grpc 1.61.3 → 1.62.0.pre1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/Makefile +218 -196
- data/include/grpc/event_engine/event_engine.h +5 -43
- data/include/grpc/event_engine/extensible.h +68 -0
- data/include/grpc/impl/slice_type.h +1 -1
- data/include/grpc/support/port_platform.h +12 -20
- data/src/core/{ext/filters/client_channel → client_channel}/backend_metric.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/backend_metric.h +4 -4
- data/src/core/{ext/filters/client_channel → client_channel}/backup_poller.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/backup_poller.h +3 -3
- data/src/core/{ext/filters/client_channel → client_channel}/channel_connectivity.cc +11 -11
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_channelz.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_channelz.h +3 -3
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_factory.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_factory.h +4 -4
- data/src/core/{ext/filters/client_channel/client_channel.cc → client_channel/client_channel_filter.cc} +247 -231
- data/src/core/{ext/filters/client_channel/client_channel.h → client_channel/client_channel_filter.h} +42 -42
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_internal.h +6 -6
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_plugin.cc +5 -5
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_service_config.cc +2 -2
- data/src/core/{ext/filters/client_channel → client_channel}/client_channel_service_config.h +5 -5
- data/src/core/{ext/filters/client_channel → client_channel}/config_selector.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/config_selector.h +5 -5
- data/src/core/{ext/filters/client_channel → client_channel}/connector.h +3 -3
- data/src/core/{ext/filters/client_channel → client_channel}/dynamic_filters.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/dynamic_filters.h +3 -3
- data/src/core/{ext/filters/client_channel → client_channel}/global_subchannel_pool.cc +2 -2
- data/src/core/{ext/filters/client_channel → client_channel}/global_subchannel_pool.h +4 -4
- data/src/core/{ext/filters/client_channel → client_channel}/http_proxy_mapper.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/http_proxy_mapper.h +3 -3
- data/src/core/{ext/filters/client_channel → client_channel}/local_subchannel_pool.cc +2 -2
- data/src/core/{ext/filters/client_channel → client_channel}/local_subchannel_pool.h +4 -4
- data/src/core/{ext/filters/client_channel → client_channel}/retry_filter.cc +8 -8
- data/src/core/{ext/filters/client_channel → client_channel}/retry_filter.h +8 -8
- data/src/core/{ext/filters/client_channel → client_channel}/retry_filter_legacy_call_data.cc +12 -9
- data/src/core/{ext/filters/client_channel → client_channel}/retry_filter_legacy_call_data.h +11 -10
- data/src/core/{ext/filters/client_channel → client_channel}/retry_service_config.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/retry_service_config.h +4 -4
- data/src/core/{ext/filters/client_channel → client_channel}/retry_throttle.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/retry_throttle.h +3 -3
- data/src/core/{ext/filters/client_channel → client_channel}/service_config_channel_arg_filter.cc +4 -4
- data/src/core/{ext/filters/client_channel → client_channel}/subchannel.cc +2 -2
- data/src/core/{ext/filters/client_channel → client_channel}/subchannel.h +6 -6
- data/src/core/{ext/filters/client_channel → client_channel}/subchannel_interface_internal.h +5 -5
- data/src/core/{ext/filters/client_channel → client_channel}/subchannel_pool_interface.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/subchannel_pool_interface.h +3 -3
- data/src/core/{ext/filters/client_channel → client_channel}/subchannel_stream_client.cc +1 -1
- data/src/core/{ext/filters/client_channel → client_channel}/subchannel_stream_client.h +4 -4
- data/src/core/ext/filters/backend_metrics/backend_metric_filter.cc +1 -1
- data/src/core/ext/filters/fault_injection/fault_injection_filter.cc +1 -1
- data/src/core/ext/filters/fault_injection/fault_injection_service_config_parser.h +1 -1
- data/src/core/ext/filters/http/message_compress/legacy_compression_filter.cc +2 -2
- data/src/core/ext/filters/http/server/http_server_filter.cc +1 -1
- data/src/core/ext/filters/message_size/message_size_filter.cc +3 -3
- data/src/core/ext/filters/message_size/message_size_filter.h +1 -1
- data/src/core/ext/filters/rbac/rbac_filter.cc +1 -1
- data/src/core/ext/filters/rbac/rbac_service_config_parser.h +1 -1
- data/src/core/ext/filters/server_config_selector/server_config_selector.h +2 -2
- data/src/core/ext/filters/server_config_selector/server_config_selector_filter.cc +2 -2
- data/src/core/ext/filters/stateful_session/stateful_session_filter.cc +2 -2
- data/src/core/ext/filters/stateful_session/stateful_session_filter.h +1 -1
- data/src/core/ext/filters/stateful_session/stateful_session_service_config_parser.h +1 -1
- data/src/core/ext/transport/chttp2/alpn/alpn.cc +4 -1
- data/src/core/ext/transport/chttp2/client/chttp2_connector.cc +5 -5
- data/src/core/ext/transport/chttp2/client/chttp2_connector.h +1 -1
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.cc +1 -0
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.h +5 -0
- data/src/core/ext/transport/chttp2/transport/hpack_parser.cc +27 -36
- data/src/core/ext/transport/chttp2/transport/hpack_parser.h +3 -3
- data/src/core/ext/transport/chttp2/transport/hpack_parser_table.h +3 -1
- data/src/core/ext/transport/inproc/inproc_transport.cc +20 -13
- data/src/core/ext/transport/inproc/inproc_transport.h +8 -0
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb.h +351 -164
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb_minitable.c +89 -50
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb_minitable.h +2 -0
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb.h +47 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb_minitable.c +15 -7
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/filter.upb.h +32 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/filter.upb_minitable.c +8 -5
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/outlier_detection.upb.h +28 -0
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/outlier_detection.upb_minitable.c +6 -4
- data/src/core/ext/upb-gen/envoy/config/common/matcher/v3/matcher.upb.h +0 -1
- data/src/core/ext/upb-gen/envoy/config/common/matcher/v3/matcher.upb_minitable.c +0 -1
- data/src/core/ext/upb-gen/envoy/config/core/v3/address.upb.h +29 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/address.upb_minitable.c +7 -4
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb.h +17 -1
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb_minitable.c +4 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb.h +166 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb_minitable.c +55 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb_minitable.h +30 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb.h +30 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb_minitable.c +7 -5
