grpc 1.41.0 → 1.43.1
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of grpc might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/Makefile +126 -62
- data/etc/roots.pem +335 -326
- data/include/grpc/event_engine/event_engine.h +118 -54
- data/include/grpc/event_engine/internal/memory_allocator_impl.h +68 -0
- data/include/grpc/event_engine/memory_allocator.h +226 -0
- data/include/grpc/event_engine/memory_request.h +57 -0
- data/include/grpc/grpc.h +4 -0
- data/include/grpc/grpc_security.h +294 -145
- data/include/grpc/grpc_security_constants.h +2 -14
- data/include/grpc/impl/codegen/port_platform.h +14 -3
- data/src/core/ext/filters/client_channel/backend_metric.cc +21 -23
- data/src/core/ext/filters/client_channel/backend_metric.h +3 -2
- data/src/core/ext/filters/client_channel/backup_poller.cc +2 -1
- data/src/core/ext/filters/client_channel/channel_connectivity.cc +71 -89
- data/src/core/ext/filters/client_channel/client_channel.cc +254 -278
- data/src/core/ext/filters/client_channel/client_channel.h +79 -31
- data/src/core/ext/filters/client_channel/client_channel_factory.cc +1 -1
- data/src/core/ext/filters/client_channel/client_channel_factory.h +17 -19
- data/src/core/ext/filters/client_channel/client_channel_plugin.cc +7 -14
- data/src/core/ext/filters/client_channel/config_selector.cc +1 -1
- data/src/core/ext/filters/client_channel/config_selector.h +4 -5
- data/src/core/ext/filters/client_channel/connector.h +18 -18
- data/src/core/ext/filters/client_channel/dynamic_filters.cc +5 -5
- data/src/core/ext/filters/client_channel/global_subchannel_pool.h +0 -1
- data/src/core/ext/filters/client_channel/health/health_check_client.cc +12 -11
- data/src/core/ext/filters/client_channel/health/health_check_client.h +1 -1
- data/src/core/ext/filters/client_channel/http_connect_handshaker.cc +12 -14
- data/src/core/ext/filters/client_channel/http_connect_handshaker.h +1 -1
- data/src/core/ext/filters/client_channel/lb_policy/child_policy_handler.cc +4 -0
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/client_load_reporting_filter.cc +6 -15
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb.cc +167 -84
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb.h +4 -0
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_balancer_addresses.cc +1 -1
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_client_stats.cc +1 -2
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_client_stats.h +2 -2
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/load_balancer_api.cc +2 -4
- data/src/core/ext/filters/client_channel/lb_policy/pick_first/pick_first.cc +23 -7
- data/src/core/ext/filters/client_channel/lb_policy/priority/priority.cc +15 -10
- data/src/core/ext/filters/client_channel/lb_policy/ring_hash/ring_hash.cc +4 -6
- data/src/core/ext/filters/client_channel/lb_policy/rls/rls.cc +2502 -0
- data/src/core/ext/filters/client_channel/lb_policy/round_robin/round_robin.cc +6 -1
- data/src/core/ext/filters/client_channel/lb_policy/weighted_target/weighted_target.cc +7 -1
- data/src/core/ext/filters/client_channel/lb_policy/xds/cds.cc +32 -81
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_channel_args.h +1 -1
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_impl.cc +87 -34
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_manager.cc +8 -1
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_resolver.cc +53 -106
- data/src/core/ext/filters/client_channel/lb_policy.h +86 -60
- data/src/core/ext/filters/client_channel/lb_policy_factory.h +1 -0
- data/src/core/ext/filters/client_channel/resolver/binder/binder_resolver.cc +139 -0
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/dns_resolver_ares.cc +14 -8
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver.h +2 -2
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver_windows.cc +11 -15
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.cc +12 -39
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.h +21 -1
- data/src/core/ext/filters/client_channel/resolver/dns/native/dns_resolver.cc +9 -5
- data/src/core/ext/filters/client_channel/resolver/fake/fake_resolver.cc +3 -1
- data/src/core/ext/filters/client_channel/resolver/google_c2p/google_c2p_resolver.cc +6 -12
- data/src/core/ext/filters/client_channel/resolver/xds/xds_resolver.cc +281 -344
- data/src/core/ext/filters/client_channel/resolver.h +1 -1
- data/src/core/ext/filters/client_channel/resolver_factory.h +2 -0
- data/src/core/ext/filters/client_channel/resolver_registry.cc +12 -15
- data/src/core/ext/filters/client_channel/resolver_registry.h +1 -2
- data/src/core/ext/filters/client_channel/resolver_result_parsing.cc +1 -1
- data/src/core/ext/filters/client_channel/resolver_result_parsing.h +1 -1
- data/src/core/ext/filters/client_channel/retry_filter.cc +48 -86
- data/src/core/ext/filters/client_channel/retry_service_config.h +1 -1
- data/src/core/ext/filters/client_channel/retry_throttle.cc +17 -48
- data/src/core/ext/filters/client_channel/server_address.h +1 -1
- data/src/core/ext/filters/client_channel/service_config_channel_arg_filter.cc +49 -36
- data/src/core/ext/filters/client_channel/subchannel.cc +89 -147
- data/src/core/ext/filters/client_channel/subchannel.h +29 -49
- data/src/core/ext/filters/client_channel/subchannel_pool_interface.cc +22 -7
- data/src/core/ext/filters/client_channel/subchannel_pool_interface.h +11 -2
- data/src/core/ext/filters/client_idle/client_idle_filter.cc +27 -210
- data/src/core/ext/filters/client_idle/idle_filter_state.cc +96 -0
- data/src/core/ext/filters/client_idle/idle_filter_state.h +66 -0
- data/src/core/ext/filters/deadline/deadline_filter.cc +23 -26
- data/src/core/ext/filters/fault_injection/fault_injection_filter.cc +20 -20
- data/src/core/ext/filters/fault_injection/service_config_parser.cc +0 -1
- data/src/core/ext/filters/fault_injection/service_config_parser.h +1 -1
- data/src/core/ext/filters/http/client/http_client_filter.cc +48 -67
- data/src/core/ext/filters/http/client_authority_filter.cc +14 -15
- data/src/core/ext/filters/http/http_filters_plugin.cc +51 -71
- data/src/core/ext/filters/http/message_compress/message_compress_filter.cc +17 -12
- data/src/core/ext/filters/http/message_compress/message_decompress_filter.cc +1 -1
- data/src/core/ext/filters/http/server/http_server_filter.cc +69 -83
- data/src/core/ext/filters/max_age/max_age_filter.cc +24 -26
- data/src/core/ext/filters/message_size/message_size_filter.cc +19 -16
- data/src/core/ext/filters/message_size/message_size_filter.h +1 -1
- data/src/core/ext/filters/server_config_selector/server_config_selector.cc +67 -0
- data/src/core/ext/filters/server_config_selector/server_config_selector.h +70 -0
- data/src/core/ext/filters/server_config_selector/server_config_selector_filter.cc +265 -0
- data/src/core/ext/filters/{workarounds/workaround_cronet_compression_filter.h → server_config_selector/server_config_selector_filter.h} +11 -6
- data/src/core/ext/{filters/client_channel → service_config}/service_config.cc +2 -2
- data/src/core/ext/{filters/client_channel → service_config}/service_config.h +4 -4
- data/src/core/ext/service_config/service_config_call_data.h +72 -0
- data/src/core/ext/{filters/client_channel → service_config}/service_config_parser.cc +3 -3
- data/src/core/ext/{filters/client_channel → service_config}/service_config_parser.h +8 -6
- data/src/core/ext/transport/chttp2/client/chttp2_connector.cc +4 -23
- data/src/core/ext/transport/chttp2/client/chttp2_connector.h +0 -2
- data/src/core/ext/transport/chttp2/client/insecure/channel_create.cc +25 -27
- data/src/core/ext/transport/chttp2/client/insecure/channel_create_posix.cc +11 -14
- data/src/core/ext/transport/chttp2/client/secure/secure_channel_create.cc +32 -52
- data/src/core/ext/transport/chttp2/server/chttp2_server.cc +68 -95
- data/src/core/ext/transport/chttp2/server/insecure/server_chttp2.cc +2 -3
- data/src/core/ext/transport/chttp2/server/insecure/server_chttp2_posix.cc +9 -13
- data/src/core/ext/transport/chttp2/server/secure/server_secure_chttp2.cc +6 -6
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.cc +108 -116
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.h +1 -2
- data/src/core/ext/transport/chttp2/transport/context_list.cc +2 -3
- data/src/core/ext/transport/chttp2/transport/context_list.h +2 -3
- data/src/core/ext/transport/chttp2/transport/flow_control.cc +26 -23
- data/src/core/ext/transport/chttp2/transport/flow_control.h +6 -6
- data/src/core/ext/transport/chttp2/transport/frame_data.cc +4 -4
- data/src/core/ext/transport/chttp2/transport/frame_goaway.cc +2 -1
- data/src/core/ext/transport/chttp2/transport/frame_ping.cc +2 -1
- data/src/core/ext/transport/chttp2/transport/frame_rst_stream.cc +2 -3
- data/src/core/ext/transport/chttp2/transport/frame_settings.cc +2 -2
- data/src/core/ext/transport/chttp2/transport/hpack_constants.h +1 -1
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.cc +119 -15
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.h +41 -5
- data/src/core/ext/transport/chttp2/transport/hpack_encoder_index.h +1 -1
- data/src/core/ext/transport/chttp2/transport/hpack_parser.cc +195 -183
- data/src/core/ext/transport/chttp2/transport/hpack_parser.h +27 -8
- data/src/core/ext/transport/chttp2/transport/hpack_parser_table.cc +12 -25
- data/src/core/ext/transport/chttp2/transport/hpack_parser_table.h +37 -30
- data/src/core/ext/transport/chttp2/transport/internal.h +12 -7
- data/src/core/ext/transport/chttp2/transport/parsing.cc +30 -173
- data/src/core/ext/transport/chttp2/transport/popularity_count.h +1 -1
- data/src/core/ext/transport/chttp2/transport/writing.cc +29 -22
- data/src/core/ext/transport/inproc/inproc_transport.cc +121 -116
- data/src/core/ext/transport/inproc/inproc_transport.h +1 -1
- data/src/core/ext/upb-generated/envoy/admin/v3/config_dump.upb.c +197 -165
- data/src/core/ext/upb-generated/envoy/admin/v3/config_dump.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/annotations/deprecation.upb.c +41 -0
- data/src/core/ext/upb-generated/envoy/annotations/deprecation.upb.h +18 -0
- data/src/core/ext/upb-generated/envoy/annotations/resource.upb.c +26 -2
- data/src/core/ext/upb-generated/envoy/annotations/resource.upb.h +7 -0
- data/src/core/ext/upb-generated/envoy/config/accesslog/v3/accesslog.upb.c +107 -82
- data/src/core/ext/upb-generated/envoy/config/accesslog/v3/accesslog.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/bootstrap/v3/bootstrap.upb.c +188 -160
- data/src/core/ext/upb-generated/envoy/config/bootstrap/v3/bootstrap.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/circuit_breaker.upb.c +35 -22
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/circuit_breaker.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/cluster.upb.c +277 -208
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/cluster.upb.h +141 -1
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/filter.upb.c +16 -5
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/filter.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/outlier_detection.upb.c +36 -25
- data/src/core/ext/upb-generated/envoy/config/cluster/v3/outlier_detection.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/address.upb.c +56 -39
- data/src/core/ext/upb-generated/envoy/config/core/v3/address.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/backoff.upb.c +16 -5
- data/src/core/ext/upb-generated/envoy/config/core/v3/backoff.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/base.upb.c +171 -125
- data/src/core/ext/upb-generated/envoy/config/core/v3/base.upb.h +55 -4
- data/src/core/ext/upb-generated/envoy/config/core/v3/config_source.upb.c +51 -36
- data/src/core/ext/upb-generated/envoy/config/core/v3/config_source.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/event_service_config.upb.c +15 -4
- data/src/core/ext/upb-generated/envoy/config/core/v3/event_service_config.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/extension.upb.c +25 -13
- data/src/core/ext/upb-generated/envoy/config/core/v3/extension.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/grpc_service.upb.c +114 -90
- data/src/core/ext/upb-generated/envoy/config/core/v3/grpc_service.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/health_check.upb.c +90 -71
- data/src/core/ext/upb-generated/envoy/config/core/v3/health_check.upb.h +17 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/http_uri.upb.c +17 -6
- data/src/core/ext/upb-generated/envoy/config/core/v3/http_uri.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/protocol.upb.c +121 -92
- data/src/core/ext/upb-generated/envoy/config/core/v3/protocol.upb.h +25 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/proxy_protocol.upb.c +13 -2
- data/src/core/ext/upb-generated/envoy/config/core/v3/proxy_protocol.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/resolver.upb.c +21 -9
- data/src/core/ext/upb-generated/envoy/config/core/v3/resolver.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/socket_option.upb.c +18 -7
- data/src/core/ext/upb-generated/envoy/config/core/v3/socket_option.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/substitution_format_string.upb.c +22 -11
- data/src/core/ext/upb-generated/envoy/config/core/v3/substitution_format_string.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/udp_socket_config.upb.c +17 -6
- data/src/core/ext/upb-generated/envoy/config/core/v3/udp_socket_config.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/endpoint/v3/endpoint.upb.c +41 -27
- data/src/core/ext/upb-generated/envoy/config/endpoint/v3/endpoint.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/endpoint/v3/endpoint_components.upb.c +59 -44
- data/src/core/ext/upb-generated/envoy/config/endpoint/v3/endpoint_components.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/endpoint/v3/load_report.upb.c +58 -43
- data/src/core/ext/upb-generated/envoy/config/endpoint/v3/load_report.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/listener/v3/api_listener.upb.c +15 -4
- data/src/core/ext/upb-generated/envoy/config/listener/v3/api_listener.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/listener/v3/listener.upb.c +73 -57
- data/src/core/ext/upb-generated/envoy/config/listener/v3/listener.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/listener/v3/listener_components.upb.c +81 -64
- data/src/core/ext/upb-generated/envoy/config/listener/v3/listener_components.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/listener/v3/quic_config.upb.c +25 -14
- data/src/core/ext/upb-generated/envoy/config/listener/v3/quic_config.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/listener/v3/udp_listener_config.upb.c +19 -7
- data/src/core/ext/upb-generated/envoy/config/listener/v3/udp_listener_config.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/metrics/v3/stats.upb.c +63 -45
- data/src/core/ext/upb-generated/envoy/config/metrics/v3/stats.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/overload/v3/overload.upb.c +66 -47
- data/src/core/ext/upb-generated/envoy/config/overload/v3/overload.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/rbac/v3/rbac.upb.c +99 -78
- data/src/core/ext/upb-generated/envoy/config/rbac/v3/rbac.upb.h +19 -0
- data/src/core/ext/upb-generated/envoy/config/route/v3/route.upb.c +41 -28
- data/src/core/ext/upb-generated/envoy/config/route/v3/route.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/route/v3/route_components.upb.c +508 -442
- data/src/core/ext/upb-generated/envoy/config/route/v3/route_components.upb.h +51 -19
- data/src/core/ext/upb-generated/envoy/config/route/v3/scoped_route.upb.c +26 -13
- data/src/core/ext/upb-generated/envoy/config/route/v3/scoped_route.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/config/trace/v3/http_tracer.upb.c +21 -9
- data/src/core/ext/upb-generated/envoy/config/trace/v3/http_tracer.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/clusters/aggregate/v3/cluster.upb.c +13 -2
- data/src/core/ext/upb-generated/envoy/extensions/clusters/aggregate/v3/cluster.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/filters/common/fault/v3/fault.upb.c +35 -20
- data/src/core/ext/upb-generated/envoy/extensions/filters/common/fault/v3/fault.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/fault/v3/fault.upb.c +44 -31
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/fault/v3/fault.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/router/v3/router.upb.c +22 -11
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/router/v3/router.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.c +210 -181
- data/src/core/ext/upb-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/cert.upb.c +7 -0
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/cert.upb.h +5 -3
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/common.upb.c +64 -48
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/common.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/secret.upb.c +33 -20
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/secret.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/tls.upb.c +81 -65
- data/src/core/ext/upb-generated/envoy/extensions/transport_sockets/tls/v3/tls.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/cluster/v3/cds.upb.c +12 -1
- data/src/core/ext/upb-generated/envoy/service/cluster/v3/cds.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/discovery/v3/ads.upb.c +12 -1
- data/src/core/ext/upb-generated/envoy/service/discovery/v3/ads.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/discovery/v3/discovery.upb.c +75 -58
- data/src/core/ext/upb-generated/envoy/service/discovery/v3/discovery.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/endpoint/v3/eds.upb.c +12 -1
- data/src/core/ext/upb-generated/envoy/service/endpoint/v3/eds.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/listener/v3/lds.upb.c +12 -1
- data/src/core/ext/upb-generated/envoy/service/listener/v3/lds.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/load_stats/v3/lrs.upb.c +25 -13
- data/src/core/ext/upb-generated/envoy/service/load_stats/v3/lrs.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/route/v3/rds.upb.c +12 -1
- data/src/core/ext/upb-generated/envoy/service/route/v3/rds.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/route/v3/srds.upb.c +12 -1
- data/src/core/ext/upb-generated/envoy/service/route/v3/srds.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/service/status/v3/csds.upb.c +61 -46
- data/src/core/ext/upb-generated/envoy/service/status/v3/csds.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/http/v3/path_transformation.upb.c +26 -12
- data/src/core/ext/upb-generated/envoy/type/http/v3/path_transformation.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/metadata.upb.c +22 -10
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/metadata.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/node.upb.c +17 -6
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/node.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/number.upb.c +16 -5
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/number.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/path.upb.c +15 -4
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/path.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/regex.upb.c +27 -14
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/regex.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/string.upb.c +25 -13
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/string.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/struct.upb.c +20 -8
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/struct.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/value.upb.c +30 -17
- data/src/core/ext/upb-generated/envoy/type/matcher/v3/value.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/metadata/v3/metadata.upb.c +38 -21
- data/src/core/ext/upb-generated/envoy/type/metadata/v3/metadata.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/tracing/v3/custom_tag.upb.c +41 -26
- data/src/core/ext/upb-generated/envoy/type/tracing/v3/custom_tag.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/v3/http.upb.c +7 -0
- data/src/core/ext/upb-generated/envoy/type/v3/http.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/v3/percent.upb.c +17 -5
- data/src/core/ext/upb-generated/envoy/type/v3/percent.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/v3/range.upb.c +22 -9
- data/src/core/ext/upb-generated/envoy/type/v3/range.upb.h +2 -0
- data/src/core/ext/upb-generated/envoy/type/v3/semantic_version.upb.c +15 -4
- data/src/core/ext/upb-generated/envoy/type/v3/semantic_version.upb.h +2 -0
- data/src/core/ext/upb-generated/google/api/annotations.upb.c +20 -0
- data/src/core/ext/upb-generated/google/api/annotations.upb.h +7 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/checked.upb.c +116 -93
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/checked.upb.h +2 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/eval.upb.c +102 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/eval.upb.h +306 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/explain.upb.c +56 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/explain.upb.h +135 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/syntax.upb.c +122 -98
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/syntax.upb.h +2 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/value.upb.c +115 -0
- data/src/core/ext/upb-generated/google/api/expr/v1alpha1/value.upb.h +371 -0
- data/src/core/ext/upb-generated/google/api/http.upb.c +35 -22
- data/src/core/ext/upb-generated/google/api/http.upb.h +2 -0
- data/src/core/ext/upb-generated/google/protobuf/any.upb.c +14 -3
- data/src/core/ext/upb-generated/google/protobuf/any.upb.h +2 -0
- data/src/core/ext/upb-generated/google/protobuf/descriptor.upb.c +247 -210
- data/src/core/ext/upb-generated/google/protobuf/descriptor.upb.h +2 -0
- data/src/core/ext/upb-generated/google/protobuf/duration.upb.c +14 -3
- data/src/core/ext/upb-generated/google/protobuf/duration.upb.h +2 -0
- data/src/core/ext/upb-generated/google/protobuf/empty.upb.c +12 -1
- data/src/core/ext/upb-generated/google/protobuf/empty.upb.h +2 -0
- data/src/core/ext/upb-generated/google/protobuf/struct.upb.c +37 -23
- data/src/core/ext/upb-generated/google/protobuf/struct.upb.h +2 -0
- data/src/core/ext/upb-generated/google/protobuf/timestamp.upb.c +14 -3
- data/src/core/ext/upb-generated/google/protobuf/timestamp.upb.h +2 -0
- data/src/core/ext/upb-generated/google/protobuf/wrappers.upb.c +37 -18
- data/src/core/ext/upb-generated/google/protobuf/wrappers.upb.h +2 -0
- data/src/core/ext/upb-generated/google/rpc/status.upb.c +17 -6
- data/src/core/ext/upb-generated/google/rpc/status.upb.h +2 -0
- data/src/core/ext/upb-generated/src/proto/grpc/gcp/altscontext.upb.c +26 -14
- data/src/core/ext/upb-generated/src/proto/grpc/gcp/altscontext.upb.h +2 -0
- data/src/core/ext/upb-generated/src/proto/grpc/gcp/handshaker.upb.c +105 -83
- data/src/core/ext/upb-generated/src/proto/grpc/gcp/handshaker.upb.h +2 -0
- data/src/core/ext/upb-generated/src/proto/grpc/gcp/transport_security_common.upb.c +20 -8
- data/src/core/ext/upb-generated/src/proto/grpc/gcp/transport_security_common.upb.h +2 -0
- data/src/core/ext/upb-generated/src/proto/grpc/health/v1/health.upb.c +16 -4
- data/src/core/ext/upb-generated/src/proto/grpc/health/v1/health.upb.h +2 -0
- data/src/core/ext/upb-generated/src/proto/grpc/lb/v1/load_balancer.upb.c +65 -47
- data/src/core/ext/upb-generated/src/proto/grpc/lb/v1/load_balancer.upb.h +34 -36
- data/src/core/ext/upb-generated/src/proto/grpc/lookup/v1/rls.upb.c +68 -0
- data/src/core/ext/upb-generated/src/proto/grpc/lookup/v1/rls.upb.h +156 -0
- data/src/core/ext/upb-generated/udpa/annotations/migrate.upb.c +67 -7
- data/src/core/ext/upb-generated/udpa/annotations/migrate.upb.h +27 -0
- data/src/core/ext/upb-generated/udpa/annotations/security.upb.c +27 -5
- data/src/core/ext/upb-generated/udpa/annotations/security.upb.h +7 -0
- data/src/core/ext/upb-generated/udpa/annotations/sensitive.upb.c +19 -0
- data/src/core/ext/upb-generated/udpa/annotations/sensitive.upb.h +7 -0
- data/src/core/ext/upb-generated/udpa/annotations/status.upb.c +27 -3
- data/src/core/ext/upb-generated/udpa/annotations/status.upb.h +7 -0
- data/src/core/ext/upb-generated/udpa/annotations/versioning.upb.c +26 -2
- data/src/core/ext/upb-generated/udpa/annotations/versioning.upb.h +7 -0
- data/src/core/ext/upb-generated/validate/validate.upb.c +320 -251
- data/src/core/ext/upb-generated/validate/validate.upb.h +20 -0
- data/src/core/ext/upb-generated/xds/annotations/v3/status.upb.c +103 -0
- data/src/core/ext/upb-generated/xds/annotations/v3/status.upb.h +199 -0
- data/src/core/ext/upb-generated/xds/core/v3/authority.upb.c +14 -3
- data/src/core/ext/upb-generated/xds/core/v3/authority.upb.h +2 -0
- data/src/core/ext/upb-generated/xds/core/v3/collection_entry.upb.c +25 -13
- data/src/core/ext/upb-generated/xds/core/v3/collection_entry.upb.h +2 -0
- data/src/core/ext/upb-generated/xds/core/v3/context_params.upb.c +20 -8
- data/src/core/ext/upb-generated/xds/core/v3/context_params.upb.h +2 -0
- data/src/core/ext/upb-generated/xds/core/v3/resource.upb.c +19 -8
- data/src/core/ext/upb-generated/xds/core/v3/resource.upb.h +2 -0
- data/src/core/ext/upb-generated/xds/core/v3/resource_locator.upb.c +28 -16
- data/src/core/ext/upb-generated/xds/core/v3/resource_locator.upb.h +2 -0
- data/src/core/ext/upb-generated/xds/core/v3/resource_name.upb.c +19 -8
- data/src/core/ext/upb-generated/xds/core/v3/resource_name.upb.h +2 -0
- data/src/core/ext/upb-generated/xds/data/orca/v3/orca_load_report.upb.c +71 -0
- data/src/core/ext/upb-generated/xds/data/orca/v3/orca_load_report.upb.h +132 -0
- data/src/core/ext/upb-generated/xds/type/v3/typed_struct.upb.c +44 -0
