grpc 1.56.2 → 1.58.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/Makefile +549 -292
- data/include/grpc/event_engine/event_engine.h +22 -33
- data/include/grpc/event_engine/memory_allocator.h +2 -2
- data/include/grpc/impl/channel_arg_names.h +371 -0
- data/include/grpc/impl/grpc_types.h +1 -350
- data/include/grpc/module.modulemap +1 -0
- data/include/grpc/support/port_platform.h +29 -23
- data/src/core/ext/filters/backend_metrics/backend_metric_filter.cc +1 -1
- data/src/core/ext/filters/channel_idle/channel_idle_filter.cc +2 -1
- data/src/core/ext/filters/client_channel/client_channel.cc +51 -11
- data/src/core/ext/filters/client_channel/dynamic_filters.h +3 -3
- data/src/core/ext/filters/client_channel/http_proxy.cc +6 -1
- data/src/core/ext/filters/client_channel/lb_policy/address_filtering.cc +27 -53
- data/src/core/ext/filters/client_channel/lb_policy/address_filtering.h +23 -9
- data/src/core/ext/filters/client_channel/lb_policy/child_policy_handler.cc +25 -35
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb.cc +79 -132
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_balancer_addresses.cc +2 -1
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/load_balancer_api.cc +4 -3
- data/src/core/ext/filters/client_channel/lb_policy/grpclb/load_balancer_api.h +3 -1
- data/src/core/ext/filters/client_channel/lb_policy/health_check_client.cc +42 -17
- data/src/core/ext/filters/client_channel/lb_policy/health_check_client.h +3 -5
- data/src/core/ext/filters/client_channel/lb_policy/health_check_client_internal.h +22 -6
- data/src/core/ext/filters/client_channel/lb_policy/oob_backend_metric.cc +4 -2
- data/src/core/ext/filters/client_channel/lb_policy/oob_backend_metric_internal.h +2 -0
- data/src/core/ext/filters/client_channel/lb_policy/outlier_detection/outlier_detection.cc +97 -71
- data/src/core/ext/filters/client_channel/lb_policy/outlier_detection/outlier_detection.h +2 -16
- data/src/core/ext/filters/client_channel/lb_policy/pick_first/pick_first.cc +152 -101
- data/src/core/ext/filters/client_channel/lb_policy/pick_first/pick_first.h +20 -0
- data/src/core/ext/filters/client_channel/lb_policy/priority/priority.cc +13 -34
- data/src/core/ext/filters/client_channel/lb_policy/ring_hash/ring_hash.cc +6 -7
- data/src/core/ext/filters/client_channel/lb_policy/rls/rls.cc +21 -79
- data/src/core/ext/filters/client_channel/lb_policy/round_robin/round_robin.cc +1 -1
- data/src/core/ext/filters/client_channel/lb_policy/subchannel_list.h +32 -20
- data/src/core/ext/filters/client_channel/lb_policy/weighted_round_robin/weighted_round_robin.cc +12 -4
- data/src/core/ext/filters/client_channel/lb_policy/weighted_target/weighted_target.cc +13 -42
- data/src/core/ext/filters/client_channel/lb_policy/xds/cds.cc +3 -67
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_channel_args.h +8 -0
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_impl.cc +31 -74
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_manager.cc +7 -51
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_cluster_resolver.cc +22 -90
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_override_host.cc +16 -50
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_wrr_locality.cc +12 -74
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/dns_resolver_ares.cc +2 -5
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver_posix.cc +102 -11
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.cc +9 -4
- data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.h +4 -1
- data/src/core/ext/filters/client_channel/resolver/dns/dns_resolver_plugin.cc +6 -0
- data/src/core/ext/filters/client_channel/resolver/dns/event_engine/event_engine_client_channel_resolver.cc +107 -70
- data/src/core/ext/filters/client_channel/resolver/dns/native/dns_resolver.cc +1 -1
- data/src/core/ext/filters/client_channel/resolver/polling_resolver.cc +10 -4
- data/src/core/ext/filters/client_channel/resolver/polling_resolver.h +1 -0
- data/src/core/ext/filters/client_channel/resolver/sockaddr/sockaddr_resolver.cc +25 -13
- data/src/core/ext/filters/client_channel/resolver/xds/xds_resolver.cc +367 -312
- data/src/core/ext/filters/client_channel/resolver/xds/xds_resolver.h +17 -1
- data/src/core/ext/filters/client_channel/retry_filter.cc +39 -2498
- data/src/core/ext/filters/client_channel/retry_filter.h +92 -1
- data/src/core/ext/filters/client_channel/retry_filter_legacy_call_data.cc +2052 -0
- data/src/core/ext/filters/client_channel/retry_filter_legacy_call_data.h +442 -0
- data/src/core/ext/filters/client_channel/retry_service_config.cc +1 -1
- data/src/core/ext/filters/client_channel/service_config_channel_arg_filter.cc +39 -59
- data/src/core/ext/filters/client_channel/subchannel.cc +9 -5
- data/src/core/ext/filters/client_channel/subchannel.h +11 -5
- data/src/core/ext/filters/client_channel/subchannel_interface_internal.h +3 -0
- data/src/core/ext/filters/deadline/deadline_filter.cc +1 -1
- data/src/core/ext/filters/http/client/http_client_filter.cc +1 -0
- data/src/core/ext/filters/http/client_authority_filter.cc +1 -1
- data/src/core/ext/filters/http/message_compress/compression_filter.cc +1 -0
- data/src/core/ext/filters/http/server/http_server_filter.cc +1 -1
- data/src/core/ext/filters/message_size/message_size_filter.cc +1 -0
- data/src/core/ext/filters/rbac/rbac_filter.cc +40 -111
- data/src/core/ext/filters/rbac/rbac_filter.h +12 -30
- data/src/core/ext/filters/rbac/rbac_service_config_parser.cc +4 -7
- data/src/core/ext/filters/stateful_session/stateful_session_filter.cc +162 -86
- data/src/core/ext/filters/stateful_session/stateful_session_filter.h +0 -6
- data/src/core/ext/transport/chttp2/client/chttp2_connector.cc +1 -0
- data/src/core/ext/transport/chttp2/server/chttp2_server.cc +15 -16
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.cc +463 -519
- data/src/core/ext/transport/chttp2/transport/decode_huff.cc +6569 -174
- data/src/core/ext/transport/chttp2/transport/decode_huff.h +2278 -441
- data/src/core/ext/transport/chttp2/transport/frame_ping.cc +6 -20
- data/src/core/ext/transport/chttp2/transport/hpack_parse_result.h +4 -3
- data/src/core/ext/transport/chttp2/transport/hpack_parser.cc +72 -12
- data/src/core/ext/transport/chttp2/transport/hpack_parser.h +7 -2
- data/src/core/ext/transport/chttp2/transport/hpack_parser_table.cc +4 -4
- data/src/core/ext/transport/chttp2/transport/hpack_parser_table.h +3 -2
- data/src/core/ext/transport/chttp2/transport/internal.h +38 -61
- data/src/core/ext/transport/chttp2/transport/parsing.cc +31 -10
- data/src/core/ext/transport/chttp2/transport/ping_abuse_policy.cc +80 -0
- data/src/core/ext/transport/chttp2/transport/ping_abuse_policy.h +55 -0
- data/src/core/ext/transport/chttp2/transport/ping_rate_policy.cc +98 -0
- data/src/core/ext/transport/chttp2/transport/ping_rate_policy.h +73 -0
- data/src/core/ext/transport/chttp2/transport/writing.cc +82 -91
- data/src/core/ext/transport/inproc/inproc_transport.cc +1 -0
- data/src/core/ext/upb-generated/envoy/config/accesslog/v3/accesslog.upb.c +27 -6
- data/src/core/ext/upb-generated/envoy/config/accesslog/v3/accesslog.upb.h +143 -0
- data/src/core/ext/upb-generated/envoy/config/core/v3/config_source.upb.c +2 -9
- data/src/core/ext/upb-generated/envoy/config/core/v3/config_source.upb.h +0 -39
- data/src/core/ext/upb-generated/envoy/config/core/v3/grpc_service.upb.c +13 -8
- data/src/core/ext/upb-generated/envoy/config/core/v3/grpc_service.upb.h +35 -6
- data/src/core/ext/upb-generated/envoy/config/core/v3/health_check.upb.c +17 -13
- data/src/core/ext/upb-generated/envoy/config/core/v3/health_check.upb.h +85 -20
- data/src/core/ext/upb-generated/envoy/config/core/v3/protocol.upb.c +26 -7
- data/src/core/ext/upb-generated/envoy/config/core/v3/protocol.upb.h +45 -3
- data/src/core/ext/upb-generated/envoy/config/metrics/v3/metrics_service.upb.c +4 -3
- data/src/core/ext/upb-generated/envoy/config/metrics/v3/metrics_service.upb.h +21 -0
- data/src/core/ext/upb-generated/envoy/config/overload/v3/overload.upb.c +30 -6
- data/src/core/ext/upb-generated/envoy/config/overload/v3/overload.upb.h +180 -0
- data/src/core/ext/upb-generated/envoy/data/accesslog/v3/accesslog.upb.c +558 -0
- data/src/core/ext/upb-generated/envoy/data/accesslog/v3/accesslog.upb.h +2710 -0
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/fault/v3/fault.upb.c +30 -11
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/fault/v3/fault.upb.h +53 -24
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/router/v3/router.upb.c +30 -5
- data/src/core/ext/upb-generated/envoy/extensions/filters/http/router/v3/router.upb.h +110 -0
- data/src/core/ext/upb-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.c +41 -15
- data/src/core/ext/upb-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h +150 -27
- data/src/core/ext/upb-generated/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb.c +1 -0
- data/src/core/ext/upb-generated/envoy/extensions/load_balancing_policies/pick_first/v3/pick_first.upb.c +47 -0
- data/src/core/ext/upb-generated/envoy/extensions/load_balancing_policies/pick_first/v3/pick_first.upb.h +93 -0
- data/src/core/ext/upbdefs-generated/envoy/config/accesslog/v3/accesslog.upbdefs.c +88 -76
- data/src/core/ext/upbdefs-generated/envoy/config/accesslog/v3/accesslog.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/config_source.upbdefs.c +11 -12
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/config_source.upbdefs.h +0 -5
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/grpc_service.upbdefs.c +162 -160
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/health_check.upbdefs.c +129 -118
- data/src/core/ext/upbdefs-generated/envoy/config/core/v3/protocol.upbdefs.c +141 -135
- data/src/core/ext/upbdefs-generated/envoy/config/metrics/v3/metrics_service.upbdefs.c +19 -12
- data/src/core/ext/upbdefs-generated/envoy/config/overload/v3/overload.upbdefs.c +38 -30
- data/src/core/ext/upbdefs-generated/envoy/config/overload/v3/overload.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-generated/envoy/data/accesslog/v3/accesslog.upbdefs.c +402 -0
- data/src/core/ext/upbdefs-generated/envoy/data/accesslog/v3/accesslog.upbdefs.h +111 -0
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/fault/v3/fault.upbdefs.c +80 -74
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/router/v3/router.upbdefs.c +63 -47
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/http/router/v3/router.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.c +315 -293
- data/src/core/ext/upbdefs-generated/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-generated/envoy/type/matcher/v3/regex.upbdefs.c +29 -29
- data/src/core/ext/xds/xds_bootstrap_grpc.cc +33 -30
- data/src/core/ext/xds/xds_bootstrap_grpc.h +5 -13
- data/src/core/ext/xds/xds_client_grpc.cc +12 -6
- data/src/core/ext/xds/xds_client_grpc.h +16 -2
- data/src/core/ext/xds/xds_client_stats.h +10 -0
- data/src/core/ext/xds/xds_cluster.cc +26 -16
- data/src/core/ext/xds/xds_endpoint.cc +4 -7
- data/src/core/ext/xds/xds_health_status.cc +0 -17
- data/src/core/ext/xds/xds_health_status.h +5 -25
- data/src/core/ext/xds/xds_http_fault_filter.cc +1 -2
- data/src/core/ext/xds/xds_http_fault_filter.h +1 -2
- data/src/core/ext/xds/xds_http_filters.h +2 -4
- data/src/core/ext/xds/xds_http_rbac_filter.cc +3 -8
- data/src/core/ext/xds/xds_http_rbac_filter.h +1 -2
- data/src/core/ext/xds/xds_http_stateful_session_filter.cc +1 -2
- data/src/core/ext/xds/xds_http_stateful_session_filter.h +1 -2
- data/src/core/ext/xds/xds_lb_policy_registry.cc +36 -0
- data/src/core/ext/xds/xds_route_config.cc +4 -0
- data/src/core/ext/xds/xds_routing.cc +2 -2
- data/src/core/ext/xds/xds_transport_grpc.cc +2 -3
