.
116
+ #define V_ASN1_APP_CHOOSE (-2)
117
+
118
+ // V_ASN1_OTHER is used in |ASN1_TYPE| to indicate a non-universal ASN.1 type.
119
+ #define V_ASN1_OTHER (-3)
120
+
121
+ // V_ASN1_ANY is used by the ASN.1 templates to indicate an ANY type.
122
+ #define V_ASN1_ANY (-4)
123
+
124
+ // The following constants are tag numbers for universal types.
125
+ #define V_ASN1_EOC 0
126
+ #define V_ASN1_BOOLEAN 1
127
+ #define V_ASN1_INTEGER 2
128
+ #define V_ASN1_BIT_STRING 3
129
+ #define V_ASN1_OCTET_STRING 4
130
+ #define V_ASN1_NULL 5
131
+ #define V_ASN1_OBJECT 6
132
+ #define V_ASN1_OBJECT_DESCRIPTOR 7
133
+ #define V_ASN1_EXTERNAL 8
134
+ #define V_ASN1_REAL 9
135
+ #define V_ASN1_ENUMERATED 10
136
+ #define V_ASN1_UTF8STRING 12
137
+ #define V_ASN1_SEQUENCE 16
138
+ #define V_ASN1_SET 17
139
+ #define V_ASN1_NUMERICSTRING 18
140
+ #define V_ASN1_PRINTABLESTRING 19
141
+ #define V_ASN1_T61STRING 20
142
+ #define V_ASN1_TELETEXSTRING 20
143
+ #define V_ASN1_VIDEOTEXSTRING 21
144
+ #define V_ASN1_IA5STRING 22
145
+ #define V_ASN1_UTCTIME 23
146
+ #define V_ASN1_GENERALIZEDTIME 24
147
+ #define V_ASN1_GRAPHICSTRING 25
148
+ #define V_ASN1_ISO64STRING 26
149
+ #define V_ASN1_VISIBLESTRING 26
150
+ #define V_ASN1_GENERALSTRING 27
151
+ #define V_ASN1_UNIVERSALSTRING 28
152
+ #define V_ASN1_BMPSTRING 30
153
+
154
+ // The following constants are used for |ASN1_STRING| values that represent
155
+ // negative INTEGER and ENUMERATED values. See |ASN1_STRING| for more details.
156
+ #define V_ASN1_NEG 0x100
157
+ #define V_ASN1_NEG_INTEGER (V_ASN1_INTEGER | V_ASN1_NEG)
158
+ #define V_ASN1_NEG_ENUMERATED (V_ASN1_ENUMERATED | V_ASN1_NEG)
159
+
160
+
161
+ // Strings.
162
+ //
163
+ // ASN.1 contains a myriad of string types, as well as types that contain data
164
+ // that may be encoded into a string. This library uses a single type,
165
+ // |ASN1_STRING|, to represent most values.
166
+
167
+ // An asn1_string_st (aka |ASN1_STRING|) represents a value of a string-like
168
+ // ASN.1 type. It contains a type field, and a byte string data field with a
169
+ // type-specific representation.
170
+ //
171
+ // When representing a string value, the type field is one of
172
+ // |V_ASN1_OCTET_STRING|, |V_ASN1_UTF8STRING|, |V_ASN1_NUMERICSTRING|,
173
+ // |V_ASN1_PRINTABLESTRING|, |V_ASN1_T61STRING|, |V_ASN1_VIDEOTEXSTRING|,
174
+ // |V_ASN1_IA5STRING|, |V_ASN1_GRAPHICSTRING|, |V_ASN1_ISO64STRING|,
175
+ // |V_ASN1_VISIBLESTRING|, |V_ASN1_GENERALSTRING|, |V_ASN1_UNIVERSALSTRING|, or
176
+ // |V_ASN1_BMPSTRING|. The data contains the byte representation of of the
177
+ // string.
178
+ //
179
+ // When representing a BIT STRING value, the type field is |V_ASN1_BIT_STRING|.
180
+ // The data contains the encoded form of the BIT STRING, including any padding
181
+ // bits added to round to a whole number of bytes, but excluding the leading
182
+ // byte containing the number of padding bits. The number of padding bits is
183
+ // encoded in the flags field. See |ASN1_STRING_FLAG_BITS_LEFT| for details. For
184
+ // example, DER encodes the BIT STRING {1, 0} as {0x06, 0x80 = 0b10_000000}. The
185
+ // |ASN1_STRING| representation has data of {0x80} and flags of
186
+ // ASN1_STRING_FLAG_BITS_LEFT | 6.
187
+ //
188
+ // When representing an INTEGER or ENUMERATED value, the data contains the
189
+ // big-endian encoding of the absolute value of the integer. The sign bit is
190
+ // encoded in the type: non-negative values have a type of |V_ASN1_INTEGER| or
191
+ // |V_ASN1_ENUMERATED|, while negative values have a type of
192
+ // |V_ASN1_NEG_INTEGER| or |V_ASN1_NEG_ENUMERATED|. Note this differs from DER's
193
+ // two's complement representation.
194
+ //
195
+ // When representing a GeneralizedTime or UTCTime value, the type field is
196
+ // |V_ASN1_GENERALIZEDTIME| or |V_ASN1_UTCTIME|, respectively. The data contains
197
+ // the DER encoding of the value. For example, the UNIX epoch would be
198
+ // "19700101000000Z" for a GeneralizedTime and "700101000000Z" for a UTCTime.
199
+ //
200
+ // |ASN1_STRING|, when stored in an |ASN1_TYPE|, may also represent an element
201
+ // with tag not directly supported by this library. See |ASN1_TYPE| for details.
202
+ //
203
+ // |ASN1_STRING| additionally has the following typedefs: |ASN1_BIT_STRING|,
204
+ // |ASN1_BMPSTRING|, |ASN1_ENUMERATED|, |ASN1_GENERALIZEDTIME|,
205
+ // |ASN1_GENERALSTRING|, |ASN1_IA5STRING|, |ASN1_INTEGER|, |ASN1_OCTET_STRING|,
206
+ // |ASN1_PRINTABLESTRING|, |ASN1_T61STRING|, |ASN1_TIME|,
207
+ // |ASN1_UNIVERSALSTRING|, |ASN1_UTCTIME|, |ASN1_UTF8STRING|, and
208
+ // |ASN1_VISIBLESTRING|. Other than |ASN1_TIME|, these correspond to universal
209
+ // ASN.1 types. |ASN1_TIME| represents a CHOICE of UTCTime and GeneralizedTime,
210
+ // with a cutoff of 2049, as used in Section 4.1.2.5 of RFC 5280.
211
+ //
212
+ // For clarity, callers are encouraged to use the appropriate typedef when
213
+ // available. They are the same type as |ASN1_STRING|, so a caller may freely
214
+ // pass them into functions expecting |ASN1_STRING|, such as
215
+ // |ASN1_STRING_length|.
216
+ //
217
+ // If a function returns an |ASN1_STRING| where the typedef or ASN.1 structure
218
+ // implies constraints on the type field, callers may assume that the type field
219
+ // is correct. However, if a function takes an |ASN1_STRING| as input, callers
220
+ // must ensure the type field matches. These invariants are not captured by the
221
+ // C type system and may not be checked at runtime. For example, callers may
222
+ // assume the output of |X509_get0_serialNumber| has type |V_ASN1_INTEGER| or
223
+ // |V_ASN1_NEG_INTEGER|. Callers must not pass a string of type
224
+ // |V_ASN1_OCTET_STRING| to |X509_set_serialNumber|. Doing so may break
225
+ // invariants on the |X509| object and break the |X509_get0_serialNumber|
226
+ // invariant.
227
+ //
228
+ // TODO(davidben): This is very unfriendly. Getting the type field wrong should
229
+ // not cause memory errors, but it may do strange things. We should add runtime
230
+ // checks to anything that consumes |ASN1_STRING|s from the caller.
231
+ struct asn1_string_st {
232
+ int length;
233
+ int type;
234
+ unsigned char *data;
235
+ long flags;
236
+ };
237
+
238
+ // ASN1_STRING_FLAG_BITS_LEFT indicates, in a BIT STRING |ASN1_STRING|, that
239
+ // flags & 0x7 contains the number of padding bits added to the BIT STRING
240
+ // value. When not set, all trailing zero bits in the last byte are implicitly
241
+ // treated as padding. This behavior is deprecated and should not be used.
242
+ #define ASN1_STRING_FLAG_BITS_LEFT 0x08
243
+
244
+ // ASN1_STRING_FLAG_MSTRING indicates that the |ASN1_STRING| is an MSTRING type,
245
+ // which is how this library refers to a CHOICE type of several string types.
246
+ // For example, DirectoryString as defined in RFC5280.
247
+ //
248
+ // TODO(davidben): This is only used in one place within the library and is easy
249
+ // to accidentally drop. Can it be removed?
250
+ #define ASN1_STRING_FLAG_MSTRING 0x040
251
+
252
+ // ASN1_STRING_type_new returns a newly-allocated empty |ASN1_STRING| object of
253
+ // type |type|, or NULL on error.
254
+ OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_type_new(int type);
255
+
256
+ // ASN1_STRING_new returns a newly-allocated empty |ASN1_STRING| object with an
257
+ // arbitrary type. Prefer one of the type-specific constructors, such as
258
+ // |ASN1_OCTET_STRING_new|, or |ASN1_STRING_type_new|.
259
+ OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_new(void);
260
+
261
+ // ASN1_STRING_free releases memory associated with |str|.
262
+ OPENSSL_EXPORT void ASN1_STRING_free(ASN1_STRING *str);
263
+
264
+ // ASN1_STRING_copy sets |dst| to a copy of |str|. It returns one on success and
265
+ // zero on error.
266
+ OPENSSL_EXPORT int ASN1_STRING_copy(ASN1_STRING *dst, const ASN1_STRING *str);
267
+
268
+ // ASN1_STRING_dup returns a newly-allocated copy of |str|, or NULL on error.
269
+ OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_dup(const ASN1_STRING *str);
270
+
271
+ // ASN1_STRING_type returns the type of |str|. This value will be one of the
272
+ // |V_ASN1_*| constants.
273
+ OPENSSL_EXPORT int ASN1_STRING_type(const ASN1_STRING *str);
274
+
275
+ // ASN1_STRING_get0_data returns a pointer to |str|'s contents. Callers should
276
+ // use |ASN1_STRING_length| to determine the length of the string. The string
277
+ // may have embedded NUL bytes and may not be NUL-terminated.
278
+ OPENSSL_EXPORT const unsigned char *ASN1_STRING_get0_data(
279
+ const ASN1_STRING *str);
280
+
281
+ // ASN1_STRING_data returns a mutable pointer to |str|'s contents. Callers
282
+ // should use |ASN1_STRING_length| to determine the length of the string. The
283
+ // string may have embedded NUL bytes and may not be NUL-terminated.
284
+ //
285
+ // Prefer |ASN1_STRING_get0_data|.
286
+ OPENSSL_EXPORT unsigned char *ASN1_STRING_data(ASN1_STRING *str);
287
+
288
+ // ASN1_STRING_length returns the length of |str|, in bytes.
289
+ OPENSSL_EXPORT int ASN1_STRING_length(const ASN1_STRING *str);
290
+
291
+ // ASN1_STRING_cmp compares |a| and |b|'s type and contents. It returns an
292
+ // integer equal to, less than, or greater than zero if |a| is equal to, less
293
+ // than, or greater than |b|, respectively. The comparison is suitable for
294
+ // sorting, but callers should not rely on the particular comparison.
295
+ //
296
+ // Note if |a| or |b| are BIT STRINGs, this function does not compare the
297
+ // |ASN1_STRING_FLAG_BITS_LEFT| flags.
298
+ //
299
+ // TODO(davidben): The BIT STRING comparison seems like a bug. Fix it?
300
+ OPENSSL_EXPORT int ASN1_STRING_cmp(const ASN1_STRING *a, const ASN1_STRING *b);
301
+
302
+ // ASN1_STRING_set sets the contents of |str| to a copy of |len| bytes from
303
+ // |data|. It returns one on success and zero on error.
304
+ OPENSSL_EXPORT int ASN1_STRING_set(ASN1_STRING *str, const void *data, int len);
305
+
306
+ // ASN1_STRING_set0 sets the contents of |str| to |len| bytes from |data|. It
307
+ // takes ownership of |data|, which must have been allocated with
308
+ // |OPENSSL_malloc|.
309
+ OPENSSL_EXPORT void ASN1_STRING_set0(ASN1_STRING *str, void *data, int len);
310
+
311
+ // TODO(davidben): Pull up and document functions specific to individual string
312
+ // types.
313
+
314
+
315
+ // Arbitrary elements.
316
+
317
+ // ASN1_VALUE_st (aka |ASN1_VALUE|) is an opaque type used internally in the
318
+ // library.
319
+ typedef struct ASN1_VALUE_st ASN1_VALUE;
178
320
 