- data/src/core/ext/upb-generated/xds/type/v3/typed_struct.upb.h +85 -0
- data/src/core/ext/upbdefs-generated/envoy/admin/v3/config_dump.upbdefs.c +2 -49
- data/src/core/ext/upbdefs-generated/envoy/annotations/deprecation.upbdefs.c +2 -2
- data/src/core/ext/upbdefs-generated/envoy/annotations/resource.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/accesslog/v3/accesslog.upbdefs.c +2 -35
- data/src/core/ext/upbdefs-generated/envoy/config/bootstrap/v3/bootstrap.upbdefs.c +2 -41
- data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/circuit_breaker.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/cluster.upbdefs.c +307 -336
- data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/cluster.upbdefs.h +10 -0
- data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/filter.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/cluster/v3/outlier_detection.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/address.upbdefs.c +2 -19
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/backoff.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/base.upbdefs.c +100 -138
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/base.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/config_source.upbdefs.c +2 -15
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/event_service_config.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/extension.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/grpc_service.upbdefs.c +2 -33
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/health_check.upbdefs.c +61 -77
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/http_uri.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/protocol.upbdefs.c +61 -79
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/proxy_protocol.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/resolver.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/socket_option.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/substitution_format_string.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/udp_socket_config.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/endpoint/v3/endpoint.upbdefs.c +2 -13
- data/src/core/ext/upbdefs-generated/envoy/config/endpoint/v3/endpoint_components.upbdefs.c +80 -99
- data/src/core/ext/upbdefs-generated/envoy/config/endpoint/v3/load_report.upbdefs.c +2 -15
- data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/api_listener.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/listener.upbdefs.c +2 -17
- data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/listener_components.upbdefs.c +2 -19
- data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/quic_config.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/config/listener/v3/udp_listener_config.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/config/metrics/v3/stats.upbdefs.c +2 -21
- data/src/core/ext/upbdefs-generated/envoy/config/overload/v3/overload.upbdefs.c +2 -23
- data/src/core/ext/upbdefs-generated/envoy/config/route/v3/route.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/config/route/v3/route_components.upbdefs.c +325 -427
- data/src/core/ext/upbdefs-generated/envoy/config/route/v3/scoped_route.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/config/trace/v3/http_tracer.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/extensions/clusters/aggregate/v3/cluster.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/common/fault/v3/fault.upbdefs.c +2 -15
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/fault/v3/fault.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/router/v3/router.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.c +2 -43
- data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/cert.upbdefs.c +2 -2
- data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.c +2 -17
- data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/secret.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/extensions/transport_sockets/tls/v3/tls.upbdefs.c +2 -17
- data/src/core/ext/upbdefs-generated/envoy/service/cluster/v3/cds.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/service/discovery/v3/ads.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/service/discovery/v3/discovery.upbdefs.c +2 -19
- data/src/core/ext/upbdefs-generated/envoy/service/endpoint/v3/eds.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/service/listener/v3/lds.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/service/load_stats/v3/lrs.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/service/route/v3/rds.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/service/route/v3/srds.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/service/status/v3/csds.upbdefs.c +2 -15
- data/src/core/ext/upbdefs-generated/envoy/type/http/v3/path_transformation.upbdefs.c +2 -13
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/metadata.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/node.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/number.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/path.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/regex.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/string.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/struct.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/value.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/type/metadata/v3/metadata.upbdefs.c +2 -19
- data/src/core/ext/upbdefs-generated/envoy/type/tracing/v3/custom_tag.upbdefs.c +2 -15
- data/src/core/ext/upbdefs-generated/envoy/type/v3/http.upbdefs.c +2 -2
- data/src/core/ext/upbdefs-generated/envoy/type/v3/percent.upbdefs.c +2 -9
- data/src/core/ext/upbdefs-generated/envoy/type/v3/range.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/envoy/type/v3/semantic_version.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/google/api/annotations.upbdefs.c +2 -2
- data/src/core/ext/upbdefs-generated/google/api/http.upbdefs.c +2 -11
- data/src/core/ext/upbdefs-generated/google/protobuf/any.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/google/protobuf/descriptor.upbdefs.c +2 -59
- data/src/core/ext/upbdefs-generated/google/protobuf/duration.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/google/protobuf/empty.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/google/protobuf/struct.upbdefs.c +2 -13
- data/src/core/ext/upbdefs-generated/google/protobuf/timestamp.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/google/protobuf/wrappers.upbdefs.c +2 -23
- data/src/core/ext/upbdefs-generated/google/rpc/status.upbdefs.c +2 -7
- data/src/core/ext/upbdefs-generated/udpa/annotations/migrate.upbdefs.c +7 -15
- data/src/core/ext/upbdefs-generated/udpa/annotations/security.upbdefs.c +21 -30
- data/src/core/ext/upbdefs-generated/udpa/annotations/sensitive.upbdefs.c +6 -5
- data/src/core/ext/upbdefs-generated/udpa/annotations/status.upbdefs.c +7 -10
- data/src/core/ext/upbdefs-generated/udpa/annotations/versioning.upbdefs.c +7 -11
- data/src/core/ext/upbdefs-generated/validate/validate.upbdefs.c +2 -51
- data/src/core/ext/upbdefs-generated/xds/annotations/v3/status.upbdefs.c +64 -0
- data/src/core/ext/upbdefs-generated/xds/annotations/v3/status.upbdefs.h +50 -0
- data/src/core/ext/upbdefs-generated/xds/core/v3/authority.upbdefs.c +15 -19
- data/src/core/ext/upbdefs-generated/xds/core/v3/collection_entry.upbdefs.c +27 -33
- data/src/core/ext/upbdefs-generated/xds/core/v3/context_params.upbdefs.c +18 -24
- data/src/core/ext/upbdefs-generated/xds/core/v3/resource.upbdefs.c +19 -23
- data/src/core/ext/upbdefs-generated/xds/core/v3/resource_locator.upbdefs.c +35 -41
- data/src/core/ext/upbdefs-generated/xds/core/v3/resource_name.upbdefs.c +21 -25
- data/src/core/ext/upbdefs-generated/xds/type/v3/typed_struct.upbdefs.c +40 -0
- data/src/core/ext/upbdefs-generated/xds/type/v3/typed_struct.upbdefs.h +35 -0
- data/src/core/ext/xds/certificate_provider_registry.cc +1 -1
- data/src/core/ext/xds/certificate_provider_store.h +1 -1
- data/src/core/ext/xds/xds_api.cc +693 -625
- data/src/core/ext/xds/xds_api.h +137 -83
- data/src/core/ext/xds/xds_bootstrap.cc +6 -3
- data/src/core/ext/xds/xds_bootstrap.h +10 -0
- data/src/core/ext/xds/xds_certificate_provider.cc +3 -3
- data/src/core/ext/xds/xds_certificate_provider.h +1 -2
- data/src/core/ext/xds/xds_channel_stack_modifier.cc +112 -0
- data/src/core/ext/xds/xds_channel_stack_modifier.h +52 -0
- data/src/core/ext/xds/xds_client.cc +752 -435
- data/src/core/ext/xds/xds_client.h +83 -69
- data/src/core/ext/xds/xds_client_stats.h +1 -1
- data/src/core/ext/xds/xds_routing.cc +247 -0
- data/src/core/ext/xds/xds_routing.h +98 -0
- data/src/core/ext/xds/xds_server_config_fetcher.cc +976 -264
- data/src/core/lib/address_utils/parse_address.cc +2 -0
- data/src/core/lib/avl/avl.h +389 -88
- data/src/core/lib/backoff/backoff.cc +3 -3
- data/src/core/lib/channel/channel_args.cc +25 -7
- data/src/core/lib/channel/channel_args.h +11 -1
- data/src/core/lib/channel/channel_args_preconditioning.cc +47 -0
- data/src/core/lib/channel/channel_args_preconditioning.h +62 -0
- data/src/core/lib/channel/channel_stack_builder.cc +3 -5
- data/src/core/lib/channel/channel_trace.cc +7 -7
- data/src/core/lib/channel/channel_trace.h +1 -1
- data/src/core/lib/channel/channelz.cc +3 -3
- data/src/core/lib/channel/channelz.h +2 -2
- data/src/core/lib/channel/channelz_registry.cc +1 -1
- data/src/core/lib/channel/channelz_registry.h +1 -1
- data/src/core/lib/channel/connected_channel.cc +1 -3
- data/src/core/lib/channel/connected_channel.h +1 -2
- data/src/core/lib/compression/compression.cc +2 -2
- data/src/core/lib/compression/compression_args.cc +13 -9
- data/src/core/lib/compression/compression_args.h +6 -4
- data/src/core/lib/compression/compression_internal.cc +2 -2
- data/src/core/lib/compression/compression_internal.h +1 -1
- data/src/core/lib/config/core_configuration.cc +46 -2
- data/src/core/lib/config/core_configuration.h +50 -1
- data/src/core/lib/debug/stats.cc +1 -1
- data/src/core/lib/debug/stats_data.cc +13 -13
- data/src/core/lib/debug/trace.h +2 -2
- data/src/core/lib/event_engine/{endpoint_config.cc → channel_args_endpoint_config.cc} +2 -1
- data/src/core/lib/event_engine/{endpoint_config_internal.h → channel_args_endpoint_config.h} +3 -3
- data/src/core/lib/event_engine/event_engine.cc +0 -13
- data/src/core/lib/event_engine/event_engine_factory.cc +49 -0
- data/src/core/lib/event_engine/event_engine_factory.h +33 -0
- data/src/core/lib/event_engine/memory_allocator.cc +70 -0
- data/src/core/lib/gpr/atm.cc +1 -1
- data/src/core/lib/gpr/cpu_posix.cc +1 -1
- data/src/core/lib/gpr/string.cc +2 -2
- data/src/core/lib/gpr/tls.h +7 -1
- data/src/core/lib/gpr/useful.h +79 -32
- data/src/core/lib/gprpp/arena.h +10 -0
- data/src/core/lib/gprpp/bitset.h +38 -16
- data/src/core/lib/gprpp/chunked_vector.h +211 -0
- data/src/core/lib/gprpp/construct_destruct.h +1 -1
- data/src/core/lib/gprpp/cpp_impl_of.h +45 -0
- data/src/core/lib/gprpp/global_config_env.cc +7 -7
- data/src/core/lib/gprpp/global_config_env.h +2 -2
- data/src/core/lib/gprpp/manual_constructor.h +2 -3
- data/src/core/lib/gprpp/memory.h +6 -0
- data/src/core/lib/gprpp/orphanable.h +1 -1
- data/src/core/lib/gprpp/ref_counted.h +1 -1
- data/src/core/lib/gprpp/ref_counted_ptr.h +2 -4
- data/src/core/lib/gprpp/status_helper.cc +23 -3
- data/src/core/lib/gprpp/status_helper.h +13 -2
- data/src/core/lib/gprpp/table.h +423 -0
- data/src/core/lib/http/httpcli.cc +220 -198
- data/src/core/lib/http/httpcli.h +14 -12
- data/src/core/lib/http/parser.cc +2 -2
- data/src/core/lib/iomgr/buffer_list.cc +9 -9
- data/src/core/lib/iomgr/buffer_list.h +13 -13
- data/src/core/lib/iomgr/call_combiner.cc +29 -12
- data/src/core/lib/iomgr/combiner.cc +6 -21
- data/src/core/lib/iomgr/endpoint.h +0 -1
- data/src/core/lib/iomgr/endpoint_cfstream.cc +14 -30
- data/src/core/lib/iomgr/endpoint_cfstream.h +4 -4
- data/src/core/lib/iomgr/endpoint_pair_posix.cc +9 -11
- data/src/core/lib/iomgr/endpoint_pair_windows.cc +5 -14
- data/src/core/lib/iomgr/error.cc +113 -52
- data/src/core/lib/iomgr/error.h +50 -9
- data/src/core/lib/iomgr/error_cfstream.cc +5 -0
- data/src/core/lib/iomgr/ev_epoll1_linux.cc +3 -2
- data/src/core/lib/iomgr/ev_epollex_linux.cc +7 -7
- data/src/core/lib/iomgr/ev_poll_posix.cc +29 -20
- data/src/core/lib/iomgr/event_engine/closure.cc +41 -18
- data/src/core/lib/iomgr/event_engine/closure.h +10 -1
- data/src/core/lib/iomgr/event_engine/endpoint.cc +5 -6
- data/src/core/lib/iomgr/event_engine/iomgr.cc +6 -26
- data/src/core/lib/iomgr/event_engine/pollset.cc +5 -4
- data/src/core/lib/iomgr/event_engine/resolver.cc +12 -8
- data/src/core/lib/iomgr/event_engine/tcp.cc +16 -13
- data/src/core/lib/iomgr/event_engine/timer.cc +10 -4
- data/src/core/lib/iomgr/exec_ctx.cc +1 -9
- data/src/core/lib/iomgr/exec_ctx.h +11 -11
- data/src/core/lib/iomgr/executor/mpmcqueue.cc +5 -7
- data/src/core/lib/iomgr/executor/mpmcqueue.h +3 -8
- data/src/core/lib/iomgr/executor.cc +16 -33
- data/src/core/lib/iomgr/executor.h +1 -1
- data/src/core/lib/iomgr/iomgr.cc +3 -1
- data/src/core/lib/iomgr/iomgr_internal.cc +4 -9
- data/src/core/lib/iomgr/iomgr_internal.h +3 -2
- data/src/core/lib/iomgr/load_file.cc +2 -2
- data/src/core/lib/iomgr/lockfree_event.cc +18 -0
- data/src/core/lib/iomgr/pollset_custom.cc +1 -1
- data/src/core/lib/iomgr/pollset_custom.h +1 -1
- data/src/core/lib/iomgr/resolve_address_posix.cc +5 -7
- data/src/core/lib/iomgr/socket_factory_posix.cc +2 -2
- data/src/core/lib/iomgr/socket_mutator.cc +2 -2
- data/src/core/lib/iomgr/socket_utils_common_posix.cc +1 -2
- data/src/core/lib/iomgr/tcp_client.cc +2 -4
- data/src/core/lib/iomgr/tcp_client.h +1 -3
- data/src/core/lib/iomgr/tcp_client_cfstream.cc +6 -12
- data/src/core/lib/iomgr/tcp_client_custom.cc +5 -11
- data/src/core/lib/iomgr/tcp_client_posix.cc +16 -41
- data/src/core/lib/iomgr/tcp_client_posix.h +3 -4
- data/src/core/lib/iomgr/tcp_client_windows.cc +3 -13
- data/src/core/lib/iomgr/tcp_custom.cc +9 -36
- data/src/core/lib/iomgr/tcp_custom.h +0 -1
- data/src/core/lib/iomgr/tcp_posix.cc +32 -38
- data/src/core/lib/iomgr/tcp_posix.h +1 -3
- data/src/core/lib/iomgr/tcp_server.cc +4 -6
- data/src/core/lib/iomgr/tcp_server.h +6 -8
- data/src/core/lib/iomgr/tcp_server_custom.cc +7 -16
- data/src/core/lib/iomgr/tcp_server_posix.cc +20 -25
- data/src/core/lib/iomgr/tcp_server_utils_posix.h +19 -18
- data/src/core/lib/iomgr/tcp_server_windows.cc +9 -17
- data/src/core/lib/iomgr/tcp_windows.cc +4 -9
- data/src/core/lib/iomgr/tcp_windows.h +1 -2
- data/src/core/lib/iomgr/timer_generic.cc +13 -13
- data/src/core/lib/iomgr/timer_heap.cc +1 -1
- data/src/core/lib/iomgr/unix_sockets_posix.cc +1 -1
- data/src/core/lib/iomgr/unix_sockets_posix.h +1 -1
- data/src/core/lib/iomgr/unix_sockets_posix_noop.cc +1 -1
- data/src/core/lib/iomgr/work_serializer.cc +115 -44
- data/src/core/lib/iomgr/work_serializer.h +16 -4
- data/src/core/lib/json/json_reader.cc +83 -35
- data/src/core/lib/json/json_util.cc +69 -1
- data/src/core/lib/json/json_util.h +57 -99
- data/src/core/lib/json/json_writer.cc +0 -3
- data/src/core/lib/promise/activity.cc +115 -0
- data/src/core/lib/promise/activity.h +499 -0
- data/src/core/lib/promise/context.h +86 -0
- data/src/core/lib/promise/detail/basic_seq.h +407 -0
- data/src/core/lib/promise/detail/promise_factory.h +189 -0
- data/src/core/lib/promise/detail/promise_like.h +85 -0
- data/src/core/lib/promise/detail/status.h +44 -0
- data/src/core/lib/promise/detail/switch.h +1455 -0
- data/src/core/lib/promise/exec_ctx_wakeup_scheduler.h +48 -0
- data/src/core/lib/promise/loop.h +108 -0
- data/src/core/lib/promise/map.h +88 -0
- data/src/core/lib/promise/poll.h +60 -0
- data/src/core/lib/promise/race.h +84 -0
- data/src/core/lib/promise/seq.h +71 -0
- data/src/core/lib/resource_quota/api.cc +108 -0
- data/src/core/lib/resource_quota/api.h +41 -0
- data/src/core/lib/resource_quota/memory_quota.cc +454 -0
- data/src/core/lib/resource_quota/memory_quota.h +421 -0
- data/src/core/lib/resource_quota/resource_quota.cc +33 -0
- data/src/core/lib/resource_quota/resource_quota.h +58 -0
- data/src/core/lib/{transport/authority_override.h → resource_quota/thread_quota.cc} +22 -16
- data/src/core/lib/resource_quota/thread_quota.h +57 -0
- data/src/core/lib/resource_quota/trace.cc +19 -0
- data/src/core/lib/resource_quota/trace.h +24 -0
- data/src/core/lib/security/authorization/authorization_policy_provider.h +1 -1
- data/src/core/lib/security/authorization/authorization_policy_provider_vtable.cc +1 -1
- data/src/core/lib/security/authorization/evaluate_args.cc +20 -24
- data/src/core/lib/security/authorization/evaluate_args.h +2 -1
- data/src/core/lib/security/authorization/sdk_server_authz_filter.cc +15 -1
- data/src/core/lib/security/context/security_context.cc +4 -2
- data/src/core/lib/security/credentials/composite/composite_credentials.cc +1 -1
- data/src/core/lib/security/credentials/credentials.cc +4 -2
- data/src/core/lib/security/credentials/credentials.h +6 -1
- data/src/core/lib/security/credentials/external/aws_external_account_credentials.cc +11 -12
- data/src/core/lib/security/credentials/external/external_account_credentials.cc +56 -21
- data/src/core/lib/security/credentials/external/external_account_credentials.h +1 -0
- data/src/core/lib/security/credentials/external/url_external_account_credentials.cc +3 -4
- data/src/core/lib/security/credentials/google_default/google_default_credentials.cc +5 -7
- data/src/core/lib/security/credentials/jwt/jwt_credentials.cc +1 -1
- data/src/core/lib/security/credentials/jwt/jwt_verifier.cc +9 -15
- data/src/core/lib/security/credentials/oauth2/oauth2_credentials.cc +18 -22
- data/src/core/lib/security/credentials/plugin/plugin_credentials.cc +2 -2
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc +11 -12
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.h +7 -8
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.cc +201 -0
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.h +106 -0
- data/src/core/lib/security/credentials/tls/grpc_tls_credentials_options.cc +11 -90
- data/src/core/lib/security/credentials/tls/grpc_tls_credentials_options.h +19 -82
- data/src/core/lib/security/credentials/tls/tls_credentials.cc +21 -10
- data/src/core/lib/security/credentials/xds/xds_credentials.cc +28 -33
- data/src/core/lib/security/security_connector/alts/alts_security_connector.cc +3 -3
- data/src/core/lib/security/security_connector/alts/alts_security_connector.h +2 -2
- data/src/core/lib/security/security_connector/fake/fake_security_connector.cc +5 -6
- data/src/core/lib/security/security_connector/insecure/insecure_security_connector.cc +2 -2
- data/src/core/lib/security/security_connector/insecure/insecure_security_connector.h +7 -7
- data/src/core/lib/security/security_connector/load_system_roots_linux.cc +1 -2
- data/src/core/lib/security/security_connector/local/local_security_connector.cc +4 -1
- data/src/core/lib/security/security_connector/security_connector.cc +9 -4
- data/src/core/lib/security/security_connector/security_connector.h +1 -1
- data/src/core/lib/security/security_connector/ssl_utils.cc +11 -3
- data/src/core/lib/security/security_connector/ssl_utils.h +1 -1
- data/src/core/lib/security/security_connector/tls/tls_security_connector.cc +345 -195
- data/src/core/lib/security/security_connector/tls/tls_security_connector.h +64 -43
- data/src/core/lib/security/transport/client_auth_filter.cc +5 -5
- data/src/core/lib/security/transport/security_handshaker.cc +75 -45
- data/src/core/lib/security/transport/server_auth_filter.cc +3 -5
- data/src/core/lib/security/transport/tsi_error.cc +3 -5
- data/src/core/lib/slice/percent_encoding.cc +30 -86
- data/src/core/lib/slice/percent_encoding.h +5 -11
- data/src/core/lib/slice/slice.cc +7 -23
- data/src/core/lib/slice/slice.h +341 -0
- data/src/core/lib/slice/slice_api.cc +39 -0
- data/src/core/lib/slice/slice_buffer.cc +9 -5
- data/src/core/lib/slice/slice_intern.cc +9 -14
- data/src/core/lib/slice/slice_internal.h +1 -244
- data/src/core/lib/slice/slice_refcount.cc +17 -0
- data/src/core/lib/slice/slice_refcount.h +125 -0
- data/src/core/lib/slice/slice_refcount_base.h +181 -0
- data/src/core/lib/slice/slice_split.cc +100 -0
- data/src/core/lib/slice/slice_split.h +40 -0
- data/src/core/lib/slice/slice_string_helpers.cc +0 -83
- data/src/core/lib/slice/slice_string_helpers.h +0 -11
- data/src/core/lib/slice/static_slice.cc +377 -0
- data/src/core/lib/slice/static_slice.h +300 -0
- data/src/core/lib/surface/builtins.cc +49 -0
- data/src/core/lib/surface/builtins.h +26 -0
- data/src/core/lib/surface/call.cc +171 -162
- data/src/core/lib/surface/call.h +0 -6
- data/src/core/lib/surface/channel.cc +23 -61
- data/src/core/lib/surface/channel.h +2 -21
- data/src/core/lib/surface/channel_init.cc +23 -76
- data/src/core/lib/surface/channel_init.h +52 -44
- data/src/core/lib/surface/completion_queue.cc +8 -7
- data/src/core/lib/surface/init.cc +0 -40
- data/src/core/lib/surface/init_secure.cc +17 -14
- data/src/core/lib/surface/lame_client.cc +41 -27
- data/src/core/lib/surface/lame_client.h +1 -1
- data/src/core/lib/surface/server.cc +45 -37
- data/src/core/lib/surface/server.h +25 -19
- data/src/core/lib/surface/validate_metadata.cc +7 -4
- data/src/core/lib/surface/version.cc +2 -2
- data/src/core/lib/transport/bdp_estimator.cc +2 -2
- data/src/core/lib/transport/byte_stream.cc +4 -0
- data/src/core/lib/transport/error_utils.cc +42 -17
- data/src/core/lib/transport/error_utils.h +1 -1
- data/src/core/lib/transport/metadata.cc +31 -10
- data/src/core/lib/transport/metadata.h +6 -5
- data/src/core/lib/transport/metadata_batch.cc +40 -371
- data/src/core/lib/transport/metadata_batch.h +980 -71
- data/src/core/lib/transport/{authority_override.cc → parsed_metadata.cc} +12 -17
- data/src/core/lib/transport/parsed_metadata.h +382 -0
- data/src/core/lib/transport/pid_controller.cc +4 -4
- data/src/core/lib/transport/static_metadata.cc +632 -849
- data/src/core/lib/transport/static_metadata.h +115 -397
- data/src/core/lib/transport/status_metadata.cc +1 -0
- data/src/core/lib/transport/transport.cc +8 -31
- data/src/core/lib/transport/transport.h +0 -1
- data/src/core/lib/transport/transport_op_string.cc +40 -20
- data/src/core/lib/uri/uri_parser.cc +19 -19
- data/src/core/lib/uri/uri_parser.h +2 -0
- data/src/core/plugin_registry/grpc_plugin_registry.cc +66 -43
- data/src/core/tsi/alts/crypt/aes_gcm.cc +3 -1
- data/src/core/tsi/alts/frame_protector/alts_frame_protector.cc +13 -12
- data/src/core/tsi/alts/frame_protector/frame_handler.cc +10 -11
- data/src/core/tsi/alts/handshaker/alts_handshaker_client.cc +2 -3
- data/src/core/tsi/alts/handshaker/alts_tsi_handshaker.cc +12 -2
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_grpc_record_protocol_common.cc +1 -1
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_zero_copy_grpc_protector.cc +2 -2
- data/src/core/tsi/fake_transport_security.cc +15 -7
- data/src/core/tsi/local_transport_security.cc +43 -80
- data/src/core/tsi/ssl/session_cache/ssl_session_cache.cc +16 -50
- data/src/core/tsi/ssl/session_cache/ssl_session_cache.h +4 -3
- data/src/core/tsi/ssl_transport_security.cc +40 -3
- data/src/core/tsi/ssl_transport_security.h +1 -0
- data/src/core/tsi/transport_security.cc +12 -0
- data/src/core/tsi/transport_security.h +16 -1
- data/src/core/tsi/transport_security_interface.h +26 -0
- data/src/ruby/ext/grpc/extconf.rb +12 -9
- data/src/ruby/ext/grpc/rb_grpc_imports.generated.c +10 -10
- data/src/ruby/ext/grpc/rb_grpc_imports.generated.h +15 -15
- data/src/ruby/lib/grpc/version.rb +1 -1
- data/src/ruby/pb/src/proto/grpc/testing/test_pb.rb +2 -2
- data/src/ruby/spec/client_server_spec.rb +1 -1
- data/third_party/abseil-cpp/absl/algorithm/container.h +101 -91
- data/third_party/abseil-cpp/absl/base/attributes.h +64 -31
- data/third_party/abseil-cpp/absl/base/config.h +67 -37
- data/third_party/abseil-cpp/absl/base/dynamic_annotations.h +1 -26
- data/third_party/abseil-cpp/absl/base/internal/spinlock.h +3 -1
- data/third_party/abseil-cpp/absl/base/internal/spinlock_wait.h +2 -0
- data/third_party/abseil-cpp/absl/base/internal/sysinfo.cc +69 -0
- data/third_party/abseil-cpp/absl/base/internal/thread_identity.cc +4 -4
- data/third_party/abseil-cpp/absl/base/internal/thread_identity.h +15 -10
- data/third_party/abseil-cpp/absl/base/internal/unscaledcycleclock.cc +16 -0
- data/third_party/abseil-cpp/absl/base/internal/unscaledcycleclock.h +4 -4
- data/third_party/abseil-cpp/absl/base/options.h +1 -1
- data/third_party/abseil-cpp/absl/container/fixed_array.h +0 -5
- data/third_party/abseil-cpp/absl/container/inlined_vector.h +105 -97
- data/third_party/abseil-cpp/absl/container/internal/hash_function_defaults.h +17 -15
- data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.cc +18 -102
- data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.h +37 -78
- data/third_party/abseil-cpp/absl/container/internal/inlined_vector.h +388 -423
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_map.h +3 -2
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.cc +14 -8
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.h +251 -120
- data/third_party/abseil-cpp/absl/debugging/internal/demangle.cc +11 -1
- data/third_party/abseil-cpp/absl/debugging/internal/elf_mem_image.cc +12 -11
- data/third_party/abseil-cpp/absl/debugging/internal/elf_mem_image.h +6 -2
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_config.h +12 -5
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_emscripten-inl.inc +110 -0
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_riscv-inl.inc +234 -0
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_x86-inl.inc +25 -7
- data/third_party/abseil-cpp/absl/debugging/internal/symbolize.h +8 -2