- data/src/core/lib/address_utils/parse_address.cc +63 -1
- data/src/core/lib/address_utils/parse_address.h +8 -0
- data/src/core/lib/address_utils/sockaddr_utils.cc +46 -1
- data/src/core/lib/address_utils/sockaddr_utils.h +2 -2
- data/src/core/lib/avl/avl.h +10 -173
- data/src/core/lib/channel/call_tracer.cc +289 -0
- data/src/core/lib/channel/call_tracer.h +35 -0
- data/src/core/lib/channel/channel_args.cc +98 -82
- data/src/core/lib/channel/channel_args.h +32 -17
- data/src/core/lib/channel/connected_channel.cc +4 -2
- data/src/core/lib/channel/promise_based_filter.cc +4 -1
- data/src/core/lib/channel/promise_based_filter.h +1 -0
- data/src/core/lib/compression/compression_internal.cc +8 -4
- data/src/core/lib/debug/stats_data.cc +93 -21
- data/src/core/lib/debug/stats_data.h +41 -0
- data/src/core/lib/debug/trace.cc +1 -4
- data/src/core/lib/event_engine/ares_resolver.cc +712 -0
- data/src/core/lib/event_engine/ares_resolver.h +150 -0
- data/src/core/lib/event_engine/cf_engine/cf_engine.cc +10 -3
- data/src/core/lib/event_engine/cf_engine/cf_engine.h +1 -1
- data/src/core/lib/event_engine/cf_engine/cfstream_endpoint.cc +2 -2
- data/src/core/lib/event_engine/cf_engine/dns_service_resolver.cc +229 -0
- data/src/core/lib/event_engine/cf_engine/dns_service_resolver.h +117 -0
- data/src/core/lib/event_engine/event_engine.cc +0 -12
- data/src/core/lib/event_engine/forkable.cc +62 -43
- data/src/core/lib/event_engine/forkable.h +15 -0
- data/src/core/lib/event_engine/grpc_polled_fd.h +73 -0
- data/src/core/lib/event_engine/handle_containers.h +0 -4
- data/src/core/lib/event_engine/posix_engine/ev_epoll1_linux.cc +4 -6
- data/src/core/lib/event_engine/posix_engine/ev_poll_posix.cc +29 -9
- data/src/core/lib/event_engine/posix_engine/ev_poll_posix.h +10 -1
- data/src/core/lib/event_engine/posix_engine/grpc_polled_fd_posix.h +197 -0
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.cc +28 -14
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.h +3 -1
- data/src/core/lib/event_engine/posix_engine/posix_engine.cc +49 -2
- data/src/core/lib/event_engine/posix_engine/posix_engine.h +20 -13
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener.cc +37 -27
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener.h +2 -0
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener_utils.cc +4 -2
- data/src/core/lib/event_engine/posix_engine/tcp_socket_utils.cc +43 -2
- data/src/core/lib/event_engine/posix_engine/tcp_socket_utils.h +6 -0
- data/src/core/lib/event_engine/posix_engine/timer.h +10 -37
- data/src/core/lib/event_engine/posix_engine/traced_buffer_list.cc +2 -0
- data/src/core/lib/event_engine/tcp_socket_utils.cc +67 -7
- data/src/core/lib/event_engine/tcp_socket_utils.h +3 -0
- data/src/core/lib/event_engine/thread_pool/thread_count.cc +58 -0
- data/src/core/lib/event_engine/thread_pool/thread_count.h +161 -0
- data/src/core/lib/event_engine/thread_pool/thread_pool_factory.cc +7 -0
- data/src/core/lib/event_engine/thread_pool/work_stealing_thread_pool.cc +122 -94
- data/src/core/lib/event_engine/thread_pool/work_stealing_thread_pool.h +22 -48
- data/src/core/lib/event_engine/thready_event_engine/thready_event_engine.cc +12 -21
- data/src/core/lib/event_engine/thready_event_engine/thready_event_engine.h +8 -12
- data/src/core/lib/event_engine/windows/windows_endpoint.cc +58 -58
- data/src/core/lib/event_engine/windows/windows_endpoint.h +15 -12
- data/src/core/lib/event_engine/windows/windows_engine.cc +2 -1
- data/src/core/lib/event_engine/windows/windows_engine.h +8 -12
- data/src/core/lib/experiments/config.cc +74 -22
- data/src/core/lib/experiments/config.h +20 -8
- data/src/core/lib/experiments/experiments.cc +206 -91
- data/src/core/lib/experiments/experiments.h +71 -14
- data/src/core/lib/gprpp/dual_ref_counted.h +9 -9
- data/src/core/lib/gprpp/fork.cc +8 -9
- data/src/core/lib/gprpp/fork.h +6 -5
- data/src/core/lib/gprpp/if_list.h +4530 -0
- data/src/core/lib/gprpp/orphanable.h +3 -3
- data/src/core/lib/gprpp/ref_counted.h +9 -7
- data/src/core/lib/gprpp/ref_counted_string.cc +44 -0
- data/src/core/lib/gprpp/ref_counted_string.h +146 -0
- data/src/core/lib/gprpp/sorted_pack.h +3 -12
- data/src/core/lib/gprpp/status_helper.h +16 -15
- data/src/core/lib/gprpp/time.h +13 -1
- data/src/core/lib/gprpp/type_list.h +32 -0
- data/src/core/lib/gprpp/work_serializer.cc +36 -0
- data/src/core/lib/gprpp/work_serializer.h +5 -0
- data/src/core/lib/http/httpcli.h +6 -9
- data/src/core/lib/http/httpcli_security_connector.cc +1 -0
- data/src/core/lib/iomgr/buffer_list.cc +2 -0
- data/src/core/lib/iomgr/error.cc +32 -2
- data/src/core/lib/iomgr/error.h +9 -10
- data/src/core/lib/iomgr/ev_epoll1_linux.cc +5 -7
- data/src/core/lib/iomgr/ev_poll_posix.cc +6 -5
- data/src/core/lib/iomgr/event_engine_shims/endpoint.cc +7 -22
- data/src/core/lib/iomgr/exec_ctx.h +11 -0
- data/src/core/lib/iomgr/pollset.h +4 -5
- data/src/core/lib/iomgr/port.h +10 -0
- data/src/core/lib/iomgr/resolve_address.cc +13 -1
- data/src/core/lib/iomgr/resolve_address.h +17 -3
- data/src/core/lib/iomgr/sockaddr_posix.h +7 -0
- data/src/core/lib/iomgr/socket_utils_common_posix.cc +29 -0
- data/src/core/lib/iomgr/socket_utils_posix.cc +2 -0
- data/src/core/lib/iomgr/socket_utils_posix.h +6 -0
- data/src/core/lib/iomgr/tcp_client_posix.cc +4 -1
- data/src/core/lib/iomgr/tcp_posix.cc +24 -7
- data/src/core/lib/iomgr/tcp_server_posix.cc +3 -2
- data/src/core/lib/iomgr/tcp_server_utils_posix_common.cc +5 -2
- data/src/core/lib/iomgr/tcp_windows.cc +1 -3
- data/src/core/lib/iomgr/vsock.cc +59 -0
- data/src/core/lib/iomgr/vsock.h +38 -0
- data/src/core/lib/iomgr/wakeup_fd_posix.h +3 -6
- data/src/core/lib/load_balancing/delegating_helper.h +115 -0
- data/src/core/lib/load_balancing/lb_policy.h +20 -0
- data/src/core/lib/load_balancing/subchannel_interface.h +6 -0
- data/src/core/lib/promise/detail/basic_seq.h +1 -372
- data/src/core/lib/promise/detail/seq_state.h +2076 -0
- data/src/core/lib/promise/party.h +1 -1
- data/src/core/lib/promise/seq.h +19 -2
- data/src/core/lib/promise/sleep.h +5 -10
- data/src/core/lib/promise/try_seq.h +34 -2
- data/src/core/lib/resolver/resolver_factory.h +3 -2
- data/src/core/lib/resolver/server_address.cc +9 -94
- data/src/core/lib/resolver/server_address.h +10 -64
- data/src/core/lib/resource_quota/api.cc +1 -0
- data/src/core/lib/resource_quota/arena.cc +2 -0
- data/src/core/lib/resource_quota/arena.h +42 -8
- data/src/core/lib/resource_quota/memory_quota.cc +0 -1
- data/src/core/lib/resource_quota/memory_quota.h +1 -1
- data/src/core/lib/resource_quota/resource_quota.h +1 -0
- data/src/core/lib/security/authorization/authorization_policy_provider.h +1 -1
- data/src/core/lib/security/authorization/rbac_policy.h +1 -1
- data/src/core/lib/security/credentials/channel_creds_registry.h +51 -27
- data/src/core/lib/security/credentials/channel_creds_registry_init.cc +169 -9
- data/src/core/lib/security/credentials/composite/composite_credentials.cc +1 -1
- data/src/core/lib/security/credentials/composite/composite_credentials.h +3 -1
- data/src/core/lib/security/credentials/external/aws_request_signer.cc +8 -0
- data/src/core/lib/security/credentials/external/external_account_credentials.cc +40 -1
- data/src/core/lib/security/credentials/external/external_account_credentials.h +6 -0
- data/src/core/lib/security/credentials/fake/fake_credentials.cc +30 -38
- data/src/core/lib/security/credentials/fake/fake_credentials.h +28 -0
- data/src/core/lib/security/credentials/google_default/google_default_credentials.cc +1 -0
- data/src/core/lib/security/credentials/jwt/json_token.cc +17 -0
- data/src/core/lib/security/credentials/jwt/json_token.h +4 -0
- data/src/core/lib/security/credentials/jwt/jwt_verifier.cc +42 -0
- data/src/core/lib/security/credentials/ssl/ssl_credentials.cc +1 -0
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc +4 -0
- data/src/core/lib/security/credentials/tls/tls_credentials.cc +2 -1
- data/src/core/lib/security/credentials/tls/tls_credentials.h +3 -1
- data/src/core/lib/security/credentials/xds/xds_credentials.cc +1 -0
- data/src/core/lib/security/security_connector/alts/alts_security_connector.cc +1 -0
- data/src/core/lib/security/security_connector/fake/fake_security_connector.cc +1 -0
- data/src/core/lib/security/security_connector/ssl_utils.cc +1 -0
- data/src/core/lib/security/transport/client_auth_filter.cc +8 -5
- data/src/core/lib/security/transport/security_handshaker.cc +1 -0
- data/src/core/lib/security/transport/server_auth_filter.cc +2 -0
- data/src/core/lib/service_config/service_config_call_data.h +5 -0
- data/src/core/lib/slice/slice.h +16 -0
- data/src/core/lib/surface/call.cc +63 -37
- data/src/core/lib/surface/channel.cc +1 -0
- data/src/core/lib/surface/completion_queue.cc +10 -0
- data/src/core/lib/surface/init.cc +1 -0
- data/src/core/lib/surface/server.cc +67 -64
- data/src/core/lib/surface/server.h +1 -15
- data/src/core/lib/surface/version.cc +2 -2
- data/src/core/lib/transport/metadata_batch.cc +7 -7
- data/src/core/lib/transport/metadata_batch.h +86 -48
- data/src/core/lib/transport/parsed_metadata.h +34 -20
- data/src/core/lib/transport/simple_slice_based_metadata.h +9 -2
- data/src/core/tsi/alts/crypt/aes_gcm.cc +27 -2
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_grpc_record_protocol_common.cc +4 -6
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_zero_copy_grpc_protector.cc +1 -2
- data/src/core/tsi/ssl_transport_security.cc +39 -7
- data/src/ruby/bin/math_pb.rb +24 -18
- data/src/ruby/ext/grpc/extconf.rb +19 -18
- data/src/ruby/ext/grpc/rb_call.c +62 -39
- data/src/ruby/ext/grpc/rb_call_credentials.c +0 -1
- data/src/ruby/ext/grpc/rb_channel.c +109 -84
- data/src/ruby/ext/grpc/rb_channel.h +1 -0
- data/src/ruby/ext/grpc/rb_channel_args.c +16 -2
- data/src/ruby/ext/grpc/rb_channel_args.h +4 -0
- data/src/ruby/ext/grpc/rb_channel_credentials.c +0 -1
- data/src/ruby/ext/grpc/rb_compression_options.c +0 -1
- data/src/ruby/ext/grpc/rb_event_thread.c +22 -6
- data/src/ruby/ext/grpc/rb_event_thread.h +1 -0
- data/src/ruby/ext/grpc/rb_grpc.c +192 -30
- data/src/ruby/ext/grpc/rb_grpc.h +8 -2
- data/src/ruby/ext/grpc/rb_server.c +62 -45
- data/src/ruby/ext/grpc/rb_server_credentials.c +0 -1
- data/src/ruby/ext/grpc/rb_xds_channel_credentials.c +0 -1
- data/src/ruby/ext/grpc/rb_xds_server_credentials.c +0 -1
- data/src/ruby/lib/grpc/generic/active_call.rb +9 -14
- data/src/ruby/lib/grpc/generic/bidi_call.rb +2 -0
- data/src/ruby/lib/grpc/version.rb +1 -1
- data/src/ruby/pb/grpc/health/v1/health_pb.rb +24 -13
- data/src/ruby/pb/src/proto/grpc/testing/empty_pb.rb +24 -3
- data/src/ruby/pb/src/proto/grpc/testing/messages_pb.rb +25 -111
- data/src/ruby/pb/src/proto/grpc/testing/test_pb.rb +25 -2
- data/src/ruby/pb/test/client.rb +16 -0
- data/src/ruby/spec/generic/rpc_server_spec.rb +3 -3
- data/third_party/abseil-cpp/absl/algorithm/container.h +3 -2
- data/third_party/abseil-cpp/absl/base/attributes.h +58 -5
- data/third_party/abseil-cpp/absl/base/call_once.h +1 -1
- data/third_party/abseil-cpp/absl/base/casts.h +8 -8
- data/third_party/abseil-cpp/absl/base/config.h +89 -106
- data/third_party/abseil-cpp/absl/base/dynamic_annotations.h +26 -1
- data/third_party/abseil-cpp/absl/base/internal/direct_mmap.h +2 -2
- data/third_party/abseil-cpp/absl/base/internal/low_level_alloc.cc +50 -39
- data/third_party/abseil-cpp/absl/base/internal/low_level_alloc.h +2 -1
- data/third_party/abseil-cpp/absl/base/internal/prefetch.h +17 -18
- data/third_party/abseil-cpp/absl/base/internal/raw_logging.cc +32 -3
- data/third_party/abseil-cpp/absl/base/internal/raw_logging.h +24 -4