179
- DEFINE_STACK_OF(ASN1_OBJECT)
321
+ // An asn1_type_st (aka |ASN1_TYPE|) represents an arbitrary ASN.1 element,
322
+ // typically used used for ANY types. It contains a |type| field and a |value|
323
+ // union dependent on |type|.
324
+ //
325
+ // WARNING: This struct has a complex representation. Callers must not construct
326
+ // |ASN1_TYPE| values manually. Use |ASN1_TYPE_set| and |ASN1_TYPE_set1|
327
+ // instead. Additionally, callers performing non-trivial operations on this type
328
+ // are encouraged to use |CBS| and |CBB| from <openssl/bytestring.h>, and
329
+ // convert to or from |ASN1_TYPE| with |d2i_ASN1_TYPE| or |i2d_ASN1_TYPE|.
330
+ //
331
+ // The |type| field corresponds to the tag of the ASN.1 element being
332
+ // represented:
333
+ //
334
+ // If |type| is a |V_ASN1_*| constant for an ASN.1 string-like type, as defined
335
+ // by |ASN1_STRING|, the tag matches the constant. |value| contains an
336
+ // |ASN1_STRING| pointer (equivalently, one of the more specific typedefs). See
337
+ // |ASN1_STRING| for details on the representation. Unlike |ASN1_STRING|,
338
+ // |ASN1_TYPE| does not use the |V_ASN1_NEG| flag for negative INTEGER and
339
+ // ENUMERATE values. For a negative value, the |ASN1_TYPE|'s |type| will be
340
+ // |V_ASN1_INTEGER| or |V_ASN1_ENUMERATED|, but |value| will an |ASN1_STRING|
341
+ // whose |type| is |V_ASN1_NEG_INTEGER| or |V_ASN1_NEG_ENUMERATED|.
342
+ //
343
+ // If |type| is |V_ASN1_OBJECT|, the tag is OBJECT IDENTIFIER and |value|
344
+ // contains an |ASN1_OBJECT| pointer.
345
+ //
346
+ // If |type| is |V_ASN1_NULL|, the tag is NULL. |value| contains a NULL pointer.
347
+ //
348
+ // If |type| is |V_ASN1_BOOLEAN|, the tag is BOOLEAN. |value| contains an
349
+ // |ASN1_BOOLEAN|.
350
+ //
351
+ // If |type| is |V_ASN1_SEQUENCE|, |V_ASN1_SET|, or |V_ASN1_OTHER|, the tag is
352
+ // SEQUENCE, SET, or some non-universal tag, respectively. |value| is an
353
+ // |ASN1_STRING| containing the entire element, including the tag and length.
354
+ // The |ASN1_STRING|'s |type| field matches the containing |ASN1_TYPE|'s |type|.
355
+ //
356
+ // Other positive values of |type|, up to |V_ASN1_MAX_UNIVERSAL|, correspond to
357
+ // universal primitive tags not directly supported by this library. |value| is
358
+ // an |ASN1_STRING| containing the body of the element, excluding the tag
359
+ // and length. The |ASN1_STRING|'s |type| field matches the containing
360
+ // |ASN1_TYPE|'s |type|.
361
+ struct asn1_type_st {
362
+ int type;
363
+ union {
364
+ char *ptr;
365
+ ASN1_BOOLEAN boolean;
366
+ ASN1_STRING *asn1_string;
367
+ ASN1_OBJECT *object;
368
+ ASN1_INTEGER *integer;
369
+ ASN1_ENUMERATED *enumerated;
370
+ ASN1_BIT_STRING *bit_string;
371
+ ASN1_OCTET_STRING *octet_string;
372
+ ASN1_PRINTABLESTRING *printablestring;
373
+ ASN1_T61STRING *t61string;
374
+ ASN1_IA5STRING *ia5string;
375
+ ASN1_GENERALSTRING *generalstring;
376
+ ASN1_BMPSTRING *bmpstring;
377
+ ASN1_UNIVERSALSTRING *universalstring;
378
+ ASN1_UTCTIME *utctime;
379
+ ASN1_GENERALIZEDTIME *generalizedtime;
380
+ ASN1_VISIBLESTRING *visiblestring;
381
+ ASN1_UTF8STRING *utf8string;
382
+ // set and sequence are left complete and still contain the entire element.
383
+ ASN1_STRING *set;
384
+ ASN1_STRING *sequence;
385
+ ASN1_VALUE *asn1_value;
386
+ } value;
387
+ };
388
+
389
+ // ASN1_TYPE_get returns the type of |a|, which will be one of the |V_ASN1_*|
390
+ // constants, or zero if |a| is not fully initialized.
391
+ OPENSSL_EXPORT int ASN1_TYPE_get(const ASN1_TYPE *a);
180
392
 
181
- #define ASN1_STRING_FLAG_BITS_LEFT 0x08 /* Set if 0x07 has bits left value */
182
- /* This indicates that the ASN1_STRING is not a real value but just a place
183
- * holder for the location where indefinite length constructed data should
184
- * be inserted in the memory buffer
185
- */
186
- #define ASN1_STRING_FLAG_NDEF 0x010
393
+ // ASN1_TYPE_set sets |a| to an |ASN1_TYPE| of type |type| and value |value|,
394
+ // releasing the previous contents of |a|.
395
+ //
396
+ // If |type| is |V_ASN1_BOOLEAN|, |a| is set to FALSE if |value| is NULL and
397
+ // TRUE otherwise. If setting |a| to TRUE, |value| may be an invalid pointer,
398
+ // such as (void*)1.
399
+ //
400
+ // If |type| is |V_ASN1_NULL|, |value| must be NULL.
401
+ //
402
+ // For other values of |type|, this function takes ownership of |value|, which
403
+ // must point to an object of the corresponding type. See |ASN1_TYPE| for
404
+ // details.
405
+ OPENSSL_EXPORT void ASN1_TYPE_set(ASN1_TYPE *a, int type, void *value);
187
406
 
188
- /* This flag is used by ASN1 code to indicate an ASN1_STRING is an MSTRING
189
- * type.
190
- */
191
- #define ASN1_STRING_FLAG_MSTRING 0x040
192
- /* This is the base type that holds just about everything :-) */
193
- struct asn1_string_st
194
- {
195
- int length;
196
- int type;
197
- unsigned char *data;
198
- /* The value of the following field depends on the type being
199
- * held. It is mostly being used for BIT_STRING so if the
200
- * input data has a non-zero 'unused bits' value, it will be
201
- * handled correctly */
202
- long flags;
203
- };
204
-
205
- /* ASN1_ENCODING structure: this is used to save the received
206
- * encoding of an ASN1 type. This is useful to get round
207
- * problems with invalid encodings which can break signatures.
208
- */
407
+ // ASN1_TYPE_set1 behaves like |ASN1_TYPE_set| except it does not take ownership
408
+ // of |value|. It returns one on success and zero on error.
409
+ OPENSSL_EXPORT int ASN1_TYPE_set1(ASN1_TYPE *a, int type, const void *value);
410
+
411
+ // ASN1_TYPE_cmp returns zero if |a| and |b| are equal and some non-zero value
412
+ // otherwise. Note this function can only be used for equality checks, not an
413
+ // ordering.
414
+ OPENSSL_EXPORT int ASN1_TYPE_cmp(const ASN1_TYPE *a, const ASN1_TYPE *b);
209
415
 