- data/third_party/abseil-cpp/absl/debugging/internal/vdso_support.cc +21 -3
- data/third_party/abseil-cpp/absl/debugging/stacktrace.cc +2 -0
- data/third_party/abseil-cpp/absl/debugging/symbolize.cc +2 -0
- data/third_party/abseil-cpp/absl/debugging/symbolize_elf.inc +14 -0
- data/third_party/abseil-cpp/absl/debugging/symbolize_emscripten.inc +72 -0
- data/third_party/abseil-cpp/absl/functional/function_ref.h +4 -1
- data/third_party/abseil-cpp/absl/hash/hash.h +22 -0
- data/third_party/abseil-cpp/absl/hash/internal/hash.cc +15 -16
- data/third_party/abseil-cpp/absl/hash/internal/hash.h +88 -37
- data/third_party/abseil-cpp/absl/hash/internal/{wyhash.cc → low_level_hash.cc} +23 -11
- data/third_party/abseil-cpp/absl/hash/internal/{wyhash.h → low_level_hash.h} +14 -12
- data/third_party/abseil-cpp/absl/memory/memory.h +1 -1
- data/third_party/abseil-cpp/absl/meta/type_traits.h +32 -2
- data/third_party/abseil-cpp/absl/numeric/int128.cc +3 -10
- data/third_party/abseil-cpp/absl/numeric/int128.h +146 -73
- data/third_party/abseil-cpp/absl/numeric/int128_have_intrinsic.inc +19 -25
- data/third_party/abseil-cpp/absl/numeric/int128_no_intrinsic.inc +73 -70
- data/third_party/abseil-cpp/absl/{base → profiling}/internal/exponential_biased.cc +4 -4
- data/third_party/abseil-cpp/absl/{base → profiling}/internal/exponential_biased.h +6 -6
- data/third_party/abseil-cpp/absl/profiling/internal/sample_recorder.h +230 -0
- data/third_party/abseil-cpp/absl/status/internal/status_internal.h +5 -5
- data/third_party/abseil-cpp/absl/status/status.cc +9 -17
- data/third_party/abseil-cpp/absl/status/status.h +19 -15
- data/third_party/abseil-cpp/absl/status/statusor.cc +34 -2
- data/third_party/abseil-cpp/absl/status/statusor.h +31 -21
- data/third_party/abseil-cpp/absl/strings/charconv.cc +3 -3
- data/third_party/abseil-cpp/absl/strings/charconv.h +3 -2
- data/third_party/abseil-cpp/absl/strings/cord.cc +453 -359
- data/third_party/abseil-cpp/absl/strings/cord.h +197 -70
- data/third_party/abseil-cpp/absl/strings/internal/charconv_parse.cc +1 -1
- data/third_party/abseil-cpp/absl/strings/internal/cord_internal.cc +6 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_internal.h +140 -63
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree.cc +1128 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree.h +939 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree_navigator.cc +185 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree_navigator.h +265 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree_reader.cc +68 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree_reader.h +211 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_consume.cc +129 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_consume.h +50 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_flat.h +7 -7
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring.cc +55 -181
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring.h +42 -24
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring_reader.h +4 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_functions.cc +96 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_functions.h +85 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_handle.cc +139 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_handle.h +131 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_info.cc +445 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_info.h +298 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_statistics.h +87 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_update_scope.h +71 -0
- data/third_party/abseil-cpp/absl/strings/internal/cordz_update_tracker.h +121 -0
- data/third_party/abseil-cpp/absl/strings/internal/resize_uninitialized.h +48 -2
- data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.h +8 -0
- data/third_party/abseil-cpp/absl/strings/internal/str_format/bind.cc +3 -4
- data/third_party/abseil-cpp/absl/strings/internal/str_format/bind.h +1 -1
- data/third_party/abseil-cpp/absl/strings/internal/str_format/extension.cc +6 -6
- data/third_party/abseil-cpp/absl/strings/internal/str_format/extension.h +36 -18
- data/third_party/abseil-cpp/absl/strings/internal/str_format/parser.cc +62 -73
- data/third_party/abseil-cpp/absl/strings/internal/str_format/parser.h +24 -16
- data/third_party/abseil-cpp/absl/strings/internal/str_split_internal.h +35 -35
- data/third_party/abseil-cpp/absl/strings/numbers.cc +1 -1
- data/third_party/abseil-cpp/absl/strings/numbers.h +34 -0
- data/third_party/abseil-cpp/absl/strings/str_cat.cc +4 -4
- data/third_party/abseil-cpp/absl/strings/str_format.h +1 -2
- data/third_party/abseil-cpp/absl/strings/string_view.cc +16 -21
- data/third_party/abseil-cpp/absl/strings/string_view.h +120 -39
- data/third_party/abseil-cpp/absl/strings/substitute.cc +2 -1
- data/third_party/abseil-cpp/absl/strings/substitute.h +99 -74
- data/third_party/abseil-cpp/absl/synchronization/blocking_counter.cc +25 -15
- data/third_party/abseil-cpp/absl/synchronization/blocking_counter.h +5 -3
- data/third_party/abseil-cpp/absl/synchronization/internal/waiter.cc +1 -1
- data/third_party/abseil-cpp/absl/synchronization/mutex.h +3 -3
- data/third_party/abseil-cpp/absl/time/civil_time.cc +1 -3
- data/third_party/abseil-cpp/absl/time/internal/cctz/include/cctz/time_zone.h +93 -20
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_fixed.cc +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_if.h +2 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_info.cc +83 -21
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_lookup.cc +49 -0
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/tzfile.h +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/zone_info_source.cc +2 -3
- data/third_party/abseil-cpp/absl/time/time.h +67 -36
- data/third_party/abseil-cpp/absl/types/bad_optional_access.h +1 -1
- data/third_party/abseil-cpp/absl/types/bad_variant_access.h +2 -2
- data/third_party/abseil-cpp/absl/types/span.h +3 -3
- data/third_party/address_sorting/address_sorting_posix.c +1 -0
- data/third_party/boringssl-with-bazel/err_data.c +684 -674
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bitstr.c +19 -11
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bool.c +21 -22
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_d2i_fp.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_gentm.c +5 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_mbstr.c +15 -22
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_object.c +54 -37
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_print.c +19 -29
- data/third_party/boringssl-with-bazel/src/crypto/{x509 → asn1}/a_strex.c +268 -271
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strnid.c +106 -153
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_time.c +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_utctm.c +0 -39
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_lib.c +59 -47
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_par.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn_pack.c +24 -28
- data/third_party/boringssl-with-bazel/src/crypto/{x509 → asn1}/charmap.h +0 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/f_int.c +5 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/internal.h +66 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_dec.c +56 -280
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_enc.c +289 -198
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_fre.c +8 -8
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_new.c +9 -13
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_typ.c +8 -6
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_utl.c +1 -0
- data/third_party/boringssl-with-bazel/src/crypto/base64/base64.c +11 -8
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio_mem.c +1 -7
- data/third_party/boringssl-with-bazel/src/crypto/bio/connect.c +1 -5
- data/third_party/boringssl-with-bazel/src/crypto/bio/fd.c +0 -4
- data/third_party/boringssl-with-bazel/src/crypto/bio/file.c +1 -7
- data/third_party/boringssl-with-bazel/src/crypto/bio/pair.c +1 -6
- data/third_party/boringssl-with-bazel/src/crypto/bio/socket.c +3 -17
- data/third_party/boringssl-with-bazel/src/crypto/blake2/blake2.c +4 -6
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/ber.c +3 -1
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbb.c +9 -0
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbs.c +8 -0
- data/third_party/boringssl-with-bazel/src/crypto/chacha/chacha.c +38 -47
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/cipher_extra.c +45 -65
- data/third_party/boringssl-with-bazel/src/crypto/digest_extra/digest_extra.c +1 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp_asn1.c +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/evp/scrypt.c +32 -34
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/div.c +21 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/gcd_extra.c +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/internal.h +5 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/sqrt.c +5 -9
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aes.c +10 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/des/des.c +10 -11
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/des/internal.h +1 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/md4/md4.c +4 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/md5/md5.c +4 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/gcm_nohw.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/rand.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa.c +24 -9
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa_impl.c +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/self_check.c +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha1.c +35 -35
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha256.c +11 -10
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha512.c +10 -37
- data/third_party/boringssl-with-bazel/src/crypto/internal.h +39 -0
- data/third_party/boringssl-with-bazel/src/crypto/mem.c +30 -9
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_all.c +0 -9
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_info.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_lib.c +0 -8
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_pk8.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_pkey.c +0 -4
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/internal.h +16 -7
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7.c +9 -4
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7_x509.c +151 -12
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8_x509.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/pool/internal.h +5 -1
- data/third_party/boringssl-with-bazel/src/crypto/pool/pool.c +59 -23
- data/third_party/boringssl-with-bazel/src/crypto/siphash/siphash.c +6 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/asn1_gen.c +2 -18
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_file.c +2 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/internal.h +189 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/name_print.c +246 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/rsa_pss.c +11 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_crl.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_x509.c +0 -179
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_x509a.c +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_lu.c +0 -5
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_obj.c +1 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vfy.c +11 -50
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vpm.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509name.c +2 -4
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_all.c +0 -16
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_name.c +22 -18
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509.c +11 -8
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/internal.h +232 -11
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/pcy_cache.c +2 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/pcy_data.c +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/pcy_lib.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/pcy_map.c +2 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/pcy_node.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/pcy_tree.c +5 -4
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_akey.c +24 -5
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_alt.c +18 -8
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_bitst.c +3 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_cpols.c +6 -7
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_crld.c +4 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_enum.c +5 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_lib.c +21 -4
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_ncons.c +112 -55
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_pci.c +2 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_prn.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_purp.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_utl.c +71 -26
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1.h +1326 -469
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1t.h +5 -12
- data/third_party/boringssl-with-bazel/src/include/openssl/base.h +10 -5
- data/third_party/boringssl-with-bazel/src/include/openssl/bio.h +3 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/bn.h +3 -3
- data/third_party/boringssl-with-bazel/src/include/openssl/bytestring.h +9 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/cipher.h +8 -2
- data/third_party/boringssl-with-bazel/src/include/openssl/dh.h +4 -12
- data/third_party/boringssl-with-bazel/src/include/openssl/dsa.h +17 -41
- data/third_party/boringssl-with-bazel/src/include/openssl/ec_key.h +12 -27
- data/third_party/boringssl-with-bazel/src/include/openssl/ecdsa.h +8 -10
- data/third_party/boringssl-with-bazel/src/include/openssl/evp.h +29 -55
- data/third_party/boringssl-with-bazel/src/include/openssl/hkdf.h +4 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/mem.h +9 -3
- data/third_party/boringssl-with-bazel/src/include/openssl/pem.h +0 -20
- data/third_party/boringssl-with-bazel/src/include/openssl/pkcs7.h +15 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/pool.h +7 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/rsa.h +29 -28
- data/third_party/boringssl-with-bazel/src/include/openssl/span.h +37 -15
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl.h +34 -23
- data/third_party/boringssl-with-bazel/src/include/openssl/tls1.h +31 -32
- data/third_party/boringssl-with-bazel/src/include/openssl/x509.h +541 -134
- data/third_party/boringssl-with-bazel/src/include/openssl/x509_vfy.h +16 -695
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3.h +52 -11
- data/third_party/boringssl-with-bazel/src/ssl/encrypted_client_hello.cc +266 -357
- data/third_party/boringssl-with-bazel/src/ssl/extensions.cc +90 -152
- data/third_party/boringssl-with-bazel/src/ssl/handshake.cc +15 -13
- data/third_party/boringssl-with-bazel/src/ssl/handshake_client.cc +75 -79
- data/third_party/boringssl-with-bazel/src/ssl/handshake_server.cc +96 -97
- data/third_party/boringssl-with-bazel/src/ssl/internal.h +66 -46
- data/third_party/boringssl-with-bazel/src/ssl/ssl_cipher.cc +2 -2
- data/third_party/boringssl-with-bazel/src/ssl/ssl_lib.cc +2 -2
- data/third_party/boringssl-with-bazel/src/ssl/ssl_transcript.cc +6 -12
- data/third_party/boringssl-with-bazel/src/ssl/ssl_versions.cc +4 -0
- data/third_party/boringssl-with-bazel/src/ssl/ssl_x509.cc +14 -17
- data/third_party/boringssl-with-bazel/src/ssl/tls13_both.cc +14 -27
- data/third_party/boringssl-with-bazel/src/ssl/tls13_client.cc +203 -203
- data/third_party/boringssl-with-bazel/src/ssl/tls13_enc.cc +30 -41
- data/third_party/boringssl-with-bazel/src/ssl/tls13_server.cc +47 -33
- data/third_party/re2/re2/compile.cc +91 -109
- data/third_party/re2/re2/dfa.cc +27 -39
- data/third_party/re2/re2/filtered_re2.cc +18 -2
- data/third_party/re2/re2/filtered_re2.h +10 -5
- data/third_party/re2/re2/nfa.cc +1 -1
- data/third_party/re2/re2/parse.cc +42 -23
- data/third_party/re2/re2/perl_groups.cc +34 -34
- data/third_party/re2/re2/prefilter.cc +3 -2
- data/third_party/re2/re2/prog.cc +182 -4
- data/third_party/re2/re2/prog.h +28 -9
- data/third_party/re2/re2/re2.cc +87 -118
- data/third_party/re2/re2/re2.h +156 -141
- data/third_party/re2/re2/regexp.cc +12 -5
- data/third_party/re2/re2/regexp.h +8 -2
- data/third_party/re2/re2/set.cc +31 -9
- data/third_party/re2/re2/set.h +9 -4
- data/third_party/re2/re2/simplify.cc +11 -3
- data/third_party/re2/re2/tostring.cc +1 -1
- data/third_party/re2/re2/walker-inl.h +1 -1
- data/third_party/re2/util/mutex.h +2 -2
- data/third_party/re2/util/pcre.h +3 -3
- data/third_party/upb/upb/decode.c +309 -178
- data/third_party/upb/upb/decode_fast.c +1 -1
- data/third_party/upb/upb/decode_internal.h +1 -0
- data/third_party/upb/upb/def.c +330 -85
- data/third_party/upb/upb/def.h +45 -14
- data/third_party/upb/upb/def.hpp +17 -4
- data/third_party/upb/upb/encode.c +100 -40
- data/third_party/upb/upb/msg.c +22 -9
- data/third_party/upb/upb/msg_internal.h +90 -8
- data/third_party/upb/upb/reflection.c +98 -58
- data/third_party/upb/upb/reflection.h +6 -2
- data/third_party/upb/upb/text_encode.c +3 -3
- data/third_party/upb/upb/upb.c +8 -0
- metadata +160 -87
- data/include/grpc/event_engine/slice_allocator.h +0 -71
- data/src/core/ext/filters/client_channel/service_config_call_data.h +0 -126
- data/src/core/ext/filters/workarounds/workaround_cronet_compression_filter.cc +0 -211
- data/src/core/ext/filters/workarounds/workaround_utils.cc +0 -53
- data/src/core/ext/filters/workarounds/workaround_utils.h +0 -39
- data/src/core/ext/transport/chttp2/client/authority.cc +0 -42
- data/src/core/ext/transport/chttp2/client/authority.h +0 -36
- data/src/core/ext/transport/chttp2/transport/chttp2_slice_allocator.cc +0 -67
- data/src/core/ext/transport/chttp2/transport/chttp2_slice_allocator.h +0 -74
- data/src/core/ext/transport/chttp2/transport/incoming_metadata.cc +0 -66
- data/src/core/ext/transport/chttp2/transport/incoming_metadata.h +0 -58
- data/src/core/ext/upb-generated/udpa/data/orca/v1/orca_load_report.upb.c +0 -58
- data/src/core/ext/upb-generated/udpa/data/orca/v1/orca_load_report.upb.h +0 -130
- data/src/core/ext/upb-generated/udpa/type/v1/typed_struct.upb.c +0 -33
- data/src/core/ext/upb-generated/udpa/type/v1/typed_struct.upb.h +0 -83
- data/src/core/ext/upbdefs-generated/udpa/type/v1/typed_struct.upbdefs.c +0 -44
- data/src/core/ext/upbdefs-generated/udpa/type/v1/typed_struct.upbdefs.h +0 -35
- data/src/core/lib/avl/avl.cc +0 -306
- data/src/core/lib/gprpp/match.h +0 -73
- data/src/core/lib/gprpp/overload.h +0 -59
- data/src/core/lib/iomgr/event_engine/iomgr.h +0 -42
- data/src/core/lib/iomgr/resource_quota.cc +0 -1104
- data/src/core/lib/iomgr/resource_quota.h +0 -226
- data/src/core/lib/iomgr/udp_server.cc +0 -747
- data/src/core/lib/iomgr/udp_server.h +0 -103
- data/third_party/boringssl-with-bazel/src/crypto/asn1/f_enum.c +0 -93
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/pcy_int.h +0 -217
@@ -63,11 +63,10 @@
|
|
63
63
|
#include <time.h>
|
64
64
|
|
65
65
|
#include <openssl/bio.h>
|
66
|
-
#include <openssl/stack.h>
|
67
|
-
|
68
66
|
#include <openssl/bn.h>
|
67
|
+
#include <openssl/stack.h>
|
69
68
|
|
70
|
-
#
|
69
|
+
#if defined(__cplusplus)
|
71
70
|
extern "C" {
|
72
71
|
#endif
|
73
72
|
|
@@ -75,8 +74,12 @@ extern "C" {
|
|
75
74
|
// Legacy ASN.1 library.
|
76
75
|
//
|
77
76
|
// This header is part of OpenSSL's ASN.1 implementation. It is retained for
|
78
|
-
// compatibility but
|
79
|
-
//
|
77
|
+
// compatibility but should not be used by new code. The functions are difficult
|
78
|
+
// to use correctly, and have buggy or non-standard behaviors. They are thus
|
79
|
+
// particularly prone to behavior changes and API removals, as BoringSSL
|
80
|
+
// iterates on these issues.
|
81
|
+
//
|
82
|
+
// Use the new |CBS| and |CBB| library in <openssl/bytestring.h> instead.
|
80
83
|
|
81
84
|
|
82
85
|
// Tag constants.
|
@@ -111,10 +114,6 @@ extern "C" {
|
|
111
114
|
// V_ASN1_UNDEF is used in some APIs to indicate an ASN.1 element is omitted.
|
112
115
|
#define V_ASN1_UNDEF (-1)
|
113
116
|
|
114
|
-
// V_ASN1_APP_CHOOSE is used in some APIs to specify a default ASN.1 type based
|
115
|
-
// on the context.
|
116
|
-
#define V_ASN1_APP_CHOOSE (-2)
|
117
|
-
|
118
117
|
// V_ASN1_OTHER is used in |ASN1_TYPE| to indicate a non-universal ASN.1 type.
|
119
118
|
#define V_ASN1_OTHER (-3)
|
120
119
|
|
@@ -157,6 +156,327 @@ extern "C" {
|
|
157
156
|
#define V_ASN1_NEG_INTEGER (V_ASN1_INTEGER | V_ASN1_NEG)
|
158
157
|
#define V_ASN1_NEG_ENUMERATED (V_ASN1_ENUMERATED | V_ASN1_NEG)
|
159
158
|
|
159
|
+
// The following constants are bitmask representations of ASN.1 types.
|
160
|
+
#define B_ASN1_NUMERICSTRING 0x0001
|
161
|
+
#define B_ASN1_PRINTABLESTRING 0x0002
|
162
|
+
#define B_ASN1_T61STRING 0x0004
|
163
|
+
#define B_ASN1_TELETEXSTRING 0x0004
|
164
|
+
#define B_ASN1_VIDEOTEXSTRING 0x0008
|
165
|
+
#define B_ASN1_IA5STRING 0x0010
|
166
|
+
#define B_ASN1_GRAPHICSTRING 0x0020
|
167
|
+
#define B_ASN1_ISO64STRING 0x0040
|
168
|
+
#define B_ASN1_VISIBLESTRING 0x0040
|
169
|
+
#define B_ASN1_GENERALSTRING 0x0080
|
170
|
+
#define B_ASN1_UNIVERSALSTRING 0x0100
|
171
|
+
#define B_ASN1_OCTET_STRING 0x0200
|
172
|
+
#define B_ASN1_BIT_STRING 0x0400
|
173
|
+
#define B_ASN1_BMPSTRING 0x0800
|
174
|
+
#define B_ASN1_UNKNOWN 0x1000
|
175
|
+
#define B_ASN1_UTF8STRING 0x2000
|
176
|
+
#define B_ASN1_UTCTIME 0x4000
|
177
|
+
#define B_ASN1_GENERALIZEDTIME 0x8000
|
178
|
+
#define B_ASN1_SEQUENCE 0x10000
|
179
|
+
|
180
|
+
// ASN1_tag2bit converts |tag| from the tag number of a universal type to a
|
181
|
+
// corresponding |B_ASN1_*| constant, |B_ASN1_UNKNOWN|, or zero. If the
|
182
|
+
// |B_ASN1_*| constant above is defined, it will map the corresponding
|
183
|
+
// |V_ASN1_*| constant to it. Otherwise, whether it returns |B_ASN1_UNKNOWN| or
|
184
|
+
// zero is ill-defined and callers should not rely on it.
|
185
|
+
//
|
186
|
+
// TODO(https://crbug.com/boringssl/412): Figure out what |B_ASN1_UNNOWN| vs
|
187
|
+
// zero is meant to be. The main impact is what values go in |B_ASN1_PRINTABLE|.
|
188
|
+
// To that end, we must return zero on types that can't go in |ASN1_STRING|.
|
189
|
+
OPENSSL_EXPORT unsigned long ASN1_tag2bit(int tag);
|
190
|
+
|
191
|
+
// ASN1_tag2str returns a string representation of |tag|, interpret as a tag
|
192
|
+
// number for a universal type, or |V_ASN1_NEG_*|.
|
193
|
+
OPENSSL_EXPORT const char *ASN1_tag2str(int tag);
|
194
|
+
|
195
|
+
|
196
|
+
// API conventions.
|
197
|
+
//
|
198
|
+
// The following sample functions document the calling conventions used by
|
199
|
+
// legacy ASN.1 APIs.
|
200
|
+
|
201
|
+
#if 0 // Sample functions
|
202
|
+
|
203
|
+
// d2i_SAMPLE parses a structure from up to |len| bytes at |*inp|. On success,
|
204
|
+
// it advances |*inp| by the number of bytes read and returns a newly-allocated
|
205
|
+
// |SAMPLE| object containing the parsed structure. If |out| is non-NULL, it
|
206
|
+
// additionally frees the previous value at |*out| and updates |*out| to the
|
207
|
+
// result. If parsing or allocating the result fails, it returns NULL.
|
208
|
+
//
|
209
|
+
// This function does not reject trailing data in the input. This allows the
|
210
|
+
// caller to parse a sequence of concatenated structures. Callers parsing only
|
211
|
+
// one structure should check for trailing data by comparing the updated |*inp|
|
212
|
+
// with the end of the input.
|
213
|
+
//
|
214
|
+
// Note: If |out| and |*out| are both non-NULL, the object at |*out| is not
|
215
|
+
// updated in-place. Instead, it is freed, and the pointer is updated to the
|
216
|
+
// new object. This differs from OpenSSL, which behaves more like
|
217
|
+
// |d2i_SAMPLE_with_reuse|. Callers are recommended to set |out| to NULL and
|
218
|
+
// instead use the return value.
|
219
|
+
SAMPLE *d2i_SAMPLE(SAMPLE **out, const uint8_t **inp, long len);
|
220
|
+
|
221
|
+
// d2i_SAMPLE_with_reuse parses a structure from up to |len| bytes at |*inp|. On
|
222
|
+
// success, it advances |*inp| by the number of bytes read and returns a
|
223
|
+
// non-NULL pointer to an object containing the parsed structure. The object is
|
224
|
+
// determined from |out| as follows:
|
225
|
+
//
|
226
|
+
// If |out| is NULL, the function places the result in a newly-allocated
|
227
|
+
// |SAMPLE| object and returns it. This mode is recommended.
|
228
|
+
//
|
229
|
+
// If |out| is non-NULL, but |*out| is NULL, the function also places the result
|
230
|
+
// in a newly-allocated |SAMPLE| object. It sets |*out| to this object and also
|
231
|
+
// returns it.
|
232
|
+
//
|
233
|
+
// If |out| and |*out| are both non-NULL, the function updates the object at
|
234
|
+
// |*out| in-place with the result and returns |*out|.
|
235
|
+
//
|
236
|
+
// If any of the above fail, the function returns NULL.
|
237
|
+
//
|
238
|
+
// This function does not reject trailing data in the input. This allows the
|
239
|
+
// caller to parse a sequence of concatenated structures. Callers parsing only
|
240
|
+
// one structure should check for trailing data by comparing the updated |*inp|
|
241
|
+
// with the end of the input.
|
242
|
+
//
|
243
|
+
// WARNING: Callers should not rely on the in-place update mode. It often
|
244
|
+
// produces the wrong result or breaks the type's internal invariants. Future
|
245
|
+
// revisions of BoringSSL may standardize on the |d2i_SAMPLE| behavior.