- data/third_party/abseil-cpp/absl/base/internal/sysinfo.cc +31 -73
- data/third_party/abseil-cpp/absl/base/internal/thread_identity.cc +9 -8
- data/third_party/abseil-cpp/absl/base/internal/thread_identity.h +11 -11
- data/third_party/abseil-cpp/absl/base/internal/throw_delegate.cc +23 -32
- data/third_party/abseil-cpp/absl/base/internal/unscaledcycleclock.cc +2 -3
- data/third_party/abseil-cpp/absl/base/options.h +1 -1
- data/third_party/abseil-cpp/absl/base/policy_checks.h +3 -3
- data/third_party/abseil-cpp/absl/base/prefetch.h +198 -0
- data/third_party/abseil-cpp/absl/container/fixed_array.h +54 -29
- data/third_party/abseil-cpp/absl/container/flat_hash_map.h +5 -1
- data/third_party/abseil-cpp/absl/container/flat_hash_set.h +6 -2
- data/third_party/abseil-cpp/absl/container/inlined_vector.h +167 -79
- data/third_party/abseil-cpp/absl/container/internal/common_policy_traits.h +1 -1
- data/third_party/abseil-cpp/absl/container/internal/compressed_tuple.h +3 -21
- data/third_party/abseil-cpp/absl/container/internal/container_memory.h +1 -1
- data/third_party/abseil-cpp/absl/container/internal/hash_function_defaults.h +46 -0
- data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.cc +2 -0
- data/third_party/abseil-cpp/absl/container/internal/inlined_vector.h +85 -26
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_map.h +35 -18
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.cc +70 -29
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.h +437 -236
- data/third_party/abseil-cpp/absl/crc/crc32c.h +8 -1
- data/third_party/abseil-cpp/absl/crc/internal/cpu_detect.cc +14 -8
- data/third_party/abseil-cpp/absl/crc/internal/crc.cc +4 -35
- data/third_party/abseil-cpp/absl/crc/internal/crc.h +2 -10
- data/third_party/abseil-cpp/absl/crc/internal/crc32_x86_arm_combined_simd.h +1 -1
- data/third_party/abseil-cpp/absl/crc/internal/crc_cord_state.cc +1 -1
- data/third_party/abseil-cpp/absl/crc/internal/crc_cord_state.h +4 -4
- data/third_party/abseil-cpp/absl/crc/internal/crc_internal.h +8 -10
- data/third_party/abseil-cpp/absl/crc/internal/crc_memcpy_x86_64.cc +17 -19
- data/third_party/abseil-cpp/absl/crc/internal/crc_x86_arm_combined.cc +8 -8
- data/third_party/abseil-cpp/absl/debugging/internal/elf_mem_image.h +2 -1
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_aarch64-inl.inc +59 -23
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_powerpc-inl.inc +1 -1
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_x86-inl.inc +1 -1
- data/third_party/abseil-cpp/absl/debugging/internal/symbolize.h +1 -1
- data/third_party/abseil-cpp/absl/debugging/symbolize_elf.inc +43 -19
- data/third_party/abseil-cpp/absl/debugging/symbolize_emscripten.inc +3 -0
- data/third_party/abseil-cpp/absl/flags/commandlineflag.h +1 -1
- data/third_party/abseil-cpp/absl/flags/internal/commandlineflag.cc +1 -1
- data/third_party/abseil-cpp/absl/flags/internal/flag.cc +2 -2
- data/third_party/abseil-cpp/absl/flags/internal/flag.h +16 -15
- data/third_party/abseil-cpp/absl/flags/internal/flag_msvc.inc +1 -1
- data/third_party/abseil-cpp/absl/flags/marshalling.cc +43 -2
- data/third_party/abseil-cpp/absl/flags/marshalling.h +5 -0
- data/third_party/abseil-cpp/absl/functional/any_invocable.h +9 -1
- data/third_party/abseil-cpp/absl/functional/bind_front.h +1 -1
- data/third_party/abseil-cpp/absl/functional/function_ref.h +3 -3
- data/third_party/abseil-cpp/absl/functional/internal/any_invocable.h +37 -24
- data/third_party/abseil-cpp/absl/functional/internal/function_ref.h +19 -9
- data/third_party/abseil-cpp/absl/hash/hash.h +7 -4
- data/third_party/abseil-cpp/absl/hash/internal/hash.h +38 -15
- data/third_party/abseil-cpp/absl/hash/internal/low_level_hash.cc +6 -0
- data/third_party/abseil-cpp/absl/meta/type_traits.h +48 -373
- data/third_party/abseil-cpp/absl/numeric/bits.h +4 -4
- data/third_party/abseil-cpp/absl/numeric/int128.cc +20 -8
- data/third_party/abseil-cpp/absl/numeric/int128.h +36 -39
- data/third_party/abseil-cpp/absl/numeric/int128_have_intrinsic.inc +0 -3
- data/third_party/abseil-cpp/absl/numeric/int128_no_intrinsic.inc +47 -30
- data/third_party/abseil-cpp/absl/random/internal/fast_uniform_bits.h +4 -3
- data/third_party/abseil-cpp/absl/random/internal/generate_real.h +1 -1
- data/third_party/abseil-cpp/absl/random/internal/platform.h +1 -1
- data/third_party/abseil-cpp/absl/random/internal/randen_detect.cc +4 -0
- data/third_party/abseil-cpp/absl/random/internal/randen_engine.h +1 -1
- data/third_party/abseil-cpp/absl/random/internal/randen_hwaes.cc +1 -1
- data/third_party/abseil-cpp/absl/random/internal/uniform_helper.h +1 -1
- data/third_party/abseil-cpp/absl/status/internal/status_internal.h +4 -0
- data/third_party/abseil-cpp/absl/status/internal/statusor_internal.h +12 -24
- data/third_party/abseil-cpp/absl/status/status.cc +11 -7
- data/third_party/abseil-cpp/absl/status/status.h +11 -2
- data/third_party/abseil-cpp/absl/status/statusor.h +22 -8
- data/third_party/abseil-cpp/absl/strings/ascii.cc +54 -6
- data/third_party/abseil-cpp/absl/strings/charconv.cc +21 -4
- data/third_party/abseil-cpp/absl/strings/charconv.h +2 -2
- data/third_party/abseil-cpp/absl/strings/cord.cc +1 -2
- data/third_party/abseil-cpp/absl/strings/cord.h +32 -5
- data/third_party/abseil-cpp/absl/strings/cord_analysis.cc +23 -1
- data/third_party/abseil-cpp/absl/strings/cord_analysis.h +18 -0
- data/third_party/abseil-cpp/absl/strings/cord_buffer.h +2 -5
- data/third_party/abseil-cpp/absl/strings/escaping.cc +10 -32
- data/third_party/abseil-cpp/absl/strings/escaping.h +1 -1
- data/third_party/abseil-cpp/absl/strings/internal/charconv_bigint.cc +2 -4
- data/third_party/abseil-cpp/absl/strings/internal/charconv_bigint.h +3 -3
- data/third_party/abseil-cpp/absl/strings/internal/cord_internal.cc +0 -1
- data/third_party/abseil-cpp/absl/strings/internal/cord_internal.h +15 -13
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree.cc +13 -4
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree.h +8 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_consume.cc +5 -3
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_consume.h +4 -7
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_flat.h +8 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring.h +2 -2
- data/third_party/abseil-cpp/absl/strings/internal/cordz_handle.cc +46 -20
- data/third_party/abseil-cpp/absl/strings/internal/cordz_handle.h +1 -34
- data/third_party/abseil-cpp/absl/strings/internal/cordz_info.cc +2 -1
- data/third_party/abseil-cpp/absl/strings/internal/escaping.cc +23 -0
- data/third_party/abseil-cpp/absl/strings/internal/escaping.h +1 -0
- data/third_party/abseil-cpp/absl/strings/internal/memutil.cc +2 -77
- data/third_party/abseil-cpp/absl/strings/internal/memutil.h +4 -112
- data/third_party/abseil-cpp/absl/strings/internal/stl_type_traits.h +1 -1
- data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.cc +10 -31
- data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.h +8 -8
- data/third_party/abseil-cpp/absl/strings/internal/str_format/bind.h +5 -20
- data/third_party/abseil-cpp/absl/strings/internal/str_format/constexpr_parser.h +1 -0
- data/third_party/abseil-cpp/absl/strings/internal/str_format/extension.h +1 -1
- data/third_party/abseil-cpp/absl/strings/internal/str_format/float_conversion.cc +9 -9
- data/third_party/abseil-cpp/absl/strings/internal/str_split_internal.h +56 -6
- data/third_party/abseil-cpp/absl/strings/match.cc +87 -0
- data/third_party/abseil-cpp/absl/strings/match.h +19 -0
- data/third_party/abseil-cpp/absl/strings/numbers.cc +154 -122
- data/third_party/abseil-cpp/absl/strings/numbers.h +1 -6
- data/third_party/abseil-cpp/absl/strings/str_cat.cc +7 -50
- data/third_party/abseil-cpp/absl/strings/str_cat.h +83 -15
- data/third_party/abseil-cpp/absl/strings/str_format.h +6 -3
- data/third_party/abseil-cpp/absl/strings/str_split.cc +9 -6
- data/third_party/abseil-cpp/absl/strings/string_view.cc +26 -4
- data/third_party/abseil-cpp/absl/synchronization/internal/create_thread_identity.cc +5 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/futex.h +63 -43
- data/third_party/abseil-cpp/absl/synchronization/internal/futex_waiter.cc +111 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/futex_waiter.h +63 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/graphcycles.cc +11 -7
- data/third_party/abseil-cpp/absl/synchronization/internal/kernel_timeout.cc +225 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/kernel_timeout.h +122 -114
- data/third_party/abseil-cpp/absl/synchronization/internal/per_thread_sem.cc +12 -8
- data/third_party/abseil-cpp/absl/synchronization/internal/per_thread_sem.h +10 -1
- data/third_party/abseil-cpp/absl/synchronization/internal/pthread_waiter.cc +167 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/pthread_waiter.h +60 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/sem_waiter.cc +122 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/sem_waiter.h +65 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/stdcpp_waiter.cc +91 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/stdcpp_waiter.h +56 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/waiter.h +19 -113
- data/third_party/abseil-cpp/absl/synchronization/internal/waiter_base.cc +42 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/waiter_base.h +90 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/win32_waiter.cc +151 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/win32_waiter.h +70 -0
- data/third_party/abseil-cpp/absl/synchronization/mutex.cc +407 -411
- data/third_party/abseil-cpp/absl/synchronization/mutex.h +152 -118
- data/third_party/abseil-cpp/absl/time/clock.cc +6 -7
- data/third_party/abseil-cpp/absl/time/duration.cc +24 -26
- data/third_party/abseil-cpp/absl/time/internal/cctz/include/cctz/time_zone.h +1 -0
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_fixed.cc +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_format.cc +3 -3
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_if.cc +8 -6
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_if.h +6 -3
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_impl.cc +4 -2
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_impl.h +4 -0
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_info.cc +322 -295
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_info.h +8 -17
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_libc.cc +51 -33
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_libc.h +7 -2
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_lookup.cc +128 -2
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_posix.h +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/tzfile.h +5 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/zone_info_source.cc +34 -34
- data/third_party/abseil-cpp/absl/time/time.cc +9 -2
- data/third_party/abseil-cpp/absl/time/time.h +115 -15
- data/third_party/abseil-cpp/absl/types/internal/optional.h +0 -52
- data/third_party/abseil-cpp/absl/types/internal/span.h +2 -2
- data/third_party/abseil-cpp/absl/types/internal/variant.h +2 -2
- data/third_party/abseil-cpp/absl/types/optional.h +15 -13
- data/third_party/abseil-cpp/absl/types/span.h +1 -2
- data/third_party/boringssl-with-bazel/err_data.c +554 -553
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_gentm.c +7 -3
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strex.c +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strnid.c +5 -5
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_time.c +34 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_utctm.c +11 -4
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio.c +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio_mem.c +7 -8