210
- typedef struct ASN1_ENCODING_st
211
- {
212
- unsigned char *enc; /* DER encoding */
213
- long len; /* Length of encoding */
214
- int modified; /* set to 1 if 'enc' is invalid */
215
- /* alias_only is zero if |enc| owns the buffer that it points to
216
- * (although |enc| may still be NULL). If one, |enc| points into a
217
- * buffer that is owned elsewhere. */
218
- unsigned alias_only:1;
219
- /* alias_only_on_next_parse is one iff the next parsing operation
220
- * should avoid taking a copy of the input and rather set
221
- * |alias_only|. */
222
- unsigned alias_only_on_next_parse:1;
223
- } ASN1_ENCODING;
224
-
225
- #define STABLE_FLAGS_MALLOC 0x01
226
- #define STABLE_NO_MASK 0x02
227
- #define DIRSTRING_TYPE \
228
- (B_ASN1_PRINTABLESTRING|B_ASN1_T61STRING|B_ASN1_BMPSTRING|B_ASN1_UTF8STRING)
229
- #define PKCS9STRING_TYPE (DIRSTRING_TYPE|B_ASN1_IA5STRING)
416
+ // TODO(davidben): Most of |ASN1_TYPE|'s APIs are hidden behind macros. Expand
417
+ // the macros, document them, and move them to this section.
418
+
419
+
420
+ // Underdocumented functions.
421
+ //
422
+ // The following functions are not yet documented and organized.
423
+
424
+ // For use with d2i_ASN1_type_bytes()
425
+ #define B_ASN1_NUMERICSTRING 0x0001
426
+ #define B_ASN1_PRINTABLESTRING 0x0002
427
+ #define B_ASN1_T61STRING 0x0004
428
+ #define B_ASN1_TELETEXSTRING 0x0004
429
+ #define B_ASN1_VIDEOTEXSTRING 0x0008
430
+ #define B_ASN1_IA5STRING 0x0010
431
+ #define B_ASN1_GRAPHICSTRING 0x0020
432
+ #define B_ASN1_ISO64STRING 0x0040
433
+ #define B_ASN1_VISIBLESTRING 0x0040
434
+ #define B_ASN1_GENERALSTRING 0x0080
435
+ #define B_ASN1_UNIVERSALSTRING 0x0100
436
+ #define B_ASN1_OCTET_STRING 0x0200
437
+ #define B_ASN1_BIT_STRING 0x0400
438
+ #define B_ASN1_BMPSTRING 0x0800
439
+ #define B_ASN1_UNKNOWN 0x1000
440
+ #define B_ASN1_UTF8STRING 0x2000
441
+ #define B_ASN1_UTCTIME 0x4000
442
+ #define B_ASN1_GENERALIZEDTIME 0x8000
443
+ #define B_ASN1_SEQUENCE 0x10000
444
+
445
+ // For use with ASN1_mbstring_copy()
446
+ #define MBSTRING_FLAG 0x1000
447
+ #define MBSTRING_UTF8 (MBSTRING_FLAG)
448
+ // |MBSTRING_ASC| refers to Latin-1, not ASCII. It is used with TeletexString
449
+ // which, in turn, is treated as Latin-1 rather than T.61 by OpenSSL and most
450
+ // other software.
451
+ #define MBSTRING_ASC (MBSTRING_FLAG | 1)
452
+ #define MBSTRING_BMP (MBSTRING_FLAG | 2)
453
+ #define MBSTRING_UNIV (MBSTRING_FLAG | 4)
454
+
455
+ #define DECLARE_ASN1_SET_OF(type) // filled in by mkstack.pl
456
+ #define IMPLEMENT_ASN1_SET_OF(type) // nothing, no longer needed
457
+
458
+ // These are used internally in the ASN1_OBJECT to keep track of
459
+ // whether the names and data need to be free()ed
460
+ #define ASN1_OBJECT_FLAG_DYNAMIC 0x01 // internal use
461
+ #define ASN1_OBJECT_FLAG_DYNAMIC_STRINGS 0x04 // internal use
462
+ #define ASN1_OBJECT_FLAG_DYNAMIC_DATA 0x08 // internal use
463
+
464
+ // An asn1_object_st (aka |ASN1_OBJECT|) represents an ASN.1 OBJECT IDENTIFIER.
465
+ //
466
+ // Note: Although the struct is exposed, mutating an |ASN1_OBJECT| is only
467
+ // permitted when initializing it. The library maintains a table of static
468
+ // |ASN1_OBJECT|s, which may be referenced by non-const |ASN1_OBJECT| pointers.
469
+ // Code which receives an |ASN1_OBJECT| pointer externally must assume it is
470
+ // immutable, even if the pointer is not const.
471
+ //
472
+ // TODO(davidben): Document this more completely in its own section.
473
+ struct asn1_object_st {
474
+ const char *sn, *ln;
475
+ int nid;
476
+ int length;
477
+ const unsigned char *data; // data remains const after init
478
+ int flags; // Should we free this one
479
+ };
480
+
481
+ DEFINE_STACK_OF(ASN1_OBJECT)
482
+
483
+ // ASN1_ENCODING structure: this is used to save the received
484
+ // encoding of an ASN1 type. This is useful to get round
485
+ // problems with invalid encodings which can break signatures.
486
+
487
+ typedef struct ASN1_ENCODING_st {
488
+ unsigned char *enc; // DER encoding
489
+ long len; // Length of encoding
490
+ int modified; // set to 1 if 'enc' is invalid
491
+ // alias_only is zero if |enc| owns the buffer that it points to
492
+ // (although |enc| may still be NULL). If one, |enc| points into a
493
+ // buffer that is owned elsewhere.
494
+ unsigned alias_only : 1;
495
+ // alias_only_on_next_parse is one iff the next parsing operation
496
+ // should avoid taking a copy of the input and rather set
497
+ // |alias_only|.
498
+ unsigned alias_only_on_next_parse : 1;
499
+ } ASN1_ENCODING;
500
+
501
+ #define STABLE_FLAGS_MALLOC 0x01
502
+ #define STABLE_NO_MASK 0x02
503
+ #define DIRSTRING_TYPE \
504
+ (B_ASN1_PRINTABLESTRING | B_ASN1_T61STRING | B_ASN1_BMPSTRING | \
505
+ B_ASN1_UTF8STRING)
506
+ #define PKCS9STRING_TYPE (DIRSTRING_TYPE | B_ASN1_IA5STRING)
230
507
 
231
508
  typedef struct asn1_string_table_st {
232
- int nid;
233
- long minsize;
234
- long maxsize;
235
- unsigned long mask;
236
- unsigned long flags;
509
+ int nid;
510
+ long minsize;
511
+ long maxsize;
512
+ unsigned long mask;
513
+ unsigned long flags;
237
514
  } ASN1_STRING_TABLE;
238
515
 
239
- /* size limits: this stuff is taken straight from RFC2459 */
516
+ // size limits: this stuff is taken straight from RFC2459
240
517
 
241
- #define ub_name 32768
242
- #define ub_common_name 64
243
- #define ub_locality_name 128
244
- #define ub_state_name 128
245
- #define ub_organization_name 64
246
- #define ub_organization_unit_name 64
247
- #define ub_title 64
248
- #define ub_email_address 128
518
+ #define ub_name 32768
519
+ #define ub_common_name 64
520
+ #define ub_locality_name 128
521
+ #define ub_state_name 128
522
+ #define ub_organization_name 64
523
+ #define ub_organization_unit_name 64
524
+ #define ub_title 64
525
+ #define ub_email_address 128
249
526
 
250
- /* Declarations for template structures: for full definitions
251
- * see asn1t.h
252
- */
527
+ // Declarations for template structures: for full definitions
528
+ // see asn1t.h
253
529
  typedef struct ASN1_TEMPLATE_st ASN1_TEMPLATE;
254
530
  typedef struct ASN1_TLC_st ASN1_TLC;
255
- /* This is just an opaque pointer */
256
- typedef struct ASN1_VALUE_st ASN1_VALUE;
257
531
 
258
- /* Declare ASN1 functions: the implement macro in in asn1t.h */
532
+ // Declare ASN1 functions: the implement macro in in asn1t.h
259
533
 
260
534
  #define DECLARE_ASN1_FUNCTIONS(type) DECLARE_ASN1_FUNCTIONS_name(type, type)
261
535
 
262
536
  #define DECLARE_ASN1_ALLOC_FUNCTIONS(type) \
263
- DECLARE_ASN1_ALLOC_FUNCTIONS_name(type, type)
537
+ DECLARE_ASN1_ALLOC_FUNCTIONS_name(type, type)
264
538
 
265
539
  #define DECLARE_ASN1_FUNCTIONS_name(type, name) \
266
- DECLARE_ASN1_ALLOC_FUNCTIONS_name(type, name) \
267
- DECLARE_ASN1_ENCODE_FUNCTIONS(type, name, name)
540
+ DECLARE_ASN1_ALLOC_FUNCTIONS_name(type, name) \
541
+ DECLARE_ASN1_ENCODE_FUNCTIONS(type, name, name)
268
542
 
269
543
  #define DECLARE_ASN1_FUNCTIONS_fname(type, itname, name) \
270
- DECLARE_ASN1_ALLOC_FUNCTIONS_name(type, name) \
271
- DECLARE_ASN1_ENCODE_FUNCTIONS(type, itname, name)
272
-
273
- #define DECLARE_ASN1_ENCODE_FUNCTIONS(type, itname, name) \
274
- OPENSSL_EXPORT type *d2i_##name(type **a, const unsigned char **in, long len); \
275
- OPENSSL_EXPORT int i2d_##name(type *a, unsigned char **out); \
276
- DECLARE_ASN1_ITEM(itname)
544
+ DECLARE_ASN1_ALLOC_FUNCTIONS_name(type, name) \
545
+ DECLARE_ASN1_ENCODE_FUNCTIONS(type, itname, name)
277
546
 
278
- #define DECLARE_ASN1_ENCODE_FUNCTIONS_const(type, name) \
279
- OPENSSL_EXPORT type *d2i_##name(type **a, const unsigned char **in, long len); \
280
- OPENSSL_EXPORT int i2d_##name(const type *a, unsigned char **out); \
281
- DECLARE_ASN1_ITEM(name)
547
+ #define DECLARE_ASN1_ENCODE_FUNCTIONS(type, itname, name) \
548
+ OPENSSL_EXPORT type *d2i_##name(type **a, const unsigned char **in, \
549
+ long len); \
550
+ OPENSSL_EXPORT int i2d_##name(type *a, unsigned char **out); \
551
+ DECLARE_ASN1_ITEM(itname)
282
552
 
283
- #define DECLARE_ASN1_NDEF_FUNCTION(name) \
284
- OPENSSL_EXPORT int i2d_##name##_NDEF(name *a, unsigned char **out);
553
+ #define DECLARE_ASN1_ENCODE_FUNCTIONS_const(type, name) \
554
+ OPENSSL_EXPORT type *d2i_##name(type **a, const unsigned char **in, \
555
+ long len); \
556
+ OPENSSL_EXPORT int i2d_##name(const type *a, unsigned char **out); \
557
+ DECLARE_ASN1_ITEM(name)
285
558
 
286
559
  #define DECLARE_ASN1_FUNCTIONS_const(name) \
287
- DECLARE_ASN1_ALLOC_FUNCTIONS(name) \
288
- DECLARE_ASN1_ENCODE_FUNCTIONS_const(name, name)
560
+ DECLARE_ASN1_ALLOC_FUNCTIONS(name) \
561
+ DECLARE_ASN1_ENCODE_FUNCTIONS_const(name, name)
289
562
 
290
563
  #define DECLARE_ASN1_ALLOC_FUNCTIONS_name(type, name) \
291
- OPENSSL_EXPORT type *name##_new(void); \
292
- OPENSSL_EXPORT void name##_free(type *a);
564
+ OPENSSL_EXPORT type *name##_new(void); \
565
+ OPENSSL_EXPORT void name##_free(type *a);
293
566
 