|
246
|
+
SAMPLE *d2i_SAMPLE_with_reuse(SAMPLE **out, const uint8_t **inp, long len);
|
247
|
+
|
248
|
+
// i2d_SAMPLE marshals |in|. On error, it returns a negative value. On success,
|
249
|
+
// it returns the length of the result and outputs it via |outp| as follows:
|
250
|
+
//
|
251
|
+
// If |outp| is NULL, the function writes nothing. This mode can be used to size
|
252
|
+
// buffers.
|
253
|
+
//
|
254
|
+
// If |outp| is non-NULL but |*outp| is NULL, the function sets |*outp| to a
|
255
|
+
// newly-allocated buffer containing the result. The caller is responsible for
|
256
|
+
// releasing |*outp| with |OPENSSL_free|. This mode is recommended for most
|
257
|
+
// callers.
|
258
|
+
//
|
259
|
+
// If |outp| and |*outp| are non-NULL, the function writes the result to
|
260
|
+
// |*outp|, which must have enough space available, and advances |*outp| just
|
261
|
+
// past the output.
|
262
|
+
//
|
263
|
+
// WARNING: In the third mode, the function does not internally check output
|
264
|
+
// bounds. Failing to correctly size the buffer will result in a potentially
|
265
|
+
// exploitable memory error.
|
266
|
+
int i2d_SAMPLE(const SAMPLE *in, uint8_t **outp);
|
267
|
+
|
268
|
+
#endif // Sample functions
|
269
|
+
|
270
|
+
// The following typedefs are sometimes used for pointers to functions like
|
271
|
+
// |d2i_SAMPLE| and |i2d_SAMPLE|. Note, however, that these act on |void*|.
|
272
|
+
// Calling a function with a different pointer type is undefined in C, so this
|
273
|
+
// is only valid with a wrapper.
|
274
|
+
typedef void *d2i_of_void(void **, const unsigned char **, long);
|
275
|
+
typedef int i2d_of_void(const void *, unsigned char **);
|
276
|
+
|
277
|
+
|
278
|
+
// ASN.1 types.
|
279
|
+
//
|
280
|
+
// An |ASN1_ITEM| represents an ASN.1 type and allows working with ASN.1 types
|
281
|
+
// generically.
|
282
|
+
//
|
283
|
+
// |ASN1_ITEM|s use a different namespace from C types and are accessed via
|
284
|
+
// |ASN1_ITEM_*| macros. So, for example, |ASN1_OCTET_STRING| is both a C type
|
285
|
+
// and the name of an |ASN1_ITEM|, referenced as
|
286
|
+
// |ASN1_ITEM_rptr(ASN1_OCTET_STRING)|.
|
287
|
+
//
|
288
|
+
// Each |ASN1_ITEM| has a corresponding C type, typically with the same name,
|
289
|
+
// which represents values in the ASN.1 type. This type is either a pointer type
|
290
|
+
// or |ASN1_BOOLEAN|. When it is a pointer, NULL pointers represent omitted
|
291
|
+
// values. For example, an OCTET STRING value is declared with the C type
|
292
|
+
// |ASN1_OCTET_STRING*| and uses the |ASN1_ITEM| named |ASN1_OCTET_STRING|. An
|
293
|
+
// OPTIONAL OCTET STRING uses the same C type and represents an omitted value
|
294
|
+
// with a NULL pointer. |ASN1_BOOLEAN| is described in a later section.
|
295
|
+
|
296
|
+
// DECLARE_ASN1_ITEM declares an |ASN1_ITEM| with name |name|. The |ASN1_ITEM|
|
297
|
+
// may be referenced with |ASN1_ITEM_rptr|. Uses of this macro should document
|
298
|
+
// the corresponding ASN.1 and C types.
|
299
|
+
#define DECLARE_ASN1_ITEM(name) extern OPENSSL_EXPORT const ASN1_ITEM name##_it;
|
300
|
+
|
301
|
+
// ASN1_ITEM_rptr returns the |const ASN1_ITEM *| named |name|.
|
302
|
+
#define ASN1_ITEM_rptr(name) (&(name##_it))
|
303
|
+
|
304
|
+
// ASN1_ITEM_EXP is an abstraction for referencing an |ASN1_ITEM| in a
|
305
|
+
// constant-initialized structure, such as a method table. It exists because, on
|
306
|
+
// some OpenSSL platforms, |ASN1_ITEM| references are indirected through
|
307
|
+
// functions. Structures reference the |ASN1_ITEM| by declaring a field like
|
308
|
+
// |ASN1_ITEM_EXP *item| and initializing it with |ASN1_ITEM_ref|.
|
309
|
+
typedef const ASN1_ITEM ASN1_ITEM_EXP;
|
310
|
+
|
311
|
+
// ASN1_ITEM_ref returns an |ASN1_ITEM_EXP*| for the |ASN1_ITEM| named |name|.
|
312
|
+
#define ASN1_ITEM_ref(name) (&(name##_it))
|
313
|
+
|
314
|
+
// ASN1_ITEM_ptr converts |iptr|, which must be an |ASN1_ITEM_EXP*| to a
|
315
|
+
// |const ASN1_ITEM*|.
|
316
|
+
#define ASN1_ITEM_ptr(iptr) (iptr)
|
317
|
+
|
318
|
+
// ASN1_VALUE_st (aka |ASN1_VALUE|) is an opaque type used as a placeholder for
|
319
|
+
// the C type corresponding to an |ASN1_ITEM|.
|
320
|
+
typedef struct ASN1_VALUE_st ASN1_VALUE;
|
321
|
+
|
322
|
+
// ASN1_item_new allocates a new value of the C type corresponding to |it|, or
|
323
|
+
// NULL on error. On success, the caller must release the value with
|
324
|
+
// |ASN1_item_free|, or the corresponding C type's free function, when done. The
|
325
|
+
// new value will initialize fields of the value to some default state, such as
|
326
|
+
// an empty string. Note, however, that this default state sometimes omits
|
327
|
+
// required values, such as with CHOICE types.
|
328
|
+
//
|
329
|
+
// This function may not be used with |ASN1_ITEM|s whose C type is
|
330
|
+
// |ASN1_BOOLEAN|.
|
331
|
+
//
|
332
|
+
// WARNING: Casting the result of this function to the wrong type is a
|
333
|
+
// potentially exploitable memory error. Callers must ensure the value is used
|
334
|
+
// consistently with |it|. Prefer using type-specific functions such as
|
335
|
+
// |ASN1_OCTET_STRING_new|.
|
336
|
+
OPENSSL_EXPORT ASN1_VALUE *ASN1_item_new(const ASN1_ITEM *it);
|
337
|
+
|
338
|
+
// ASN1_item_free releases memory associated with |val|, which must be an object
|
339
|
+
// of the C type corresponding to |it|.
|
340
|
+
//
|
341
|
+
// This function may not be used with |ASN1_ITEM|s whose C type is
|
342
|
+
// |ASN1_BOOLEAN|.
|
343
|
+
//
|
344
|
+
// WARNING: Passing a pointer of the wrong type into this function is a
|
345
|
+
// potentially exploitable memory error. Callers must ensure |val| is consistent
|
346
|
+
// with |it|. Prefer using type-specific functions such as
|
347
|
+
// |ASN1_OCTET_STRING_free|.
|
348
|
+
OPENSSL_EXPORT void ASN1_item_free(ASN1_VALUE *val, const ASN1_ITEM *it);
|
349
|
+
|
350
|
+
// ASN1_item_d2i parses the ASN.1 type |it| from up to |len| bytes at |*inp|.
|
351
|
+
// It behaves like |d2i_SAMPLE_with_reuse|, except that |out| and the return
|
352
|
+
// value are cast to |ASN1_VALUE| pointers.
|
353
|
+
//
|
354
|
+
// TODO(https://crbug.com/boringssl/444): C strict aliasing forbids type-punning
|
355
|
+
// |T*| and |ASN1_VALUE*| the way this function signature does. When that bug is
|
356
|
+
// resolved, we will need to pick which type |*out| is (probably |T*|). Do not
|
357
|
+
// use a non-NULL |out| to avoid ending up on the wrong side of this question.
|
358
|
+
//
|
359
|
+
// This function may not be used with |ASN1_ITEM|s whose C type is
|
360
|
+
// |ASN1_BOOLEAN|.
|
361
|
+
//
|
362
|
+
// WARNING: Casting the result of this function to the wrong type, or passing a
|
363
|
+
// pointer of the wrong type into this function, are potentially exploitable
|
364
|
+
// memory errors. Callers must ensure |out| is consistent with |it|. Prefer
|
365
|
+
// using type-specific functions such as |d2i_ASN1_OCTET_STRING|.
|
366
|
+
OPENSSL_EXPORT ASN1_VALUE *ASN1_item_d2i(ASN1_VALUE **out,
|
367
|
+
const unsigned char **inp, long len,
|
368
|
+
const ASN1_ITEM *it);
|
369
|
+
|
370
|
+
// ASN1_item_i2d marshals |val| as the ASN.1 type associated with |it|, as
|
371
|
+
// described in |i2d_SAMPLE|.
|
372
|
+
//
|
373
|
+
// This function may not be used with |ASN1_ITEM|s whose C type is
|
374
|
+
// |ASN1_BOOLEAN|.
|
375
|
+
//
|
376
|
+
// WARNING: Passing a pointer of the wrong type into this function is a
|
377
|
+
// potentially exploitable memory error. Callers must ensure |val| is consistent
|
378
|
+
// with |it|. Prefer using type-specific functions such as
|
379
|
+
// |i2d_ASN1_OCTET_STRING|.
|
380
|
+
OPENSSL_EXPORT int ASN1_item_i2d(ASN1_VALUE *val, unsigned char **outp,
|
381
|
+
const ASN1_ITEM *it);
|
382
|
+
|
383
|
+
// ASN1_item_dup returns a newly-allocated copy of |x|, or NULL on error. |x|
|
384
|
+
// must be an object of |it|'s C type.
|
385
|
+
//
|
386
|
+
// This function may not be used with |ASN1_ITEM|s whose C type is
|
387
|
+
// |ASN1_BOOLEAN|.
|
388
|
+
//
|
389
|
+
// WARNING: Casting the result of this function to the wrong type, or passing a
|
390
|
+
// pointer of the wrong type into this function, are potentially exploitable
|
391
|
+
// memory errors. Prefer using type-specific functions such as
|
392
|
+
// |ASN1_STRING_dup|.
|
393
|
+
OPENSSL_EXPORT void *ASN1_item_dup(const ASN1_ITEM *it, void *x);
|
394
|
+
|
395
|
+
// The following functions behave like |ASN1_item_d2i| but read from |in|
|
396
|
+
// instead. |out| is the same parameter as in |ASN1_item_d2i|, but written with
|
397
|
+
// |void*| instead. The return values similarly match.
|
398
|
+
//
|
399
|
+
// These functions may not be used with |ASN1_ITEM|s whose C type is
|
400
|
+
// |ASN1_BOOLEAN|.
|
401
|
+
//
|
402
|
+
// WARNING: These functions do not bound how much data is read from |in|.
|
403
|
+
// Parsing an untrusted input could consume unbounded memory.
|
404
|
+
OPENSSL_EXPORT void *ASN1_item_d2i_fp(const ASN1_ITEM *it, FILE *in, void *out);
|
405
|
+
OPENSSL_EXPORT void *ASN1_item_d2i_bio(const ASN1_ITEM *it, BIO *in, void *out);
|
406
|
+
|
407
|
+
// The following functions behave like |ASN1_item_i2d| but write to |out|
|
408
|
+
// instead. |in| is the same parameter as in |ASN1_item_i2d|, but written with
|
409
|
+
// |void*| instead.
|
410
|
+
//
|
411
|
+
// These functions may not be used with |ASN1_ITEM|s whose C type is
|
412
|
+
// |ASN1_BOOLEAN|.
|
413
|
+
OPENSSL_EXPORT int ASN1_item_i2d_fp(const ASN1_ITEM *it, FILE *out, void *in);
|
414
|
+
OPENSSL_EXPORT int ASN1_item_i2d_bio(const ASN1_ITEM *it, BIO *out, void *in);
|
415
|
+
|
416
|
+
// ASN1_item_unpack parses |oct|'s contents as |it|'s ASN.1 type. It returns a
|
417
|
+
// newly-allocated instance of |it|'s C type on success, or NULL on error.
|
418
|
+
//
|
419
|
+
// This function may not be used with |ASN1_ITEM|s whose C type is
|
420
|
+
// |ASN1_BOOLEAN|.
|
421
|
+
//
|
422
|
+
// WARNING: Casting the result of this function to the wrong type is a
|
423
|
+
// potentially exploitable memory error. Callers must ensure the value is used
|
424
|
+
// consistently with |it|.
|
425
|
+
OPENSSL_EXPORT void *ASN1_item_unpack(const ASN1_STRING *oct,
|
426
|
+
const ASN1_ITEM *it);
|
427
|
+
|
428
|
+
// ASN1_item_pack marshals |obj| as |it|'s ASN.1 type. If |out| is NULL, it
|
429
|
+
// returns a newly-allocated |ASN1_STRING| with the result, or NULL on error.
|
430
|
+
// If |out| is non-NULL, but |*out| is NULL, it does the same but additionally
|
431
|
+
// sets |*out| to the result. If both |out| and |*out| are non-NULL, it writes
|
432
|
+
// the result to |*out| and returns |*out| on success or NULL on error.
|
433
|
+
//
|
434
|
+
// This function may not be used with |ASN1_ITEM|s whose C type is
|
435
|
+
// |ASN1_BOOLEAN|.
|
436
|
+
//
|
437
|
+
// WARNING: Passing a pointer of the wrong type into this function is a
|
438
|
+
// potentially exploitable memory error. Callers must ensure |val| is consistent
|
439
|
+
// with |it|.
|
440
|
+
OPENSSL_EXPORT ASN1_STRING *ASN1_item_pack(void *obj, const ASN1_ITEM *it,
|
441
|
+
ASN1_STRING **out);
|
442
|
+
|
443
|
+
|
444
|
+
// Booleans.
|
445
|
+
//
|
446
|
+
// This library represents ASN.1 BOOLEAN values with |ASN1_BOOLEAN|, which is an
|
447
|
+
// integer type. FALSE is zero, TRUE is 0xff, and an omitted OPTIONAL BOOLEAN is
|
448
|
+
// -1.
|
449
|
+
|
450
|
+
// d2i_ASN1_BOOLEAN parses a DER-encoded ASN.1 BOOLEAN from up to |len| bytes at
|
451
|
+
// |*inp|. On success, it advances |*inp| by the number of bytes read and
|
452
|
+
// returns the result. If |out| is non-NULL, it additionally writes the result
|
453
|
+
// to |*out|. On error, it returns -1.
|
454
|
+
//
|
455
|
+
// This function does not reject trailing data in the input. This allows the
|
456
|
+
// caller to parse a sequence of concatenated structures. Callers parsing only
|
457
|
+
// one structure should check for trailing data by comparing the updated |*inp|
|
458
|
+
// with the end of the input.
|
459
|
+
//
|
460
|
+
// WARNING: This function's is slightly different from other |d2i_*| functions
|
461
|
+
// because |ASN1_BOOLEAN| is not a pointer type.
|
462
|
+
//
|
463
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
464
|
+
// BER, but this will be removed in the future.
|
465
|
+
OPENSSL_EXPORT ASN1_BOOLEAN d2i_ASN1_BOOLEAN(ASN1_BOOLEAN *out,
|
466
|
+
const unsigned char **inp,
|
467
|
+
long len);
|
468
|
+
|
469
|
+
// i2d_ASN1_BOOLEAN marshals |a| as a DER-encoded ASN.1 BOOLEAN, as described in
|
470
|
+
// |i2d_SAMPLE|.
|
471
|
+
OPENSSL_EXPORT int i2d_ASN1_BOOLEAN(ASN1_BOOLEAN a, unsigned char **outp);
|
472
|
+
|
473
|
+
// The following |ASN1_ITEM|s have ASN.1 type BOOLEAN and C type |ASN1_BOOLEAN|.
|
474
|
+
// |ASN1_TBOOLEAN| and |ASN1_FBOOLEAN| must be marked OPTIONAL. When omitted,
|
475
|
+
// they are parsed as TRUE and FALSE, respectively, rather than -1.
|
476
|
+
DECLARE_ASN1_ITEM(ASN1_BOOLEAN)
|
477
|
+
DECLARE_ASN1_ITEM(ASN1_TBOOLEAN)
|
478
|
+
DECLARE_ASN1_ITEM(ASN1_FBOOLEAN)
|
479
|
+
|
160
480
|
|
161
481
|
// Strings.
|
162
482
|
//
|
@@ -216,9 +536,10 @@ extern "C" {
|
|
216
536
|
// invariants on the |X509| object and break the |X509_get0_serialNumber|
|
217
537
|
// invariant.
|
218
538
|
//
|
219
|
-
// TODO(
|
220
|
-
// not cause memory errors, but it may do strange
|
221
|
-
// checks to anything that consumes |ASN1_STRING|s
|
539
|
+
// TODO(https://crbug.com/boringssl/445): This is very unfriendly. Getting the
|
540
|
+
// type field wrong should not cause memory errors, but it may do strange
|
541
|
+
// things. We should add runtime checks to anything that consumes |ASN1_STRING|s
|
542
|
+
// from the caller.
|
222
543
|
struct asn1_string_st {
|
223
544
|
int length;
|
224
545
|
int type;
|
@@ -232,14 +553,6 @@ struct asn1_string_st {
|
|
232
553
|
// treated as padding. This behavior is deprecated and should not be used.
|
233
554
|
#define ASN1_STRING_FLAG_BITS_LEFT 0x08
|
234
555
|
|
235
|
-
// ASN1_STRING_FLAG_MSTRING indicates that the |ASN1_STRING| is an MSTRING type,
|
236
|
-
// which is how this library refers to a CHOICE type of several string types.
|
237
|
-
// For example, DirectoryString as defined in RFC5280.
|
238
|
-
//
|
239
|
-
// TODO(davidben): This is only used in one place within the library and is easy
|
240
|
-
// to accidentally drop. Can it be removed?
|
241
|
-
#define ASN1_STRING_FLAG_MSTRING 0x040
|
242
|
-
|
243
556
|
// ASN1_STRING_type_new returns a newly-allocated empty |ASN1_STRING| object of
|
244
557
|
// type |type|, or NULL on error.
|
245
558
|
OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_type_new(int type);
|
@@ -287,12 +600,8 @@ OPENSSL_EXPORT int ASN1_STRING_length(const ASN1_STRING *str);
|
|
287
600
|
// suitable for sorting, callers should not rely on the exact order when |a|
|
288
601
|
// and |b| are different types.
|
289
602
|
//
|
290
|
-
//
|
291
|
-
//
|
292
|
-
// INTEGERs, this comparison does not order the values numerically. For a
|
293
|
-
// numerical comparison, use |ASN1_INTEGER_cmp|.
|
294
|
-
//
|
295
|
-
// TODO(davidben): The BIT STRING comparison seems like a bug. Fix it?
|
603
|
+
// Note that, if |a| and |b| are INTEGERs, this comparison does not order the
|
604
|
+
// values numerically. For a numerical comparison, use |ASN1_INTEGER_cmp|.
|
296
605
|
OPENSSL_EXPORT int ASN1_STRING_cmp(const ASN1_STRING *a, const ASN1_STRING *b);
|
297
606
|
|
298
607
|
// ASN1_STRING_set sets the contents of |str| to a copy of |len| bytes from
|
@@ -304,6 +613,102 @@ OPENSSL_EXPORT int ASN1_STRING_set(ASN1_STRING *str, const void *data, int len);
|
|
304
613
|
// |OPENSSL_malloc|.
|
305
614
|
OPENSSL_EXPORT void ASN1_STRING_set0(ASN1_STRING *str, void *data, int len);
|
306
615
|
|
616
|
+
// The following functions call |ASN1_STRING_type_new| with the corresponding
|
617
|
+
// |V_ASN1_*| constant.
|
618
|
+
OPENSSL_EXPORT ASN1_BMPSTRING *ASN1_BMPSTRING_new(void);
|
619
|
+
OPENSSL_EXPORT ASN1_GENERALSTRING *ASN1_GENERALSTRING_new(void);
|
620
|
+
OPENSSL_EXPORT ASN1_IA5STRING *ASN1_IA5STRING_new(void);
|
621
|
+
OPENSSL_EXPORT ASN1_OCTET_STRING *ASN1_OCTET_STRING_new(void);
|
622
|
+
OPENSSL_EXPORT ASN1_PRINTABLESTRING *ASN1_PRINTABLESTRING_new(void);
|
623
|
+
OPENSSL_EXPORT ASN1_T61STRING *ASN1_T61STRING_new(void);
|
624
|
+
OPENSSL_EXPORT ASN1_UNIVERSALSTRING *ASN1_UNIVERSALSTRING_new(void);
|
625
|
+
OPENSSL_EXPORT ASN1_UTF8STRING *ASN1_UTF8STRING_new(void);
|
626
|
+
OPENSSL_EXPORT ASN1_VISIBLESTRING *ASN1_VISIBLESTRING_new(void);
|
627
|
+
|
628
|
+
// The following functions call |ASN1_STRING_free|.
|
629
|
+
OPENSSL_EXPORT void ASN1_BMPSTRING_free(ASN1_BMPSTRING *str);
|
630
|
+
OPENSSL_EXPORT void ASN1_GENERALSTRING_free(ASN1_GENERALSTRING *str);
|
631
|
+
OPENSSL_EXPORT void ASN1_IA5STRING_free(ASN1_IA5STRING *str);
|
632
|
+
OPENSSL_EXPORT void ASN1_OCTET_STRING_free(ASN1_OCTET_STRING *str);
|
633
|
+
OPENSSL_EXPORT void ASN1_PRINTABLESTRING_free(ASN1_PRINTABLESTRING *str);
|
634
|
+
OPENSSL_EXPORT void ASN1_T61STRING_free(ASN1_T61STRING *str);
|
635
|
+
OPENSSL_EXPORT void ASN1_UNIVERSALSTRING_free(ASN1_UNIVERSALSTRING *str);
|
636
|
+
OPENSSL_EXPORT void ASN1_UTF8STRING_free(ASN1_UTF8STRING *str);
|
637
|
+
OPENSSL_EXPORT void ASN1_VISIBLESTRING_free(ASN1_VISIBLESTRING *str);
|
638
|
+
|
639
|
+
// The following functions parse up to |len| bytes from |*inp| as a
|
640
|
+
// DER-encoded ASN.1 value of the corresponding type, as described in
|
641
|
+
// |d2i_SAMPLE_with_reuse|.
|
642
|
+
//
|
643
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
644
|
+
// BER, but this will be removed in the future.
|
645
|
+
OPENSSL_EXPORT ASN1_BMPSTRING *d2i_ASN1_BMPSTRING(ASN1_BMPSTRING **out,
|
646
|
+
const uint8_t **inp,
|
647
|
+
long len);
|
648
|
+
OPENSSL_EXPORT ASN1_GENERALSTRING *d2i_ASN1_GENERALSTRING(
|
649
|
+
ASN1_GENERALSTRING **out, const uint8_t **inp, long len);
|
650
|
+
OPENSSL_EXPORT ASN1_IA5STRING *d2i_ASN1_IA5STRING(ASN1_IA5STRING **out,
|
651
|
+
const uint8_t **inp,
|
652
|
+
long len);
|
653
|
+
OPENSSL_EXPORT ASN1_OCTET_STRING *d2i_ASN1_OCTET_STRING(ASN1_OCTET_STRING **out,
|
654
|
+
const uint8_t **inp,
|
655
|
+
long len);
|
656
|
+
OPENSSL_EXPORT ASN1_PRINTABLESTRING *d2i_ASN1_PRINTABLESTRING(
|
657
|
+
ASN1_PRINTABLESTRING **out, const uint8_t **inp, long len);
|
658
|
+
OPENSSL_EXPORT ASN1_T61STRING *d2i_ASN1_T61STRING(ASN1_T61STRING **out,
|
659
|
+
const uint8_t **inp,
|
660
|
+
long len);
|
661
|
+
OPENSSL_EXPORT ASN1_UNIVERSALSTRING *d2i_ASN1_UNIVERSALSTRING(
|
662
|
+
ASN1_UNIVERSALSTRING **out, const uint8_t **inp, long len);
|
663
|
+
OPENSSL_EXPORT ASN1_UTF8STRING *d2i_ASN1_UTF8STRING(ASN1_UTF8STRING **out,
|
664
|
+
const uint8_t **inp,
|
665
|
+
long len);
|
666
|
+
OPENSSL_EXPORT ASN1_VISIBLESTRING *d2i_ASN1_VISIBLESTRING(
|
667
|
+
ASN1_VISIBLESTRING **out, const uint8_t **inp, long len);
|
668
|
+
|
669
|
+
// The following functions marshal |in| as a DER-encoded ASN.1 value of the
|
670
|
+
// corresponding type, as described in |i2d_SAMPLE|.
|
671
|
+
OPENSSL_EXPORT int i2d_ASN1_BMPSTRING(const ASN1_BMPSTRING *in, uint8_t **outp);
|
672
|
+
OPENSSL_EXPORT int i2d_ASN1_GENERALSTRING(const ASN1_GENERALSTRING *in,
|
673
|
+
uint8_t **outp);
|
674
|
+
OPENSSL_EXPORT int i2d_ASN1_IA5STRING(const ASN1_IA5STRING *in, uint8_t **outp);
|
675
|
+
OPENSSL_EXPORT int i2d_ASN1_OCTET_STRING(const ASN1_OCTET_STRING *in,
|
676
|
+
uint8_t **outp);
|
677
|
+
OPENSSL_EXPORT int i2d_ASN1_PRINTABLESTRING(const ASN1_PRINTABLESTRING *in,
|
678
|
+
uint8_t **outp);
|
679
|
+
OPENSSL_EXPORT int i2d_ASN1_T61STRING(const ASN1_T61STRING *in, uint8_t **outp);
|
680
|
+
OPENSSL_EXPORT int i2d_ASN1_UNIVERSALSTRING(const ASN1_UNIVERSALSTRING *in,
|
681
|
+
uint8_t **outp);
|
682
|
+
OPENSSL_EXPORT int i2d_ASN1_UTF8STRING(const ASN1_UTF8STRING *in,
|
683
|
+
uint8_t **outp);
|
684
|
+
OPENSSL_EXPORT int i2d_ASN1_VISIBLESTRING(const ASN1_VISIBLESTRING *in,
|
685
|
+
uint8_t **outp);
|
686
|
+
|
687
|
+
// The following |ASN1_ITEM|s have the ASN.1 type referred to in their name and
|
688
|
+
// C type |ASN1_STRING*|. The C type may also be written as the corresponding
|
689
|
+
// typedef.