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb.h +99 -19
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb_minitable.c +29 -12
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint.upb.h +15 -0
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint.upb_minitable.c +4 -3
- data/src/core/ext/upb-gen/envoy/config/route/v3/route.upb.h +31 -3
- data/src/core/ext/upb-gen/envoy/config/route/v3/route.upb_minitable.c +22 -4
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb.h +91 -3
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb_minitable.c +11 -8
- data/src/core/ext/upb-gen/envoy/config/tap/v3/common.upb.h +30 -0
- data/src/core/ext/upb-gen/envoy/config/tap/v3/common.upb_minitable.c +7 -4
- data/src/core/ext/upb-gen/envoy/config/trace/v3/dynamic_ot.upb.h +1 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/dynamic_ot.upb_minitable.c +1 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opentelemetry.upb.h +125 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opentelemetry.upb_minitable.c +17 -4
- data/src/core/ext/upb-gen/envoy/data/accesslog/v3/accesslog.upb.h +19 -1
- data/src/core/ext/upb-gen/envoy/data/accesslog/v3/accesslog.upb_minitable.c +4 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/router/v3/router.upb.h +1 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/router/v3/router.upb_minitable.c +1 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upb.h +15 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upb_minitable.c +5 -2
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h +42 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb_minitable.c +11 -8
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb.h +23 -8
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb_minitable.c +9 -4
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb.h +58 -16
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb_minitable.c +14 -11
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb.h +15 -0
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb_minitable.c +7 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb.h +129 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb_minitable.c +27 -6
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/cel.upb.h +15 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/cel.upb_minitable.c +5 -2
- data/src/core/ext/upbdefs-gen/envoy/config/accesslog/v3/accesslog.upbdefs.c +60 -60
- data/src/core/ext/upbdefs-gen/envoy/config/bootstrap/v3/bootstrap.upbdefs.c +278 -256
- data/src/core/ext/upbdefs-gen/envoy/config/bootstrap/v3/bootstrap.upbdefs.h +10 -0
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/cluster.upbdefs.c +483 -475
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/filter.upbdefs.c +27 -20
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/outlier_detection.upbdefs.c +17 -12
- data/src/core/ext/upbdefs-gen/envoy/config/common/matcher/v3/matcher.upbdefs.c +157 -161
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/address.upbdefs.c +105 -97
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/base.upbdefs.c +106 -102
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/http_service.upbdefs.c +52 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/http_service.upbdefs.h +35 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/http_uri.upbdefs.c +14 -13
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/protocol.upbdefs.c +228 -224
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/substitution_format_string.upbdefs.c +32 -26
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/substitution_format_string.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/endpoint.upbdefs.c +31 -28
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route.upbdefs.c +22 -19
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route_components.upbdefs.c +818 -813
- data/src/core/ext/upbdefs-gen/envoy/config/tap/v3/common.upbdefs.c +158 -151
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/dynamic_ot.upbdefs.c +27 -23
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opencensus.upbdefs.c +59 -53
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opentelemetry.upbdefs.c +40 -18
- data/src/core/ext/upbdefs-gen/envoy/data/accesslog/v3/accesslog.upbdefs.c +106 -103
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/router/v3/router.upbdefs.c +16 -12
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upbdefs.c +22 -21
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.c +265 -261
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.c +127 -125
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/tls.upbdefs.c +188 -182
- data/src/core/ext/upbdefs-gen/envoy/service/status/v3/csds.upbdefs.c +57 -56
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/value.upbdefs.c +27 -20
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/value.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/cel.upbdefs.c +10 -8
- data/src/core/ext/xds/xds_api.cc +63 -150
- data/src/core/ext/xds/xds_api.h +2 -7
- data/src/core/ext/xds/xds_bootstrap.h +3 -4
- data/src/core/ext/xds/xds_bootstrap_grpc.cc +4 -15
- data/src/core/ext/xds/xds_bootstrap_grpc.h +2 -1
- data/src/core/ext/xds/xds_client.cc +111 -59
- data/src/core/ext/xds/xds_client.h +20 -15
- data/src/core/ext/xds/xds_client_grpc.cc +53 -15
- data/src/core/ext/xds/xds_client_grpc.h +4 -1
- data/src/core/ext/xds/xds_client_stats.cc +11 -11
- data/src/core/ext/xds/xds_client_stats.h +8 -13
- data/src/core/ext/xds/xds_cluster.cc +1 -1
- data/src/core/ext/xds/xds_cluster.h +1 -1
- data/src/core/ext/xds/xds_endpoint.h +1 -1
- data/src/core/ext/xds/xds_health_status.h +1 -1
- data/src/core/ext/xds/xds_lb_policy_registry.cc +1 -1
- data/src/core/ext/xds/xds_route_config.cc +1 -1
- data/src/core/ext/xds/xds_server_config_fetcher.cc +2 -2
- data/src/core/ext/xds/xds_transport_grpc.cc +5 -5
- data/src/core/lib/channel/channel_args.h +15 -1
- data/src/core/lib/channel/connected_channel.cc +13 -12
- data/src/core/lib/channel/promise_based_filter.cc +4 -4
- data/src/core/lib/channel/promise_based_filter.h +1 -2
- data/src/core/lib/config/core_configuration.h +3 -3
- data/src/core/lib/event_engine/ares_resolver.cc +106 -59
- data/src/core/lib/event_engine/extensions/can_track_errors.h +40 -0
- data/src/core/lib/event_engine/extensions/supports_fd.h +160 -0
- data/src/core/lib/event_engine/forkable.cc +7 -5
- data/src/core/lib/event_engine/posix.h +11 -122
- data/src/core/lib/event_engine/posix_engine/native_posix_dns_resolver.h +1 -5
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.cc +31 -7
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.h +1 -0
- data/src/core/lib/event_engine/posix_engine/posix_engine.cc +3 -4