294
567
  #define DECLARE_ASN1_PRINT_FUNCTION(stname) \
295
- DECLARE_ASN1_PRINT_FUNCTION_fname(stname, stname)
568
+ DECLARE_ASN1_PRINT_FUNCTION_fname(stname, stname)
296
569
 
297
- #define DECLARE_ASN1_PRINT_FUNCTION_fname(stname, fname) \
298
- OPENSSL_EXPORT int fname##_print_ctx(BIO *out, stname *x, int indent, \
299
- const ASN1_PCTX *pctx);
570
+ #define DECLARE_ASN1_PRINT_FUNCTION_fname(stname, fname) \
571
+ OPENSSL_EXPORT int fname##_print_ctx(BIO *out, stname *x, int indent, \
572
+ const ASN1_PCTX *pctx);
300
573
 
301
574
  typedef void *d2i_of_void(void **, const unsigned char **, long);
302
575
  typedef int i2d_of_void(const void *, unsigned char **);
303
576
 
304
- /* The following macros and typedefs allow an ASN1_ITEM
305
- * to be embedded in a structure and referenced. Since
306
- * the ASN1_ITEM pointers need to be globally accessible
307
- * (possibly from shared libraries) they may exist in
308
- * different forms. On platforms that support it the
309
- * ASN1_ITEM structure itself will be globally exported.
310
- * Other platforms will export a function that returns
311
- * an ASN1_ITEM pointer.
312
- *
313
- * To handle both cases transparently the macros below
314
- * should be used instead of hard coding an ASN1_ITEM
315
- * pointer in a structure.
316
- *
317
- * The structure will look like this:
318
- *
319
- * typedef struct SOMETHING_st {
320
- * ...
321
- * ASN1_ITEM_EXP *iptr;
322
- * ...
323
- * } SOMETHING;
324
- *
325
- * It would be initialised as e.g.:
326
- *
327
- * SOMETHING somevar = {...,ASN1_ITEM_ref(X509),...};
328
- *
329
- * and the actual pointer extracted with:
330
- *
331
- * const ASN1_ITEM *it = ASN1_ITEM_ptr(somevar.iptr);
332
- *
333
- * Finally an ASN1_ITEM pointer can be extracted from an
334
- * appropriate reference with: ASN1_ITEM_rptr(X509). This
335
- * would be used when a function takes an ASN1_ITEM * argument.
336
- *
337
- */
338
-
339
- /* ASN1_ITEM pointer exported type */
577
+ // The following macros and typedefs allow an ASN1_ITEM
578
+ // to be embedded in a structure and referenced. Since
579
+ // the ASN1_ITEM pointers need to be globally accessible
580
+ // (possibly from shared libraries) they may exist in
581
+ // different forms. On platforms that support it the
582
+ // ASN1_ITEM structure itself will be globally exported.
583
+ // Other platforms will export a function that returns
584
+ // an ASN1_ITEM pointer.
585
+ //
586
+ // To handle both cases transparently the macros below
587
+ // should be used instead of hard coding an ASN1_ITEM
588
+ // pointer in a structure.
589
+ //
590
+ // The structure will look like this:
591
+ //
592
+ // typedef struct SOMETHING_st {
593
+ // ...
594
+ // ASN1_ITEM_EXP *iptr;
595
+ // ...
596
+ // } SOMETHING;
597
+ //
598
+ // It would be initialised as e.g.:
599
+ //
600
+ // SOMETHING somevar = {...,ASN1_ITEM_ref(X509),...};
601
+ //
602
+ // and the actual pointer extracted with:
603
+ //
604
+ // const ASN1_ITEM *it = ASN1_ITEM_ptr(somevar.iptr);
605
+ //
606
+ // Finally an ASN1_ITEM pointer can be extracted from an
607
+ // appropriate reference with: ASN1_ITEM_rptr(X509). This
608
+ // would be used when a function takes an ASN1_ITEM * argument.
609
+ //
610
+
611
+ // ASN1_ITEM pointer exported type
340
612
  typedef const ASN1_ITEM ASN1_ITEM_EXP;
341
613
 
342
- /* Macro to obtain ASN1_ITEM pointer from exported type */
614
+ // Macro to obtain ASN1_ITEM pointer from exported type
343
615
  #define ASN1_ITEM_ptr(iptr) (iptr)
344
616
 
345
- /* Macro to include ASN1_ITEM pointer from base type */
617
+ // Macro to include ASN1_ITEM pointer from base type
346
618
  #define ASN1_ITEM_ref(iptr) (&(iptr##_it))
347
619
 
348
620
  #define ASN1_ITEM_rptr(ref) (&(ref##_it))
349
621
 
350
- #define DECLARE_ASN1_ITEM(name) \
351
- extern OPENSSL_EXPORT const ASN1_ITEM name##_it;
622
+ #define DECLARE_ASN1_ITEM(name) extern OPENSSL_EXPORT const ASN1_ITEM name##_it;
352
623
 
353
- /* Parameters used by ASN1_STRING_print_ex() */
624
+ // Parameters used by ASN1_STRING_print_ex()
354
625
 
355
- /* These determine which characters to escape:
356
- * RFC2253 special characters, control characters and
357
- * MSB set characters
358
- */
626
+ // These determine which characters to escape:
627
+ // RFC2253 special characters, control characters and
628
+ // MSB set characters
359
629
 
360
- #define ASN1_STRFLGS_ESC_2253 1
361
- #define ASN1_STRFLGS_ESC_CTRL 2
362
- #define ASN1_STRFLGS_ESC_MSB 4
630
+ #define ASN1_STRFLGS_ESC_2253 1
631
+ #define ASN1_STRFLGS_ESC_CTRL 2
632
+ #define ASN1_STRFLGS_ESC_MSB 4
363
633
 
364
634
 
365
- /* This flag determines how we do escaping: normally
366
- * RC2253 backslash only, set this to use backslash and
367
- * quote.
368
- */
635
+ // This flag determines how we do escaping: normally
636
+ // RC2253 backslash only, set this to use backslash and
637
+ // quote.
369
638
 
370
- #define ASN1_STRFLGS_ESC_QUOTE 8
639
+ #define ASN1_STRFLGS_ESC_QUOTE 8
371
640
 
372
641
 
373
- /* These three flags are internal use only. */
642
+ // These three flags are internal use only.
374
643
 
375
- /* Character is a valid PrintableString character */
376
- #define CHARTYPE_PRINTABLESTRING 0x10
377
- /* Character needs escaping if it is the first character */
378
- #define CHARTYPE_FIRST_ESC_2253 0x20
379
- /* Character needs escaping if it is the last character */
380
- #define CHARTYPE_LAST_ESC_2253 0x40
644
+ // Character is a valid PrintableString character
645
+ #define CHARTYPE_PRINTABLESTRING 0x10
646
+ // Character needs escaping if it is the first character
647
+ #define CHARTYPE_FIRST_ESC_2253 0x20
648
+ // Character needs escaping if it is the last character
649
+ #define CHARTYPE_LAST_ESC_2253 0x40
381
650
 
382
- /* NB the internal flags are safely reused below by flags
383
- * handled at the top level.
384
- */
651
+ // NB the internal flags are safely reused below by flags
652
+ // handled at the top level.
385
653
 
386
- /* If this is set we convert all character strings
387
- * to UTF8 first
388
- */
654
+ // If this is set we convert all character strings
655
+ // to UTF8 first
389
656
 
390
- #define ASN1_STRFLGS_UTF8_CONVERT 0x10
657
+ #define ASN1_STRFLGS_UTF8_CONVERT 0x10
391
658
 
392
- /* If this is set we don't attempt to interpret content:
393
- * just assume all strings are 1 byte per character. This
394
- * will produce some pretty odd looking output!
395
- */
659
+ // If this is set we don't attempt to interpret content:
660
+ // just assume all strings are 1 byte per character. This
661
+ // will produce some pretty odd looking output!
396
662
 
397
- #define ASN1_STRFLGS_IGNORE_TYPE 0x20
663
+ #define ASN1_STRFLGS_IGNORE_TYPE 0x20
398
664
 
399
- /* If this is set we include the string type in the output */
400
- #define ASN1_STRFLGS_SHOW_TYPE 0x40
665
+ // If this is set we include the string type in the output
666
+ #define ASN1_STRFLGS_SHOW_TYPE 0x40
401
667
 
402
- /* This determines which strings to display and which to
403
- * 'dump' (hex dump of content octets or DER encoding). We can
404
- * only dump non character strings or everything. If we
405
- * don't dump 'unknown' they are interpreted as character
406
- * strings with 1 octet per character and are subject to
407
- * the usual escaping options.
408
- */
668
+ // This determines which strings to display and which to
669
+ // 'dump' (hex dump of content octets or DER encoding). We can
670
+ // only dump non character strings or everything. If we
671
+ // don't dump 'unknown' they are interpreted as character
672
+ // strings with 1 octet per character and are subject to
673
+ // the usual escaping options.
409
674
 
410
- #define ASN1_STRFLGS_DUMP_ALL 0x80
411
- #define ASN1_STRFLGS_DUMP_UNKNOWN 0x100
675
+ #define ASN1_STRFLGS_DUMP_ALL 0x80
676
+ #define ASN1_STRFLGS_DUMP_UNKNOWN 0x100
412
677
 
413
- /* These determine what 'dumping' does, we can dump the
414
- * content octets or the DER encoding: both use the
415
- * RFC2253 #XXXXX notation.
416
- */
678
+ // These determine what 'dumping' does, we can dump the
679
+ // content octets or the DER encoding: both use the
680
+ // RFC2253 #XXXXX notation.
417
681
 
418
- #define ASN1_STRFLGS_DUMP_DER 0x200
682
+ #define ASN1_STRFLGS_DUMP_DER 0x200
419
683
 
420
- /* All the string flags consistent with RFC2253,
421
- * escaping control characters isn't essential in
422
- * RFC2253 but it is advisable anyway.
423
- */
684
+ // All the string flags consistent with RFC2253,
685
+ // escaping control characters isn't essential in
686
+ // RFC2253 but it is advisable anyway.
424
687
 
425
- #define ASN1_STRFLGS_RFC2253 (ASN1_STRFLGS_ESC_2253 | \
426
- ASN1_STRFLGS_ESC_CTRL | \
427
- ASN1_STRFLGS_ESC_MSB | \
428
- ASN1_STRFLGS_UTF8_CONVERT | \
429
- ASN1_STRFLGS_DUMP_UNKNOWN | \
430
- ASN1_STRFLGS_DUMP_DER)
688
+ #define ASN1_STRFLGS_RFC2253 \
689
+ (ASN1_STRFLGS_ESC_2253 | ASN1_STRFLGS_ESC_CTRL | ASN1_STRFLGS_ESC_MSB | \
690
+ ASN1_STRFLGS_UTF8_CONVERT | ASN1_STRFLGS_DUMP_UNKNOWN | \
691
+ ASN1_STRFLGS_DUMP_DER)
431
692
 