|
690
|
+
DECLARE_ASN1_ITEM(ASN1_BMPSTRING)
|
691
|
+
DECLARE_ASN1_ITEM(ASN1_GENERALSTRING)
|
692
|
+
DECLARE_ASN1_ITEM(ASN1_IA5STRING)
|
693
|
+
DECLARE_ASN1_ITEM(ASN1_OCTET_STRING)
|
694
|
+
DECLARE_ASN1_ITEM(ASN1_PRINTABLESTRING)
|
695
|
+
DECLARE_ASN1_ITEM(ASN1_T61STRING)
|
696
|
+
DECLARE_ASN1_ITEM(ASN1_UNIVERSALSTRING)
|
697
|
+
DECLARE_ASN1_ITEM(ASN1_UTF8STRING)
|
698
|
+
DECLARE_ASN1_ITEM(ASN1_VISIBLESTRING)
|
699
|
+
|
700
|
+
// ASN1_OCTET_STRING_dup calls |ASN1_STRING_dup|.
|
701
|
+
OPENSSL_EXPORT ASN1_OCTET_STRING *ASN1_OCTET_STRING_dup(
|
702
|
+
const ASN1_OCTET_STRING *a);
|
703
|
+
|
704
|
+
// ASN1_OCTET_STRING_cmp calls |ASN1_STRING_cmp|.
|
705
|
+
OPENSSL_EXPORT int ASN1_OCTET_STRING_cmp(const ASN1_OCTET_STRING *a,
|
706
|
+
const ASN1_OCTET_STRING *b);
|
707
|
+
|
708
|
+
// ASN1_OCTET_STRING_set calls |ASN1_STRING_set|.
|
709
|
+
OPENSSL_EXPORT int ASN1_OCTET_STRING_set(ASN1_OCTET_STRING *str,
|
710
|
+
const unsigned char *data, int len);
|
711
|
+
|
307
712
|
// ASN1_STRING_to_UTF8 converts |in| to UTF-8. On success, sets |*out| to a
|
308
713
|
// newly-allocated buffer containing the resulting string and returns the length
|
309
714
|
// of the string. The caller must call |OPENSSL_free| to release |*out| when
|
@@ -311,7 +716,170 @@ OPENSSL_EXPORT void ASN1_STRING_set0(ASN1_STRING *str, void *data, int len);
|
|
311
716
|
OPENSSL_EXPORT int ASN1_STRING_to_UTF8(unsigned char **out,
|
312
717
|
const ASN1_STRING *in);
|
313
718
|
|
314
|
-
//
|
719
|
+
// The following formats define encodings for use with functions like
|
720
|
+
// |ASN1_mbstring_copy|. Note |MBSTRING_ASC| refers to Latin-1, not ASCII.
|
721
|
+
#define MBSTRING_FLAG 0x1000
|
722
|
+
#define MBSTRING_UTF8 (MBSTRING_FLAG)
|
723
|
+
#define MBSTRING_ASC (MBSTRING_FLAG | 1)
|
724
|
+
#define MBSTRING_BMP (MBSTRING_FLAG | 2)
|
725
|
+
#define MBSTRING_UNIV (MBSTRING_FLAG | 4)
|
726
|
+
|
727
|
+
// DIRSTRING_TYPE contains the valid string types in an X.509 DirectoryString.
|
728
|
+
#define DIRSTRING_TYPE \
|
729
|
+
(B_ASN1_PRINTABLESTRING | B_ASN1_T61STRING | B_ASN1_BMPSTRING | \
|
730
|
+
B_ASN1_UTF8STRING)
|
731
|
+
|
732
|
+
// PKCS9STRING_TYPE contains the valid string types in a PKCS9String.
|
733
|
+
#define PKCS9STRING_TYPE (DIRSTRING_TYPE | B_ASN1_IA5STRING)
|
734
|
+
|
735
|
+
// ASN1_mbstring_copy converts |len| bytes from |in| to an ASN.1 string. If
|
736
|
+
// |len| is -1, |in| must be NUL-terminated and the length is determined by
|
737
|
+
// |strlen|. |in| is decoded according to |inform|, which must be one of
|
738
|
+
// |MBSTRING_*|. |mask| determines the set of valid output types and is a
|
739
|
+
// bitmask containing a subset of |B_ASN1_PRINTABLESTRING|, |B_ASN1_IA5STRING|,
|
740
|
+
// |B_ASN1_T61STRING|, |B_ASN1_BMPSTRING|, |B_ASN1_UNIVERSALSTRING|, and
|
741
|
+
// |B_ASN1_UTF8STRING|, in that preference order. This function chooses the
|
742
|
+
// first output type in |mask| which can represent |in|. It interprets T61String
|
743
|
+
// as Latin-1, rather than T.61.
|
744
|
+
//
|
745
|
+
// If |mask| is zero, |DIRSTRING_TYPE| is used by default.
|
746
|
+
//
|
747
|
+
// On success, this function returns the |V_ASN1_*| constant corresponding to
|
748
|
+
// the selected output type and, if |out| and |*out| are both non-NULL, updates
|
749
|
+
// the object at |*out| with the result. If |out| is non-NULL and |*out| is
|
750
|
+
// NULL, it instead sets |*out| to a newly-allocated |ASN1_STRING| containing
|
751
|
+
// the result. If |out| is NULL, it returns the selected output type without
|
752
|
+
// constructing an |ASN1_STRING|. On error, this function returns -1.
|
753
|
+
OPENSSL_EXPORT int ASN1_mbstring_copy(ASN1_STRING **out, const uint8_t *in,
|
754
|
+
int len, int inform, unsigned long mask);
|
755
|
+
|
756
|
+
// ASN1_mbstring_ncopy behaves like |ASN1_mbstring_copy| but returns an error if
|
757
|
+
// the input is less than |minsize| or greater than |maxsize| codepoints long. A
|
758
|
+
// |maxsize| value of zero is ignored. Note the sizes are measured in
|
759
|
+
// codepoints, not output bytes.
|
760
|
+
OPENSSL_EXPORT int ASN1_mbstring_ncopy(ASN1_STRING **out, const uint8_t *in,
|
761
|
+
int len, int inform, unsigned long mask,
|
762
|
+
long minsize, long maxsize);
|
763
|
+
|
764
|
+
// ASN1_STRING_set_by_NID behaves like |ASN1_mbstring_ncopy|, but determines
|
765
|
+
// |mask|, |minsize|, and |maxsize| based on |nid|. When |nid| is a recognized
|
766
|
+
// X.509 attribute type, it will pick a suitable ASN.1 string type and bounds.
|
767
|
+
// For most attribute types, it preferentially chooses UTF8String. If |nid| is
|
768
|
+
// unrecognized, it uses UTF8String by default.
|
769
|
+
//
|
770
|
+
// Slightly unlike |ASN1_mbstring_ncopy|, this function interprets |out| and
|
771
|
+
// returns its result as follows: If |out| is NULL, it returns a newly-allocated
|
772
|
+
// |ASN1_STRING| containing the result. If |out| is non-NULL and
|
773
|
+
// |*out| is NULL, it additionally sets |*out| to the result. If both |out| and
|
774
|
+
// |*out| are non-NULL, it instead updates the object at |*out| and returns
|
775
|
+
// |*out|. In all cases, it returns NULL on error.
|
776
|
+
//
|
777
|
+
// This function supports the following NIDs: |NID_countryName|,
|
778
|
+
// |NID_dnQualifier|, |NID_domainComponent|, |NID_friendlyName|,
|
779
|
+
// |NID_givenName|, |NID_initials|, |NID_localityName|, |NID_ms_csp_name|,
|
780
|
+
// |NID_name|, |NID_organizationalUnitName|, |NID_organizationName|,
|
781
|
+
// |NID_pkcs9_challengePassword|, |NID_pkcs9_emailAddress|,
|
782
|
+
// |NID_pkcs9_unstructuredAddress|, |NID_pkcs9_unstructuredName|,
|
783
|
+
// |NID_serialNumber|, |NID_stateOrProvinceName|, and |NID_surname|. Additional
|
784
|
+
// NIDs may be registered with |ASN1_STRING_set_by_NID|, but it is recommended
|
785
|
+
// to call |ASN1_mbstring_ncopy| directly instead.
|
786
|
+
OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_set_by_NID(ASN1_STRING **out,
|
787
|
+
const unsigned char *in,
|
788
|
+
int len, int inform,
|
789
|
+
int nid);
|
790
|
+
|
791
|
+
// STABLE_NO_MASK causes |ASN1_STRING_TABLE_add| to allow types other than
|
792
|
+
// UTF8String.
|
793
|
+
#define STABLE_NO_MASK 0x02
|
794
|
+
|
795
|
+
// ASN1_STRING_TABLE_add registers the corresponding parameters with |nid|, for
|
796
|
+
// use with |ASN1_STRING_set_by_NID|. It returns one on success and zero on
|
797
|
+
// error. It is an error to call this function if |nid| is a built-in NID, or
|
798
|
+
// was already registered by a previous call.
|
799
|
+
//
|
800
|
+
// WARNING: This function affects global state in the library. If two libraries
|
801
|
+
// in the same address space register information for the same OID, one call
|
802
|
+
// will fail. Prefer directly passing the desired parametrs to
|
803
|
+
// |ASN1_mbstring_copy| or |ASN1_mbstring_ncopy| instead.
|
804
|
+
OPENSSL_EXPORT int ASN1_STRING_TABLE_add(int nid, long minsize, long maxsize,
|
805
|
+
unsigned long mask,
|
806
|
+
unsigned long flags);
|
807
|
+
|
808
|
+
|
809
|
+
// Multi-strings.
|
810
|
+
//
|
811
|
+
// A multi-string, or "MSTRING", is an |ASN1_STRING| that represents a CHOICE of
|
812
|
+
// several string or string-like types, such as X.509's DirectoryString. The
|
813
|
+
// |ASN1_STRING|'s type field determines which type is used.
|
814
|
+
//
|
815
|
+
// Multi-string types are associated with a bitmask, using the |B_ASN1_*|
|
816
|
+
// constants, which defines which types are valid.
|
817
|
+
|
818
|
+
// B_ASN1_DIRECTORYSTRING is a bitmask of types allowed in an X.509
|
819
|
+
// DirectoryString (RFC 5280).
|
820
|
+
#define B_ASN1_DIRECTORYSTRING \
|
821
|
+
(B_ASN1_PRINTABLESTRING | B_ASN1_TELETEXSTRING | B_ASN1_BMPSTRING | \
|
822
|
+
B_ASN1_UNIVERSALSTRING | B_ASN1_UTF8STRING)
|
823
|
+
|
824
|
+
// DIRECTORYSTRING_new returns a newly-allocated |ASN1_STRING| with type -1, or
|
825
|
+
// NULL on error. The resulting |ASN1_STRING| is not a valid X.509
|
826
|
+
// DirectoryString until initialized with a value.
|
827
|
+
OPENSSL_EXPORT ASN1_STRING *DIRECTORYSTRING_new(void);
|
828
|
+
|
829
|
+
// DIRECTORYSTRING_free calls |ASN1_STRING_free|.
|
830
|
+
OPENSSL_EXPORT void DIRECTORYSTRING_free(ASN1_STRING *str);
|
831
|
+
|
832
|
+
// d2i_DIRECTORYSTRING parses up to |len| bytes from |*inp| as a DER-encoded
|
833
|
+
// X.509 DirectoryString (RFC 5280), as described in |d2i_SAMPLE_with_reuse|.
|
834
|
+
//
|
835
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
836
|
+
// BER, but this will be removed in the future.
|
837
|
+
//
|
838
|
+
// TODO(https://crbug.com/boringssl/449): DirectoryString's non-empty string
|
839
|
+
// requirement is not currently enforced.
|
840
|
+
OPENSSL_EXPORT ASN1_STRING *d2i_DIRECTORYSTRING(ASN1_STRING **out,
|
841
|
+
const uint8_t **inp, long len);
|
842
|
+
|
843
|
+
// i2d_DIRECTORYSTRING marshals |in| as a DER-encoded X.509 DirectoryString (RFC
|
844
|
+
// 5280), as described in |i2d_SAMPLE|.
|
845
|
+
OPENSSL_EXPORT int i2d_DIRECTORYSTRING(const ASN1_STRING *in, uint8_t **outp);
|
846
|
+
|
847
|
+
// DIRECTORYSTRING is an |ASN1_ITEM| whose ASN.1 type is X.509 DirectoryString
|
848
|
+
// (RFC 5280) and C type is |ASN1_STRING*|.
|
849
|
+
DECLARE_ASN1_ITEM(DIRECTORYSTRING)
|
850
|
+
|
851
|
+
// B_ASN1_DISPLAYTEXT is a bitmask of types allowed in an X.509 DisplayText (RFC
|
852
|
+
// 5280).
|
853
|
+
#define B_ASN1_DISPLAYTEXT \
|
854
|
+
(B_ASN1_IA5STRING | B_ASN1_VISIBLESTRING | B_ASN1_BMPSTRING | \
|
855
|
+
B_ASN1_UTF8STRING)
|
856
|
+
|
857
|
+
// DISPLAYTEXT_new returns a newly-allocated |ASN1_STRING| with type -1, or NULL
|
858
|
+
// on error. The resulting |ASN1_STRING| is not a valid X.509 DisplayText until
|
859
|
+
// initialized with a value.
|
860
|
+
OPENSSL_EXPORT ASN1_STRING *DISPLAYTEXT_new(void);
|
861
|
+
|
862
|
+
// DISPLAYTEXT_free calls |ASN1_STRING_free|.
|
863
|
+
OPENSSL_EXPORT void DISPLAYTEXT_free(ASN1_STRING *str);
|
864
|
+
|
865
|
+
// d2i_DISPLAYTEXT parses up to |len| bytes from |*inp| as a DER-encoded X.509
|
866
|
+
// DisplayText (RFC 5280), as described in |d2i_SAMPLE_with_reuse|.
|
867
|
+
//
|
868
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
869
|
+
// BER, but this will be removed in the future.
|
870
|
+
//
|
871
|
+
// TODO(https://crbug.com/boringssl/449): DisplayText's size limits are not
|
872
|
+
// currently enforced.
|
873
|
+
OPENSSL_EXPORT ASN1_STRING *d2i_DISPLAYTEXT(ASN1_STRING **out,
|
874
|
+
const uint8_t **inp, long len);
|
875
|
+
|
876
|
+
// i2d_DISPLAYTEXT marshals |in| as a DER-encoded X.509 DisplayText (RFC 5280),
|
877
|
+
// as described in |i2d_SAMPLE|.
|
878
|
+
OPENSSL_EXPORT int i2d_DISPLAYTEXT(const ASN1_STRING *in, uint8_t **outp);
|
879
|
+
|
880
|
+
// DISPLAYTEXT is an |ASN1_ITEM| whose ASN.1 type is X.509 DisplayText (RFC
|
881
|
+
// 5280) and C type is |ASN1_STRING*|.
|
882
|
+
DECLARE_ASN1_ITEM(DISPLAYTEXT)
|
315
883
|
|
316
884
|
|
317
885
|
// Bit strings.
|
@@ -321,7 +889,7 @@ OPENSSL_EXPORT int ASN1_STRING_to_UTF8(unsigned char **out,
|
|
321
889
|
// in several forms:
|
322
890
|
//
|
323
891
|
// Some BIT STRINGs represent a bitmask of named bits, such as the X.509 key
|
324
|
-
// usage extension in
|
892
|
+
// usage extension in RFC 5280, section 4.2.1.3. For such bit strings, DER
|
325
893
|
// imposes an additional restriction that trailing zero bits are removed. Some
|
326
894
|
// functions like |ASN1_BIT_STRING_set_bit| help in maintaining this.
|
327
895
|
//
|
@@ -347,7 +915,58 @@ OPENSSL_EXPORT int ASN1_STRING_to_UTF8(unsigned char **out,
|
|
347
915
|
// {0x80} and flags of ASN1_STRING_FLAG_BITS_LEFT | 6. If
|
348
916
|
// |ASN1_STRING_FLAG_BITS_LEFT| is unset, trailing zero bits are implicitly
|
349
917
|
// removed. Callers should not rely this representation when constructing bit
|
350
|
-
// strings.
|
918
|
+
// strings. The padding bits in the |ASN1_STRING| data must be zero.
|
919
|
+
|
920
|
+
// ASN1_BIT_STRING_new calls |ASN1_STRING_type_new| with |V_ASN1_BIT_STRING|.
|
921
|
+
OPENSSL_EXPORT ASN1_BIT_STRING *ASN1_BIT_STRING_new(void);
|
922
|
+
|
923
|
+
// ASN1_BIT_STRING_free calls |ASN1_STRING_free|.
|
924
|
+
OPENSSL_EXPORT void ASN1_BIT_STRING_free(ASN1_BIT_STRING *str);
|
925
|
+
|
926
|
+
// d2i_ASN1_BIT_STRING parses up to |len| bytes from |*inp| as a DER-encoded
|
927
|
+
// ASN.1 BIT STRING, as described in |d2i_SAMPLE_with_reuse|.
|
928
|
+
//
|
929
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
930
|
+
// BER, but this will be removed in the future.
|
931
|
+
OPENSSL_EXPORT ASN1_BIT_STRING *d2i_ASN1_BIT_STRING(ASN1_BIT_STRING **out,
|
932
|
+
const uint8_t **inp,
|
933
|
+
long len);
|
934
|
+
|
935
|
+
// i2d_ASN1_BIT_STRING marshals |in| as a DER-encoded ASN.1 BIT STRING, as
|
936
|
+
// described in |i2d_SAMPLE|.
|
937
|
+
OPENSSL_EXPORT int i2d_ASN1_BIT_STRING(const ASN1_BIT_STRING *in,
|
938
|
+
uint8_t **outp);
|
939
|
+
|
940
|
+
// c2i_ASN1_BIT_STRING decodes |len| bytes from |*inp| as the contents of a
|
941
|
+
// DER-encoded BIT STRING, excluding the tag and length. It behaves like
|
942
|
+
// |d2i_SAMPLE_with_reuse| except, on success, it always consumes all |len|
|
943
|
+
// bytes.
|
944
|
+
//
|
945
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
946
|
+
// BER, but this will be removed in the future.
|
947
|
+
OPENSSL_EXPORT ASN1_BIT_STRING *c2i_ASN1_BIT_STRING(ASN1_BIT_STRING **out,
|
948
|
+
const uint8_t **inp,
|
949
|
+
long len);
|
950
|
+
|
951
|
+
// i2c_ASN1_BIT_STRING encodes |in| as the contents of a DER-encoded BIT STRING,
|
952
|
+
// excluding the tag and length. If |outp| is non-NULL, it writes the result to
|
953
|
+
// |*outp|, advances |*outp| just past the output, and returns the number of
|
954
|
+
// bytes written. |*outp| must have space available for the result. If |outp| is
|
955
|
+
// NULL, it returns the number of bytes without writing anything. On error, it
|
956
|
+
// returns a value <= 0.
|
957
|
+
//
|
958
|
+
// Note this function differs slightly from |i2d_SAMPLE|. If |outp| is non-NULL
|
959
|
+
// and |*outp| is NULL, it does not allocate a new buffer.
|
960
|
+
//
|
961
|
+
// TODO(davidben): This function currently returns zero on error instead of -1,
|
962
|
+
// but it is also mostly infallible. I've currently documented <= 0 to suggest
|
963
|
+
// callers work with both.
|
964
|
+
OPENSSL_EXPORT int i2c_ASN1_BIT_STRING(const ASN1_BIT_STRING *in,
|
965
|
+
uint8_t **outp);
|
966
|
+
|
967
|
+
// ASN1_BIT_STRING is an |ASN1_ITEM| with ASN.1 type BIT STRING and C type
|
968
|
+
// |ASN1_BIT_STRING*|.
|
969
|
+
DECLARE_ASN1_ITEM(ASN1_BIT_STRING)
|
351
970
|
|
352
971
|
// ASN1_BIT_STRING_num_bytes computes the length of |str| in bytes. If |str|'s
|
353
972
|
// bit length is a multiple of 8, it sets |*out| to the byte length and returns
|
@@ -386,8 +1005,6 @@ OPENSSL_EXPORT int ASN1_BIT_STRING_check(const ASN1_BIT_STRING *str,
|
|
386
1005
|
const unsigned char *flags,
|
387
1006
|
int flags_len);
|
388
1007
|
|
389
|
-
// TODO(davidben): Expand and document function prototypes generated in macros.
|
390
|
-
|
391
1008
|
|
392
1009
|
// Integers and enumerated values.
|
393
1010
|
//
|
@@ -398,12 +1015,65 @@ OPENSSL_EXPORT int ASN1_BIT_STRING_check(const ASN1_BIT_STRING *str,
|
|
398
1015
|
// |V_ASN1_NEG_INTEGER| or |V_ASN1_NEG_ENUMERATED|. Note this differs from DER's
|
399
1016
|
// two's complement representation.
|
400
1017
|
|
1018
|
+
DEFINE_STACK_OF(ASN1_INTEGER)
|
1019
|
+
|
1020
|
+
// ASN1_INTEGER_new calls |ASN1_STRING_type_new| with |V_ASN1_INTEGER|. The
|
1021
|
+
// resulting object has value zero.
|
1022
|
+
OPENSSL_EXPORT ASN1_INTEGER *ASN1_INTEGER_new(void);
|
1023
|
+
|
1024
|
+
// ASN1_INTEGER_free calls |ASN1_STRING_free|.
|
1025
|
+
OPENSSL_EXPORT void ASN1_INTEGER_free(ASN1_INTEGER *str);
|
1026
|
+
|
1027
|
+
// ASN1_INTEGER_dup calls |ASN1_STRING_dup|.
|
1028
|
+
OPENSSL_EXPORT ASN1_INTEGER *ASN1_INTEGER_dup(const ASN1_INTEGER *x);
|
1029
|
+
|
1030
|
+
// d2i_ASN1_INTEGER parses up to |len| bytes from |*inp| as a DER-encoded
|
1031
|
+
// ASN.1 INTEGER, as described in |d2i_SAMPLE_with_reuse|.
|
1032
|
+
//
|
1033
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1034
|
+
// BER, but this will be removed in the future.
|
1035
|
+
OPENSSL_EXPORT ASN1_INTEGER *d2i_ASN1_INTEGER(ASN1_INTEGER **out,
|
1036
|
+
const uint8_t **inp, long len);
|
1037
|
+
|
1038
|
+
// i2d_ASN1_INTEGER marshals |in| as a DER-encoded ASN.1 INTEGER, as
|
1039
|
+
// described in |i2d_SAMPLE|.
|
1040
|
+
OPENSSL_EXPORT int i2d_ASN1_INTEGER(const ASN1_INTEGER *in, uint8_t **outp);
|
1041
|
+
|
1042
|
+
// c2i_ASN1_INTEGER decodes |len| bytes from |*inp| as the contents of a
|
1043
|
+
// DER-encoded INTEGER, excluding the tag and length. It behaves like
|
1044
|
+
// |d2i_SAMPLE_with_reuse| except, on success, it always consumes all |len|
|
1045
|
+
// bytes.
|
1046
|
+
//
|
1047
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1048
|
+
// some invalid inputs, but this will be removed in the future.
|
1049
|
+
OPENSSL_EXPORT ASN1_INTEGER *c2i_ASN1_INTEGER(ASN1_INTEGER **in,
|
1050
|
+
const uint8_t **outp, long len);
|
1051
|
+
|
1052
|
+
// i2c_ASN1_INTEGER encodes |in| as the contents of a DER-encoded INTEGER,
|
1053
|
+
// excluding the tag and length. If |outp| is non-NULL, it writes the result to
|
1054
|
+
// |*outp|, advances |*outp| just past the output, and returns the number of
|
1055
|
+
// bytes written. |*outp| must have space available for the result. If |outp| is
|
1056
|
+
// NULL, it returns the number of bytes without writing anything. On error, it
|
1057
|
+
// returns a value <= 0.
|
1058
|
+
//
|
1059
|
+
// Note this function differs slightly from |i2d_SAMPLE|. If |outp| is non-NULL
|
1060
|
+
// and |*outp| is NULL, it does not allocate a new buffer.
|
1061
|
+
//
|
1062
|
+
// TODO(davidben): This function currently returns zero on error instead of -1,
|
1063
|
+
// but it is also mostly infallible. I've currently documented <= 0 to suggest
|
1064
|
+
// callers work with both.
|
1065
|
+
OPENSSL_EXPORT int i2c_ASN1_INTEGER(const ASN1_INTEGER *in, uint8_t **outp);
|
1066
|
+
|
1067
|
+
// ASN1_INTEGER is an |ASN1_ITEM| with ASN.1 type INTEGER and C type
|
1068
|
+
// |ASN1_INTEGER*|.
|
1069
|
+
DECLARE_ASN1_ITEM(ASN1_INTEGER)
|
1070
|
+
|
401
1071
|
// ASN1_INTEGER_set sets |a| to an INTEGER with value |v|. It returns one on
|
402
1072
|
// success and zero on error.
|
403
1073
|
OPENSSL_EXPORT int ASN1_INTEGER_set(ASN1_INTEGER *a, long v);
|
404
1074
|
|
405
|
-
//
|
406
|
-
// success and zero on error.
|
1075
|
+
// ASN1_INTEGER_set_uint64 sets |a| to an INTEGER with value |v|. It returns one
|
1076
|
+
// on success and zero on error.