- data/src/core/lib/event_engine/posix_engine/posix_engine.h +2 -3
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener.cc +14 -6
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener_utils.cc +10 -0
- data/src/core/lib/event_engine/query_extensions.h +85 -0
- data/src/core/lib/event_engine/shim.cc +3 -17
- data/src/core/lib/event_engine/shim.h +0 -2
- data/src/core/lib/event_engine/thread_pool/thread_count.cc +28 -7
- data/src/core/lib/event_engine/thread_pool/thread_count.h +6 -1
- data/src/core/lib/event_engine/thread_pool/work_stealing_thread_pool.cc +109 -5
- data/src/core/lib/event_engine/thread_pool/work_stealing_thread_pool.h +9 -0
- data/src/core/lib/event_engine/utils.cc +2 -1
- data/src/core/lib/event_engine/windows/grpc_polled_fd_windows.cc +1 -0
- data/src/core/lib/experiments/config.cc +10 -2
- data/src/core/lib/experiments/config.h +6 -0
- data/src/core/lib/experiments/experiments.cc +57 -18
- data/src/core/lib/experiments/experiments.h +16 -8
- data/src/core/lib/gpr/posix/sync.cc +2 -2
- data/src/core/lib/gpr/posix/time.cc +0 -5
- data/src/core/lib/gpr/windows/sync.cc +2 -2
- data/src/core/lib/gprpp/debug_location.h +2 -0
- data/src/core/lib/gprpp/down_cast.h +49 -0
- data/src/core/lib/gprpp/linux/env.cc +1 -19
- data/src/core/lib/gprpp/load_file.cc +2 -1
- data/src/core/lib/gprpp/load_file.h +2 -1
- data/src/core/lib/gprpp/posix/thd.cc +27 -2
- data/src/core/lib/gprpp/thd.h +8 -0
- data/src/core/lib/gprpp/time.h +4 -3
- data/src/core/lib/gprpp/windows/thd.cc +10 -1
- data/src/core/lib/iomgr/combiner.cc +1 -1
- data/src/core/lib/iomgr/event_engine_shims/endpoint.cc +20 -14
- data/src/core/lib/iomgr/grpc_if_nametoindex_posix.cc +2 -2
- data/src/core/lib/iomgr/grpc_if_nametoindex_unsupported.cc +2 -2
- data/src/core/lib/iomgr/tcp_server_posix.cc +65 -50
- data/src/core/lib/iomgr/tcp_server_utils_posix_ifaddrs.cc +12 -0
- data/src/core/lib/json/json_writer.cc +1 -1
- data/src/core/lib/promise/activity.h +8 -2
- data/src/core/lib/promise/context.h +45 -7
- data/src/core/lib/promise/for_each.h +6 -9
- data/src/core/lib/promise/interceptor_list.h +13 -5
- data/src/core/lib/promise/latch.h +3 -3
- data/src/core/lib/promise/party.cc +12 -0
- data/src/core/lib/promise/party.h +37 -6
- data/src/core/lib/promise/pipe.h +2 -7
- data/src/core/lib/promise/sleep.cc +1 -1
- data/src/core/lib/promise/status_flag.h +32 -2
- data/src/core/lib/resource_quota/memory_quota.cc +4 -4
- data/src/core/lib/security/credentials/external/file_external_account_credentials.cc +5 -11
- data/src/core/lib/security/credentials/google_default/google_default_credentials.cc +11 -10
- data/src/core/lib/security/credentials/oauth2/oauth2_credentials.cc +9 -7
- data/src/core/lib/security/credentials/plugin/plugin_credentials.h +1 -1
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc +16 -24
- data/src/core/lib/security/credentials/xds/xds_credentials.cc +1 -1
- data/src/core/lib/security/security_connector/fake/fake_security_connector.cc +1 -1
- data/src/core/lib/security/security_connector/load_system_roots_supported.cc +3 -7
- data/src/core/lib/security/security_connector/local/local_security_connector.cc +1 -1
- data/src/core/lib/security/security_connector/ssl_utils.cc +26 -17
- data/src/core/lib/security/transport/legacy_server_auth_filter.cc +2 -2
- data/src/core/lib/security/transport/security_handshaker.cc +0 -8
- data/src/core/lib/security/transport/security_handshaker.h +0 -6
- data/src/core/lib/security/transport/server_auth_filter.cc +2 -2
- data/src/core/lib/slice/slice_buffer.h +3 -1
- data/src/core/lib/surface/call.cc +162 -76
- data/src/core/lib/surface/call_trace.cc +9 -9
- data/src/core/lib/surface/channel.cc +15 -24
- data/src/core/lib/surface/channel.h +4 -20
- data/src/core/lib/surface/channel_init.cc +81 -7
- data/src/core/lib/surface/channel_init.h +104 -6
- data/src/core/lib/surface/init.cc +1 -1
- data/src/core/lib/surface/server.cc +4 -7
- data/src/core/lib/surface/version.cc +2 -2
- data/src/core/lib/surface/wait_for_cq_end_op.cc +75 -0
- data/src/core/lib/surface/wait_for_cq_end_op.h +4 -26
- data/src/core/lib/transport/batch_builder.cc +2 -3
- data/src/core/lib/transport/batch_builder.h +1 -1
- data/src/core/lib/transport/call_factory.cc +41 -0
- data/src/core/lib/transport/call_factory.h +56 -0
- data/src/core/lib/transport/call_filters.cc +371 -0
- data/src/core/lib/transport/call_filters.h +1500 -0
- data/src/core/lib/transport/call_size_estimator.cc +41 -0
- data/src/core/lib/transport/call_size_estimator.h +52 -0
- data/src/core/lib/transport/call_spine.cc +107 -0
- data/src/core/lib/transport/call_spine.h +429 -0
- data/src/core/lib/transport/handshaker.cc +0 -8
- data/src/core/lib/transport/handshaker.h +0 -7
- data/src/core/lib/transport/message.cc +45 -0
- data/src/core/lib/transport/message.h +61 -0
- data/src/core/lib/transport/metadata.cc +37 -0
- data/src/core/lib/transport/metadata.h +78 -0
- data/src/core/lib/transport/metadata_batch.cc +4 -2
- data/src/core/lib/transport/metadata_batch.h +2 -2
- data/src/core/lib/transport/transport.cc +0 -105
- data/src/core/lib/transport/transport.h +3 -452
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/address_filtering.cc +1 -1
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/address_filtering.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/backend_metric_data.h +3 -3
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/child_policy_handler.cc +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/child_policy_handler.h +4 -4
- data/src/core/{lib/load_balancing → load_balancing}/delegating_helper.h +5 -5
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/endpoint_list.cc +6 -6
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/endpoint_list.h +6 -6
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/client_load_reporting_filter.cc +2 -2
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/client_load_reporting_filter.h +3 -3
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/grpclb.cc +19 -19
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/grpclb.h +3 -3
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/grpclb_balancer_addresses.cc +1 -1
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/grpclb_balancer_addresses.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/grpclb_client_stats.cc +1 -1
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/grpclb_client_stats.h +3 -3
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/load_balancer_api.cc +1 -1
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/grpclb/load_balancer_api.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/health_check_client.cc +6 -6
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/health_check_client.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/health_check_client_internal.h +7 -7
- data/src/core/{lib/load_balancing → load_balancing}/lb_policy.cc +1 -1