432
693
  DEFINE_STACK_OF(ASN1_INTEGER)
433
694
  DECLARE_ASN1_SET_OF(ASN1_INTEGER)
434
695
 
435
- struct asn1_type_st
436
- {
437
- int type;
438
- union {
439
- char *ptr;
440
- ASN1_BOOLEAN boolean;
441
- ASN1_STRING * asn1_string;
442
- ASN1_OBJECT * object;
443
- ASN1_INTEGER * integer;
444
- ASN1_ENUMERATED * enumerated;
445
- ASN1_BIT_STRING * bit_string;
446
- ASN1_OCTET_STRING * octet_string;
447
- ASN1_PRINTABLESTRING * printablestring;
448
- ASN1_T61STRING * t61string;
449
- ASN1_IA5STRING * ia5string;
450
- ASN1_GENERALSTRING * generalstring;
451
- ASN1_BMPSTRING * bmpstring;
452
- ASN1_UNIVERSALSTRING * universalstring;
453
- ASN1_UTCTIME * utctime;
454
- ASN1_GENERALIZEDTIME * generalizedtime;
455
- ASN1_VISIBLESTRING * visiblestring;
456
- ASN1_UTF8STRING * utf8string;
457
- /* set and sequence are left complete and still
458
- * contain the set or sequence bytes */
459
- ASN1_STRING * set;
460
- ASN1_STRING * sequence;
461
- ASN1_VALUE * asn1_value;
462
- } value;
463
- };
464
-
465
696
  DEFINE_STACK_OF(ASN1_TYPE)
466
697
  DECLARE_ASN1_SET_OF(ASN1_TYPE)
467
698
 
@@ -470,209 +701,131 @@ typedef STACK_OF(ASN1_TYPE) ASN1_SEQUENCE_ANY;
470
701
  DECLARE_ASN1_ENCODE_FUNCTIONS_const(ASN1_SEQUENCE_ANY, ASN1_SEQUENCE_ANY)
471
702
  DECLARE_ASN1_ENCODE_FUNCTIONS_const(ASN1_SEQUENCE_ANY, ASN1_SET_ANY)
472
703
 
473
- struct X509_algor_st
474
- {
475
- ASN1_OBJECT *algorithm;
476
- ASN1_TYPE *parameter;
477
- } /* X509_ALGOR */;
704
+ struct X509_algor_st {
705
+ ASN1_OBJECT *algorithm;
706
+ ASN1_TYPE *parameter;
707
+ } /* X509_ALGOR */;
478
708
 
479
709
  DECLARE_ASN1_FUNCTIONS(X509_ALGOR)
480
710
 
481
- /* This is used to contain a list of bit names */
711
+ // This is used to contain a list of bit names
482
712
  typedef struct BIT_STRING_BITNAME_st {
483
- int bitnum;
484
- const char *lname;
485
- const char *sname;
713
+ int bitnum;
714
+ const char *lname;
715
+ const char *sname;
486
716
  } BIT_STRING_BITNAME;
487
717
 
488
-
489
- #define M_ASN1_STRING_length(x) ((x)->length)
490
- #define M_ASN1_STRING_type(x) ((x)->type)
491
- #define M_ASN1_STRING_data(x) ((x)->data)
492
-
493
- /* Macros for string operations */
494
- #define M_ASN1_BIT_STRING_new() (ASN1_BIT_STRING *)\
495
- ASN1_STRING_type_new(V_ASN1_BIT_STRING)
496
- #define M_ASN1_BIT_STRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
497
- #define M_ASN1_BIT_STRING_dup(a) (ASN1_BIT_STRING *)\
498
- ASN1_STRING_dup((const ASN1_STRING *)a)
499
- #define M_ASN1_BIT_STRING_cmp(a,b) ASN1_STRING_cmp(\
500
- (const ASN1_STRING *)a,(const ASN1_STRING *)b)
501
- #define M_ASN1_BIT_STRING_set(a,b,c) ASN1_STRING_set((ASN1_STRING *)a,b,c)
502
-
503
- #define M_ASN1_INTEGER_new() (ASN1_INTEGER *)\
504
- ASN1_STRING_type_new(V_ASN1_INTEGER)
505
- #define M_ASN1_INTEGER_free(a) ASN1_STRING_free((ASN1_STRING *)a)
506
- #define M_ASN1_INTEGER_dup(a) (ASN1_INTEGER *)\
507
- ASN1_STRING_dup((const ASN1_STRING *)a)
508
- #define M_ASN1_INTEGER_cmp(a,b) ASN1_STRING_cmp(\
509
- (const ASN1_STRING *)a,(const ASN1_STRING *)b)
510
-
511
- #define M_ASN1_ENUMERATED_new() (ASN1_ENUMERATED *)\
512
- ASN1_STRING_type_new(V_ASN1_ENUMERATED)
513
- #define M_ASN1_ENUMERATED_free(a) ASN1_STRING_free((ASN1_STRING *)a)
514
- #define M_ASN1_ENUMERATED_dup(a) (ASN1_ENUMERATED *)\
515
- ASN1_STRING_dup((const ASN1_STRING *)a)
516
- #define M_ASN1_ENUMERATED_cmp(a,b) ASN1_STRING_cmp(\
517
- (const ASN1_STRING *)a,(const ASN1_STRING *)b)
518
-
519
- #define M_ASN1_OCTET_STRING_new() (ASN1_OCTET_STRING *)\
520
- ASN1_STRING_type_new(V_ASN1_OCTET_STRING)
521
- #define M_ASN1_OCTET_STRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
522
- #define M_ASN1_OCTET_STRING_dup(a) (ASN1_OCTET_STRING *)\
523
- ASN1_STRING_dup((const ASN1_STRING *)a)
524
- #define M_ASN1_OCTET_STRING_cmp(a,b) ASN1_STRING_cmp(\
525
- (const ASN1_STRING *)a,(const ASN1_STRING *)b)
526
- #define M_ASN1_OCTET_STRING_set(a,b,c) ASN1_STRING_set((ASN1_STRING *)a,b,c)
527
- #define M_ASN1_OCTET_STRING_print(a,b) ASN1_STRING_print(a,(ASN1_STRING *)b)
528
-
529
- #define B_ASN1_TIME \
530
- B_ASN1_UTCTIME | \
531
- B_ASN1_GENERALIZEDTIME
532
-
533
- #define B_ASN1_PRINTABLE \
534
- B_ASN1_NUMERICSTRING| \
535
- B_ASN1_PRINTABLESTRING| \
536
- B_ASN1_T61STRING| \
537
- B_ASN1_IA5STRING| \
538
- B_ASN1_BIT_STRING| \
539
- B_ASN1_UNIVERSALSTRING|\
540
- B_ASN1_BMPSTRING|\
541
- B_ASN1_UTF8STRING|\
542
- B_ASN1_SEQUENCE|\
543
- B_ASN1_UNKNOWN
544
-
545
- #define B_ASN1_DIRECTORYSTRING \
546
- B_ASN1_PRINTABLESTRING| \
547
- B_ASN1_TELETEXSTRING|\
548
- B_ASN1_BMPSTRING|\
549
- B_ASN1_UNIVERSALSTRING|\
550
- B_ASN1_UTF8STRING
718
+ // M_ASN1_* are legacy aliases for various |ASN1_STRING| functions. Use the
719
+ // functions themselves.
720
+ #define M_ASN1_STRING_length(x) ASN1_STRING_length(x)
721
+ #define M_ASN1_STRING_type(x) ASN1_STRING_type(x)
722
+ #define M_ASN1_STRING_data(x) ASN1_STRING_data(x)
723
+ #define M_ASN1_BIT_STRING_new() ASN1_BIT_STRING_new()
724
+ #define M_ASN1_BIT_STRING_free(a) ASN1_BIT_STRING_free(a)
725
+ #define M_ASN1_BIT_STRING_dup(a) ASN1_STRING_dup(a)
726
+ #define M_ASN1_BIT_STRING_cmp(a, b) ASN1_STRING_cmp(a, b)
727
+ #define M_ASN1_BIT_STRING_set(a, b, c) ASN1_BIT_STRING_set(a, b, c)
728
+ #define M_ASN1_INTEGER_new() ASN1_INTEGER_new()
729
+ #define M_ASN1_INTEGER_free(a) ASN1_INTEGER_free(a)
730
+ #define M_ASN1_INTEGER_dup(a) ASN1_INTEGER_dup(a)
731
+ #define M_ASN1_INTEGER_cmp(a, b) ASN1_INTEGER_cmp(a, b)
732
+ #define M_ASN1_ENUMERATED_new() ASN1_ENUMERATED_new()
733
+ #define M_ASN1_ENUMERATED_free(a) ASN1_ENUMERATED_free(a)
734
+ #define M_ASN1_ENUMERATED_dup(a) ASN1_STRING_dup(a)
735
+ #define M_ASN1_ENUMERATED_cmp(a, b) ASN1_STRING_cmp(a, b)
736
+ #define M_ASN1_OCTET_STRING_new() ASN1_OCTET_STRING_new()
737
+ #define M_ASN1_OCTET_STRING_free(a) ASN1_OCTET_STRING_free()
738
+ #define M_ASN1_OCTET_STRING_dup(a) ASN1_OCTET_STRING_dup(a)
739
+ #define M_ASN1_OCTET_STRING_cmp(a, b) ASN1_OCTET_STRING_cmp(a, b)
740
+ #define M_ASN1_OCTET_STRING_set(a, b, c) ASN1_OCTET_STRING_set(a, b, c)
741
+ #define M_ASN1_OCTET_STRING_print(a, b) ASN1_STRING_print(a, b)
742
+ #define M_ASN1_PRINTABLESTRING_new() ASN1_PRINTABLESTRING_new()
743
+ #define M_ASN1_PRINTABLESTRING_free(a) ASN1_PRINTABLESTRING_free(a)
744
+ #define M_ASN1_IA5STRING_new() ASN1_IA5STRING_new()
745
+ #define M_ASN1_IA5STRING_free(a) ASN1_IA5STRING_free(a)
746
+ #define M_ASN1_IA5STRING_dup(a) ASN1_STRING_dup(a)
747
+ #define M_ASN1_UTCTIME_new() ASN1_UTCTIME_new()
748
+ #define M_ASN1_UTCTIME_free(a) ASN1_UTCTIME_free(a)
749
+ #define M_ASN1_UTCTIME_dup(a) ASN1_STRING_dup(a)
750
+ #define M_ASN1_T61STRING_new() ASN1_T61STRING_new()
751
+ #define M_ASN1_T61STRING_free(a) ASN1_T61STRING_free(a)
752
+ #define M_ASN1_GENERALIZEDTIME_new() ASN1_GENERALIZEDTIME_new()
753
+ #define M_ASN1_GENERALIZEDTIME_free(a) ASN1_GENERALIZEDTIME_free(a)
754
+ #define M_ASN1_GENERALIZEDTIME_dup(a) ASN1_STRING_dup(a)
755
+ #define M_ASN1_GENERALSTRING_new() ASN1_GENERALSTRING_new()
756
+ #define M_ASN1_GENERALSTRING_free(a) ASN1_GENERALSTRING_free(a)
757
+ #define M_ASN1_UNIVERSALSTRING_new() ASN1_UNIVERSALSTRING_new()
758
+ #define M_ASN1_UNIVERSALSTRING_free(a) ASN1_UNIVERSALSTRING_free(a)
759
+ #define M_ASN1_BMPSTRING_new() ASN1_BMPSTRING_new()
760
+ #define M_ASN1_BMPSTRING_free(a) ASN1_BMPSTRING_free(a)
761
+ #define M_ASN1_VISIBLESTRING_new() ASN1_VISIBLESTRING_new()
762
+ #define M_ASN1_VISIBLESTRING_free(a) ASN1_VISIBLESTRING_free(a)
763
+ #define M_ASN1_UTF8STRING_new() ASN1_UTF8STRING_new()
764
+ #define M_ASN1_UTF8STRING_free(a) ASN1_UTF8STRING_free(a)
765
+
766
+ #define B_ASN1_TIME B_ASN1_UTCTIME | B_ASN1_GENERALIZEDTIME
767
+
768
+ #define B_ASN1_PRINTABLE \
769
+ B_ASN1_NUMERICSTRING | B_ASN1_PRINTABLESTRING | B_ASN1_T61STRING | \
770
+ B_ASN1_IA5STRING | B_ASN1_BIT_STRING | B_ASN1_UNIVERSALSTRING | \
771
+ B_ASN1_BMPSTRING | B_ASN1_UTF8STRING | B_ASN1_SEQUENCE | B_ASN1_UNKNOWN
772
+
773
+ #define B_ASN1_DIRECTORYSTRING \
774
+ B_ASN1_PRINTABLESTRING | B_ASN1_TELETEXSTRING | B_ASN1_BMPSTRING | \
775
+ B_ASN1_UNIVERSALSTRING | B_ASN1_UTF8STRING
551
776
 