- data/third_party/boringssl-with-bazel/src/crypto/bio/connect.c +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/bio/errno.c +92 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/fd.c +5 -49
- data/third_party/boringssl-with-bazel/src/crypto/bio/file.c +18 -13
- data/third_party/boringssl-with-bazel/src/crypto/bio/internal.h +16 -6
- data/third_party/boringssl-with-bazel/src/crypto/bio/socket.c +4 -4
- data/third_party/boringssl-with-bazel/src/crypto/bio/socket_helper.c +11 -2
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbs.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/chacha/chacha.c +19 -1
- data/third_party/boringssl-with-bazel/src/crypto/chacha/internal.h +8 -1
- data/third_party/boringssl-with-bazel/src/crypto/conf/conf.c +31 -192
- data/third_party/boringssl-with-bazel/src/crypto/conf/conf_def.h +3 -7
- data/third_party/boringssl-with-bazel/src/crypto/conf/internal.h +8 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_apple.c +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_fuchsia.c +0 -1
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_linux.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_openbsd.c +0 -1
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_sysreg.c +93 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_win.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_freebsd.c +0 -1
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_linux.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519.c +49 -46
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_arm_openbsd.c → curve25519/curve25519_64_adx.c} +3 -16
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519_tables.h +2809 -7417
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/internal.h +27 -5
- data/third_party/boringssl-with-bazel/src/crypto/dh_extra/dh_asn1.c +4 -0
- data/third_party/boringssl-with-bazel/src/crypto/dh_extra/params.c +5 -0
- data/third_party/boringssl-with-bazel/src/crypto/dsa/internal.h +20 -0
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/ec_asn1.c +110 -72
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/ec_derive.c +4 -3
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/hash_to_curve.c +24 -28
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/internal.h +4 -6
- data/third_party/boringssl-with-bazel/src/crypto/err/err.c +23 -21
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp.c +35 -12
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ec.c +2 -4
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ec_asn1.c +3 -7
- data/third_party/boringssl-with-bazel/src/crypto/evp/pbkdf.c +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/evp/print.c +7 -6
- data/third_party/boringssl-with-bazel/src/crypto/ex_data.c +34 -72
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bcm.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/div.c +12 -5
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/gcd.c +5 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/internal.h +12 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery.c +17 -18
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery_inv.c +51 -15
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/rsaz_exp.c +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/delocate.h +5 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/check.c +37 -8
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/dh.c +38 -19
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/internal.h +9 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/builtin_curves.h +277 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec.c +180 -404
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_key.c +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_montgomery.c +24 -57
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/felem.c +17 -13
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/internal.h +33 -71
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/oct.c +18 -17
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p224-64.c +5 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256-nistz.c +15 -18
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256.c +9 -11
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/scalar.c +24 -24
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/simple.c +11 -27
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/simple_mul.c +8 -8
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/wnaf.c +4 -4
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/ecdsa.c +9 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/hkdf/hkdf.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/fork_detect.c +40 -26
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/internal.h +21 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/rand.c +38 -19
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/urandom.c +2 -29
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/internal.h +55 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa_impl.c +33 -52
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/self_check.c +42 -24
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/service_indicator/service_indicator.c +4 -7
- data/third_party/boringssl-with-bazel/src/crypto/hpke/hpke.c +7 -0
- data/third_party/boringssl-with-bazel/src/crypto/internal.h +211 -100
- data/third_party/boringssl-with-bazel/src/crypto/kyber/kyber.c +5 -4
- data/third_party/boringssl-with-bazel/src/crypto/mem.c +7 -8
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj.c +25 -46
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/internal.h +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/p5_pbev2.c +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8.c +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8_x509.c +8 -5
- data/third_party/boringssl-with-bazel/src/crypto/pool/internal.h +1 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/deterministic.c +7 -6
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/forkunsafe.c +6 -12
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/getentropy.c +52 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{fuchsia.c → ios.c} +8 -8
- data/third_party/boringssl-with-bazel/src/crypto/{refcount_no_threads.c → rand_extra/trusty.c} +15 -19
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/windows.c +41 -19
- data/third_party/boringssl-with-bazel/src/crypto/{refcount_c11.c → refcount.c} +11 -17
- data/third_party/boringssl-with-bazel/src/crypto/stack/stack.c +152 -72
- data/third_party/boringssl-with-bazel/src/crypto/thread_none.c +0 -8
- data/third_party/boringssl-with-bazel/src/crypto/thread_pthread.c +6 -35
- data/third_party/boringssl-with-bazel/src/crypto/thread_win.c +5 -26
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/pmbtoken.c +14 -18
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/voprf.c +54 -143
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_dir.c +8 -19
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_file.c +0 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_att.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_d2.c +1 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_lu.c +2 -4
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_req.c +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_trs.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_v3.c +8 -12
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vfy.c +19 -20
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509name.c +11 -15
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_crl.c +5 -5
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_name.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_pubkey.c +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_alt.c +2 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_lib.c +2 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/v3_purp.c +4 -6
- data/third_party/boringssl-with-bazel/src/include/openssl/arm_arch.h +4 -119
- data/third_party/boringssl-with-bazel/src/include/openssl/asm_base.h +207 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1.h +5 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/base.h +10 -116
- data/third_party/boringssl-with-bazel/src/include/openssl/bio.h +11 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/bn.h +0 -2
- data/third_party/boringssl-with-bazel/src/include/openssl/chacha.h +6 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/conf.h +5 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/dh.h +4 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/dsa.h +0 -21
- data/third_party/boringssl-with-bazel/src/include/openssl/ec.h +28 -11
- data/third_party/boringssl-with-bazel/src/include/openssl/ec_key.h +19 -6
- data/third_party/boringssl-with-bazel/src/include/openssl/evp.h +11 -7
- data/third_party/boringssl-with-bazel/src/include/openssl/hpke.h +6 -2
- data/third_party/boringssl-with-bazel/src/include/openssl/rand.h +13 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/rsa.h +0 -61
- data/third_party/boringssl-with-bazel/src/include/openssl/span.h +22 -20
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl.h +131 -81
- data/third_party/boringssl-with-bazel/src/include/openssl/stack.h +236 -213
- data/third_party/boringssl-with-bazel/src/include/openssl/target.h +201 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/thread.h +1 -29
- data/third_party/boringssl-with-bazel/src/include/openssl/x509.h +4 -8
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3.h +3 -2
- data/third_party/boringssl-with-bazel/src/ssl/extensions.cc +9 -65
- data/third_party/boringssl-with-bazel/src/ssl/handoff.cc +20 -20
- data/third_party/boringssl-with-bazel/src/ssl/handshake_server.cc +1 -1
- data/third_party/boringssl-with-bazel/src/ssl/internal.h +4 -11
- data/third_party/boringssl-with-bazel/src/ssl/ssl_cipher.cc +26 -20
- data/third_party/boringssl-with-bazel/src/ssl/ssl_file.cc +4 -4
- data/third_party/boringssl-with-bazel/src/ssl/ssl_key_share.cc +37 -30
- data/third_party/boringssl-with-bazel/src/ssl/ssl_lib.cc +127 -26
- data/third_party/boringssl-with-bazel/src/ssl/tls13_client.cc +2 -3
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_64_adx.h +691 -0
- data/third_party/upb/upb/collections/map.c +3 -3
- metadata +62 -39
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_attributes.cc +0 -42
- data/src/core/ext/filters/client_channel/lb_policy/xds/xds_attributes.h +0 -64
- data/src/core/ext/transport/chttp2/transport/stream_map.cc +0 -177
- data/src/core/ext/transport/chttp2/transport/stream_map.h +0 -68
- data/src/core/lib/promise/detail/basic_join.h +0 -197
- data/src/core/lib/promise/detail/switch.h +0 -1455
- data/src/core/lib/promise/try_join.h +0 -82
- data/third_party/abseil-cpp/absl/synchronization/internal/waiter.cc +0 -403
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_freebsd.c +0 -62
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm.c +0 -38
- data/third_party/boringssl-with-bazel/src/crypto/refcount_win.c +0 -89
- data/third_party/re2/util/benchmark.h +0 -156
- data/third_party/re2/util/flags.h +0 -26
- data/third_party/re2/util/malloc_counter.h +0 -19
- data/third_party/re2/util/pcre.cc +0 -1025
- data/third_party/re2/util/pcre.h +0 -681
- data/third_party/re2/util/test.h +0 -50
- data/third_party/upb/upb/mini_table.h +0 -36
- data/third_party/zlib/gzclose.c +0 -25
- data/third_party/zlib/gzlib.c +0 -639
- data/third_party/zlib/gzread.c +0 -650
- data/third_party/zlib/gzwrite.c +0 -677
|
@@ -159,27 +159,63 @@ static uint64_t bn_neg_inv_mod_r_u64(uint64_t n) {
|
|
|
159
159
|
return v;
|
|
160
160
|
}
|
|
161
161
|
|
|
162
|
-
int
|
|
163
|
-
|
|
164
|
-
assert(!