|
407
1077
|
OPENSSL_EXPORT int ASN1_INTEGER_set_uint64(ASN1_INTEGER *out, uint64_t v);
|
408
1078
|
|
409
1079
|
// ASN1_INTEGER_get returns the value of |a| as a |long|, or -1 if |a| is out of
|
@@ -428,12 +1098,37 @@ OPENSSL_EXPORT BIGNUM *ASN1_INTEGER_to_BN(const ASN1_INTEGER *ai, BIGNUM *bn);
|
|
428
1098
|
OPENSSL_EXPORT int ASN1_INTEGER_cmp(const ASN1_INTEGER *x,
|
429
1099
|
const ASN1_INTEGER *y);
|
430
1100
|
|
1101
|
+
// ASN1_ENUMERATED_new calls |ASN1_STRING_type_new| with |V_ASN1_ENUMERATED|.
|
1102
|
+
// The resulting object has value zero.
|
1103
|
+
OPENSSL_EXPORT ASN1_ENUMERATED *ASN1_ENUMERATED_new(void);
|
1104
|
+
|
1105
|
+
// ASN1_ENUMERATED_free calls |ASN1_STRING_free|.
|
1106
|
+
OPENSSL_EXPORT void ASN1_ENUMERATED_free(ASN1_ENUMERATED *str);
|
1107
|
+
|
1108
|
+
// d2i_ASN1_ENUMERATED parses up to |len| bytes from |*inp| as a DER-encoded
|
1109
|
+
// ASN.1 ENUMERATED, as described in |d2i_SAMPLE_with_reuse|.
|
1110
|
+
//
|
1111
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1112
|
+
// BER, but this will be removed in the future.
|
1113
|
+
OPENSSL_EXPORT ASN1_ENUMERATED *d2i_ASN1_ENUMERATED(ASN1_ENUMERATED **out,
|
1114
|
+
const uint8_t **inp,
|
1115
|
+
long len);
|
1116
|
+
|
1117
|
+
// i2d_ASN1_ENUMERATED marshals |in| as a DER-encoded ASN.1 ENUMERATED, as
|
1118
|
+
// described in |i2d_SAMPLE|.
|
1119
|
+
OPENSSL_EXPORT int i2d_ASN1_ENUMERATED(const ASN1_ENUMERATED *in,
|
1120
|
+
uint8_t **outp);
|
1121
|
+
|
1122
|
+
// ASN1_ENUMERATED is an |ASN1_ITEM| with ASN.1 type ENUMERATED and C type
|
1123
|
+
// |ASN1_ENUMERATED*|.
|
1124
|
+
DECLARE_ASN1_ITEM(ASN1_ENUMERATED)
|
1125
|
+
|
431
1126
|
// ASN1_ENUMERATED_set sets |a| to an ENUMERATED with value |v|. It returns one
|
432
1127
|
// on success and zero on error.
|
433
1128
|
OPENSSL_EXPORT int ASN1_ENUMERATED_set(ASN1_ENUMERATED *a, long v);
|
434
1129
|
|
435
|
-
//
|
436
|
-
// range or the wrong type.
|
1130
|
+
// ASN1_ENUMERATED_get returns the value of |a| as a |long|, or -1 if |a| is out
|
1131
|
+
// of range or the wrong type.
|
437
1132
|
OPENSSL_EXPORT long ASN1_ENUMERATED_get(const ASN1_ENUMERATED *a);
|
438
1133
|
|
439
1134
|
// BN_to_ASN1_ENUMERATED sets |ai| to an ENUMERATED with value |bn| and returns
|
@@ -449,45 +1144,329 @@ OPENSSL_EXPORT ASN1_ENUMERATED *BN_to_ASN1_ENUMERATED(const BIGNUM *bn,
|
|
449
1144
|
OPENSSL_EXPORT BIGNUM *ASN1_ENUMERATED_to_BN(const ASN1_ENUMERATED *ai,
|
450
1145
|
BIGNUM *bn);
|
451
1146
|
|
452
|
-
// TODO(davidben): Expand and document function prototypes generated in macros.
|
453
|
-
|
454
1147
|
|
1148
|
+
// Time.
|
1149
|
+
//
|
1150
|
+
// GeneralizedTime and UTCTime values are represented as |ASN1_STRING|s. The
|
1151
|
+
// type field is |V_ASN1_GENERALIZEDTIME| or |V_ASN1_UTCTIME|, respectively. The
|
1152
|
+
// data field contains the DER encoding of the value. For example, the UNIX
|
1153
|
+
// epoch would be "19700101000000Z" for a GeneralizedTime and "700101000000Z"
|
1154
|
+
// for a UTCTime.
|
1155
|
+
//
|
1156
|
+
// ASN.1 does not define how to interpret UTCTime's two-digit year. RFC 5280
|
1157
|
+
// defines it as a range from 1950 to 2049 for X.509. The library uses the
|
1158
|
+
// RFC 5280 interpretation. It does not currently enforce the restrictions from
|
1159
|
+
// BER, and the additional restrictions from RFC 5280, but future versions may.
|
1160
|
+
// Callers should not rely on fractional seconds and non-UTC time zones.
|
1161
|
+
//
|
1162
|
+
// The |ASN1_TIME| typedef is a multi-string representing the X.509 Time type,
|
1163
|
+
// which is a CHOICE of GeneralizedTime and UTCTime, using UTCTime when the
|
1164
|
+
// value is in range.
|
455
1165
|
|
456
|
-
//
|
1166
|
+
// ASN1_UTCTIME_new calls |ASN1_STRING_type_new| with |V_ASN1_UTCTIME|. The
|
1167
|
+
// resulting object contains empty contents and must be initialized to be a
|
1168
|
+
// valid UTCTime.
|
1169
|
+
OPENSSL_EXPORT ASN1_UTCTIME *ASN1_UTCTIME_new(void);
|
457
1170
|
|
458
|
-
//
|
459
|
-
|
460
|
-
typedef struct ASN1_VALUE_st ASN1_VALUE;
|
1171
|
+
// ASN1_UTCTIME_free calls |ASN1_STRING_free|.
|
1172
|
+
OPENSSL_EXPORT void ASN1_UTCTIME_free(ASN1_UTCTIME *str);
|
461
1173
|
|
462
|
-
//
|
463
|
-
//
|
464
|
-
// union dependent on |type|.
|
1174
|
+
// d2i_ASN1_UTCTIME parses up to |len| bytes from |*inp| as a DER-encoded
|
1175
|
+
// ASN.1 UTCTime, as described in |d2i_SAMPLE_with_reuse|.
|
465
1176
|
//
|
466
|
-
//
|
467
|
-
//
|
468
|
-
|
469
|
-
|
470
|
-
|
1177
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1178
|
+
// BER, but this will be removed in the future.
|
1179
|
+
OPENSSL_EXPORT ASN1_UTCTIME *d2i_ASN1_UTCTIME(ASN1_UTCTIME **out,
|
1180
|
+
const uint8_t **inp, long len);
|
1181
|
+
|
1182
|
+
// i2d_ASN1_UTCTIME marshals |in| as a DER-encoded ASN.1 UTCTime, as
|
1183
|
+
// described in |i2d_SAMPLE|.
|
1184
|
+
OPENSSL_EXPORT int i2d_ASN1_UTCTIME(const ASN1_UTCTIME *in, uint8_t **outp);
|
1185
|
+
|
1186
|
+
// ASN1_UTCTIME is an |ASN1_ITEM| with ASN.1 type UTCTime and C type
|
1187
|
+
// |ASN1_UTCTIME*|.
|
1188
|
+
DECLARE_ASN1_ITEM(ASN1_UTCTIME)
|
1189
|
+
|
1190
|
+
// ASN1_UTCTIME_check returns one if |a| is a valid UTCTime and zero otherwise.
|
1191
|
+
OPENSSL_EXPORT int ASN1_UTCTIME_check(const ASN1_UTCTIME *a);
|
1192
|
+
|
1193
|
+
// ASN1_UTCTIME_set represents |t| as a UTCTime and writes the result to |s|. It
|
1194
|
+
// returns |s| on success and NULL on error. If |s| is NULL, it returns a
|
1195
|
+
// newly-allocated |ASN1_UTCTIME| instead.
|
471
1196
|
//
|
472
|
-
//
|
473
|
-
|
1197
|
+
// Note this function may fail if the time is out of range for UTCTime.
|
1198
|
+
OPENSSL_EXPORT ASN1_UTCTIME *ASN1_UTCTIME_set(ASN1_UTCTIME *s, time_t t);
|
1199
|
+
|
1200
|
+
// ASN1_UTCTIME_adj adds |offset_day| days and |offset_sec| seconds to |t| and
|
1201
|
+
// writes the result to |s| as a UTCTime. It returns |s| on success and NULL on
|
1202
|
+
// error. If |s| is NULL, it returns a newly-allocated |ASN1_UTCTIME| instead.
|
474
1203
|
//
|
475
|
-
//
|
476
|
-
//
|
477
|
-
|
478
|
-
|
479
|
-
|
480
|
-
//
|
481
|
-
// |
|
482
|
-
//
|
1204
|
+
// Note this function may fail if the time overflows or is out of range for
|
1205
|
+
// UTCTime.
|
1206
|
+
OPENSSL_EXPORT ASN1_UTCTIME *ASN1_UTCTIME_adj(ASN1_UTCTIME *s, time_t t,
|
1207
|
+
int offset_day, long offset_sec);
|
1208
|
+
|
1209
|
+
// ASN1_UTCTIME_set_string sets |s| to a UTCTime whose contents are a copy of
|
1210
|
+
// |str|. It returns one on success and zero on error or if |str| is not a valid
|
1211
|
+
// UTCTime.
|
483
1212
|
//
|
484
|
-
// If |
|
485
|
-
|
1213
|
+
// If |s| is NULL, this function validates |str| without copying it.
|
1214
|
+
OPENSSL_EXPORT int ASN1_UTCTIME_set_string(ASN1_UTCTIME *s, const char *str);
|
1215
|
+
|
1216
|
+
// ASN1_UTCTIME_cmp_time_t compares |s| to |t|. It returns -1 if |s| < |t|, 0 if
|
1217
|
+
// they are equal, 1 if |s| > |t|, and -2 on error.
|
1218
|
+
OPENSSL_EXPORT int ASN1_UTCTIME_cmp_time_t(const ASN1_UTCTIME *s, time_t t);
|
1219
|
+
|
1220
|
+
// ASN1_GENERALIZEDTIME_new calls |ASN1_STRING_type_new| with
|
1221
|
+
// |V_ASN1_GENERALIZEDTIME|. The resulting object contains empty contents and
|
1222
|
+
// must be initialized to be a valid GeneralizedTime.
|
1223
|
+
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_new(void);
|
1224
|
+
|
1225
|
+
// ASN1_GENERALIZEDTIME_free calls |ASN1_STRING_free|.
|
1226
|
+
OPENSSL_EXPORT void ASN1_GENERALIZEDTIME_free(ASN1_GENERALIZEDTIME *str);
|
1227
|
+
|
1228
|
+
// d2i_ASN1_GENERALIZEDTIME parses up to |len| bytes from |*inp| as a
|
1229
|
+
// DER-encoded ASN.1 GeneralizedTime, as described in |d2i_SAMPLE_with_reuse|.
|
486
1230
|
//
|
487
|
-
//
|
1231
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1232
|
+
// BER, but this will be removed in the future.
|
1233
|
+
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *d2i_ASN1_GENERALIZEDTIME(
|
1234
|
+
ASN1_GENERALIZEDTIME **out, const uint8_t **inp, long len);
|
1235
|
+
|
1236
|
+
// i2d_ASN1_GENERALIZEDTIME marshals |in| as a DER-encoded ASN.1
|
1237
|
+
// GeneralizedTime, as described in |i2d_SAMPLE|.
|
1238
|
+
OPENSSL_EXPORT int i2d_ASN1_GENERALIZEDTIME(const ASN1_GENERALIZEDTIME *in,
|
1239
|
+
uint8_t **outp);
|
1240
|
+
|
1241
|
+
// ASN1_GENERALIZEDTIME is an |ASN1_ITEM| with ASN.1 type GeneralizedTime and C
|
1242
|
+
// type |ASN1_GENERALIZEDTIME*|.
|
1243
|
+
DECLARE_ASN1_ITEM(ASN1_GENERALIZEDTIME)
|
1244
|
+
|
1245
|
+
// ASN1_GENERALIZEDTIME_check returns one if |a| is a valid GeneralizedTime and
|
1246
|
+
// zero otherwise.
|
1247
|
+
OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_check(const ASN1_GENERALIZEDTIME *a);
|
1248
|
+
|
1249
|
+
// ASN1_GENERALIZEDTIME_set represents |t| as a GeneralizedTime and writes the
|
1250
|
+
// result to |s|. It returns |s| on success and NULL on error. If |s| is NULL,
|
1251
|
+
// it returns a newly-allocated |ASN1_GENERALIZEDTIME| instead.
|
488
1252
|
//
|
489
|
-
//
|
490
|
-
|
1253
|
+
// Note this function may fail if the time is out of range for GeneralizedTime.
|
1254
|
+
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_set(
|
1255
|
+
ASN1_GENERALIZEDTIME *s, time_t t);
|
1256
|
+
|
1257
|
+
// ASN1_GENERALIZEDTIME_adj adds |offset_day| days and |offset_sec| seconds to
|
1258
|
+
// |t| and writes the result to |s| as a GeneralizedTime. It returns |s| on
|
1259
|
+
// success and NULL on error. If |s| is NULL, it returns a newly-allocated
|
1260
|
+
// |ASN1_GENERALIZEDTIME| instead.
|
1261
|
+
//
|
1262
|
+
// Note this function may fail if the time overflows or is out of range for
|
1263
|
+
// GeneralizedTime.
|
1264
|
+
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_adj(
|
1265
|
+
ASN1_GENERALIZEDTIME *s, time_t t, int offset_day, long offset_sec);
|
1266
|
+
|
1267
|
+
// ASN1_GENERALIZEDTIME_set_string sets |s| to a GeneralizedTime whose contents
|
1268
|
+
// are a copy of |str|. It returns one on success and zero on error or if |str|
|
1269
|
+
// is not a valid GeneralizedTime.
|
1270
|
+
//
|
1271
|
+
// If |s| is NULL, this function validates |str| without copying it.
|
1272
|
+
OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_set_string(ASN1_GENERALIZEDTIME *s,
|
1273
|
+
const char *str);
|
1274
|
+
|
1275
|
+
// B_ASN1_TIME is a bitmask of types allowed in an X.509 Time.
|
1276
|
+
#define B_ASN1_TIME (B_ASN1_UTCTIME | B_ASN1_GENERALIZEDTIME)
|
1277
|
+
|
1278
|
+
// ASN1_TIME_new returns a newly-allocated |ASN1_TIME| with type -1, or NULL on
|
1279
|
+
// error. The resulting |ASN1_TIME| is not a valid X.509 Time until initialized
|
1280
|
+
// with a value.
|
1281
|
+
OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_new(void);
|
1282
|
+
|
1283
|
+
// ASN1_TIME_free releases memory associated with |str|.
|
1284
|
+
OPENSSL_EXPORT void ASN1_TIME_free(ASN1_TIME *str);
|
1285
|
+
|
1286
|
+
// d2i_ASN1_TIME parses up to |len| bytes from |*inp| as a DER-encoded X.509
|
1287
|
+
// Time (RFC 5280), as described in |d2i_SAMPLE_with_reuse|.
|
1288
|
+
//
|
1289
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1290
|
+
// BER, but this will be removed in the future.
|
1291
|
+
OPENSSL_EXPORT ASN1_TIME *d2i_ASN1_TIME(ASN1_TIME **out, const uint8_t **inp,
|
1292
|
+
long len);
|
1293
|
+
|
1294
|
+
// i2d_ASN1_TIME marshals |in| as a DER-encoded X.509 Time (RFC 5280), as
|
1295
|
+
// described in |i2d_SAMPLE|.
|
1296
|
+
OPENSSL_EXPORT int i2d_ASN1_TIME(const ASN1_TIME *in, uint8_t **outp);
|
1297
|
+
|
1298
|
+
// ASN1_TIME is an |ASN1_ITEM| whose ASN.1 type is X.509 Time (RFC 5280) and C
|
1299
|
+
// type is |ASN1_TIME*|.
|
1300
|
+
DECLARE_ASN1_ITEM(ASN1_TIME)
|
1301
|
+
|
1302
|
+
// ASN1_TIME_diff computes |to| - |from|. On success, it sets |*out_days| to the
|
1303
|
+
// difference in days, rounded towards zero, sets |*out_seconds| to the
|
1304
|
+
// remainder, and returns one. On error, it returns zero.
|
1305
|
+
//
|
1306
|
+
// If |from| is before |to|, both outputs will be <= 0, with at least one
|
1307
|
+
// negative. If |from| is after |to|, both will be >= 0, with at least one
|
1308
|
+
// positive. If they are equal, ignoring fractional seconds, both will be zero.
|
1309
|
+
//
|
1310
|
+
// Note this function may fail on overflow, or if |from| or |to| cannot be
|
1311
|
+
// decoded.
|
1312
|
+
OPENSSL_EXPORT int ASN1_TIME_diff(int *out_days, int *out_seconds,
|
1313
|
+
const ASN1_TIME *from, const ASN1_TIME *to);
|
1314
|
+
|
1315
|
+
// ASN1_TIME_set represents |t| as a GeneralizedTime or UTCTime and writes
|
1316
|
+
// the result to |s|. As in RFC 5280, section 4.1.2.5, it uses UTCTime when the
|
1317
|
+
// time fits and GeneralizedTime otherwise. It returns |s| on success and NULL
|
1318
|
+
// on error. If |s| is NULL, it returns a newly-allocated |ASN1_TIME| instead.
|
1319
|
+
//
|
1320
|
+
// Note this function may fail if the time is out of range for GeneralizedTime.
|
1321
|
+
OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_set(ASN1_TIME *s, time_t t);
|
1322
|
+
|
1323
|
+
// ASN1_TIME_adj adds |offset_day| days and |offset_sec| seconds to
|
1324
|
+
// |t| and writes the result to |s|. As in RFC 5280, section 4.1.2.5, it uses
|
1325
|
+
// UTCTime when the time fits and GeneralizedTime otherwise. It returns |s| on
|
1326
|
+
// success and NULL on error. If |s| is NULL, it returns a newly-allocated
|
1327
|
+
// |ASN1_GENERALIZEDTIME| instead.
|
1328
|
+
//
|
1329
|
+
// Note this function may fail if the time overflows or is out of range for
|
1330
|
+
// GeneralizedTime.
|
1331
|
+
OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_adj(ASN1_TIME *s, time_t t, int offset_day,
|
1332
|
+
long offset_sec);
|
1333
|
+
|
1334
|
+
// ASN1_TIME_check returns one if |t| is a valid UTCTime or GeneralizedTime, and
|
1335
|
+
// zero otherwise. |t|'s type determines which check is performed. This
|
1336
|
+
// function does not enforce that UTCTime was used when possible.
|
1337
|
+
OPENSSL_EXPORT int ASN1_TIME_check(const ASN1_TIME *t);
|
1338
|
+
|
1339
|
+
// ASN1_TIME_to_generalizedtime converts |t| to a GeneralizedTime. If |out| is
|
1340
|
+
// NULL, it returns a newly-allocated |ASN1_GENERALIZEDTIME| on success, or NULL
|
1341
|
+
// on error. If |out| is non-NULL and |*out| is NULL, it additionally sets
|
1342
|
+
// |*out| to the result. If |out| and |*out| are non-NULL, it instead updates
|
1343
|
+
// the object pointed by |*out| and returns |*out| on success or NULL on error.
|
1344
|
+
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_TIME_to_generalizedtime(
|
1345
|
+
const ASN1_TIME *t, ASN1_GENERALIZEDTIME **out);
|
1346
|
+
|
1347
|
+
// ASN1_TIME_set_string behaves like |ASN1_UTCTIME_set_string| if |str| is a
|
1348
|
+
// valid UTCTime, and |ASN1_GENERALIZEDTIME_set_string| if |str| is a valid
|
1349
|
+
// GeneralizedTime. If |str| is neither, it returns zero.
|
1350
|
+
OPENSSL_EXPORT int ASN1_TIME_set_string(ASN1_TIME *s, const char *str);
|
1351
|
+
|
1352
|
+
// TODO(davidben): Expand and document function prototypes generated in macros.
|
1353
|
+
|
1354
|
+
|
1355
|
+
// NULL values.
|
1356
|
+
//
|
1357
|
+
// This library represents the ASN.1 NULL value by a non-NULL pointer to the
|
1358
|
+
// opaque type |ASN1_NULL|. An omitted OPTIONAL ASN.1 NULL value is a NULL
|
1359
|
+
// pointer. Unlike other pointer types, it is not necessary to free |ASN1_NULL|
|
1360
|
+
// pointers, but it is safe to do so.
|
1361
|
+
|
1362
|
+
// ASN1_NULL_new returns an opaque, non-NULL pointer. It is safe to call
|
1363
|
+
// |ASN1_NULL_free| on the result, but not necessary.
|
1364
|
+
OPENSSL_EXPORT ASN1_NULL *ASN1_NULL_new(void);
|
1365
|
+
|
1366
|
+
// ASN1_NULL_free does nothing.
|
1367
|
+
OPENSSL_EXPORT void ASN1_NULL_free(ASN1_NULL *null);
|
1368
|
+
|
1369
|
+
// d2i_ASN1_NULL parses a DER-encoded ASN.1 NULL value from up to |len| bytes
|
1370
|
+
// at |*inp|, as described in |d2i_SAMPLE|.
|
1371
|
+
//
|
1372
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1373
|
+
// BER, but this will be removed in the future.
|
1374
|
+
OPENSSL_EXPORT ASN1_NULL *d2i_ASN1_NULL(ASN1_NULL **out, const uint8_t **inp,
|
1375
|
+
long len);
|
1376
|
+
|
1377
|
+
// i2d_ASN1_NULL marshals |in| as a DER-encoded ASN.1 NULL value, as described
|
1378
|
+
// in |i2d_SAMPLE|.
|
1379
|
+
OPENSSL_EXPORT int i2d_ASN1_NULL(const ASN1_NULL *in, uint8_t **outp);
|
1380
|
+
|
1381
|
+
// ASN1_NULL is an |ASN1_ITEM| with ASN.1 type NULL and C type |ASN1_NULL*|.
|
1382
|
+
DECLARE_ASN1_ITEM(ASN1_NULL)
|
1383
|
+
|
1384
|
+
|
1385
|
+
// Object identifiers.
|
1386
|
+
//
|
1387
|
+
// An |ASN1_OBJECT| represents a ASN.1 OBJECT IDENTIFIER. See also obj.h for
|
1388
|
+
// additional functions relating to |ASN1_OBJECT|.
|
1389
|
+
//
|
1390
|
+
// TODO(davidben): What's the relationship between asn1.h and obj.h? Most of
|
1391
|
+
// obj.h deals with the large NID table, but then functions like |OBJ_get0_data|
|
1392
|
+
// or |OBJ_dup| are general |ASN1_OBJECT| functions.
|
1393
|
+
|
1394
|
+
DEFINE_STACK_OF(ASN1_OBJECT)
|
1395
|
+
|
1396
|
+
// ASN1_OBJECT_create returns a newly-allocated |ASN1_OBJECT| with |len| bytes
|
1397
|
+
// from |data| as the encoded OID, or NULL on error. |data| should contain the
|
1398
|
+
// DER-encoded identifier, excluding the tag and length.
|
1399
|
+
//
|
1400
|
+
// |nid| should be |NID_undef|. Passing a NID value that does not match |data|
|
1401
|
+
// will cause some functions to misbehave. |sn| and |ln| should be NULL. If
|
1402
|
+
// non-NULL, they are stored as short and long names, respectively, but these
|
1403
|
+
// values have no effect for |ASN1_OBJECT|s created through this function.
|
1404
|
+
//
|
1405
|
+
// TODO(davidben): Should we just ignore all those parameters? NIDs and names
|
1406
|
+
// are only relevant for |ASN1_OBJECT|s in the obj.h table.
|
1407
|
+
OPENSSL_EXPORT ASN1_OBJECT *ASN1_OBJECT_create(int nid, const uint8_t *data,
|
1408
|
+
int len, const char *sn,
|
1409
|
+
const char *ln);
|
1410
|
+
|
1411
|
+
// ASN1_OBJECT_free releases memory associated with |a|. If |a| is a static
|
1412
|
+
// |ASN1_OBJECT|, returned from |OBJ_nid2obj|, this function does nothing.
|
1413
|
+
OPENSSL_EXPORT void ASN1_OBJECT_free(ASN1_OBJECT *a);
|
1414
|
+
|
1415
|
+
// d2i_ASN1_OBJECT parses a DER-encoded ASN.1 OBJECT IDENTIFIER from up to |len|
|
1416
|
+
// bytes at |*inp|, as described in |d2i_SAMPLE_with_reuse|.
|
1417
|
+
//
|
1418
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1419
|
+
// BER, but this will be removed in the future.
|
1420
|
+
OPENSSL_EXPORT ASN1_OBJECT *d2i_ASN1_OBJECT(ASN1_OBJECT **out,
|
1421
|
+
const uint8_t **inp, long len);
|
1422
|
+
|
1423
|
+
// i2d_ASN1_OBJECT marshals |in| as a DER-encoded ASN.1 OBJECT IDENTIFIER, as
|
1424
|
+
// described in |i2d_SAMPLE|.
|
1425
|
+
OPENSSL_EXPORT int i2d_ASN1_OBJECT(const ASN1_OBJECT *a, uint8_t **outp);
|
1426
|
+
|
1427
|
+
// c2i_ASN1_OBJECT decodes |len| bytes from |*inp| as the contents of a
|
1428
|
+
// DER-encoded OBJECT IDENTIFIER, excluding the tag and length. It behaves like
|
1429
|
+
// |d2i_SAMPLE_with_reuse| except, on success, it always consumes all |len|
|
1430
|
+
// bytes.