552
777
  #define B_ASN1_DISPLAYTEXT \
553
- B_ASN1_IA5STRING| \
554
- B_ASN1_VISIBLESTRING| \
555
- B_ASN1_BMPSTRING|\
556
- B_ASN1_UTF8STRING
557
-
558
- #define M_ASN1_PRINTABLE_new() ASN1_STRING_type_new(V_ASN1_T61STRING)
559
- #define M_ASN1_PRINTABLE_free(a) ASN1_STRING_free((ASN1_STRING *)a)
560
-
561
- #define M_DIRECTORYSTRING_new() ASN1_STRING_type_new(V_ASN1_PRINTABLESTRING)
562
- #define M_DIRECTORYSTRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
563
-
564
- #define M_DISPLAYTEXT_new() ASN1_STRING_type_new(V_ASN1_VISIBLESTRING)
565
- #define M_DISPLAYTEXT_free(a) ASN1_STRING_free((ASN1_STRING *)a)
566
-
567
- #define M_ASN1_PRINTABLESTRING_new() (ASN1_PRINTABLESTRING *)\
568
- ASN1_STRING_type_new(V_ASN1_PRINTABLESTRING)
569
- #define M_ASN1_PRINTABLESTRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
570
-
571
- #define M_ASN1_T61STRING_new() (ASN1_T61STRING *)\
572
- ASN1_STRING_type_new(V_ASN1_T61STRING)
573
- #define M_ASN1_T61STRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
574
-
575
- #define M_ASN1_IA5STRING_new() (ASN1_IA5STRING *)\
576
- ASN1_STRING_type_new(V_ASN1_IA5STRING)
577
- #define M_ASN1_IA5STRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
578
- #define M_ASN1_IA5STRING_dup(a) \
579
- (ASN1_IA5STRING *)ASN1_STRING_dup((const ASN1_STRING *)a)
580
-
581
- #define M_ASN1_UTCTIME_new() (ASN1_UTCTIME *)\
582
- ASN1_STRING_type_new(V_ASN1_UTCTIME)
583
- #define M_ASN1_UTCTIME_free(a) ASN1_STRING_free((ASN1_STRING *)a)
584
- #define M_ASN1_UTCTIME_dup(a) (ASN1_UTCTIME *)\
585
- ASN1_STRING_dup((const ASN1_STRING *)a)
586
-
587
- #define M_ASN1_GENERALIZEDTIME_new() (ASN1_GENERALIZEDTIME *)\
588
- ASN1_STRING_type_new(V_ASN1_GENERALIZEDTIME)
589
- #define M_ASN1_GENERALIZEDTIME_free(a) ASN1_STRING_free((ASN1_STRING *)a)
590
- #define M_ASN1_GENERALIZEDTIME_dup(a) (ASN1_GENERALIZEDTIME *)ASN1_STRING_dup(\
591
- (const ASN1_STRING *)a)
592
-
593
- #define M_ASN1_TIME_new() (ASN1_TIME *)\
594
- ASN1_STRING_type_new(V_ASN1_UTCTIME)
595
- #define M_ASN1_TIME_free(a) ASN1_STRING_free((ASN1_STRING *)a)
596
- #define M_ASN1_TIME_dup(a) (ASN1_TIME *)\
597
- ASN1_STRING_dup((const ASN1_STRING *)a)
598
-
599
- #define M_ASN1_GENERALSTRING_new() (ASN1_GENERALSTRING *)\
600
- ASN1_STRING_type_new(V_ASN1_GENERALSTRING)
601
- #define M_ASN1_GENERALSTRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
602
-
603
- #define M_ASN1_UNIVERSALSTRING_new() (ASN1_UNIVERSALSTRING *)\
604
- ASN1_STRING_type_new(V_ASN1_UNIVERSALSTRING)
605
- #define M_ASN1_UNIVERSALSTRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
606
-
607
- #define M_ASN1_BMPSTRING_new() (ASN1_BMPSTRING *)\
608
- ASN1_STRING_type_new(V_ASN1_BMPSTRING)
609
- #define M_ASN1_BMPSTRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
610
-
611
- #define M_ASN1_VISIBLESTRING_new() (ASN1_VISIBLESTRING *)\
612
- ASN1_STRING_type_new(V_ASN1_VISIBLESTRING)
613
- #define M_ASN1_VISIBLESTRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
614
-
615
- #define M_ASN1_UTF8STRING_new() (ASN1_UTF8STRING *)\
616
- ASN1_STRING_type_new(V_ASN1_UTF8STRING)
617
- #define M_ASN1_UTF8STRING_free(a) ASN1_STRING_free((ASN1_STRING *)a)
778
+ B_ASN1_IA5STRING | B_ASN1_VISIBLESTRING | B_ASN1_BMPSTRING | B_ASN1_UTF8STRING
618
779
 
619
780
  DECLARE_ASN1_FUNCTIONS_fname(ASN1_TYPE, ASN1_ANY, ASN1_TYPE)
620
781
 
621
- OPENSSL_EXPORT int ASN1_TYPE_get(const ASN1_TYPE *a);
622
- OPENSSL_EXPORT void ASN1_TYPE_set(ASN1_TYPE *a, int type, void *value);
623
- OPENSSL_EXPORT int ASN1_TYPE_set1(ASN1_TYPE *a, int type, const void *value);
624
- OPENSSL_EXPORT int ASN1_TYPE_cmp(const ASN1_TYPE *a, const ASN1_TYPE *b);
625
-
626
- OPENSSL_EXPORT ASN1_OBJECT * ASN1_OBJECT_new(void );
627
- OPENSSL_EXPORT void ASN1_OBJECT_free(ASN1_OBJECT *a);
628
- OPENSSL_EXPORT int i2d_ASN1_OBJECT(const ASN1_OBJECT *a,unsigned char **pp);
629
- OPENSSL_EXPORT ASN1_OBJECT * c2i_ASN1_OBJECT(ASN1_OBJECT **a,const unsigned char **pp,
630
- long length);
631
- OPENSSL_EXPORT ASN1_OBJECT * d2i_ASN1_OBJECT(ASN1_OBJECT **a,const unsigned char **pp,
632
- long length);
782
+ OPENSSL_EXPORT ASN1_OBJECT *ASN1_OBJECT_new(void);
783
+ OPENSSL_EXPORT void ASN1_OBJECT_free(ASN1_OBJECT *a);
784
+ OPENSSL_EXPORT int i2d_ASN1_OBJECT(const ASN1_OBJECT *a, unsigned char **pp);
785
+ OPENSSL_EXPORT ASN1_OBJECT *c2i_ASN1_OBJECT(ASN1_OBJECT **a,
786
+ const unsigned char **pp,
787
+ long length);
788
+ OPENSSL_EXPORT ASN1_OBJECT *d2i_ASN1_OBJECT(ASN1_OBJECT **a,
789
+ const unsigned char **pp,
790
+ long length);
633
791
 