|
|
165
|
-
assert(
|
|
166
|
-
assert(
|
|
162
|
+
int bn_mont_ctx_set_RR_consttime(BN_MONT_CTX *mont, BN_CTX *ctx) {
|
|
163
|
+
assert(!BN_is_zero(&mont->N));
|
|
164
|
+
assert(!BN_is_negative(&mont->N));
|
|
165
|
+
assert(BN_is_odd(&mont->N));
|
|
166
|
+
assert(bn_minimal_width(&mont->N) == mont->N.width);
|
|
167
167
|
|
|
168
|
-
|
|
169
|
-
|
|
170
|
-
unsigned n_bits = BN_num_bits(n);
|
|
168
|
+
unsigned n_bits = BN_num_bits(&mont->N);
|
|
171
169
|
assert(n_bits != 0);
|
|
172
|
-
assert(p > n_bits);
|
|
173
170
|
if (n_bits == 1) {
|
|
174
|
-
|
|
171
|
+
BN_zero(&mont->RR);
|
|
172
|
+
return bn_resize_words(&mont->RR, mont->N.width);
|
|
175
173
|
}
|
|
176
174
|
|
|
177
|
-
|
|
178
|
-
|
|
179
|
-
|
|
180
|
-
|
|
175
|
+
unsigned lgBigR = mont->N.width * BN_BITS2;
|
|
176
|
+
assert(lgBigR >= n_bits);
|
|
177
|
+
|
|
178
|
+
// RR is R, or 2^lgBigR, in the Montgomery domain. We can compute 2 in the
|
|
179
|
+
// Montgomery domain, 2R or 2^(lgBigR+1), and then use Montgomery
|
|
180
|
+
// square-and-multiply to exponentiate.
|
|
181
|
+
//
|
|
182
|
+
// The multiply steps take 2^n R to 2^(n+1) R. It is faster to double
|
|
183
|
+
// the value instead. The square steps take 2^n R to 2^(2n) R. This is
|
|
184
|
+
// equivalent to doubling n times. When n is below some threshold, doubling is
|
|
185
|
+
// faster. When above, squaring is faster.
|
|
186
|
+
//
|
|
187
|
+
// We double to this threshold, then switch to Montgomery squaring. From
|
|
188
|
+
// benchmarking various 32-bit and 64-bit architectures, the word count seems
|
|
189
|
+
// to work well as a threshold. (Doubling scales linearly and Montgomery
|
|
190
|
+
// reduction scales quadratically, so the threshold should scale roughly
|
|
191
|
+
// linearly.)
|
|
192
|
+
unsigned threshold = mont->N.width;
|
|
193
|
+
unsigned iters;
|
|
194
|
+
for (iters = 0; iters < sizeof(lgBigR) * 8; iters++) {
|
|
195
|
+
if ((lgBigR >> iters) <= threshold) {
|
|
196
|
+
break;
|
|
197
|
+
}
|
|
198
|
+
}
|
|
199
|
+
|
|
200
|
+
// Compute 2^(lgBigR >> iters) R, or 2^((lgBigR >> iters) + lgBigR), by
|
|
201
|
+
// doubling. The first n_bits - 1 doubles can be skipped because we don't need
|
|
202
|
+
// to reduce.
|
|
203
|
+
if (!BN_set_bit(&mont->RR, n_bits - 1) ||
|
|
204
|
+
!bn_mod_lshift_consttime(&mont->RR, &mont->RR,
|
|
205
|
+
(lgBigR >> iters) + lgBigR - (n_bits - 1),
|
|
206
|
+
&mont->N, ctx)) {
|
|
181
207
|
return 0;
|
|
182
208
|
}
|
|
183
209
|
|
|
184
|
-
|
|
210
|
+
for (unsigned i = iters - 1; i < iters; i--) {
|
|
211
|
+
if (!BN_mod_mul_montgomery(&mont->RR, &mont->RR, &mont->RR, mont, ctx)) {
|
|
212
|
+
return 0;
|
|
213
|
+
}
|
|
214
|
+
if ((lgBigR & (1u << i)) != 0 &&
|
|
215
|
+
!bn_mod_lshift1_consttime(&mont->RR, &mont->RR, &mont->N, ctx)) {
|
|
216
|
+
return 0;
|
|
217
|
+
}
|
|
218
|
+
}
|
|
219
|
+
|
|
220
|
+
return bn_resize_words(&mont->RR, mont->N.width);
|
|
185
221
|
}
|
|
@@ -24,13 +24,13 @@
|
|
|
24
24
|
#include "../../internal.h"
|
|
25
25
|
|
|
26
26
|
|
|
27
|
-
//
|
|
28
|
-
alignas(64) static const BN_ULONG
|
|
27
|
+
// rsaz_one is 1 in RSAZ's representation.
|
|
28
|
+
alignas(64) static const BN_ULONG rsaz_one[40] = {
|
|
29
29
|
1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
|
|
30
30
|
0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0};
|
|
31
|
-
//
|
|
31
|
+
// rsaz_two80 is 2^80 in RSAZ's representation. Note RSAZ uses base 2^29, so this is
|
|
32
32
|
// 2^(29*2 + 22) = 2^80, not 2^(64*2 + 22).
|
|
33
|
-
alignas(64) static const BN_ULONG
|
|
33
|
+
alignas(64) static const BN_ULONG rsaz_two80[40] = {
|
|
34
34
|
0, 0, 1 << 22, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
|
|
35
35
|
0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0};
|
|
36
36
|
|
|
@@ -64,12 +64,12 @@ void RSAZ_1024_mod_exp_avx2(BN_ULONG result_norm[16],
|
|
|
64
64
|
// giving R = 2^(36*29) = 2^1044.
|
|
65
65
|
rsaz_1024_mul_avx2(R2, R2, R2, m, k0);
|
|
66
66
|
// R2 = 2^2048 * 2^2048 / 2^1044 = 2^3052
|
|
67
|
-
rsaz_1024_mul_avx2(R2, R2,
|
|
67
|
+
rsaz_1024_mul_avx2(R2, R2, rsaz_two80, m, k0);
|
|
68
68
|
// R2 = 2^3052 * 2^80 / 2^1044 = 2^2088 = (2^1044)^2
|
|
69
69
|
|
|
70
70
|
// table[0] = 1
|
|
71
71
|
// table[1] = a_inv^1
|
|
72
|
-
rsaz_1024_mul_avx2(result, R2,
|
|
72
|
+
rsaz_1024_mul_avx2(result, R2, rsaz_one, m, k0);
|
|
73
73
|
rsaz_1024_mul_avx2(a_inv, a_inv, R2, m, k0);
|
|
74
74
|
rsaz_1024_scatter5_avx2(table_s, result, 0);
|
|
75
75
|
rsaz_1024_scatter5_avx2(table_s, a_inv, 1);
|
|
@@ -125,7 +125,7 @@ void RSAZ_1024_mod_exp_avx2(BN_ULONG result_norm[16],
|
|
|
125
125
|
rsaz_1024_mul_avx2(result, result, a_inv, m, k0);
|
|
126
126
|
|
|
127
127
|
// Convert from Montgomery.
|
|
128
|
-
rsaz_1024_mul_avx2(result, result,
|
|
128
|
+
rsaz_1024_mul_avx2(result, result, rsaz_one, m, k0);
|
|
129
129
|
|
|
130
130
|
rsaz_1024_red2norm_avx2(result_norm, result);
|
|
131
131
|
BN_ULONG scratch[16];
|
|
@@ -27,9 +27,8 @@
|
|
|
27
27
|
type *name##_bss_get(void) __attribute__((const));
|
|
28
28
|
// For FIPS builds we require that CRYPTO_ONCE_INIT be zero.
|
|
29
29
|
#define DEFINE_STATIC_ONCE(name) DEFINE_BSS_GET(CRYPTO_once_t, name)
|
|
30
|
-
// For FIPS builds we require that
|
|
31
|
-
#define DEFINE_STATIC_MUTEX(name)
|
|
32
|
-
DEFINE_BSS_GET(struct CRYPTO_STATIC_MUTEX, name)
|
|
30
|
+
// For FIPS builds we require that CRYPTO_MUTEX_INIT be zero.
|
|
31
|
+
#define DEFINE_STATIC_MUTEX(name) DEFINE_BSS_GET(CRYPTO_MUTEX, name)
|
|
33
32
|
// For FIPS builds we require that CRYPTO_EX_DATA_CLASS_INIT be zero.
|
|
34
33
|
#define DEFINE_STATIC_EX_DATA_CLASS(name) \
|
|
35
34
|
DEFINE_BSS_GET(CRYPTO_EX_DATA_CLASS, name)
|
|
@@ -40,9 +39,9 @@
|
|
|
40
39
|
#define DEFINE_STATIC_ONCE(name) \
|
|
41
40
|
static CRYPTO_once_t name = CRYPTO_ONCE_INIT; \
|
|
42
41
|
static CRYPTO_once_t *name##_bss_get(void) { return &name; }
|
|
43
|
-
#define DEFINE_STATIC_MUTEX(name)
|
|
44
|
-
static
|
|
45
|
-
static
|
|
42
|
+
#define DEFINE_STATIC_MUTEX(name) \
|
|
43
|
+
static CRYPTO_MUTEX name = CRYPTO_MUTEX_INIT; \
|
|
44
|
+
static CRYPTO_MUTEX *name##_bss_get(void) { return &name; }
|
|
46
45
|
#define DEFINE_STATIC_EX_DATA_CLASS(name) \
|
|
47
46
|
static CRYPTO_EX_DATA_CLASS name = CRYPTO_EX_DATA_CLASS_INIT; \
|
|
48
47
|
static CRYPTO_EX_DATA_CLASS *name##_bss_get(void) { return &name; }
|
|
@@ -57,12 +57,40 @@
|
|
|
57
57
|
#include <openssl/dh.h>
|
|
58
58
|
|
|
59
59
|
#include <openssl/bn.h>
|
|
60
|
+
#include <openssl/err.h>
|
|
60
61
|
|
|
61
62
|
#include "internal.h"
|
|
62
63
|
|
|
63
64
|
|
|
65
|
+
int dh_check_params_fast(const DH *dh) {
|
|
66
|
+
// Most operations scale with p and q.
|
|
67
|
+
if (BN_is_negative(dh->p) || !BN_is_odd(dh->p) ||
|
|
68
|
+
BN_num_bits(dh->p) > OPENSSL_DH_MAX_MODULUS_BITS) {
|
|
69
|
+
OPENSSL_PUT_ERROR(DH, DH_R_INVALID_PARAMETERS);
|
|
70
|
+
return 0;
|
|
71
|
+
}
|
|
72
|
+
|
|
73
|
+
// q must be bounded by p.
|
|
74
|
+
if (dh->q != NULL && (BN_is_negative(dh->q) || BN_ucmp(dh->q, dh->p) > 0)) {
|
|
75
|
+
OPENSSL_PUT_ERROR(DH, DH_R_INVALID_PARAMETERS);
|
|
76
|
+
return 0;
|
|
77
|
+
}
|
|
78
|
+
|
|
79
|
+
// g must be an element of p's multiplicative group.
|
|
80
|
+
if (BN_is_negative(dh->g) || BN_is_zero(dh->g) ||
|
|
81
|
+
BN_ucmp(dh->g, dh->p) >= 0) {
|
|
82
|
+
OPENSSL_PUT_ERROR(DH, DH_R_INVALID_PARAMETERS);
|
|
83
|
+
return 0;
|
|
84
|
+
}
|
|
85
|
+
|
|
86
|
+
return 1;
|
|
87
|
+
}
|
|
88
|
+
|
|
64
89
|
int DH_check_pub_key(const DH *dh, const BIGNUM *pub_key, int *out_flags) {
|
|
65
90
|
*out_flags = 0;
|
|
91
|
+
if (!dh_check_params_fast(dh)) {
|
|
92
|
+
return 0;
|
|
93
|
+
}
|
|
66
94
|
|
|
67
95
|
BN_CTX *ctx = BN_CTX_new();
|
|
68
96
|
if (ctx == NULL) {
|
|
@@ -73,17 +101,14 @@ int DH_check_pub_key(const DH *dh, const BIGNUM *pub_key, int *out_flags) {
|
|
|
73
101
|
int ok = 0;
|
|
74
102
|
|
|
75
103
|
// Check |pub_key| is greater than 1.