- data/src/core/{lib/load_balancing → load_balancing}/lb_policy.h +6 -6
- data/src/core/{lib/load_balancing → load_balancing}/lb_policy_factory.h +4 -4
- data/src/core/{lib/load_balancing → load_balancing}/lb_policy_registry.cc +2 -2
- data/src/core/{lib/load_balancing → load_balancing}/lb_policy_registry.h +5 -5
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/oob_backend_metric.cc +6 -6
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/oob_backend_metric.h +5 -5
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/oob_backend_metric_internal.h +8 -8
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/outlier_detection/outlier_detection.cc +10 -10
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/outlier_detection/outlier_detection.h +3 -3
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/pick_first/pick_first.cc +6 -6
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/pick_first/pick_first.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/priority/priority.cc +8 -8
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/ring_hash/ring_hash.cc +8 -8
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/ring_hash/ring_hash.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/rls/rls.cc +13 -13
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/round_robin/round_robin.cc +7 -7
- data/src/core/{lib/load_balancing → load_balancing}/subchannel_interface.h +3 -3
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/subchannel_list.h +8 -8
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/weighted_round_robin/static_stride_scheduler.cc +1 -1
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/weighted_round_robin/static_stride_scheduler.h +3 -3
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/weighted_round_robin/weighted_round_robin.cc +10 -10
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/weighted_target/weighted_target.cc +7 -7
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/xds/cds.cc +26 -23
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/xds/xds_channel_args.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/xds/xds_cluster_impl.cc +11 -11
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/xds/xds_cluster_manager.cc +8 -8
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/xds/xds_override_host.cc +10 -10
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/xds/xds_override_host.h +4 -4
- data/src/core/{ext/filters/client_channel/lb_policy → load_balancing}/xds/xds_wrr_locality.cc +6 -6
- data/src/core/{ext/filters/client_channel/resolver → resolver}/binder/binder_resolver.cc +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/dns_resolver_ares.cc +9 -9
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/dns_resolver_ares.h +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/grpc_ares_ev_driver.h +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/grpc_ares_ev_driver_posix.cc +2 -2
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/grpc_ares_ev_driver_windows.cc +2 -2
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/grpc_ares_wrapper.cc +2 -2
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/grpc_ares_wrapper.h +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/grpc_ares_wrapper_posix.cc +1 -1
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/c_ares/grpc_ares_wrapper_windows.cc +2 -2
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/dns_resolver_plugin.cc +7 -5
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/dns_resolver_plugin.h +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/event_engine/event_engine_client_channel_resolver.cc +9 -9
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/event_engine/event_engine_client_channel_resolver.h +5 -5
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/event_engine/service_config_helper.cc +1 -1
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/event_engine/service_config_helper.h +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/native/dns_resolver.cc +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/dns/native/dns_resolver.h +3 -3
- data/src/core/{lib/resolver → resolver}/endpoint_addresses.cc +1 -1
- data/src/core/{lib/resolver → resolver}/endpoint_addresses.h +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/fake/fake_resolver.cc +2 -2
- data/src/core/{ext/filters/client_channel/resolver → resolver}/fake/fake_resolver.h +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/google_c2p/google_c2p_resolver.cc +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/polling_resolver.cc +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/polling_resolver.h +5 -5
- data/src/core/{lib/resolver → resolver}/resolver.cc +1 -1
- data/src/core/{lib/resolver → resolver}/resolver.h +6 -6
- data/src/core/{lib/resolver → resolver}/resolver_factory.h +4 -4
- data/src/core/{lib/resolver → resolver}/resolver_registry.cc +1 -1
- data/src/core/{lib/resolver → resolver}/resolver_registry.h +5 -5
- data/src/core/{lib/resolver → resolver}/server_address.h +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/sockaddr/sockaddr_resolver.cc +3 -3
- data/src/core/{ext/filters/client_channel/resolver → resolver}/xds/xds_dependency_manager.cc +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/xds/xds_dependency_manager.h +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/xds/xds_resolver.cc +11 -11
- data/src/core/{ext/filters/client_channel/resolver → resolver}/xds/xds_resolver_attributes.h +4 -4
- data/src/core/{ext/filters/client_channel/resolver → resolver}/xds/xds_resolver_trace.cc +1 -1
- data/src/core/{ext/filters/client_channel/resolver → resolver}/xds/xds_resolver_trace.h +3 -3
- data/src/core/{lib/service_config → service_config}/service_config.h +4 -4
- data/src/core/{lib/service_config → service_config}/service_config_call_data.h +5 -5
- data/src/core/{lib/service_config → service_config}/service_config_impl.cc +2 -2
- data/src/core/{lib/service_config → service_config}/service_config_impl.h +5 -5
- data/src/core/{lib/service_config → service_config}/service_config_parser.cc +1 -1
- data/src/core/{lib/service_config → service_config}/service_config_parser.h +3 -3
- data/src/core/tsi/fake_transport_security.cc +1 -1
- data/src/ruby/ext/grpc/extconf.rb +0 -1
- data/src/ruby/ext/grpc/rb_channel.c +11 -5
- data/src/ruby/ext/grpc/rb_event_thread.c +9 -3
- data/src/ruby/lib/grpc/version.rb +1 -1
- data/third_party/abseil-cpp/absl/algorithm/algorithm.h +8 -103
- data/third_party/abseil-cpp/absl/algorithm/container.h +57 -71
- data/third_party/abseil-cpp/absl/base/attributes.h +51 -12
- data/third_party/abseil-cpp/absl/base/call_once.h +15 -9
- data/third_party/abseil-cpp/absl/base/casts.h +1 -1
- data/third_party/abseil-cpp/absl/base/config.h +91 -24
- data/third_party/abseil-cpp/absl/base/internal/endian.h +13 -12
- data/third_party/abseil-cpp/absl/base/internal/identity.h +4 -2