634
792
  DECLARE_ASN1_ITEM(ASN1_OBJECT)
635
793
 
636
794
  DECLARE_ASN1_SET_OF(ASN1_OBJECT)
637
795
 
638
- OPENSSL_EXPORT ASN1_STRING * ASN1_STRING_new(void);
639
- OPENSSL_EXPORT void ASN1_STRING_free(ASN1_STRING *a);
640
- OPENSSL_EXPORT int ASN1_STRING_copy(ASN1_STRING *dst, const ASN1_STRING *str);
641
- OPENSSL_EXPORT ASN1_STRING * ASN1_STRING_dup(const ASN1_STRING *a);
642
- OPENSSL_EXPORT ASN1_STRING * ASN1_STRING_type_new(int type );
643
- OPENSSL_EXPORT int ASN1_STRING_cmp(const ASN1_STRING *a, const ASN1_STRING *b);
644
- /* Since this is used to store all sorts of things, via macros, for now, make
645
- its data void * */
646
- OPENSSL_EXPORT int ASN1_STRING_set(ASN1_STRING *str, const void *data, int len);
647
- OPENSSL_EXPORT void ASN1_STRING_set0(ASN1_STRING *str, void *data, int len);
648
- OPENSSL_EXPORT int ASN1_STRING_length(const ASN1_STRING *x);
649
- OPENSSL_EXPORT void ASN1_STRING_length_set(ASN1_STRING *x, int n);
650
- OPENSSL_EXPORT int ASN1_STRING_type(const ASN1_STRING *x);
651
- OPENSSL_EXPORT unsigned char * ASN1_STRING_data(ASN1_STRING *x);
652
- OPENSSL_EXPORT const unsigned char *ASN1_STRING_get0_data(const ASN1_STRING *x);
653
-
654
796
  DECLARE_ASN1_FUNCTIONS(ASN1_BIT_STRING)
655
- OPENSSL_EXPORT int i2c_ASN1_BIT_STRING(const ASN1_BIT_STRING *a,unsigned char **pp);
656
- OPENSSL_EXPORT ASN1_BIT_STRING *c2i_ASN1_BIT_STRING(ASN1_BIT_STRING **a,const unsigned char **pp, long length);
657
- OPENSSL_EXPORT int ASN1_BIT_STRING_set(ASN1_BIT_STRING *a, unsigned char *d, int length );
658
- OPENSSL_EXPORT int ASN1_BIT_STRING_set_bit(ASN1_BIT_STRING *a, int n, int value);
659
- OPENSSL_EXPORT int ASN1_BIT_STRING_get_bit(const ASN1_BIT_STRING *a, int n);
660
- OPENSSL_EXPORT int ASN1_BIT_STRING_check(const ASN1_BIT_STRING *a, unsigned char *flags, int flags_len);
661
-
662
- OPENSSL_EXPORT int i2d_ASN1_BOOLEAN(int a,unsigned char **pp);
663
- OPENSSL_EXPORT int d2i_ASN1_BOOLEAN(int *a,const unsigned char **pp,long length);
797
+ OPENSSL_EXPORT int i2c_ASN1_BIT_STRING(const ASN1_BIT_STRING *a,
798
+ unsigned char **pp);
799
+ OPENSSL_EXPORT ASN1_BIT_STRING *c2i_ASN1_BIT_STRING(ASN1_BIT_STRING **a,
800
+ const unsigned char **pp,
801
+ long length);
802
+ OPENSSL_EXPORT int ASN1_BIT_STRING_set(ASN1_BIT_STRING *a, unsigned char *d,
803
+ int length);
804
+ OPENSSL_EXPORT int ASN1_BIT_STRING_set_bit(ASN1_BIT_STRING *a, int n,
805
+ int value);
806
+ OPENSSL_EXPORT int ASN1_BIT_STRING_get_bit(const ASN1_BIT_STRING *a, int n);
807
+ OPENSSL_EXPORT int ASN1_BIT_STRING_check(const ASN1_BIT_STRING *a,
808
+ unsigned char *flags, int flags_len);
809
+
810
+ OPENSSL_EXPORT int i2d_ASN1_BOOLEAN(int a, unsigned char **pp);
811
+ OPENSSL_EXPORT int d2i_ASN1_BOOLEAN(int *a, const unsigned char **pp,
812
+ long length);
664
813
 
665
814
  DECLARE_ASN1_FUNCTIONS(ASN1_INTEGER)
666
- OPENSSL_EXPORT int i2c_ASN1_INTEGER(const ASN1_INTEGER *a,unsigned char **pp);
667
- OPENSSL_EXPORT ASN1_INTEGER *c2i_ASN1_INTEGER(ASN1_INTEGER **a,const unsigned char **pp, long length);
668
- OPENSSL_EXPORT ASN1_INTEGER * ASN1_INTEGER_dup(const ASN1_INTEGER *x);
669
- OPENSSL_EXPORT int ASN1_INTEGER_cmp(const ASN1_INTEGER *x, const ASN1_INTEGER *y);
815
+ OPENSSL_EXPORT int i2c_ASN1_INTEGER(const ASN1_INTEGER *a, unsigned char **pp);
816
+ OPENSSL_EXPORT ASN1_INTEGER *c2i_ASN1_INTEGER(ASN1_INTEGER **a,
817
+ const unsigned char **pp,
818
+ long length);
819
+ OPENSSL_EXPORT ASN1_INTEGER *ASN1_INTEGER_dup(const ASN1_INTEGER *x);
820
+ OPENSSL_EXPORT int ASN1_INTEGER_cmp(const ASN1_INTEGER *x,
821
+ const ASN1_INTEGER *y);
670
822
 
671
823
  DECLARE_ASN1_FUNCTIONS(ASN1_ENUMERATED)
672
824
 
673
825
  OPENSSL_EXPORT int ASN1_UTCTIME_check(const ASN1_UTCTIME *a);
674
- OPENSSL_EXPORT ASN1_UTCTIME *ASN1_UTCTIME_set(ASN1_UTCTIME *s,time_t t);
675
- OPENSSL_EXPORT ASN1_UTCTIME *ASN1_UTCTIME_adj(ASN1_UTCTIME *s, time_t t, int offset_day, long offset_sec);
826
+ OPENSSL_EXPORT ASN1_UTCTIME *ASN1_UTCTIME_set(ASN1_UTCTIME *s, time_t t);
827
+ OPENSSL_EXPORT ASN1_UTCTIME *ASN1_UTCTIME_adj(ASN1_UTCTIME *s, time_t t,
828
+ int offset_day, long offset_sec);
676
829
  OPENSSL_EXPORT int ASN1_UTCTIME_set_string(ASN1_UTCTIME *s, const char *str);
677
830
  OPENSSL_EXPORT int ASN1_UTCTIME_cmp_time_t(const ASN1_UTCTIME *s, time_t t);
678
831
  #if 0
@@ -680,15 +833,22 @@ time_t ASN1_UTCTIME_get(const ASN1_UTCTIME *s);
680
833
  #endif
681
834
 
682
835
  OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_check(const ASN1_GENERALIZEDTIME *a);
683
- OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_set(ASN1_GENERALIZEDTIME *s,time_t t);
684
- OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_adj(ASN1_GENERALIZEDTIME *s, time_t t, int offset_day, long offset_sec);
685
- OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_set_string(ASN1_GENERALIZEDTIME *s, const char *str);
686
- OPENSSL_EXPORT int ASN1_TIME_diff(int *pday, int *psec, const ASN1_TIME *from, const ASN1_TIME *to);
836
+ OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_set(
837
+ ASN1_GENERALIZEDTIME *s, time_t t);
838
+ OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_adj(
839
+ ASN1_GENERALIZEDTIME *s, time_t t, int offset_day, long offset_sec);
840
+ OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_set_string(ASN1_GENERALIZEDTIME *s,
841
+ const char *str);
842
+ OPENSSL_EXPORT int ASN1_TIME_diff(int *pday, int *psec, const ASN1_TIME *from,
843
+ const ASN1_TIME *to);
687
844
 
688
845
  DECLARE_ASN1_FUNCTIONS(ASN1_OCTET_STRING)
689
- OPENSSL_EXPORT ASN1_OCTET_STRING * ASN1_OCTET_STRING_dup(const ASN1_OCTET_STRING *a);
690
- OPENSSL_EXPORT int ASN1_OCTET_STRING_cmp(const ASN1_OCTET_STRING *a, const ASN1_OCTET_STRING *b);
691
- OPENSSL_EXPORT int ASN1_OCTET_STRING_set(ASN1_OCTET_STRING *str, const unsigned char *data, int len);
846
+ OPENSSL_EXPORT ASN1_OCTET_STRING *ASN1_OCTET_STRING_dup(
847
+ const ASN1_OCTET_STRING *a);
848
+ OPENSSL_EXPORT int ASN1_OCTET_STRING_cmp(const ASN1_OCTET_STRING *a,
849
+ const ASN1_OCTET_STRING *b);
850
+ OPENSSL_EXPORT int ASN1_OCTET_STRING_set(ASN1_OCTET_STRING *str,
851
+ const unsigned char *data, int len);
692
852
 
693
853
  DECLARE_ASN1_FUNCTIONS(ASN1_VISIBLESTRING)
694
854
  DECLARE_ASN1_FUNCTIONS(ASN1_UNIVERSALSTRING)
@@ -708,42 +868,51 @@ DECLARE_ASN1_FUNCTIONS(ASN1_UTCTIME)
708
868
  DECLARE_ASN1_FUNCTIONS(ASN1_GENERALIZEDTIME)
709
869
  DECLARE_ASN1_FUNCTIONS(ASN1_TIME)
710
870
 
711
- DECLARE_ASN1_ITEM(ASN1_OCTET_STRING_NDEF)
712
-
713
- OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_set(ASN1_TIME *s,time_t t);
714
- OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_adj(ASN1_TIME *s,time_t t, int offset_day, long offset_sec);
871
+ OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_set(ASN1_TIME *s, time_t t);
872
+ OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_adj(ASN1_TIME *s, time_t t, int offset_day,
873
+ long offset_sec);
715
874
  OPENSSL_EXPORT int ASN1_TIME_check(const ASN1_TIME *t);
716
- OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_TIME_to_generalizedtime(const ASN1_TIME *t, ASN1_GENERALIZEDTIME **out);
875
+ OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_TIME_to_generalizedtime(
876
+ const ASN1_TIME *t, ASN1_GENERALIZEDTIME **out);
717
877
  OPENSSL_EXPORT int ASN1_TIME_set_string(ASN1_TIME *s, const char *str);
718
878
 
719
879
  OPENSSL_EXPORT int i2a_ASN1_INTEGER(BIO *bp, const ASN1_INTEGER *a);
720
880
  OPENSSL_EXPORT int i2a_ASN1_ENUMERATED(BIO *bp, const ASN1_ENUMERATED *a);
721
881
  OPENSSL_EXPORT int i2a_ASN1_OBJECT(BIO *bp, const ASN1_OBJECT *a);
722
882
  OPENSSL_EXPORT int i2a_ASN1_STRING(BIO *bp, const ASN1_STRING *a, int type);
723
- OPENSSL_EXPORT int i2t_ASN1_OBJECT(char *buf,int buf_len, const ASN1_OBJECT *a);
883
+ OPENSSL_EXPORT int i2t_ASN1_OBJECT(char *buf, int buf_len,
884
+ const ASN1_OBJECT *a);
724
885
 
725
- OPENSSL_EXPORT ASN1_OBJECT *ASN1_OBJECT_create(int nid, unsigned char *data,int len, const char *sn, const char *ln);
886
+ OPENSSL_EXPORT ASN1_OBJECT *ASN1_OBJECT_create(int nid,
887
+ const unsigned char *data,
888
+ int len, const char *sn,
889
+ const char *ln);
726
890
 