|
|
76
|
-
|
|
77
|
-
if (tmp == NULL ||
|
|
78
|
-
!BN_set_word(tmp, 1)) {
|
|
79
|
-
goto err;
|
|
80
|
-
}
|
|
81
|
-
if (BN_cmp(pub_key, tmp) <= 0) {
|
|
104
|
+
if (BN_cmp(pub_key, BN_value_one()) <= 0) {
|
|
82
105
|
*out_flags |= DH_CHECK_PUBKEY_TOO_SMALL;
|
|
83
106
|
}
|
|
84
107
|
|
|
85
108
|
// Check |pub_key| is less than |dh->p| - 1.
|
|
86
|
-
|
|
109
|
+
BIGNUM *tmp = BN_CTX_get(ctx);
|
|
110
|
+
if (tmp == NULL ||
|
|
111
|
+
!BN_copy(tmp, dh->p) ||
|
|
87
112
|
!BN_sub_word(tmp, 1)) {
|
|
88
113
|
goto err;
|
|
89
114
|
}
|
|
@@ -113,6 +138,11 @@ err:
|
|
|
113
138
|
|
|
114
139
|
|
|
115
140
|
int DH_check(const DH *dh, int *out_flags) {
|
|
141
|
+
*out_flags = 0;
|
|
142
|
+
if (!dh_check_params_fast(dh)) {
|
|
143
|
+
return 0;
|
|
144
|
+
}
|
|
145
|
+
|
|
116
146
|
// Check that p is a safe prime and if g is 2, 3 or 5, check that it is a
|
|
117
147
|
// suitable generator where:
|
|
118
148
|
// for 2, p mod 24 == 11
|
|
@@ -124,7 +154,6 @@ int DH_check(const DH *dh, int *out_flags) {
|
|
|
124
154
|
BN_ULONG l;
|
|
125
155
|
BIGNUM *t1 = NULL, *t2 = NULL;
|
|
126
156
|
|
|
127
|
-
*out_flags = 0;
|
|
128
157
|
ctx = BN_CTX_new();
|
|
129
158
|
if (ctx == NULL) {
|
|
130
159
|
goto err;
|
|
@@ -70,8 +70,6 @@
|
|
|
70
70
|
#include "internal.h"
|
|
71
71
|
|
|
72
72
|
|
|
73
|
-
#define OPENSSL_DH_MAX_MODULUS_BITS 10000
|
|
74
|
-
|
|
75
73
|
DH *DH_new(void) {
|
|
76
74
|
DH *dh = OPENSSL_malloc(sizeof(DH));
|
|
77
75
|
if (dh == NULL) {
|
|
@@ -191,15 +189,14 @@ int DH_set_length(DH *dh, unsigned priv_length) {
|
|
|
191
189
|
int DH_generate_key(DH *dh) {
|
|
192
190
|
boringssl_ensure_ffdh_self_test();
|
|
193
191
|
|
|
192
|
+
if (!dh_check_params_fast(dh)) {
|
|
193
|
+
return 0;
|
|
194
|
+
}
|
|
195
|
+
|
|
194
196
|
int ok = 0;
|
|
195
197
|
int generate_new_key = 0;
|
|
196
198
|
BN_CTX *ctx = NULL;
|
|
197
|
-
BIGNUM *pub_key = NULL, *priv_key = NULL;
|
|
198
|
-
|
|
199
|
-
if (BN_num_bits(dh->p) > OPENSSL_DH_MAX_MODULUS_BITS) {
|
|
200
|
-
OPENSSL_PUT_ERROR(DH, DH_R_MODULUS_TOO_LARGE);
|
|
201
|
-
goto err;
|
|
202
|
-
}
|
|
199
|
+
BIGNUM *pub_key = NULL, *priv_key = NULL, *priv_key_limit = NULL;
|
|
203
200
|
|
|
204
201
|
ctx = BN_CTX_new();
|
|
205
202
|
if (ctx == NULL) {
|
|
@@ -232,22 +229,44 @@ int DH_generate_key(DH *dh) {
|
|
|
232
229
|
|
|
233
230
|
if (generate_new_key) {
|
|
234
231
|
if (dh->q) {
|
|
235
|
-
|
|
232
|
+
// Section 5.6.1.1.4 of SP 800-56A Rev3 generates a private key uniformly
|
|
233
|
+
// from [1, min(2^N-1, q-1)].
|
|
234
|
+
//
|
|
235
|
+
// Although SP 800-56A Rev3 now permits a private key length N,
|
|
236
|
+
// |dh->priv_length| historically was ignored when q is available. We
|
|
237
|
+
// continue to ignore it and interpret such a configuration as N = len(q).
|
|
238
|
+
if (!BN_rand_range_ex(priv_key, 1, dh->q)) {
|
|
236
239
|
goto err;
|
|
237
240
|
}
|
|
238
241
|
} else {
|
|
239
|
-
//
|
|
240
|
-
|
|
241
|
-
|
|
242
|
-
|
|
243
|
-
|
|
242
|
+
// If q is unspecified, we expect p to be a safe prime, with g generating
|
|
243
|
+
// the (p-1)/2 subgroup. So, we use q = (p-1)/2. (If g generates a smaller
|
|
244
|
+
// prime-order subgroup, q will still divide (p-1)/2.)
|
|
245
|
+
//
|
|
246
|
+
// We set N from |dh->priv_length|. Section 5.6.1.1.4 of SP 800-56A Rev3
|
|
247
|
+
// says to reject N > len(q), or N > num_bits(p) - 1. However, this logic
|
|
248
|
+
// originally aligned with PKCS#3, which allows num_bits(p). Instead, we
|
|
249
|
+
// clamp |dh->priv_length| before invoking the algorithm.
|
|
250
|
+
|
|
251
|
+
// Compute M = min(2^N, q).
|
|
252
|
+
priv_key_limit = BN_new();
|
|
253
|
+
if (priv_key_limit == NULL) {
|
|
254
|
+
goto err;
|
|
255
|
+
}
|
|
256
|
+
if (dh->priv_length == 0 || dh->priv_length >= BN_num_bits(dh->p) - 1) {
|
|
257
|
+
// M = q = (p - 1) / 2.
|
|
258
|
+
if (!BN_rshift1(priv_key_limit, dh->p)) {
|
|
259
|
+
goto err;
|
|
260
|
+
}
|
|
261
|
+
} else {
|
|
262
|
+
// M = 2^N.
|
|
263
|
+
if (!BN_set_bit(priv_key_limit, dh->priv_length)) {
|
|
244
264
|
goto err;
|
|
245
265
|
}
|
|
246
|
-
|
|
247
|
-
priv_bits = p_bits - 1;
|
|
248
266
|
}
|
|
249
267
|
|
|
250
|
-
|
|
268
|
+
// Choose a private key uniformly from [1, M-1].
|
|
269
|
+
if (!BN_rand_range_ex(priv_key, 1, priv_key_limit)) {
|
|
251
270
|
goto err;
|
|
252
271
|
}
|
|
253
272
|
}
|
|
@@ -273,14 +292,14 @@ err:
|
|
|
273
292
|
if (dh->priv_key == NULL) {
|
|
274
293
|
BN_free(priv_key);
|
|
275
294
|
}
|
|
295
|
+
BN_free(priv_key_limit);
|
|
276
296
|
BN_CTX_free(ctx);
|
|
277
297
|
return ok;
|
|
278
298
|
}
|
|
279
299
|
|
|
280
300
|
static int dh_compute_key(DH *dh, BIGNUM *out_shared_key,
|
|
281
301
|
const BIGNUM *peers_key, BN_CTX *ctx) {
|
|
282
|
-
if (
|
|
283
|
-
OPENSSL_PUT_ERROR(DH, DH_R_MODULUS_TOO_LARGE);
|
|
302
|
+
if (!dh_check_params_fast(dh)) {
|
|
284
303
|
return 0;
|
|
285
304
|
}
|
|
286
305
|
|
|
@@ -19,11 +19,15 @@
|
|
|
19
19
|
|
|
20
20
|
#include <openssl/thread.h>
|
|
21
21
|
|
|
22
|
+
#include "../../internal.h"
|
|
23
|
+
|
|
22
24
|
#if defined(__cplusplus)
|
|
23
25
|
extern "C" {
|
|
24
26
|
#endif
|
|
25
27
|
|
|
26
28
|
|
|
29
|
+
#define OPENSSL_DH_MAX_MODULUS_BITS 10000
|
|
30
|
+
|
|
27
31
|
struct dh_st {
|
|
28
32
|
BIGNUM *p;
|
|
29
33
|
BIGNUM *g;
|
|
@@ -42,6 +46,11 @@ struct dh_st {
|
|
|
42
46
|
CRYPTO_refcount_t references;
|
|
43
47
|
};
|
|
44
48
|
|
|
49
|
+
// dh_check_params_fast checks basic invariants on |dh|'s domain parameters. It
|
|
50
|
+
// does not check that |dh| forms a valid group, only that the sizes are within
|
|
51
|
+
// DoS bounds.
|
|
52
|
+
int dh_check_params_fast(const DH *dh);
|
|
53
|
+
|
|
45
54
|
// dh_compute_key_padded_no_self_test does the same as |DH_compute_key_padded|,
|
|
46
55
|
// but doesn't try to run the self-test first. This is for use in the self tests
|
|
47
56
|
// themselves, to prevent an infinite loop.
|
|
@@ -0,0 +1,277 @@
|
|
|
1
|
+
/* Copyright (c) 2023, Google Inc.
|
|
2
|
+
*
|
|
3
|
+
* Permission to use, copy, modify, and/or distribute this software for any
|
|
4
|
+
* purpose with or without fee is hereby granted, provided that the above
|
|
5
|
+
* copyright notice and this permission notice appear in all copies.
|
|
6
|
+
*
|
|
7
|
+
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
8
|
+
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
9
|
+
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
|
|
10
|
+
* SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
11
|
+
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
|
|
12
|
+
* OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
|
|
13
|
+
* CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
|
|
14
|
+
|
|
15
|
+
// This file is generated by make_tables.go.