|
1431
|
+
OPENSSL_EXPORT ASN1_OBJECT *c2i_ASN1_OBJECT(ASN1_OBJECT **out,
|
1432
|
+
const uint8_t **inp, long len);
|
1433
|
+
|
1434
|
+
// ASN1_OBJECT is an |ASN1_ITEM| with ASN.1 type OBJECT IDENTIFIER and C type
|
1435
|
+
// |ASN1_OBJECT*|.
|
1436
|
+
DECLARE_ASN1_ITEM(ASN1_OBJECT)
|
1437
|
+
|
1438
|
+
|
1439
|
+
// Arbitrary elements.
|
1440
|
+
|
1441
|
+
// An asn1_type_st (aka |ASN1_TYPE|) represents an arbitrary ASN.1 element,
|
1442
|
+
// typically used for ANY types. It contains a |type| field and a |value| union
|
1443
|
+
// dependent on |type|.
|
1444
|
+
//
|
1445
|
+
// WARNING: This struct has a complex representation. Callers must not construct
|
1446
|
+
// |ASN1_TYPE| values manually. Use |ASN1_TYPE_set| and |ASN1_TYPE_set1|
|
1447
|
+
// instead. Additionally, callers performing non-trivial operations on this type
|
1448
|
+
// are encouraged to use |CBS| and |CBB| from <openssl/bytestring.h>, and
|
1449
|
+
// convert to or from |ASN1_TYPE| with |d2i_ASN1_TYPE| or |i2d_ASN1_TYPE|.
|
1450
|
+
//
|
1451
|
+
// The |type| field corresponds to the tag of the ASN.1 element being
|
1452
|
+
// represented:
|
1453
|
+
//
|
1454
|
+
// If |type| is a |V_ASN1_*| constant for an ASN.1 string-like type, as defined
|
1455
|
+
// by |ASN1_STRING|, the tag matches the constant. |value| contains an
|
1456
|
+
// |ASN1_STRING| pointer (equivalently, one of the more specific typedefs). See
|
1457
|
+
// |ASN1_STRING| for details on the representation. Unlike |ASN1_STRING|,
|
1458
|
+
// |ASN1_TYPE| does not use the |V_ASN1_NEG| flag for negative INTEGER and
|
1459
|
+
// ENUMERATE values. For a negative value, the |ASN1_TYPE|'s |type| will be
|
1460
|
+
// |V_ASN1_INTEGER| or |V_ASN1_ENUMERATED|, but |value| will an |ASN1_STRING|
|
1461
|
+
// whose |type| is |V_ASN1_NEG_INTEGER| or |V_ASN1_NEG_ENUMERATED|.
|
1462
|
+
//
|
1463
|
+
// If |type| is |V_ASN1_OBJECT|, the tag is OBJECT IDENTIFIER and |value|
|
1464
|
+
// contains an |ASN1_OBJECT| pointer.
|
1465
|
+
//
|
1466
|
+
// If |type| is |V_ASN1_NULL|, the tag is NULL. |value| contains a NULL pointer.
|
1467
|
+
//
|
1468
|
+
// If |type| is |V_ASN1_BOOLEAN|, the tag is BOOLEAN. |value| contains an
|
1469
|
+
// |ASN1_BOOLEAN|.
|
491
1470
|
//
|
492
1471
|
// If |type| is |V_ASN1_SEQUENCE|, |V_ASN1_SET|, or |V_ASN1_OTHER|, the tag is
|
493
1472
|
// SEQUENCE, SET, or some non-universal tag, respectively. |value| is an
|
@@ -527,6 +1506,34 @@ struct asn1_type_st {
|
|
527
1506
|
} value;
|
528
1507
|
};
|
529
1508
|
|
1509
|
+
DEFINE_STACK_OF(ASN1_TYPE)
|
1510
|
+
|
1511
|
+
// ASN1_TYPE_new returns a newly-allocated |ASN1_TYPE|, or NULL on allocation
|
1512
|
+
// failure. The resulting object has type -1 and must be initialized to be
|
1513
|
+
// a valid ANY value.
|
1514
|
+
OPENSSL_EXPORT ASN1_TYPE *ASN1_TYPE_new(void);
|
1515
|
+
|
1516
|
+
// ASN1_TYPE_free releases memory associated with |a|.
|
1517
|
+
OPENSSL_EXPORT void ASN1_TYPE_free(ASN1_TYPE *a);
|
1518
|
+
|
1519
|
+
// d2i_ASN1_TYPE parses up to |len| bytes from |*inp| as an ASN.1 value of any
|
1520
|
+
// type, as described in |d2i_SAMPLE_with_reuse|. Note this function only
|
1521
|
+
// validates primitive, universal types supported by this library. Values of
|
1522
|
+
// type |V_ASN1_SEQUENCE|, |V_ASN1_SET|, |V_ASN1_OTHER|, or an unsupported
|
1523
|
+
// primitive type must be validated by the caller when interpreting.
|
1524
|
+
//
|
1525
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1526
|
+
// BER, but this will be removed in the future.
|
1527
|
+
OPENSSL_EXPORT ASN1_TYPE *d2i_ASN1_TYPE(ASN1_TYPE **out, const uint8_t **inp,
|
1528
|
+
long len);
|
1529
|
+
|
1530
|
+
// i2d_ASN1_TYPE marshals |in| as DER, as described in |i2d_SAMPLE|.
|
1531
|
+
OPENSSL_EXPORT int i2d_ASN1_TYPE(const ASN1_TYPE *in, uint8_t **outp);
|
1532
|
+
|
1533
|
+
// ASN1_ANY is an |ASN1_ITEM| with ASN.1 type ANY and C type |ASN1_TYPE*|. Note
|
1534
|
+
// the |ASN1_ITEM| name and C type do not match.
|
1535
|
+
DECLARE_ASN1_ITEM(ASN1_ANY)
|
1536
|
+
|
530
1537
|
// ASN1_TYPE_get returns the type of |a|, which will be one of the |V_ASN1_*|
|
531
1538
|
// constants, or zero if |a| is not fully initialized.
|
532
1539
|
OPENSSL_EXPORT int ASN1_TYPE_get(const ASN1_TYPE *a);
|
@@ -554,97 +1561,217 @@ OPENSSL_EXPORT int ASN1_TYPE_set1(ASN1_TYPE *a, int type, const void *value);
|
|
554
1561
|
// ordering.
|
555
1562
|
OPENSSL_EXPORT int ASN1_TYPE_cmp(const ASN1_TYPE *a, const ASN1_TYPE *b);
|
556
1563
|
|
557
|
-
|
558
|
-
|
1564
|
+
typedef STACK_OF(ASN1_TYPE) ASN1_SEQUENCE_ANY;
|
1565
|
+
|
1566
|
+
// d2i_ASN1_SEQUENCE_ANY parses up to |len| bytes from |*inp| as a DER-encoded
|
1567
|
+
// ASN.1 SEQUENCE OF ANY structure, as described in |d2i_SAMPLE_with_reuse|. The
|
1568
|
+
// resulting |ASN1_SEQUENCE_ANY| owns its contents and thus must be released
|
1569
|
+
// with |sk_ASN1_TYPE_pop_free| and |ASN1_TYPE_free|, not |sk_ASN1_TYPE_free|.
|
1570
|
+
//
|
1571
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1572
|
+
// BER, but this will be removed in the future.
|
1573
|
+
OPENSSL_EXPORT ASN1_SEQUENCE_ANY *d2i_ASN1_SEQUENCE_ANY(ASN1_SEQUENCE_ANY **out,
|
1574
|
+
const uint8_t **inp,
|
1575
|
+
long len);
|
1576
|
+
|
1577
|
+
// i2d_ASN1_SEQUENCE_ANY marshals |in| as a DER-encoded SEQUENCE OF ANY
|
1578
|
+
// structure, as described in |i2d_SAMPLE|.
|
1579
|
+
OPENSSL_EXPORT int i2d_ASN1_SEQUENCE_ANY(const ASN1_SEQUENCE_ANY *in,
|
1580
|
+
uint8_t **outp);
|
1581
|
+
|
1582
|
+
// d2i_ASN1_SET_ANY parses up to |len| bytes from |*inp| as a DER-encoded ASN.1
|
1583
|
+
// SET OF ANY structure, as described in |d2i_SAMPLE_with_reuse|. The resulting
|
1584
|
+
// |ASN1_SEQUENCE_ANY| owns its contents and thus must be released with
|
1585
|
+
// |sk_ASN1_TYPE_pop_free| and |ASN1_TYPE_free|, not |sk_ASN1_TYPE_free|.
|
1586
|
+
//
|
1587
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1588
|
+
// BER, but this will be removed in the future.
|
1589
|
+
OPENSSL_EXPORT ASN1_SEQUENCE_ANY *d2i_ASN1_SET_ANY(ASN1_SEQUENCE_ANY **out,
|
1590
|
+
const uint8_t **inp,
|
1591
|
+
long len);
|
1592
|
+
|
1593
|
+
// i2d_ASN1_SET_ANY marshals |in| as a DER-encoded SET OF ANY structure, as
|
1594
|
+
// described in |i2d_SAMPLE|.
|
1595
|
+
OPENSSL_EXPORT int i2d_ASN1_SET_ANY(const ASN1_SEQUENCE_ANY *in,
|
1596
|
+
uint8_t **outp);
|
559
1597
|
|
560
1598
|
|
561
|
-
//
|
1599
|
+
// Human-readable output.
|
562
1600
|
//
|
563
|
-
// The following functions
|
1601
|
+
// The following functions output types in some human-readable format. These
|
1602
|
+
// functions may be used for debugging and logging. However, the output should
|
1603
|
+
// not be consumed programmatically. They may be ambiguous or lose information.
|
564
1604
|
|
565
|
-
//
|
566
|
-
|
567
|
-
|
568
|
-
#define B_ASN1_T61STRING 0x0004
|
569
|
-
#define B_ASN1_TELETEXSTRING 0x0004
|
570
|
-
#define B_ASN1_VIDEOTEXSTRING 0x0008
|
571
|
-
#define B_ASN1_IA5STRING 0x0010
|
572
|
-
#define B_ASN1_GRAPHICSTRING 0x0020
|
573
|
-
#define B_ASN1_ISO64STRING 0x0040
|
574
|
-
#define B_ASN1_VISIBLESTRING 0x0040
|
575
|
-
#define B_ASN1_GENERALSTRING 0x0080
|
576
|
-
#define B_ASN1_UNIVERSALSTRING 0x0100
|
577
|
-
#define B_ASN1_OCTET_STRING 0x0200
|
578
|
-
#define B_ASN1_BIT_STRING 0x0400
|
579
|
-
#define B_ASN1_BMPSTRING 0x0800
|
580
|
-
#define B_ASN1_UNKNOWN 0x1000
|
581
|
-
#define B_ASN1_UTF8STRING 0x2000
|
582
|
-
#define B_ASN1_UTCTIME 0x4000
|
583
|
-
#define B_ASN1_GENERALIZEDTIME 0x8000
|
584
|
-
#define B_ASN1_SEQUENCE 0x10000
|
1605
|
+
// ASN1_UTCTIME_print writes a human-readable representation of |a| to |out|. It
|
1606
|
+
// returns one on success and zero on error.
|
1607
|
+
OPENSSL_EXPORT int ASN1_UTCTIME_print(BIO *out, const ASN1_UTCTIME *a);
|
585
1608
|
|
586
|
-
//
|
587
|
-
|
588
|
-
|
589
|
-
|
590
|
-
// which, in turn, is treated as Latin-1 rather than T.61 by OpenSSL and most
|
591
|
-
// other software.
|
592
|
-
#define MBSTRING_ASC (MBSTRING_FLAG | 1)
|
593
|
-
#define MBSTRING_BMP (MBSTRING_FLAG | 2)
|
594
|
-
#define MBSTRING_UNIV (MBSTRING_FLAG | 4)
|
1609
|
+
// ASN1_GENERALIZEDTIME_print writes a human-readable representation of |a| to
|
1610
|
+
// |out|. It returns one on success and zero on error.
|
1611
|
+
OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_print(BIO *out,
|
1612
|
+
const ASN1_GENERALIZEDTIME *a);
|
595
1613
|
|
596
|
-
|
1614
|
+
// ASN1_TIME_print writes a human-readable representation of |a| to |out|. It
|
1615
|
+
// returns one on success and zero on error.
|
1616
|
+
OPENSSL_EXPORT int ASN1_TIME_print(BIO *out, const ASN1_TIME *a);
|
597
1617
|
|
598
|
-
//
|
599
|
-
//
|
600
|
-
//
|
601
|
-
|
602
|
-
|
603
|
-
|
604
|
-
|
605
|
-
|
606
|
-
|
607
|
-
|
608
|
-
|
609
|
-
|
610
|
-
|
611
|
-
|
612
|
-
|
613
|
-
|
614
|
-
|
615
|
-
|
616
|
-
#define
|
617
|
-
|
618
|
-
|
619
|
-
|
620
|
-
|
621
|
-
|
1618
|
+
// ASN1_STRING_print writes a human-readable representation of |str| to |out|.
|
1619
|
+
// It returns one on success and zero on error. Unprintable characters are
|
1620
|
+
// replaced with '.'.
|
1621
|
+
OPENSSL_EXPORT int ASN1_STRING_print(BIO *out, const ASN1_STRING *str);
|
1622
|
+
|
1623
|
+
// ASN1_STRFLGS_ESC_2253 causes characters to be escaped as in RFC 2253, section
|
1624
|
+
// 2.4.
|
1625
|
+
#define ASN1_STRFLGS_ESC_2253 1
|
1626
|
+
|
1627
|
+
// ASN1_STRFLGS_ESC_CTRL causes all control characters to be escaped.
|
1628
|
+
#define ASN1_STRFLGS_ESC_CTRL 2
|
1629
|
+
|
1630
|
+
// ASN1_STRFLGS_ESC_MSB causes all characters above 127 to be escaped.
|
1631
|
+
#define ASN1_STRFLGS_ESC_MSB 4
|
1632
|
+
|
1633
|
+
// ASN1_STRFLGS_ESC_QUOTE causes the string to be surrounded by quotes, rather
|
1634
|
+
// than using backslashes, when characters are escaped. Fewer characters will
|
1635
|
+
// require escapes in this case.
|
1636
|
+
#define ASN1_STRFLGS_ESC_QUOTE 8
|
1637
|
+
|
1638
|
+
// ASN1_STRFLGS_UTF8_CONVERT causes the string to be encoded as UTF-8, with each
|
1639
|
+
// byte in the UTF-8 encoding treated as an individual character for purposes of
|
1640
|
+
// escape sequences. If not set, each Unicode codepoint in the string is treated
|
1641
|
+
// as a character, with wide characters escaped as "\Uxxxx" or "\Wxxxxxxxx".
|
1642
|
+
// Note this can be ambiguous if |ASN1_STRFLGS_ESC_*| are all unset. In that
|
1643
|
+
// case, backslashes are not escaped, but wide characters are.
|
1644
|
+
#define ASN1_STRFLGS_UTF8_CONVERT 0x10
|
1645
|
+
|
1646
|
+
// ASN1_STRFLGS_IGNORE_TYPE causes the string type to be ignored. The
|
1647
|
+
// |ASN1_STRING| in-memory representation will be printed directly.
|
1648
|
+
#define ASN1_STRFLGS_IGNORE_TYPE 0x20
|
1649
|
+
|
1650
|
+
// ASN1_STRFLGS_SHOW_TYPE causes the string type to be included in the output.
|
1651
|
+
#define ASN1_STRFLGS_SHOW_TYPE 0x40
|
1652
|
+
|
1653
|
+
// ASN1_STRFLGS_DUMP_ALL causes all strings to be printed as a hexdump, using
|
1654
|
+
// RFC 2253 hexstring notation, such as "#0123456789ABCDEF".
|
1655
|
+
#define ASN1_STRFLGS_DUMP_ALL 0x80
|
1656
|
+
|
1657
|
+
// ASN1_STRFLGS_DUMP_UNKNOWN behaves like |ASN1_STRFLGS_DUMP_ALL| but only
|
1658
|
+
// applies to values of unknown type. If unset, unknown values will print
|
1659
|
+
// their contents as single-byte characters with escape sequences.
|
1660
|
+
#define ASN1_STRFLGS_DUMP_UNKNOWN 0x100
|
1661
|
+
|
1662
|
+
// ASN1_STRFLGS_DUMP_DER causes hexdumped strings (as determined by
|
1663
|
+
// |ASN1_STRFLGS_DUMP_ALL| or |ASN1_STRFLGS_DUMP_UNKNOWN|) to print the entire
|
1664
|
+
// DER element as in RFC 2253, rather than only the contents of the
|
1665
|
+
// |ASN1_STRING|.
|
1666
|
+
#define ASN1_STRFLGS_DUMP_DER 0x200
|
1667
|
+
|
1668
|
+
// ASN1_STRFLGS_RFC2253 causes the string to be escaped as in RFC 2253,
|
1669
|
+
// additionally escaping control characters.
|
1670
|
+
#define ASN1_STRFLGS_RFC2253 \
|
1671
|
+
(ASN1_STRFLGS_ESC_2253 | ASN1_STRFLGS_ESC_CTRL | ASN1_STRFLGS_ESC_MSB | \
|
1672
|
+
ASN1_STRFLGS_UTF8_CONVERT | ASN1_STRFLGS_DUMP_UNKNOWN | \
|
1673
|
+
ASN1_STRFLGS_DUMP_DER)
|
1674
|
+
|
1675
|
+
// ASN1_STRING_print_ex writes a human-readable representation of |str| to
|
1676
|
+
// |out|. It returns the number of bytes written on success and -1 on error. If
|
1677
|
+
// |out| is NULL, it returns the number of bytes it would have written, without
|
1678
|
+
// writing anything.
|
1679
|
+
//
|
1680
|
+
// The |flags| should be a combination of combination of |ASN1_STRFLGS_*|
|
1681
|
+
// constants. See the documentation for each flag for how it controls the
|
1682
|
+
// output. If unsure, use |ASN1_STRFLGS_RFC2253|.
|
1683
|
+
OPENSSL_EXPORT int ASN1_STRING_print_ex(BIO *out, const ASN1_STRING *str,
|
1684
|
+
unsigned long flags);
|
1685
|
+
|
1686
|
+
// ASN1_STRING_print_ex_fp behaves like |ASN1_STRING_print_ex| but writes to a
|
1687
|
+
// |FILE| rather than a |BIO|.
|
1688
|
+
OPENSSL_EXPORT int ASN1_STRING_print_ex_fp(FILE *fp, const ASN1_STRING *str,
|
1689
|
+
unsigned long flags);
|
1690
|
+
|
1691
|
+
// i2a_ASN1_INTEGER writes a human-readable representation of |a| to |bp|. It
|
1692
|
+
// returns the number of bytes written on success, or a negative number on
|
1693
|
+
// error. On error, this function may have written a partial output to |bp|.
|
1694
|
+
OPENSSL_EXPORT int i2a_ASN1_INTEGER(BIO *bp, const ASN1_INTEGER *a);
|
1695
|
+
|
1696
|
+
// i2a_ASN1_ENUMERATED writes a human-readable representation of |a| to |bp|. It
|
1697
|
+
// returns the number of bytes written on success, or a negative number on
|
1698
|
+
// error. On error, this function may have written a partial output to |bp|.
|
1699
|
+
OPENSSL_EXPORT int i2a_ASN1_ENUMERATED(BIO *bp, const ASN1_ENUMERATED *a);
|
1700
|
+
|
1701
|
+
// i2a_ASN1_OBJECT writes a human-readable representation of |a| to |bp|. It
|
1702
|
+
// returns the number of bytes written on success, or a negative number on
|
1703
|
+
// error. On error, this function may have written a partial output to |bp|.
|
1704
|
+
OPENSSL_EXPORT int i2a_ASN1_OBJECT(BIO *bp, const ASN1_OBJECT *a);
|
1705
|
+
|
1706
|
+
// i2a_ASN1_STRING writes a text representation of |a|'s contents to |bp|. It
|
1707
|
+
// returns the number of bytes written on success, or a negative number on
|
1708
|
+
// error. On error, this function may have written a partial output to |bp|.
|
1709
|
+
// |type| is ignored.
|
1710
|
+
//
|
1711
|
+
// This function does not decode |a| into a Unicode string. It only hex-encodes
|
1712
|
+
// the internal representation of |a|. This is suitable for printing an OCTET
|
1713
|
+
// STRING, but may not be human-readable for any other string type.
|
1714
|
+
OPENSSL_EXPORT int i2a_ASN1_STRING(BIO *bp, const ASN1_STRING *a, int type);
|
1715
|
+
|
1716
|
+
// i2t_ASN1_OBJECT calls |OBJ_obj2txt| with |always_return_oid| set to zero.
|
1717
|
+
OPENSSL_EXPORT int i2t_ASN1_OBJECT(char *buf, int buf_len,
|
1718
|
+
const ASN1_OBJECT *a);
|
622
1719
|
|
623
|
-
typedef struct asn1_string_table_st {
|
624
|
-
int nid;
|
625
|
-
long minsize;
|
626
|
-
long maxsize;
|
627
|
-
unsigned long mask;
|
628
|
-
unsigned long flags;
|
629
|
-
} ASN1_STRING_TABLE;
|
630
1720
|
|
631
|
-
//
|
1721
|
+
// Low-level encoding functions.
|
632
1722
|
|
633
|
-
|
634
|
-
|
635
|
-
|
636
|
-
|
637
|
-
|
638
|
-
|
639
|
-
|
640
|
-
|
1723
|
+
// ASN1_get_object parses a BER element from up to |max_len| bytes at |*inp|. It
|
1724
|
+
// returns |V_ASN1_CONSTRUCTED| if it successfully parsed a constructed element,
|
1725
|
+
// zero if it successfully parsed a primitive element, and 0x80 on error. On
|
1726
|
+
// success, it additionally advances |*inp| to the element body, sets
|
1727
|
+
// |*out_length|, |*out_tag|, and |*out_class| to the element's length, tag
|
1728
|
+
// number, and tag class, respectively,
|
1729
|
+
//
|
1730
|
+
// Unlike OpenSSL, this function does not support indefinite-length elements.
|
1731
|
+
//
|
1732
|
+
// This function is difficult to use correctly. Use |CBS_get_asn1| and related
|
1733
|
+
// functions from bytestring.h.
|
1734
|
+
//
|
1735
|
+
// TODO(https://crbug.com/boringssl/354): Remove support for non-minimal
|
1736
|
+
// lengths.
|
1737
|
+
OPENSSL_EXPORT int ASN1_get_object(const unsigned char **inp, long *out_length,
|
1738
|
+
int *out_tag, int *out_class, long max_len);
|
1739
|
+
|
1740
|
+
// ASN1_put_object writes the header for a DER or BER element to |*outp| and
|
1741
|
+
// advances |*outp| by the number of bytes written. The caller is responsible
|
1742
|
+
// for ensuring |*outp| has enough space for the output. The header describes an
|
1743
|
+
// element with length |length|, tag number |tag|, and class |xclass|. |xclass|
|
1744
|
+
// should be one of the |V_ASN1_*| tag class constants. The element is primitive
|
1745
|
+
// if |constructed| is zero and constructed if it is one or two. If
|
1746
|
+
// |constructed| is two, |length| is ignored and the element uses
|
1747
|
+
// indefinite-length encoding.
|
1748
|
+
//
|
1749
|
+
// Use |CBB_add_asn1| instead.
|
1750
|
+
OPENSSL_EXPORT void ASN1_put_object(unsigned char **outp, int constructed,
|
1751
|
+
int length, int tag, int xclass);
|
1752
|
+
|
1753
|
+
// ASN1_put_eoc writes two zero bytes to |*outp|, advances |*outp| to point past
|
1754
|
+
// those bytes, and returns two.
|
1755
|
+
//
|
1756
|
+
// Use definite-length encoding instead.
|
1757
|
+
OPENSSL_EXPORT int ASN1_put_eoc(unsigned char **outp);
|
1758
|
+
|
1759
|
+
// ASN1_object_size returns the number of bytes needed to encode a DER or BER
|
1760
|
+
// value with length |length| and tag number |tag|, or -1 on error. |tag| should
|
1761
|
+
// not include the constructed bit or tag class. If |constructed| is zero or
|
1762
|
+
// one, the result uses a definite-length encoding with minimally-encoded
|
1763
|
+
// length, as in DER. If |constructed| is two, the result uses BER
|
1764
|
+
// indefinite-length encoding.
|
1765
|
+
//
|
1766
|
+
// Use |CBB_add_asn1| instead.
|
1767
|
+
OPENSSL_EXPORT int ASN1_object_size(int constructed, int length, int tag);
|
641
1768
|
|
642
|
-
// Declarations for template structures: for full definitions
|
643
|
-
// see asn1t.h
|
644
|
-
typedef struct ASN1_TEMPLATE_st ASN1_TEMPLATE;
|
645
|
-
typedef struct ASN1_TLC_st ASN1_TLC;
|
646
1769
|
|
647
|
-
//
|
1770
|
+
// Function declaration macros.
|
1771
|
+
//
|
1772
|
+
// The following macros declare functions for ASN.1 types. Prefer writing the
|
1773
|
+
// prototypes directly. Particularly when |type|, |itname|, or |name| differ,
|
1774
|
+
// the macros can be difficult to understand.
|
648
1775
|
|
649
1776
|
#define DECLARE_ASN1_FUNCTIONS(type) DECLARE_ASN1_FUNCTIONS_name(type, type)
|
650
1777
|
|
@@ -679,154 +1806,29 @@ typedef struct ASN1_TLC_st ASN1_TLC;
|
|
679
1806
|
OPENSSL_EXPORT type *name##_new(void); \
|
680
1807
|
OPENSSL_EXPORT void name##_free(type *a);
|
681
1808
|
|
682
|
-
#define DECLARE_ASN1_PRINT_FUNCTION(stname) \
|
683
|
-
DECLARE_ASN1_PRINT_FUNCTION_fname(stname, stname)
|
684
|
-
|
685
|
-
#define DECLARE_ASN1_PRINT_FUNCTION_fname(stname, fname) \
|
686
|
-
OPENSSL_EXPORT int fname##_print_ctx(BIO *out, stname *x, int indent, \
|
687
|
-
const ASN1_PCTX *pctx);
|
688
1809
|
|
689
|
-
|
690
|
-
typedef int i2d_of_void(const void *, unsigned char **);
|
1810
|
+
// Deprecated functions.