727
891
  OPENSSL_EXPORT int ASN1_INTEGER_set(ASN1_INTEGER *a, long v);
728
892
  OPENSSL_EXPORT int ASN1_INTEGER_set_uint64(ASN1_INTEGER *out, uint64_t v);
729
893
  OPENSSL_EXPORT long ASN1_INTEGER_get(const ASN1_INTEGER *a);
730
- OPENSSL_EXPORT ASN1_INTEGER *BN_to_ASN1_INTEGER(const BIGNUM *bn, ASN1_INTEGER *ai);
731
- OPENSSL_EXPORT BIGNUM *ASN1_INTEGER_to_BN(const ASN1_INTEGER *ai,BIGNUM *bn);
894
+ OPENSSL_EXPORT ASN1_INTEGER *BN_to_ASN1_INTEGER(const BIGNUM *bn,
895
+ ASN1_INTEGER *ai);
896
+ OPENSSL_EXPORT BIGNUM *ASN1_INTEGER_to_BN(const ASN1_INTEGER *ai, BIGNUM *bn);
732
897
 
733
898
  OPENSSL_EXPORT int ASN1_ENUMERATED_set(ASN1_ENUMERATED *a, long v);
734
899
  OPENSSL_EXPORT long ASN1_ENUMERATED_get(const ASN1_ENUMERATED *a);
735
- OPENSSL_EXPORT ASN1_ENUMERATED *BN_to_ASN1_ENUMERATED(const BIGNUM *bn, ASN1_ENUMERATED *ai);
736
- OPENSSL_EXPORT BIGNUM *ASN1_ENUMERATED_to_BN(const ASN1_ENUMERATED *ai,BIGNUM *bn);
900
+ OPENSSL_EXPORT ASN1_ENUMERATED *BN_to_ASN1_ENUMERATED(const BIGNUM *bn,
901
+ ASN1_ENUMERATED *ai);
902
+ OPENSSL_EXPORT BIGNUM *ASN1_ENUMERATED_to_BN(const ASN1_ENUMERATED *ai,
903
+ BIGNUM *bn);
737
904
 
738
- /* General */
739
- /* given a string, return the correct type, max is the maximum length */
905
+ // General
906
+ // given a string, return the correct type, max is the maximum length
740
907
  OPENSSL_EXPORT int ASN1_PRINTABLE_type(const unsigned char *s, int max);
741
908
 
742
909
  OPENSSL_EXPORT unsigned long ASN1_tag2bit(int tag);
743
910
 
744
- /* SPECIALS */
745
- OPENSSL_EXPORT int ASN1_get_object(const unsigned char **pp, long *plength, int *ptag, int *pclass, long omax);
746
- OPENSSL_EXPORT void ASN1_put_object(unsigned char **pp, int constructed, int length, int tag, int xclass);
911
+ // SPECIALS
912
+ OPENSSL_EXPORT int ASN1_get_object(const unsigned char **pp, long *plength,
913
+ int *ptag, int *pclass, long omax);
914
+ OPENSSL_EXPORT void ASN1_put_object(unsigned char **pp, int constructed,
915
+ int length, int tag, int xclass);
747
916
  OPENSSL_EXPORT int ASN1_put_eoc(unsigned char **pp);
748
917
  OPENSSL_EXPORT int ASN1_object_size(int constructed, int length, int tag);
749
918
 
@@ -752,7 +921,8 @@ OPENSSL_EXPORT void *ASN1_item_dup(const ASN1_ITEM *it, void *x);
752
921
  #ifndef OPENSSL_NO_FP_API
753
922
  OPENSSL_EXPORT void *ASN1_item_d2i_fp(const ASN1_ITEM *it, FILE *in, void *x);
754
923
  OPENSSL_EXPORT int ASN1_item_i2d_fp(const ASN1_ITEM *it, FILE *out, void *x);
755
- OPENSSL_EXPORT int ASN1_STRING_print_ex_fp(FILE *fp, const ASN1_STRING *str, unsigned long flags);
924
+ OPENSSL_EXPORT int ASN1_STRING_print_ex_fp(FILE *fp, const ASN1_STRING *str,
925
+ unsigned long flags);
756
926
  #endif
757
927
 
758
928
  OPENSSL_EXPORT int ASN1_STRING_to_UTF8(unsigned char **out, ASN1_STRING *in);
@@ -760,43 +930,58 @@ OPENSSL_EXPORT int ASN1_STRING_to_UTF8(unsigned char **out, ASN1_STRING *in);
760
930
  OPENSSL_EXPORT void *ASN1_item_d2i_bio(const ASN1_ITEM *it, BIO *in, void *x);
761
931
  OPENSSL_EXPORT int ASN1_item_i2d_bio(const ASN1_ITEM *it, BIO *out, void *x);
762
932
  OPENSSL_EXPORT int ASN1_UTCTIME_print(BIO *fp, const ASN1_UTCTIME *a);
763
- OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_print(BIO *fp, const ASN1_GENERALIZEDTIME *a);
933
+ OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_print(BIO *fp,
934
+ const ASN1_GENERALIZEDTIME *a);
764
935
  OPENSSL_EXPORT int ASN1_TIME_print(BIO *fp, const ASN1_TIME *a);
765
936
  OPENSSL_EXPORT int ASN1_STRING_print(BIO *bp, const ASN1_STRING *v);
766
- OPENSSL_EXPORT int ASN1_STRING_print_ex(BIO *out, const ASN1_STRING *str, unsigned long flags);
937
+ OPENSSL_EXPORT int ASN1_STRING_print_ex(BIO *out, const ASN1_STRING *str,
938
+ unsigned long flags);
767
939
  OPENSSL_EXPORT const char *ASN1_tag2str(int tag);
768
940
 
769
- /* Used to load and write netscape format cert */
941
+ // Used to load and write netscape format cert
770
942
 
771
- OPENSSL_EXPORT void *ASN1_item_unpack(const ASN1_STRING *oct, const ASN1_ITEM *it);
943
+ OPENSSL_EXPORT void *ASN1_item_unpack(const ASN1_STRING *oct,
944
+ const ASN1_ITEM *it);
772
945
 
773
- OPENSSL_EXPORT ASN1_STRING *ASN1_item_pack(void *obj, const ASN1_ITEM *it, ASN1_OCTET_STRING **oct);
946
+ OPENSSL_EXPORT ASN1_STRING *ASN1_item_pack(void *obj, const ASN1_ITEM *it,
947
+ ASN1_OCTET_STRING **oct);
774
948
 
775
949
  OPENSSL_EXPORT void ASN1_STRING_set_default_mask(unsigned long mask);
776
950
  OPENSSL_EXPORT int ASN1_STRING_set_default_mask_asc(const char *p);
777
951
  OPENSSL_EXPORT unsigned long ASN1_STRING_get_default_mask(void);
778
- OPENSSL_EXPORT int ASN1_mbstring_copy(ASN1_STRING **out, const unsigned char *in, int len, int inform, unsigned long mask);
779
- OPENSSL_EXPORT int ASN1_mbstring_ncopy(ASN1_STRING **out, const unsigned char *in, int len, int inform, unsigned long mask, long minsize, long maxsize);
780
-
781
- OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_set_by_NID(ASN1_STRING **out, const unsigned char *in, int inlen, int inform, int nid);
952
+ OPENSSL_EXPORT int ASN1_mbstring_copy(ASN1_STRING **out,
953
+ const unsigned char *in, int len,
954
+ int inform, unsigned long mask);
955
+ OPENSSL_EXPORT int ASN1_mbstring_ncopy(ASN1_STRING **out,
956
+ const unsigned char *in, int len,
957
+ int inform, unsigned long mask,
958
+ long minsize, long maxsize);
959
+
960
+ OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_set_by_NID(ASN1_STRING **out,
961
+ const unsigned char *in,
962
+ int inlen, int inform,
963
+ int nid);
782
964
  OPENSSL_EXPORT ASN1_STRING_TABLE *ASN1_STRING_TABLE_get(int nid);
783
- OPENSSL_EXPORT int ASN1_STRING_TABLE_add(int, long, long, unsigned long, unsigned long);
965
+ OPENSSL_EXPORT int ASN1_STRING_TABLE_add(int, long, long, unsigned long,
966
+ unsigned long);
784
967
  OPENSSL_EXPORT void ASN1_STRING_TABLE_cleanup(void);
785
968
 
786
- /* ASN1 template functions */
969
+ // ASN1 template functions
787
970
 
788
- /* Old API compatible functions */
971
+ // Old API compatible functions
789
972
  OPENSSL_EXPORT ASN1_VALUE *ASN1_item_new(const ASN1_ITEM *it);
790
973
  OPENSSL_EXPORT void ASN1_item_free(ASN1_VALUE *val, const ASN1_ITEM *it);
791
- OPENSSL_EXPORT ASN1_VALUE * ASN1_item_d2i(ASN1_VALUE **val, const unsigned char **in, long len, const ASN1_ITEM *it);
792
- OPENSSL_EXPORT int ASN1_item_i2d(ASN1_VALUE *val, unsigned char **out, const ASN1_ITEM *it);
793
- OPENSSL_EXPORT int ASN1_item_ndef_i2d(ASN1_VALUE *val, unsigned char **out, const ASN1_ITEM *it);
974
+ OPENSSL_EXPORT ASN1_VALUE *ASN1_item_d2i(ASN1_VALUE **val,
975
+ const unsigned char **in, long len,
976
+ const ASN1_ITEM *it);
977
+ OPENSSL_EXPORT int ASN1_item_i2d(ASN1_VALUE *val, unsigned char **out,
978
+ const ASN1_ITEM *it);
794
979
 
795
980
  OPENSSL_EXPORT ASN1_TYPE *ASN1_generate_nconf(const char *str, CONF *nconf);
796
981
  OPENSSL_EXPORT ASN1_TYPE *ASN1_generate_v3(const char *str, X509V3_CTX *cnf);
797
982
 
798
983
 
799
- #ifdef __cplusplus
984
+ #ifdef __cplusplus
800
985
  }
801
986
 
802
987
  extern "C++" {
@@ -809,7 +994,7 @@ BORINGSSL_MAKE_DELETER(ASN1_TYPE, ASN1_TYPE_free)
809
994
 
810
995
  BSSL_NAMESPACE_END
811
996
 
812
- } /* extern C++ */
997
+ } // extern C++
813
998
 
814
999
  #endif
815
1000
 
@@ -906,5 +1091,6 @@ BSSL_NAMESPACE_END
906
1091
  #define ASN1_R_WRONG_TAG 190
907
1092
  #define ASN1_R_WRONG_TYPE 191
908
1093
  #define ASN1_R_NESTED_TOO_DEEP 192
1094
+ #define ASN1_R_BAD_TEMPLATE 193
909
1095
 
910
1096
  #endif