|
|
16
|
+
|
|
17
|
+
// P-224
|
|
18
|
+
OPENSSL_UNUSED static const uint64_t kP224FieldN0 = 0xffffffffffffffff;
|
|
19
|
+
OPENSSL_UNUSED static const uint64_t kP224OrderN0 = 0xd6e242706a1fc2eb;
|
|
20
|
+
#if defined(OPENSSL_64_BIT)
|
|
21
|
+
OPENSSL_UNUSED static const uint64_t kP224Field[] = {
|
|
22
|
+
0x0000000000000001, 0xffffffff00000000, 0xffffffffffffffff,
|
|
23
|
+
0x00000000ffffffff};
|
|
24
|
+
OPENSSL_UNUSED static const uint64_t kP224Order[] = {
|
|
25
|
+
0x13dd29455c5c2a3d, 0xffff16a2e0b8f03e, 0xffffffffffffffff,
|
|
26
|
+
0x00000000ffffffff};
|
|
27
|
+
OPENSSL_UNUSED static const uint64_t kP224B[] = {
|
|
28
|
+
0x270b39432355ffb4, 0x5044b0b7d7bfd8ba, 0x0c04b3abf5413256,
|
|
29
|
+
0x00000000b4050a85};
|
|
30
|
+
OPENSSL_UNUSED static const uint64_t kP224GX[] = {
|
|
31
|
+
0x343280d6115c1d21, 0x4a03c1d356c21122, 0x6bb4bf7f321390b9,
|
|
32
|
+
0x00000000b70e0cbd};
|
|
33
|
+
OPENSSL_UNUSED static const uint64_t kP224GY[] = {
|
|
34
|
+
0x44d5819985007e34, 0xcd4375a05a074764, 0xb5f723fb4c22dfe6,
|
|
35
|
+
0x00000000bd376388};
|
|
36
|
+
OPENSSL_UNUSED static const uint64_t kP224FieldR[] = {
|
|
37
|
+
0xffffffff00000000, 0xffffffffffffffff, 0x0000000000000000,
|
|
38
|
+
0x0000000000000000};
|
|
39
|
+
OPENSSL_UNUSED static const uint64_t kP224FieldRR[] = {
|
|
40
|
+
0xffffffff00000001, 0xffffffff00000000, 0xfffffffe00000000,
|
|
41
|
+
0x00000000ffffffff};
|
|
42
|
+
OPENSSL_UNUSED static const uint64_t kP224OrderRR[] = {
|
|
43
|
+
0x29947a695f517d15, 0xabc8ff5931d63f4b, 0x6ad15f7cd9714856,
|
|
44
|
+
0x00000000b1e97961};
|
|
45
|
+
OPENSSL_UNUSED static const uint64_t kP224MontB[] = {
|
|
46
|
+
0xe768cdf663c059cd, 0x107ac2f3ccf01310, 0x3dceba98c8528151,
|
|
47
|
+
0x000000007fc02f93};
|
|
48
|
+
OPENSSL_UNUSED static const uint64_t kP224MontGX[] = {
|
|
49
|
+
0xbc9052266d0a4aea, 0x852597366018bfaa, 0x6dd3af9bf96bec05,
|
|
50
|
+
0x00000000a21b5e60};
|
|
51
|
+
OPENSSL_UNUSED static const uint64_t kP224MontGY[] = {
|
|
52
|
+
0x2edca1e5eff3ede8, 0xf8cd672b05335a6b, 0xaea9c5ae03dfe878,
|
|
53
|
+
0x00000000614786f1};
|
|
54
|
+
#elif defined(OPENSSL_32_BIT)
|
|
55
|
+
OPENSSL_UNUSED static const uint32_t kP224Field[] = {
|
|
56
|
+
0x00000001, 0x00000000, 0x00000000, 0xffffffff, 0xffffffff, 0xffffffff,
|
|
57
|
+
0xffffffff};
|
|
58
|
+
OPENSSL_UNUSED static const uint32_t kP224Order[] = {
|
|
59
|
+
0x5c5c2a3d, 0x13dd2945, 0xe0b8f03e, 0xffff16a2, 0xffffffff, 0xffffffff,
|
|
60
|
+
0xffffffff};
|
|
61
|
+
OPENSSL_UNUSED static const uint32_t kP224B[] = {
|
|
62
|
+
0x2355ffb4, 0x270b3943, 0xd7bfd8ba, 0x5044b0b7, 0xf5413256, 0x0c04b3ab,
|
|
63
|
+
0xb4050a85};
|
|
64
|
+
OPENSSL_UNUSED static const uint32_t kP224GX[] = {
|
|
65
|
+
0x115c1d21, 0x343280d6, 0x56c21122, 0x4a03c1d3, 0x321390b9, 0x6bb4bf7f,
|
|
66
|
+
0xb70e0cbd};
|
|
67
|
+
OPENSSL_UNUSED static const uint32_t kP224GY[] = {
|
|
68
|
+
0x85007e34, 0x44d58199, 0x5a074764, 0xcd4375a0, 0x4c22dfe6, 0xb5f723fb,
|
|
69
|
+
0xbd376388};
|
|
70
|
+
OPENSSL_UNUSED static const uint32_t kP224FieldR[] = {
|
|
71
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0x00000000, 0x00000000, 0x00000000,
|
|
72
|
+
0x00000000};
|
|
73
|
+
OPENSSL_UNUSED static const uint32_t kP224FieldRR[] = {
|
|
74
|
+
0x00000001, 0x00000000, 0x00000000, 0xfffffffe, 0xffffffff, 0xffffffff,
|
|
75
|
+
0x00000000};
|
|
76
|
+
OPENSSL_UNUSED static const uint32_t kP224OrderRR[] = {
|
|
77
|
+
0x3ad01289, 0x6bdaae6c, 0x97a54552, 0x6ad09d91, 0xb1e97961, 0x1822bc47,
|
|
78
|
+
0xd4baa4cf};
|
|
79
|
+
OPENSSL_UNUSED static const uint32_t kP224MontB[] = {
|
|
80
|
+
0xe768cdf7, 0xccf01310, 0x743b1cc0, 0xc8528150, 0x3dceba98, 0x7fc02f93,
|
|
81
|
+
0x9c3fa633};
|
|
82
|
+
OPENSSL_UNUSED static const uint32_t kP224MontGX[] = {
|
|
83
|
+
0xbc905227, 0x6018bfaa, 0xf22fe220, 0xf96bec04, 0x6dd3af9b, 0xa21b5e60,
|
|
84
|
+
0x92f5b516};
|
|
85
|
+
OPENSSL_UNUSED static const uint32_t kP224MontGY[] = {
|
|
86
|
+
0x2edca1e6, 0x05335a6b, 0xe8c15513, 0x03dfe878, 0xaea9c5ae, 0x614786f1,
|
|
87
|
+
0x100c1218};
|
|
88
|
+
#else
|
|
89
|
+
#error "unknown word size"
|
|
90
|
+
#endif
|
|
91
|
+
|
|
92
|
+
// P-256
|
|
93
|
+
OPENSSL_UNUSED static const uint64_t kP256FieldN0 = 0x0000000000000001;
|
|
94
|
+
OPENSSL_UNUSED static const uint64_t kP256OrderN0 = 0xccd1c8aaee00bc4f;
|
|
95
|
+
#if defined(OPENSSL_64_BIT)
|
|
96
|
+
OPENSSL_UNUSED static const uint64_t kP256Field[] = {
|
|
97
|
+
0xffffffffffffffff, 0x00000000ffffffff, 0x0000000000000000,
|
|
98
|
+
0xffffffff00000001};
|
|
99
|
+
OPENSSL_UNUSED static const uint64_t kP256Order[] = {
|
|
100
|
+
0xf3b9cac2fc632551, 0xbce6faada7179e84, 0xffffffffffffffff,
|
|
101
|
+
0xffffffff00000000};
|
|
102
|
+
OPENSSL_UNUSED static const uint64_t kP256FieldR[] = {
|
|
103
|
+
0x0000000000000001, 0xffffffff00000000, 0xffffffffffffffff,
|
|
104
|
+
0x00000000fffffffe};
|
|
105
|
+
OPENSSL_UNUSED static const uint64_t kP256FieldRR[] = {
|
|
106
|
+
0x0000000000000003, 0xfffffffbffffffff, 0xfffffffffffffffe,
|
|
107
|
+
0x00000004fffffffd};
|
|
108
|
+
OPENSSL_UNUSED static const uint64_t kP256OrderRR[] = {
|
|
109
|
+
0x83244c95be79eea2, 0x4699799c49bd6fa6, 0x2845b2392b6bec59,
|
|
110
|
+
0x66e12d94f3d95620};
|
|
111
|
+
OPENSSL_UNUSED static const uint64_t kP256MontB[] = {
|
|
112
|
+
0xd89cdf6229c4bddf, 0xacf005cd78843090, 0xe5a220abf7212ed6,
|
|
113
|
+
0xdc30061d04874834};
|
|
114
|
+
OPENSSL_UNUSED static const uint64_t kP256MontGX[] = {
|
|
115
|
+
0x79e730d418a9143c, 0x75ba95fc5fedb601, 0x79fb732b77622510,
|
|
116
|
+
0x18905f76a53755c6};
|
|
117
|
+
OPENSSL_UNUSED static const uint64_t kP256MontGY[] = {
|
|
118
|
+
0xddf25357ce95560a, 0x8b4ab8e4ba19e45c, 0xd2e88688dd21f325,
|
|
119
|
+
0x8571ff1825885d85};
|
|
120
|
+
#elif defined(OPENSSL_32_BIT)
|
|
121
|
+
OPENSSL_UNUSED static const uint32_t kP256Field[] = {
|
|
122
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0x00000000, 0x00000000, 0x00000000,
|
|
123
|
+
0x00000001, 0xffffffff};
|
|
124
|
+
OPENSSL_UNUSED static const uint32_t kP256Order[] = {
|
|
125
|
+
0xfc632551, 0xf3b9cac2, 0xa7179e84, 0xbce6faad, 0xffffffff, 0xffffffff,
|
|
126
|
+
0x00000000, 0xffffffff};
|
|
127
|
+
OPENSSL_UNUSED static const uint32_t kP256FieldR[] = {
|
|
128
|
+
0x00000001, 0x00000000, 0x00000000, 0xffffffff, 0xffffffff, 0xffffffff,
|
|
129
|
+
0xfffffffe, 0x00000000};
|
|
130
|
+
OPENSSL_UNUSED static const uint32_t kP256FieldRR[] = {
|
|
131
|
+
0x00000003, 0x00000000, 0xffffffff, 0xfffffffb, 0xfffffffe, 0xffffffff,
|
|
132
|
+
0xfffffffd, 0x00000004};
|
|
133
|
+
OPENSSL_UNUSED static const uint32_t kP256OrderRR[] = {
|
|
134
|
+
0xbe79eea2, 0x83244c95, 0x49bd6fa6, 0x4699799c, 0x2b6bec59, 0x2845b239,
|
|
135
|
+
0xf3d95620, 0x66e12d94};
|
|
136
|
+
OPENSSL_UNUSED static const uint32_t kP256MontB[] = {
|
|
137
|
+
0x29c4bddf, 0xd89cdf62, 0x78843090, 0xacf005cd, 0xf7212ed6, 0xe5a220ab,
|
|
138
|
+
0x04874834, 0xdc30061d};
|
|
139
|
+
OPENSSL_UNUSED static const uint32_t kP256MontGX[] = {
|
|
140
|
+
0x18a9143c, 0x79e730d4, 0x5fedb601, 0x75ba95fc, 0x77622510, 0x79fb732b,
|
|
141
|
+
0xa53755c6, 0x18905f76};
|
|
142
|
+
OPENSSL_UNUSED static const uint32_t kP256MontGY[] = {
|
|
143
|
+
0xce95560a, 0xddf25357, 0xba19e45c, 0x8b4ab8e4, 0xdd21f325, 0xd2e88688,
|
|
144
|
+
0x25885d85, 0x8571ff18};
|
|
145
|
+
#else
|
|
146
|
+
#error "unknown word size"
|
|
147
|
+
#endif
|
|
148
|
+
|
|
149
|
+
// P-384
|
|
150
|
+
OPENSSL_UNUSED static const uint64_t kP384FieldN0 = 0x0000000100000001;
|
|
151
|
+
OPENSSL_UNUSED static const uint64_t kP384OrderN0 = 0x6ed46089e88fdc45;
|
|
152
|
+
#if defined(OPENSSL_64_BIT)
|
|
153
|
+
OPENSSL_UNUSED static const uint64_t kP384Field[] = {
|
|
154
|
+
0x00000000ffffffff, 0xffffffff00000000, 0xfffffffffffffffe,
|
|
155
|
+
0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff};
|
|
156
|
+
OPENSSL_UNUSED static const uint64_t kP384Order[] = {
|
|
157
|
+
0xecec196accc52973, 0x581a0db248b0a77a, 0xc7634d81f4372ddf,
|
|
158
|
+
0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff};
|
|
159
|
+
OPENSSL_UNUSED static const uint64_t kP384FieldR[] = {
|
|
160
|
+
0xffffffff00000001, 0x00000000ffffffff, 0x0000000000000001,