- data/third_party/abseil-cpp/absl/base/internal/inline_variable.h +19 -18
- data/third_party/abseil-cpp/absl/base/internal/low_level_alloc.cc +1 -1
- data/third_party/abseil-cpp/absl/base/internal/nullability_impl.h +106 -0
- data/third_party/abseil-cpp/absl/base/internal/raw_logging.cc +9 -11
- data/third_party/abseil-cpp/absl/base/internal/raw_logging.h +2 -0
- data/third_party/abseil-cpp/absl/base/internal/spinlock.h +17 -4
- data/third_party/abseil-cpp/absl/base/internal/sysinfo.cc +20 -0
- data/third_party/abseil-cpp/absl/base/internal/thread_identity.cc +10 -4
- data/third_party/abseil-cpp/absl/base/internal/unaligned_access.h +13 -6
- data/third_party/abseil-cpp/absl/base/log_severity.cc +1 -0
- data/third_party/abseil-cpp/absl/base/log_severity.h +23 -10
- data/third_party/abseil-cpp/absl/base/no_destructor.h +217 -0
- data/third_party/abseil-cpp/absl/base/nullability.h +224 -0
- data/third_party/abseil-cpp/absl/base/optimization.h +1 -0
- data/third_party/abseil-cpp/absl/base/options.h +27 -1
- data/third_party/abseil-cpp/absl/base/prefetch.h +25 -14
- data/third_party/abseil-cpp/absl/base/thread_annotations.h +0 -2
- data/third_party/abseil-cpp/absl/container/flat_hash_map.h +3 -3
- data/third_party/abseil-cpp/absl/container/flat_hash_set.h +1 -1
- data/third_party/abseil-cpp/absl/container/internal/common_policy_traits.h +4 -2
- data/third_party/abseil-cpp/absl/container/internal/container_memory.h +13 -9
- data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.h +2 -12
- data/third_party/abseil-cpp/absl/container/internal/inlined_vector.h +12 -1
- data/third_party/abseil-cpp/absl/container/internal/layout.h +6 -21
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_map.h +11 -2
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.cc +148 -31
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.h +717 -278
- data/third_party/abseil-cpp/absl/crc/internal/cpu_detect.cc +26 -2
- data/third_party/abseil-cpp/absl/crc/internal/cpu_detect.h +6 -0
- data/third_party/abseil-cpp/absl/crc/internal/crc32_x86_arm_combined_simd.h +34 -5
- data/third_party/abseil-cpp/absl/crc/internal/crc_memcpy.h +6 -3
- data/third_party/abseil-cpp/absl/crc/internal/crc_memcpy_fallback.cc +4 -2
- data/third_party/abseil-cpp/absl/crc/internal/{crc_memcpy_x86_64.cc → crc_memcpy_x86_arm_combined.cc} +65 -47
- data/third_party/abseil-cpp/absl/crc/internal/crc_x86_arm_combined.cc +10 -2
- data/third_party/abseil-cpp/absl/debugging/internal/address_is_readable.cc +4 -2
- data/third_party/abseil-cpp/absl/debugging/internal/demangle.cc +24 -0
- data/third_party/abseil-cpp/absl/debugging/internal/demangle.h +35 -33
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_aarch64-inl.inc +41 -17
- data/third_party/abseil-cpp/absl/debugging/symbolize_elf.inc +108 -44
- data/third_party/abseil-cpp/absl/flags/declare.h +0 -5
- data/third_party/abseil-cpp/absl/flags/flag.h +1 -10
- data/third_party/abseil-cpp/absl/flags/internal/flag.h +0 -5
- data/third_party/abseil-cpp/absl/flags/marshalling.cc +10 -1
- data/third_party/abseil-cpp/absl/flags/reflection.cc +2 -1
- data/third_party/abseil-cpp/absl/functional/function_ref.h +8 -0
- data/third_party/abseil-cpp/absl/functional/internal/any_invocable.h +2 -2
- data/third_party/abseil-cpp/absl/hash/internal/hash.h +49 -2
- data/third_party/abseil-cpp/absl/numeric/bits.h +37 -18
- data/third_party/abseil-cpp/absl/random/distributions.h +1 -1
- data/third_party/abseil-cpp/absl/status/internal/status_internal.cc +248 -0
- data/third_party/abseil-cpp/absl/status/internal/status_internal.h +55 -14
- data/third_party/abseil-cpp/absl/status/internal/statusor_internal.h +53 -2
- data/third_party/abseil-cpp/absl/status/status.cc +36 -238
- data/third_party/abseil-cpp/absl/status/status.h +95 -53
- data/third_party/abseil-cpp/absl/status/status_payload_printer.cc +1 -3
- data/third_party/abseil-cpp/absl/status/status_payload_printer.h +3 -2
- data/third_party/abseil-cpp/absl/status/statusor.cc +5 -2
- data/third_party/abseil-cpp/absl/status/statusor.h +43 -3
- data/third_party/abseil-cpp/absl/strings/ascii.cc +84 -12
- data/third_party/abseil-cpp/absl/strings/ascii.h +8 -6
- data/third_party/abseil-cpp/absl/strings/charconv.cc +19 -12
- data/third_party/abseil-cpp/absl/strings/charconv.h +6 -3
- data/third_party/abseil-cpp/absl/strings/charset.h +164 -0
- data/third_party/abseil-cpp/absl/strings/cord.cc +266 -69
- data/third_party/abseil-cpp/absl/strings/cord.h +138 -92
- data/third_party/abseil-cpp/absl/strings/cord_analysis.cc +19 -33
- data/third_party/abseil-cpp/absl/strings/cord_analysis.h +4 -3
- data/third_party/abseil-cpp/absl/strings/escaping.cc +5 -4
- data/third_party/abseil-cpp/absl/strings/has_absl_stringify.h +63 -0
- data/third_party/abseil-cpp/absl/strings/has_ostream_operator.h +42 -0
- data/third_party/abseil-cpp/absl/strings/internal/cord_internal.cc +0 -6
- data/third_party/abseil-cpp/absl/strings/internal/cord_internal.h +19 -45
- data/third_party/abseil-cpp/absl/strings/internal/cordz_info.cc +23 -28
- data/third_party/abseil-cpp/absl/strings/internal/has_absl_stringify.h +15 -26
- data/third_party/abseil-cpp/absl/strings/internal/memutil.cc +12 -4
- data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.cc +145 -8
- data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.h +72 -24
- data/third_party/abseil-cpp/absl/strings/internal/str_format/bind.cc +17 -1
- data/third_party/abseil-cpp/absl/strings/internal/str_format/bind.h +7 -4
- data/third_party/abseil-cpp/absl/strings/internal/str_format/constexpr_parser.h +8 -3
- data/third_party/abseil-cpp/absl/strings/internal/str_format/extension.h +10 -4
- data/third_party/abseil-cpp/absl/strings/internal/str_format/parser.h +5 -4
- data/third_party/abseil-cpp/absl/strings/match.cc +3 -0
- data/third_party/abseil-cpp/absl/strings/numbers.cc +396 -153
- data/third_party/abseil-cpp/absl/strings/numbers.h +193 -35
- data/third_party/abseil-cpp/absl/strings/str_cat.cc +151 -21
- data/third_party/abseil-cpp/absl/strings/str_cat.h +127 -25
- data/third_party/abseil-cpp/absl/strings/str_format.h +30 -20
- data/third_party/abseil-cpp/absl/strings/str_join.h +16 -16
- data/third_party/abseil-cpp/absl/strings/str_replace.cc +12 -3
- data/third_party/abseil-cpp/absl/strings/str_replace.h +8 -5
- data/third_party/abseil-cpp/absl/strings/str_split.cc +8 -6
- data/third_party/abseil-cpp/absl/strings/str_split.h +18 -0
- data/third_party/abseil-cpp/absl/strings/string_view.cc +26 -5
- data/third_party/abseil-cpp/absl/strings/string_view.h +91 -26
- data/third_party/abseil-cpp/absl/strings/strip.h +5 -2
- data/third_party/abseil-cpp/absl/strings/substitute.cc +12 -4
- data/third_party/abseil-cpp/absl/strings/substitute.h +103 -91
- data/third_party/abseil-cpp/absl/synchronization/internal/pthread_waiter.h +2 -2
- data/third_party/abseil-cpp/absl/synchronization/internal/waiter.h +2 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/win32_waiter.h +4 -2