|
691
1811
|
|
692
|
-
//
|
693
|
-
//
|
694
|
-
//
|
695
|
-
// (
|
696
|
-
// different forms. On platforms that support it the
|
697
|
-
// ASN1_ITEM structure itself will be globally exported.
|
698
|
-
// Other platforms will export a function that returns
|
699
|
-
// an ASN1_ITEM pointer.
|
700
|
-
//
|
701
|
-
// To handle both cases transparently the macros below
|
702
|
-
// should be used instead of hard coding an ASN1_ITEM
|
703
|
-
// pointer in a structure.
|
704
|
-
//
|
705
|
-
// The structure will look like this:
|
706
|
-
//
|
707
|
-
// typedef struct SOMETHING_st {
|
708
|
-
// ...
|
709
|
-
// ASN1_ITEM_EXP *iptr;
|
710
|
-
// ...
|
711
|
-
// } SOMETHING;
|
712
|
-
//
|
713
|
-
// It would be initialised as e.g.:
|
714
|
-
//
|
715
|
-
// SOMETHING somevar = {...,ASN1_ITEM_ref(X509),...};
|
716
|
-
//
|
717
|
-
// and the actual pointer extracted with:
|
718
|
-
//
|
719
|
-
// const ASN1_ITEM *it = ASN1_ITEM_ptr(somevar.iptr);
|
1812
|
+
// ASN1_PRINTABLE_type interprets |len| bytes from |s| as a Latin-1 string. It
|
1813
|
+
// returns the first of |V_ASN1_PRINTABLESTRING|, |V_ASN1_IA5STRING|, or
|
1814
|
+
// |V_ASN1_T61STRING| that can represent every character. If |len| is negative,
|
1815
|
+
// |strlen(s)| is used instead.
|
720
1816
|
//
|
721
|
-
//
|
722
|
-
//
|
723
|
-
|
724
|
-
//
|
725
|
-
|
726
|
-
// ASN1_ITEM pointer exported type
|
727
|
-
typedef const ASN1_ITEM ASN1_ITEM_EXP;
|
728
|
-
|
729
|
-
// Macro to obtain ASN1_ITEM pointer from exported type
|
730
|
-
#define ASN1_ITEM_ptr(iptr) (iptr)
|
731
|
-
|
732
|
-
// Macro to include ASN1_ITEM pointer from base type
|
733
|
-
#define ASN1_ITEM_ref(iptr) (&(iptr##_it))
|
734
|
-
|
735
|
-
#define ASN1_ITEM_rptr(ref) (&(ref##_it))
|
736
|
-
|
737
|
-
#define DECLARE_ASN1_ITEM(name) extern OPENSSL_EXPORT const ASN1_ITEM name##_it;
|
738
|
-
|
739
|
-
// Parameters used by ASN1_STRING_print_ex()
|
740
|
-
|
741
|
-
// These determine which characters to escape:
|
742
|
-
// RFC2253 special characters, control characters and
|
743
|
-
// MSB set characters
|
744
|
-
|
745
|
-
#define ASN1_STRFLGS_ESC_2253 1
|
746
|
-
#define ASN1_STRFLGS_ESC_CTRL 2
|
747
|
-
#define ASN1_STRFLGS_ESC_MSB 4
|
748
|
-
|
749
|
-
|
750
|
-
// This flag determines how we do escaping: normally
|
751
|
-
// RC2253 backslash only, set this to use backslash and
|
752
|
-
// quote.
|
753
|
-
|
754
|
-
#define ASN1_STRFLGS_ESC_QUOTE 8
|
755
|
-
|
756
|
-
|
757
|
-
// These three flags are internal use only.
|
1817
|
+
// TODO(davidben): Remove this once all copies of Conscrypt have been updated
|
1818
|
+
// past https://github.com/google/conscrypt/pull/1032.
|
1819
|
+
OPENSSL_EXPORT int ASN1_PRINTABLE_type(const unsigned char *s, int len);
|
758
1820
|
|
759
|
-
//
|
760
|
-
|
761
|
-
// Character needs escaping if it is the first character
|
762
|
-
#define CHARTYPE_FIRST_ESC_2253 0x20
|
763
|
-
// Character needs escaping if it is the last character
|
764
|
-
#define CHARTYPE_LAST_ESC_2253 0x40
|
765
|
-
|
766
|
-
// NB the internal flags are safely reused below by flags
|
767
|
-
// handled at the top level.
|
768
|
-
|
769
|
-
// If this is set we convert all character strings
|
770
|
-
// to UTF8 first
|
771
|
-
|
772
|
-
#define ASN1_STRFLGS_UTF8_CONVERT 0x10
|
773
|
-
|
774
|
-
// If this is set we don't attempt to interpret content:
|
775
|
-
// just assume all strings are 1 byte per character. This
|
776
|
-
// will produce some pretty odd looking output!
|
777
|
-
|
778
|
-
#define ASN1_STRFLGS_IGNORE_TYPE 0x20
|
779
|
-
|
780
|
-
// If this is set we include the string type in the output
|
781
|
-
#define ASN1_STRFLGS_SHOW_TYPE 0x40
|
782
|
-
|
783
|
-
// This determines which strings to display and which to
|
784
|
-
// 'dump' (hex dump of content octets or DER encoding). We can
|
785
|
-
// only dump non character strings or everything. If we
|
786
|
-
// don't dump 'unknown' they are interpreted as character
|
787
|
-
// strings with 1 octet per character and are subject to
|
788
|
-
// the usual escaping options.
|
789
|
-
|
790
|
-
#define ASN1_STRFLGS_DUMP_ALL 0x80
|
791
|
-
#define ASN1_STRFLGS_DUMP_UNKNOWN 0x100
|
792
|
-
|
793
|
-
// These determine what 'dumping' does, we can dump the
|
794
|
-
// content octets or the DER encoding: both use the
|
795
|
-
// RFC2253 #XXXXX notation.
|
796
|
-
|
797
|
-
#define ASN1_STRFLGS_DUMP_DER 0x200
|
798
|
-
|
799
|
-
// All the string flags consistent with RFC2253,
|
800
|
-
// escaping control characters isn't essential in
|
801
|
-
// RFC2253 but it is advisable anyway.
|
802
|
-
|
803
|
-
#define ASN1_STRFLGS_RFC2253 \
|
804
|
-
(ASN1_STRFLGS_ESC_2253 | ASN1_STRFLGS_ESC_CTRL | ASN1_STRFLGS_ESC_MSB | \
|
805
|
-
ASN1_STRFLGS_UTF8_CONVERT | ASN1_STRFLGS_DUMP_UNKNOWN | \
|
806
|
-
ASN1_STRFLGS_DUMP_DER)
|
807
|
-
|
808
|
-
DEFINE_STACK_OF(ASN1_INTEGER)
|
809
|
-
|
810
|
-
DEFINE_STACK_OF(ASN1_TYPE)
|
811
|
-
|
812
|
-
typedef STACK_OF(ASN1_TYPE) ASN1_SEQUENCE_ANY;
|
813
|
-
|
814
|
-
DECLARE_ASN1_ENCODE_FUNCTIONS_const(ASN1_SEQUENCE_ANY, ASN1_SEQUENCE_ANY)
|
815
|
-
DECLARE_ASN1_ENCODE_FUNCTIONS_const(ASN1_SEQUENCE_ANY, ASN1_SET_ANY)
|
1821
|
+
// ASN1_STRING_set_default_mask does nothing.
|
1822
|
+
OPENSSL_EXPORT void ASN1_STRING_set_default_mask(unsigned long mask);
|
816
1823
|
|
817
|
-
|
818
|
-
|
819
|
-
ASN1_TYPE *parameter;
|
820
|
-
} /* X509_ALGOR */;
|
1824
|
+
// ASN1_STRING_set_default_mask_asc returns one.
|
1825
|
+
OPENSSL_EXPORT int ASN1_STRING_set_default_mask_asc(const char *p);
|
821
1826
|
|
822
|
-
|
1827
|
+
// ASN1_STRING_get_default_mask returns |B_ASN1_UTF8STRING|.
|
1828
|
+
OPENSSL_EXPORT unsigned long ASN1_STRING_get_default_mask(void);
|
823
1829
|
|
824
|
-
//
|
825
|
-
|
826
|
-
int bitnum;
|
827
|
-
const char *lname;
|
828
|
-
const char *sname;
|
829
|
-
} BIT_STRING_BITNAME;
|
1830
|
+
// ASN1_STRING_TABLE_cleanup does nothing.
|
1831
|
+
OPENSSL_EXPORT void ASN1_STRING_TABLE_cleanup(void);
|
830
1832
|
|
831
1833
|
// M_ASN1_* are legacy aliases for various |ASN1_STRING| functions. Use the
|
832
1834
|
// functions themselves.
|
@@ -876,199 +1878,53 @@ typedef struct BIT_STRING_BITNAME_st {
|
|
876
1878
|
#define M_ASN1_UTF8STRING_new() ASN1_UTF8STRING_new()
|
877
1879
|
#define M_ASN1_UTF8STRING_free(a) ASN1_UTF8STRING_free(a)
|
878
1880
|
|
879
|
-
|
880
|
-
|
1881
|
+
// B_ASN1_PRINTABLE is a bitmask for an ad-hoc subset of string-like types. Note
|
1882
|
+
// the presence of |B_ASN1_UNKNOWN| means it includes types which |ASN1_tag2bit|
|
1883
|
+
// maps to |B_ASN1_UNKNOWN|.
|
1884
|
+
//
|
1885
|
+
// Do not use this. Despite the name, it has no connection to PrintableString or
|
1886
|
+
// printable characters. See https://crbug.com/boringssl/412.
|
881
1887
|
#define B_ASN1_PRINTABLE \
|
882
|
-
B_ASN1_NUMERICSTRING | B_ASN1_PRINTABLESTRING | B_ASN1_T61STRING |
|
883
|
-
|
884
|
-
|
885
|
-
|
886
|
-
#define B_ASN1_DIRECTORYSTRING \
|
887
|
-
B_ASN1_PRINTABLESTRING | B_ASN1_TELETEXSTRING | B_ASN1_BMPSTRING | \
|
888
|
-
B_ASN1_UNIVERSALSTRING | B_ASN1_UTF8STRING
|
889
|
-
|
890
|
-
#define B_ASN1_DISPLAYTEXT \
|
891
|
-
B_ASN1_IA5STRING | B_ASN1_VISIBLESTRING | B_ASN1_BMPSTRING | B_ASN1_UTF8STRING
|
892
|
-
|
893
|
-
DECLARE_ASN1_FUNCTIONS_fname(ASN1_TYPE, ASN1_ANY, ASN1_TYPE)
|
1888
|
+
(B_ASN1_NUMERICSTRING | B_ASN1_PRINTABLESTRING | B_ASN1_T61STRING | \
|
1889
|
+
B_ASN1_IA5STRING | B_ASN1_BIT_STRING | B_ASN1_UNIVERSALSTRING | \
|
1890
|
+
B_ASN1_BMPSTRING | B_ASN1_UTF8STRING | B_ASN1_SEQUENCE | B_ASN1_UNKNOWN)
|
894
1891
|
|
895
|
-
|
896
|
-
|
897
|
-
|
898
|
-
OPENSSL_EXPORT
|
899
|
-
const unsigned char **pp,
|
900
|
-
long length);
|
901
|
-
OPENSSL_EXPORT ASN1_OBJECT *d2i_ASN1_OBJECT(ASN1_OBJECT **a,
|
902
|
-
const unsigned char **pp,
|
903
|
-
long length);
|
904
|
-
|
905
|
-
DECLARE_ASN1_ITEM(ASN1_OBJECT)
|
906
|
-
|
907
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_BIT_STRING)
|
908
|
-
OPENSSL_EXPORT int i2c_ASN1_BIT_STRING(const ASN1_BIT_STRING *a,
|
909
|
-
unsigned char **pp);
|
910
|
-
OPENSSL_EXPORT ASN1_BIT_STRING *c2i_ASN1_BIT_STRING(ASN1_BIT_STRING **a,
|
911
|
-
const unsigned char **pp,
|
912
|
-
long length);
|
913
|
-
|
914
|
-
OPENSSL_EXPORT int i2d_ASN1_BOOLEAN(int a, unsigned char **pp);
|
915
|
-
OPENSSL_EXPORT int d2i_ASN1_BOOLEAN(int *a, const unsigned char **pp,
|
916
|
-
long length);
|
917
|
-
|
918
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_INTEGER)
|
919
|
-
OPENSSL_EXPORT int i2c_ASN1_INTEGER(const ASN1_INTEGER *a, unsigned char **pp);
|
920
|
-
OPENSSL_EXPORT ASN1_INTEGER *c2i_ASN1_INTEGER(ASN1_INTEGER **a,
|
921
|
-
const unsigned char **pp,
|
922
|
-
long length);
|
923
|
-
OPENSSL_EXPORT ASN1_INTEGER *ASN1_INTEGER_dup(const ASN1_INTEGER *x);
|
1892
|
+
// ASN1_PRINTABLE_new returns a newly-allocated |ASN1_STRING| with type -1, or
|
1893
|
+
// NULL on error. The resulting |ASN1_STRING| is not a valid ASN.1 value until
|
1894
|
+
// initialized with a value.
|
1895
|
+
OPENSSL_EXPORT ASN1_STRING *ASN1_PRINTABLE_new(void);
|
924
1896
|
|
925
|
-
|
1897
|
+
// ASN1_PRINTABLE_free calls |ASN1_STRING_free|.
|
1898
|
+
OPENSSL_EXPORT void ASN1_PRINTABLE_free(ASN1_STRING *str);
|
926
1899
|
|
927
|
-
|
928
|
-
|
929
|
-
|
930
|
-
|
931
|
-
|
932
|
-
|
933
|
-
|
934
|
-
|
935
|
-
|
936
|
-
|
937
|
-
|
938
|
-
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_set(
|
939
|
-
ASN1_GENERALIZEDTIME *s, time_t t);
|
940
|
-
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_GENERALIZEDTIME_adj(
|
941
|
-
ASN1_GENERALIZEDTIME *s, time_t t, int offset_day, long offset_sec);
|
942
|
-
OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_set_string(ASN1_GENERALIZEDTIME *s,
|
943
|
-
const char *str);
|
944
|
-
OPENSSL_EXPORT int ASN1_TIME_diff(int *pday, int *psec, const ASN1_TIME *from,
|
945
|
-
const ASN1_TIME *to);
|
946
|
-
|
947
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_OCTET_STRING)
|
948
|
-
OPENSSL_EXPORT ASN1_OCTET_STRING *ASN1_OCTET_STRING_dup(
|
949
|
-
const ASN1_OCTET_STRING *a);
|
950
|
-
OPENSSL_EXPORT int ASN1_OCTET_STRING_cmp(const ASN1_OCTET_STRING *a,
|
951
|
-
const ASN1_OCTET_STRING *b);
|
952
|
-
OPENSSL_EXPORT int ASN1_OCTET_STRING_set(ASN1_OCTET_STRING *str,
|
953
|
-
const unsigned char *data, int len);
|
954
|
-
|
955
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_VISIBLESTRING)
|
956
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_UNIVERSALSTRING)
|
957
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_UTF8STRING)
|
958
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_NULL)
|
959
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_BMPSTRING)
|
960
|
-
|
961
|
-
DECLARE_ASN1_FUNCTIONS_name(ASN1_STRING, ASN1_PRINTABLE)
|
962
|
-
|
963
|
-
DECLARE_ASN1_FUNCTIONS_name(ASN1_STRING, DIRECTORYSTRING)
|
964
|
-
DECLARE_ASN1_FUNCTIONS_name(ASN1_STRING, DISPLAYTEXT)
|
965
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_PRINTABLESTRING)
|
966
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_T61STRING)
|
967
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_IA5STRING)
|
968
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_GENERALSTRING)
|
969
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_UTCTIME)
|
970
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_GENERALIZEDTIME)
|
971
|
-
DECLARE_ASN1_FUNCTIONS(ASN1_TIME)
|
972
|
-
|
973
|
-
OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_set(ASN1_TIME *s, time_t t);
|
974
|
-
OPENSSL_EXPORT ASN1_TIME *ASN1_TIME_adj(ASN1_TIME *s, time_t t, int offset_day,
|
975
|
-
long offset_sec);
|
976
|
-
OPENSSL_EXPORT int ASN1_TIME_check(const ASN1_TIME *t);
|
977
|
-
OPENSSL_EXPORT ASN1_GENERALIZEDTIME *ASN1_TIME_to_generalizedtime(
|
978
|
-
const ASN1_TIME *t, ASN1_GENERALIZEDTIME **out);
|
979
|
-
OPENSSL_EXPORT int ASN1_TIME_set_string(ASN1_TIME *s, const char *str);
|
980
|
-
|
981
|
-
OPENSSL_EXPORT int i2a_ASN1_INTEGER(BIO *bp, const ASN1_INTEGER *a);
|
982
|
-
OPENSSL_EXPORT int i2a_ASN1_ENUMERATED(BIO *bp, const ASN1_ENUMERATED *a);
|
983
|
-
OPENSSL_EXPORT int i2a_ASN1_OBJECT(BIO *bp, const ASN1_OBJECT *a);
|
984
|
-
OPENSSL_EXPORT int i2a_ASN1_STRING(BIO *bp, const ASN1_STRING *a, int type);
|
985
|
-
OPENSSL_EXPORT int i2t_ASN1_OBJECT(char *buf, int buf_len,
|
986
|
-
const ASN1_OBJECT *a);
|
987
|
-
|
988
|
-
OPENSSL_EXPORT ASN1_OBJECT *ASN1_OBJECT_create(int nid,
|
989
|
-
const unsigned char *data,
|
990
|
-
int len, const char *sn,
|
991
|
-
const char *ln);
|
992
|
-
|
993
|
-
// General
|
994
|
-
// given a string, return the correct type, max is the maximum length
|
995
|
-
OPENSSL_EXPORT int ASN1_PRINTABLE_type(const unsigned char *s, int max);
|
996
|
-
|
997
|
-
OPENSSL_EXPORT unsigned long ASN1_tag2bit(int tag);
|
998
|
-
|
999
|
-
// SPECIALS
|
1000
|
-
OPENSSL_EXPORT int ASN1_get_object(const unsigned char **pp, long *plength,
|
1001
|
-
int *ptag, int *pclass, long omax);
|
1002
|
-
OPENSSL_EXPORT void ASN1_put_object(unsigned char **pp, int constructed,
|
1003
|
-
int length, int tag, int xclass);
|
1004
|
-
OPENSSL_EXPORT int ASN1_put_eoc(unsigned char **pp);
|
1005
|
-
OPENSSL_EXPORT int ASN1_object_size(int constructed, int length, int tag);
|
1006
|
-
|
1007
|
-
OPENSSL_EXPORT void *ASN1_item_dup(const ASN1_ITEM *it, void *x);
|
1008
|
-
|
1009
|
-
#ifndef OPENSSL_NO_FP_API
|
1010
|
-
OPENSSL_EXPORT void *ASN1_item_d2i_fp(const ASN1_ITEM *it, FILE *in, void *x);
|
1011
|
-
OPENSSL_EXPORT int ASN1_item_i2d_fp(const ASN1_ITEM *it, FILE *out, void *x);
|
1012
|
-
OPENSSL_EXPORT int ASN1_STRING_print_ex_fp(FILE *fp, const ASN1_STRING *str,
|
1013
|
-
unsigned long flags);
|
1014
|
-
#endif
|
1015
|
-
|
1016
|
-
OPENSSL_EXPORT void *ASN1_item_d2i_bio(const ASN1_ITEM *it, BIO *in, void *x);
|
1017
|
-
OPENSSL_EXPORT int ASN1_item_i2d_bio(const ASN1_ITEM *it, BIO *out, void *x);
|
1018
|
-
OPENSSL_EXPORT int ASN1_UTCTIME_print(BIO *fp, const ASN1_UTCTIME *a);
|
1019
|
-
OPENSSL_EXPORT int ASN1_GENERALIZEDTIME_print(BIO *fp,
|
1020
|
-
const ASN1_GENERALIZEDTIME *a);
|
1021
|
-
OPENSSL_EXPORT int ASN1_TIME_print(BIO *fp, const ASN1_TIME *a);
|
1022
|
-
OPENSSL_EXPORT int ASN1_STRING_print(BIO *bp, const ASN1_STRING *v);
|
1023
|
-
OPENSSL_EXPORT int ASN1_STRING_print_ex(BIO *out, const ASN1_STRING *str,
|
1024
|
-
unsigned long flags);
|
1025
|
-
OPENSSL_EXPORT const char *ASN1_tag2str(int tag);
|
1026
|
-
|
1027
|
-
// Used to load and write netscape format cert
|
1028
|
-
|
1029
|
-
OPENSSL_EXPORT void *ASN1_item_unpack(const ASN1_STRING *oct,
|
1030
|
-
const ASN1_ITEM *it);
|
1031
|
-
|
1032
|
-
OPENSSL_EXPORT ASN1_STRING *ASN1_item_pack(void *obj, const ASN1_ITEM *it,
|
1033
|
-
ASN1_OCTET_STRING **oct);
|
1034
|
-
|
1035
|
-
OPENSSL_EXPORT void ASN1_STRING_set_default_mask(unsigned long mask);
|
1036
|
-
OPENSSL_EXPORT int ASN1_STRING_set_default_mask_asc(const char *p);
|
1037
|
-
OPENSSL_EXPORT unsigned long ASN1_STRING_get_default_mask(void);
|
1038
|
-
OPENSSL_EXPORT int ASN1_mbstring_copy(ASN1_STRING **out,
|
1039
|
-
const unsigned char *in, int len,
|
1040
|
-
int inform, unsigned long mask);
|
1041
|
-
OPENSSL_EXPORT int ASN1_mbstring_ncopy(ASN1_STRING **out,
|
1042
|
-
const unsigned char *in, int len,
|
1043
|
-
int inform, unsigned long mask,
|
1044
|
-
long minsize, long maxsize);
|
1045
|
-
|
1046
|
-
OPENSSL_EXPORT ASN1_STRING *ASN1_STRING_set_by_NID(ASN1_STRING **out,
|
1047
|
-
const unsigned char *in,
|
1048
|
-
int inlen, int inform,
|
1049
|
-
int nid);
|
1050
|
-
OPENSSL_EXPORT ASN1_STRING_TABLE *ASN1_STRING_TABLE_get(int nid);
|
1051
|
-
OPENSSL_EXPORT int ASN1_STRING_TABLE_add(int, long, long, unsigned long,
|
1052
|
-
unsigned long);
|
1053
|
-
OPENSSL_EXPORT void ASN1_STRING_TABLE_cleanup(void);
|
1054
|
-
|
1055
|
-
// ASN1 template functions
|
1900
|
+
// d2i_ASN1_PRINTABLE parses up to |len| bytes from |*inp| as a DER-encoded
|
1901
|
+
// CHOICE of an ad-hoc subset of string-like types, as described in
|
1902
|
+
// |d2i_SAMPLE_with_reuse|.
|
1903
|
+
//
|
1904
|
+
// Do not use this. Despite, the name it has no connection to PrintableString or
|
1905
|
+
// printable characters. See https://crbug.com/boringssl/412.
|
1906
|
+
//
|
1907
|
+
// TODO(https://crbug.com/boringssl/354): This function currently also accepts
|
1908
|
+
// BER, but this will be removed in the future.
|
1909
|
+
OPENSSL_EXPORT ASN1_STRING *d2i_ASN1_PRINTABLE(ASN1_STRING **out,
|
1910
|
+
const uint8_t **inp, long len);
|
1056
1911
|
|
1057
|
-
//
|
1058
|
-
|
1059
|
-
|
1060
|
-
|
1061
|
-
|
1062
|
-
const ASN1_ITEM *it);
|
1063
|
-
OPENSSL_EXPORT int ASN1_item_i2d(ASN1_VALUE *val, unsigned char **out,
|
1064
|
-
const ASN1_ITEM *it);
|
1912
|
+
// i2d_ASN1_PRINTABLE marshals |in| as DER, as described in |i2d_SAMPLE|.
|
1913
|
+
//
|
1914
|
+
// Do not use this. Despite the name, it has no connection to PrintableString or
|
1915
|
+
// printable characters. See https://crbug.com/boringssl/412.
|
1916
|
+
OPENSSL_EXPORT int i2d_ASN1_PRINTABLE(const ASN1_STRING *in, uint8_t **outp);
|
1065
1917
|
|
1066
|
-
|
1067
|
-
|
1918
|
+
// ASN1_PRINTABLE is an |ASN1_ITEM| whose ASN.1 type is a CHOICE of an ad-hoc
|
1919
|
+
// subset of string-like types, and whose C type is |ASN1_STRING*|.
|
1920
|
+
//
|
1921
|
+
// Do not use this. Despite the name, it has no connection to PrintableString or
|
1922
|
+
// printable characters. See https://crbug.com/boringssl/412.
|
1923
|
+
DECLARE_ASN1_ITEM(ASN1_PRINTABLE)
|
1068
1924
|
|
1069
1925
|
|
1070
|
-
#
|
1071
|
-
}
|
1926
|
+
#if defined(__cplusplus)
|
1927
|
+
} // extern C
|
1072
1928
|
|
1073
1929
|
extern "C++" {
|
1074
1930
|
|
@@ -1178,5 +2034,6 @@ BSSL_NAMESPACE_END
|
|
1178
2034
|
#define ASN1_R_WRONG_TYPE 191
|
1179
2035
|
#define ASN1_R_NESTED_TOO_DEEP 192
|
1180
2036
|
#define ASN1_R_BAD_TEMPLATE 193
|
2037
|
+
#define ASN1_R_INVALID_BIT_STRING_PADDING 194
|
1181
2038
|
|
1182
2039
|
#endif
|