|
|
161
|
+
0x0000000000000000, 0x0000000000000000, 0x0000000000000000};
|
|
162
|
+
OPENSSL_UNUSED static const uint64_t kP384FieldRR[] = {
|
|
163
|
+
0xfffffffe00000001, 0x0000000200000000, 0xfffffffe00000000,
|
|
164
|
+
0x0000000200000000, 0x0000000000000001, 0x0000000000000000};
|
|
165
|
+
OPENSSL_UNUSED static const uint64_t kP384OrderRR[] = {
|
|
166
|
+
0x2d319b2419b409a9, 0xff3d81e5df1aa419, 0xbc3e483afcb82947,
|
|
167
|
+
0xd40d49174aab1cc5, 0x3fb05b7a28266895, 0x0c84ee012b39bf21};
|
|
168
|
+
OPENSSL_UNUSED static const uint64_t kP384MontB[] = {
|
|
169
|
+
0x081188719d412dcc, 0xf729add87a4c32ec, 0x77f2209b1920022e,
|
|
170
|
+
0xe3374bee94938ae2, 0xb62b21f41f022094, 0xcd08114b604fbff9};
|
|
171
|
+
OPENSSL_UNUSED static const uint64_t kP384MontGX[] = {
|
|
172
|
+
0x3dd0756649c0b528, 0x20e378e2a0d6ce38, 0x879c3afc541b4d6e,
|
|
173
|
+
0x6454868459a30eff, 0x812ff723614ede2b, 0x4d3aadc2299e1513};
|
|
174
|
+
OPENSSL_UNUSED static const uint64_t kP384MontGY[] = {
|
|
175
|
+
0x23043dad4b03a4fe, 0xa1bfa8bf7bb4a9ac, 0x8bade7562e83b050,
|
|
176
|
+
0xc6c3521968f4ffd9, 0xdd8002263969a840, 0x2b78abc25a15c5e9};
|
|
177
|
+
#elif defined(OPENSSL_32_BIT)
|
|
178
|
+
OPENSSL_UNUSED static const uint32_t kP384Field[] = {
|
|
179
|
+
0xffffffff, 0x00000000, 0x00000000, 0xffffffff, 0xfffffffe, 0xffffffff,
|
|
180
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff};
|
|
181
|
+
OPENSSL_UNUSED static const uint32_t kP384Order[] = {
|
|
182
|
+
0xccc52973, 0xecec196a, 0x48b0a77a, 0x581a0db2, 0xf4372ddf, 0xc7634d81,
|
|
183
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff};
|
|
184
|
+
OPENSSL_UNUSED static const uint32_t kP384FieldR[] = {
|
|
185
|
+
0x00000001, 0xffffffff, 0xffffffff, 0x00000000, 0x00000001, 0x00000000,
|
|
186
|
+
0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000};
|
|
187
|
+
OPENSSL_UNUSED static const uint32_t kP384FieldRR[] = {
|
|
188
|
+
0x00000001, 0xfffffffe, 0x00000000, 0x00000002, 0x00000000, 0xfffffffe,
|
|
189
|
+
0x00000000, 0x00000002, 0x00000001, 0x00000000, 0x00000000, 0x00000000};
|
|
190
|
+
OPENSSL_UNUSED static const uint32_t kP384OrderRR[] = {
|
|
191
|
+
0x19b409a9, 0x2d319b24, 0xdf1aa419, 0xff3d81e5, 0xfcb82947, 0xbc3e483a,
|
|
192
|
+
0x4aab1cc5, 0xd40d4917, 0x28266895, 0x3fb05b7a, 0x2b39bf21, 0x0c84ee01};
|
|
193
|
+
OPENSSL_UNUSED static const uint32_t kP384MontB[] = {
|
|
194
|
+
0x9d412dcc, 0x08118871, 0x7a4c32ec, 0xf729add8, 0x1920022e, 0x77f2209b,
|
|
195
|
+
0x94938ae2, 0xe3374bee, 0x1f022094, 0xb62b21f4, 0x604fbff9, 0xcd08114b};
|
|
196
|
+
OPENSSL_UNUSED static const uint32_t kP384MontGX[] = {
|
|
197
|
+
0x49c0b528, 0x3dd07566, 0xa0d6ce38, 0x20e378e2, 0x541b4d6e, 0x879c3afc,
|
|
198
|
+
0x59a30eff, 0x64548684, 0x614ede2b, 0x812ff723, 0x299e1513, 0x4d3aadc2};
|
|
199
|
+
OPENSSL_UNUSED static const uint32_t kP384MontGY[] = {
|
|
200
|
+
0x4b03a4fe, 0x23043dad, 0x7bb4a9ac, 0xa1bfa8bf, 0x2e83b050, 0x8bade756,
|
|
201
|
+
0x68f4ffd9, 0xc6c35219, 0x3969a840, 0xdd800226, 0x5a15c5e9, 0x2b78abc2};
|
|
202
|
+
#else
|
|
203
|
+
#error "unknown word size"
|
|
204
|
+
#endif
|
|
205
|
+
|
|
206
|
+
// P-521
|
|
207
|
+
OPENSSL_UNUSED static const uint64_t kP521FieldN0 = 0x0000000000000001;
|
|
208
|
+
OPENSSL_UNUSED static const uint64_t kP521OrderN0 = 0x1d2f5ccd79a995c7;
|
|
209
|
+
#if defined(OPENSSL_64_BIT)
|
|
210
|
+
OPENSSL_UNUSED static const uint64_t kP521Field[] = {
|
|
211
|
+
0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff,
|
|
212
|
+
0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff,
|
|
213
|
+
0xffffffffffffffff, 0xffffffffffffffff, 0x00000000000001ff};
|
|
214
|
+
OPENSSL_UNUSED static const uint64_t kP521Order[] = {
|
|
215
|
+
0xbb6fb71e91386409, 0x3bb5c9b8899c47ae, 0x7fcc0148f709a5d0,
|
|
216
|
+
0x51868783bf2f966b, 0xfffffffffffffffa, 0xffffffffffffffff,
|
|
217
|
+
0xffffffffffffffff, 0xffffffffffffffff, 0x00000000000001ff};
|
|
218
|
+
OPENSSL_UNUSED static const uint64_t kP521FieldR[] = {
|
|
219
|
+
0x0080000000000000, 0x0000000000000000, 0x0000000000000000,
|
|
220
|
+
0x0000000000000000, 0x0000000000000000, 0x0000000000000000,
|
|
221
|
+
0x0000000000000000, 0x0000000000000000, 0x0000000000000000};
|
|
222
|
+
OPENSSL_UNUSED static const uint64_t kP521FieldRR[] = {
|
|
223
|
+
0x0000000000000000, 0x0000400000000000, 0x0000000000000000,
|
|
224
|
+
0x0000000000000000, 0x0000000000000000, 0x0000000000000000,
|
|
225
|
+
0x0000000000000000, 0x0000000000000000, 0x0000000000000000};
|
|
226
|
+
OPENSSL_UNUSED static const uint64_t kP521OrderRR[] = {
|
|
227
|
+
0x137cd04dcf15dd04, 0xf707badce5547ea3, 0x12a78d38794573ff,
|
|
228
|
+
0xd3721ef557f75e06, 0xdd6e23d82e49c7db, 0xcff3d142b7756e3e,
|
|
229
|
+
0x5bcc6d61a8e567bc, 0x2d8e03d1492d0d45, 0x000000000000003d};
|
|
230
|
+
OPENSSL_UNUSED static const uint64_t kP521MontB[] = {
|
|
231
|
+
0x8014654fae586387, 0x78f7a28fea35a81f, 0x839ab9efc41e961a,
|
|
232
|
+
0xbd8b29605e9dd8df, 0xf0ab0c9ca8f63f49, 0xf9dc5a44c8c77884,
|
|
233
|
+
0x77516d392dccd98a, 0x0fc94d10d05b42a0, 0x000000000000004d};
|
|
234
|
+
OPENSSL_UNUSED static const uint64_t kP521MontGX[] = {
|
|
235
|
+
0xb331a16381adc101, 0x4dfcbf3f18e172de, 0x6f19a459e0c2b521,
|
|
236
|
+
0x947f0ee093d17fd4, 0xdd50a5af3bf7f3ac, 0x90fc1457b035a69e,
|
|
237
|
+
0x214e32409c829fda, 0xe6cf1f65b311cada, 0x0000000000000074};
|
|
238
|
+
OPENSSL_UNUSED static const uint64_t kP521MontGY[] = {
|
|
239
|
+
0x28460e4a5a9e268e, 0x20445f4a3b4fe8b3, 0xb09a9e3843513961,
|
|
240
|
+
0x2062a85c809fd683, 0x164bf7394caf7a13, 0x340bd7de8b939f33,
|
|
241
|
+
0xeccc7aa224abcda2, 0x022e452fda163e8d, 0x00000000000001e0};
|
|
242
|
+
#elif defined(OPENSSL_32_BIT)
|
|
243
|
+
OPENSSL_UNUSED static const uint32_t kP521Field[] = {
|
|
244
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff,
|
|
245
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff,
|
|
246
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0x000001ff};
|
|
247
|
+
OPENSSL_UNUSED static const uint32_t kP521Order[] = {
|
|
248
|
+
0x91386409, 0xbb6fb71e, 0x899c47ae, 0x3bb5c9b8, 0xf709a5d0, 0x7fcc0148,
|
|
249
|
+
0xbf2f966b, 0x51868783, 0xfffffffa, 0xffffffff, 0xffffffff, 0xffffffff,
|
|
250
|
+
0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff, 0x000001ff};
|
|
251
|
+
OPENSSL_UNUSED static const uint32_t kP521FieldR[] = {
|
|
252
|
+
0x00800000, 0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000,
|
|
253
|
+
0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000,
|
|
254
|
+
0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000};
|
|
255
|
+
OPENSSL_UNUSED static const uint32_t kP521FieldRR[] = {
|
|
256
|
+
0x00000000, 0x00004000, 0x00000000, 0x00000000, 0x00000000, 0x00000000,
|
|
257
|
+
0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000,
|
|
258
|
+
0x00000000, 0x00000000, 0x00000000, 0x00000000, 0x00000000};
|
|
259
|
+
OPENSSL_UNUSED static const uint32_t kP521OrderRR[] = {
|
|
260
|
+
0x61c64ca7, 0x1163115a, 0x4374a642, 0x18354a56, 0x0791d9dc, 0x5d4dd6d3,
|
|
261
|
+
0xd3402705, 0x4fb35b72, 0xb7756e3a, 0xcff3d142, 0xa8e567bc, 0x5bcc6d61,
|
|
262
|
+
0x492d0d45, 0x2d8e03d1, 0x8c44383d, 0x5b5a3afe, 0x0000019a};
|
|
263
|
+
OPENSSL_UNUSED static const uint32_t kP521MontB[] = {
|
|
264
|
+
0x8014654f, 0xea35a81f, 0x78f7a28f, 0xc41e961a, 0x839ab9ef, 0x5e9dd8df,
|
|
265
|
+
0xbd8b2960, 0xa8f63f49, 0xf0ab0c9c, 0xc8c77884, 0xf9dc5a44, 0x2dccd98a,
|
|
266
|
+
0x77516d39, 0xd05b42a0, 0x0fc94d10, 0xb0c70e4d, 0x0000015c};
|
|
267
|
+
OPENSSL_UNUSED static const uint32_t kP521MontGX[] = {
|
|
268
|
+
0xb331a163, 0x18e172de, 0x4dfcbf3f, 0xe0c2b521, 0x6f19a459, 0x93d17fd4,
|
|
269
|
+
0x947f0ee0, 0x3bf7f3ac, 0xdd50a5af, 0xb035a69e, 0x90fc1457, 0x9c829fda,
|
|
270
|
+
0x214e3240, 0xb311cada, 0xe6cf1f65, 0x5b820274, 0x00000103};
|
|
271
|
+
OPENSSL_UNUSED static const uint32_t kP521MontGY[] = {
|
|
272
|
+
0x28460e4a, 0x3b4fe8b3, 0x20445f4a, 0x43513961, 0xb09a9e38, 0x809fd683,
|
|
273
|
+
0x2062a85c, 0x4caf7a13, 0x164bf739, 0x8b939f33, 0x340bd7de, 0x24abcda2,
|
|
274
|
+
0xeccc7aa2, 0xda163e8d, 0x022e452f, 0x3c4d1de0, 0x000000b5};
|
|
275
|
+
#else
|
|
276
|
+
#error "unknown word size"
|
|
277
|
+
#endif
|