- data/third_party/abseil-cpp/absl/synchronization/mutex.cc +296 -332
- data/third_party/abseil-cpp/absl/synchronization/mutex.h +89 -34
- data/third_party/abseil-cpp/absl/time/civil_time.h +26 -0
- data/third_party/abseil-cpp/absl/time/clock.h +5 -1
- data/third_party/abseil-cpp/absl/time/duration.cc +3 -3
- data/third_party/abseil-cpp/absl/time/internal/cctz/include/cctz/civil_time_detail.h +2 -2
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_format.cc +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_info.cc +9 -14
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/tzfile.h +0 -8
- data/third_party/abseil-cpp/absl/types/bad_optional_access.cc +18 -0
- data/third_party/abseil-cpp/absl/types/bad_variant_access.cc +18 -0
- data/third_party/abseil-cpp/absl/types/internal/variant.h +3 -3
- data/third_party/abseil-cpp/absl/types/optional.h +3 -2
- data/third_party/abseil-cpp/absl/types/span.h +9 -4
- data/third_party/abseil-cpp/absl/utility/utility.h +11 -93
- data/third_party/boringssl-with-bazel/err_data.c +278 -276
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_gentm.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_mbstr.c +9 -9
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strex.c +8 -21
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_time.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_type.c +19 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_utctm.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_lib.c +11 -3
- data/third_party/boringssl-with-bazel/src/crypto/asn1/internal.h +4 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/posix_time.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_dec.c +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_enc.c +1 -6
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_new.c +4 -13
- data/third_party/boringssl-with-bazel/src/crypto/base64/base64.c +1 -6
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio.c +27 -4
- data/third_party/boringssl-with-bazel/src/crypto/bio/connect.c +1 -4
- data/third_party/boringssl-with-bazel/src/crypto/bio/pair.c +1 -4
- data/third_party/boringssl-with-bazel/src/crypto/bn_extra/convert.c +8 -0
- data/third_party/boringssl-with-bazel/src/crypto/buf/buf.c +1 -11
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/ber.c +7 -8
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbb.c +42 -12
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/internal.h +0 -22
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/unicode.c +9 -9
- data/third_party/boringssl-with-bazel/src/crypto/chacha/chacha.c +34 -1
- data/third_party/boringssl-with-bazel/src/crypto/chacha/internal.h +49 -3
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_aesgcmsiv.c +30 -42
- data/third_party/boringssl-with-bazel/src/crypto/conf/conf.c +87 -96
- data/third_party/boringssl-with-bazel/src/crypto/conf/internal.h +5 -1
- data/third_party/boringssl-with-bazel/src/crypto/cpu_intel.c +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/crypto.c +11 -0
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519.c +4 -0
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/spake25519.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/des/des.c +105 -31
- data/third_party/boringssl-with-bazel/src/crypto/des/internal.h +10 -81
- data/third_party/boringssl-with-bazel/src/crypto/dsa/dsa.c +2 -15
- data/third_party/boringssl-with-bazel/src/crypto/engine/engine.c +1 -9
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp.c +1 -5
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp_ctx.c +2 -5
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ec.c +1 -4
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_hkdf.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_rsa.c +1 -3
- data/third_party/boringssl-with-bazel/src/crypto/evp/scrypt.c +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/add.c +2 -8
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/bn.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/bytes.c +26 -17
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/ctx.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/exponentiation.c +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/gcd.c +26 -5
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/generic.c +10 -41
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/internal.h +49 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery.c +26 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery_inv.c +27 -26
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/mul.c +2 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/prime.c +1 -8
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/random.c +8 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/cipher.c +11 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aes.c +11 -24
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aesccm.c +43 -50
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/dh.c +2 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/digest.c +4 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_key.c +16 -9
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p224-64.c +7 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/wnaf.c +2 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/fork_detect.c +51 -13
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/fork_detect.h +17 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/rand.c +5 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/blinding.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa.c +1 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa_impl.c +6 -5
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/fips.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/internal.h +153 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha1.c +87 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha256.c +39 -5
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha512.c +32 -5
- data/third_party/boringssl-with-bazel/src/crypto/internal.h +254 -54
- data/third_party/boringssl-with-bazel/src/crypto/keccak/internal.h +70 -0
- data/third_party/boringssl-with-bazel/src/crypto/{kyber → keccak}/keccak.c +124 -49
- data/third_party/boringssl-with-bazel/src/crypto/kyber/internal.h +8 -39
- data/third_party/boringssl-with-bazel/src/crypto/kyber/kyber.c +39 -29
- data/third_party/boringssl-with-bazel/src/crypto/lhash/lhash.c +3 -6
- data/third_party/boringssl-with-bazel/src/crypto/mem.c +17 -33
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj.c +36 -16
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj_dat.h +0 -3
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_info.c +31 -0
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7_x509.c +2 -4
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8.c +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8_x509.c +9 -13
- data/third_party/boringssl-with-bazel/src/crypto/pool/pool.c +3 -6
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/forkunsafe.c +4 -0
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/rsa_crypt.c +3 -1
- data/third_party/boringssl-with-bazel/src/crypto/spx/address.c +101 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/address.h +50 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/fors.c +133 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/fors.h +54 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/internal.h +79 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/merkle.c +150 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/merkle.h +61 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/params.h +71 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx.c +139 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx_util.c +53 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx_util.h +44 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/thash.c +136 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/thash.h +70 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/wots.c +135 -0
- data/third_party/boringssl-with-bazel/src/crypto/spx/wots.h +45 -0
- data/third_party/boringssl-with-bazel/src/crypto/stack/stack.c +4 -9
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/pmbtoken.c +10 -22
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/trust_token.c +3 -6
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/voprf.c +12 -36
- data/third_party/boringssl-with-bazel/src/crypto/x509/algorithm.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/asn1_gen.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_dir.c +14 -9
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_file.c +23 -33
- data/third_party/boringssl-with-bazel/src/crypto/x509/internal.h +225 -51
- data/third_party/boringssl-with-bazel/src/crypto/x509/policy.c +2 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/rsa_pss.c +6 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_crl.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_req.c +1 -4
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_x509.c +1 -3
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_akey.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_akeya.c +3 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_alt.c +5 -6
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_bcons.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_bitst.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_conf.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_cpols.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_crld.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_enum.c +1 -0
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_extku.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_genn.c +12 -12
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_ia5.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_info.c +4 -6
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_int.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_lib.c +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_ncons.c +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_ocsp.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_pcons.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_pmaps.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_prn.c +3 -4
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_purp.c +92 -335
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_skey.c +1 -2
- data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/v3_utl.c +20 -18
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_att.c +35 -32
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_cmp.c +44 -59
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_ext.c +0 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_lu.c +107 -255
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_req.c +32 -20
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_trs.c +25 -152
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_v3.c +0 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vfy.c +330 -944
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vpm.c +93 -215
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509name.c +28 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509spki.c +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_crl.c +35 -129
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_name.c +7 -8
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_pubkey.c +46 -50
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_spki.c +2 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509.c +1 -4
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509a.c +6 -6
- data/third_party/boringssl-with-bazel/src/include/openssl/arm_arch.h +0 -21
- data/third_party/boringssl-with-bazel/src/include/openssl/asm_base.h +5 -6
- data/third_party/boringssl-with-bazel/src/include/openssl/base.h +3 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/bio.h +24 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/bn.h +14 -5
- data/third_party/boringssl-with-bazel/src/include/openssl/bytestring.h +22 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/cipher.h +1 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/conf.h +4 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/curve25519.h +2 -2
- data/third_party/boringssl-with-bazel/src/include/openssl/des.h +0 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/ec.h +33 -11
- data/third_party/boringssl-with-bazel/src/include/openssl/evp.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/ex_data.h +5 -4
- data/third_party/boringssl-with-bazel/src/include/openssl/kyber.h +26 -18
- data/third_party/boringssl-with-bazel/src/include/openssl/mem.h +13 -6
- data/third_party/boringssl-with-bazel/src/include/openssl/obj.h +5 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/opensslconf.h +1 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/pem.h +19 -5
- data/third_party/boringssl-with-bazel/src/include/openssl/posix_time.h +45 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/rand.h +5 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/sha.h +20 -3
- data/third_party/boringssl-with-bazel/src/include/openssl/span.h +18 -20
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl.h +76 -60
- data/third_party/boringssl-with-bazel/src/include/openssl/target.h +31 -6
- data/third_party/boringssl-with-bazel/src/include/openssl/time.h +3 -22
- data/third_party/boringssl-with-bazel/src/include/openssl/tls1.h +2 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/x509.h +2806 -941
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3.h +38 -1025
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3_errors.h +124 -0
- data/third_party/boringssl-with-bazel/src/ssl/d1_both.cc +1 -2
- data/third_party/boringssl-with-bazel/src/ssl/extensions.cc +82 -9
- data/third_party/boringssl-with-bazel/src/ssl/handoff.cc +42 -4
- data/third_party/boringssl-with-bazel/src/ssl/internal.h +4 -0
- data/third_party/boringssl-with-bazel/src/ssl/ssl_key_share.cc +4 -5
- data/third_party/boringssl-with-bazel/src/ssl/ssl_lib.cc +9 -1
- data/third_party/boringssl-with-bazel/src/ssl/ssl_x509.cc +0 -1
- data/third_party/boringssl-with-bazel/src/ssl/tls13_client.cc +5 -1
- data/third_party/boringssl-with-bazel/src/ssl/tls13_server.cc +5 -1
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_64_adx.h +4 -2
- data/third_party/boringssl-with-bazel/src/third_party/fiat/p256_64.h +21 -0
- data/third_party/cares/config_linux/ares_config.h +2 -38
- metadata +214 -179
- data/src/core/lib/iomgr/load_file.cc +0 -78
- data/src/core/lib/iomgr/load_file.h +0 -35
- data/third_party/abseil-cpp/absl/base/internal/prefetch.h +0 -137
- data/third_party/abseil-cpp/absl/base/internal/thread_annotations.h +0 -280
- data/third_party/abseil-cpp/absl/flags/flag.cc +0 -38
- data/third_party/abseil-cpp/absl/flags/internal/flag_msvc.inc +0 -116
- data/third_party/abseil-cpp/absl/strings/internal/char_map.h +0 -158
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring.cc +0 -773
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring.h +0 -607
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_ring_reader.h +0 -118
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_info.c +0 -100
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_pkey.c +0 -111
- data/third_party/boringssl-with-bazel/src/crypto/x509v3/internal.h +0 -197
- /data/third_party/boringssl-with-bazel/src/crypto/{x509v3 → x509}/ext_dat.h +0 -0
|
@@ -54,6 +54,7 @@
|
|
|
54
54
|
* copied and put under another distribution licence
|
|
55
55
|
* [including the GNU Public Licence.] */
|
|
56
56
|
|
|
57
|
+
#include <inttypes.h>
|
|
57
58
|
#include <string.h>
|
|
58
59
|
#include <sys/stat.h>
|
|
59
60
|
#include <sys/types.h>
|
|
@@ -68,7 +69,7 @@
|
|
|
68
69
|
#include "internal.h"
|
|
69
70
|
|
|
70
71
|
typedef struct lookup_dir_hashes_st {
|
|
71
|
-
|
|
72
|
+
uint32_t hash;
|
|
72
73
|
int suffix;
|
|
73
74
|
} BY_DIR_HASH;
|
|
74
75
|
|
|
@@ -92,17 +93,16 @@ static void free_dir(X509_LOOKUP *lu);
|
|
|
92
93
|
static int add_cert_dir(BY_DIR *ctx, const char *dir, int type);
|
|
93
94
|
static int get_cert_by_subject(X509_LOOKUP *xl, int type, X509_NAME *name,
|
|
94
95
|
X509_OBJECT *ret);
|
|
95
|
-
static X509_LOOKUP_METHOD x509_dir_lookup = {
|
|
96
|
-
"Load certs from files in a directory",
|
|
96
|
+
static const X509_LOOKUP_METHOD x509_dir_lookup = {
|
|
97
97
|
new_dir, // new
|
|
98
98
|
free_dir, // free
|
|
99
|
-
NULL, // init
|
|
100
|
-
NULL, // shutdown
|
|
101
99
|
dir_ctrl, // ctrl
|
|
102
100
|
get_cert_by_subject, // get_by_subject
|
|
103
101
|
};
|
|
104
102
|
|
|
105
|
-
X509_LOOKUP_METHOD *X509_LOOKUP_hash_dir(void) {
|
|
103
|
+
const X509_LOOKUP_METHOD *X509_LOOKUP_hash_dir(void) {
|
|
104
|
+
return &x509_dir_lookup;
|
|
105
|
+
}
|
|
106
106
|
|
|
107
107
|
static int dir_ctrl(X509_LOOKUP *ctx, int cmd, const char *argp, long argl,
|
|
108
108
|
char **retp) {
|
|
@@ -247,8 +247,8 @@ static int get_cert_by_subject(X509_LOOKUP *xl, int type, X509_NAME *name,
|
|
|
247
247
|
int ok = 0;
|
|
248
248
|
size_t i;
|
|
249
249
|
int j, k;
|
|
250
|
-
|
|
251
|
-
|
|
250
|
+
uint32_t h;
|
|
251
|
+
uint32_t hash_array[2];
|
|
252
252
|
int hash_index;
|
|
253
253
|
BUF_MEM *b = NULL;
|
|
254
254
|
X509_OBJECT stmp, *tmp;
|
|
@@ -310,7 +310,8 @@ static int get_cert_by_subject(X509_LOOKUP *xl, int type, X509_NAME *name,
|
|
|
310
310
|
hent = NULL;
|
|
311
311
|
}
|
|
312
312
|
for (;;) {
|
|
313
|
-
snprintf(b->data, b->max, "%s/%
|
|
313
|
+
snprintf(b->data, b->max, "%s/%08" PRIx32 ".%s%d", ent->dir, h, postfix,
|
|
314
|
+
k);
|
|
314
315
|
#ifndef OPENSSL_NO_POSIX_IO
|
|
315
316
|
#if defined(_WIN32) && !defined(stat)
|
|
316
317
|
#define stat _stat
|
|
@@ -400,3 +401,7 @@ finish:
|
|
|
400
401
|
BUF_MEM_free(b);
|
|
401
402
|
return ok;
|
|
402
403
|
}
|
|
404
|
+
|
|
405
|
+
int X509_LOOKUP_add_dir(X509_LOOKUP *lookup, const char *name, int type) {
|
|
406
|
+
return X509_LOOKUP_ctrl(lookup, X509_L_ADD_DIR, name, type, NULL);
|
|
407
|
+
}
|
|
@@ -65,49 +65,35 @@
|
|
|
65
65
|
|
|
66
66
|
static int by_file_ctrl(X509_LOOKUP *ctx, int cmd, const char *argc, long argl,
|
|
67
67
|
char **ret);
|
|
68
|
-
static X509_LOOKUP_METHOD x509_file_lookup = {
|
|
69
|
-
"Load file into cache",
|
|
68
|
+
static const X509_LOOKUP_METHOD x509_file_lookup = {
|
|
70
69
|
NULL, // new
|
|
71
70
|
NULL, // free
|
|
72
|
-
NULL, // init
|
|
73
|
-
NULL, // shutdown
|
|
74
71
|
by_file_ctrl, // ctrl
|
|
75
72
|
NULL, // get_by_subject
|
|
76
73
|
};
|
|
77
74
|
|
|
78
|
-
X509_LOOKUP_METHOD *X509_LOOKUP_file(void) { return &x509_file_lookup; }
|
|
75
|
+
const X509_LOOKUP_METHOD *X509_LOOKUP_file(void) { return &x509_file_lookup; }
|
|
79
76
|
|
|
80
77
|
static int by_file_ctrl(X509_LOOKUP *ctx, int cmd, const char *argp, long argl,
|
|
81
78
|
char **ret) {
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
X509_FILETYPE_PEM) != 0);
|
|
96
|
-
}
|
|
97
|
-
|
|
98
|
-
if (!ok) {
|
|
99
|
-
OPENSSL_PUT_ERROR(X509, X509_R_LOADING_DEFAULTS);
|
|
100
|
-
}
|
|
101
|
-
} else {
|
|
102
|
-
if (argl == X509_FILETYPE_PEM) {
|
|
103
|
-
ok = (X509_load_cert_crl_file(ctx, argp, X509_FILETYPE_PEM) != 0);
|
|
104
|
-
} else {
|
|
105
|
-
ok = (X509_load_cert_file(ctx, argp, (int)argl) != 0);
|
|
106
|
-
}
|
|
107
|
-
}
|
|
108
|
-
break;
|
|
79
|
+
if (cmd != X509_L_FILE_LOAD) {
|
|
80
|
+
return 0;
|
|
81
|
+
}
|
|
82
|
+
const char *file = argp;
|
|
83
|
+
int type = argl;
|
|
84
|
+
if (argl == X509_FILETYPE_DEFAULT) {
|
|
85
|
+
if ((file = getenv(X509_get_default_cert_file_env())) == NULL) {
|
|
86
|
+
file = X509_get_default_cert_file();
|
|
87
|
+
}
|
|
88
|
+
type = X509_FILETYPE_PEM;
|
|
89
|
+
}
|
|
90
|
+
if (X509_load_cert_crl_file(ctx, file, type) != 0) {
|
|
91
|
+
return 1;
|
|
109
92
|
}
|
|
110
|
-
|
|
93
|
+
if (argl == X509_FILETYPE_DEFAULT) {
|
|
94
|
+
OPENSSL_PUT_ERROR(X509, X509_R_LOADING_DEFAULTS);
|
|
95
|
+
}
|
|
96
|
+
return 0;
|
|
111
97
|
}
|
|
112
98
|
|
|
113
99
|
int X509_load_cert_file(X509_LOOKUP *ctx, const char *file, int type) {
|
|
@@ -277,3 +263,7 @@ err:
|
|
|
277
263
|
sk_X509_INFO_pop_free(inf, X509_INFO_free);
|
|
278
264
|
return count;
|
|
279
265
|
}
|
|
266
|
+
|
|
267
|
+
int X509_LOOKUP_load_file(X509_LOOKUP *lookup, const char *name, int type) {
|
|
268
|
+
return X509_LOOKUP_ctrl(lookup, X509_L_FILE_LOAD, name, type, NULL);
|
|
269
|
+
}
|
|
@@ -86,18 +86,25 @@ struct X509_pubkey_st {
|
|
|
86
86
|
EVP_PKEY *pkey;
|
|
87
87
|
} /* X509_PUBKEY */;
|
|
88
88
|
|
|
89
|
+
// X509_PUBKEY is an |ASN1_ITEM| whose ASN.1 type is SubjectPublicKeyInfo and C
|
|
90
|
+
// type is |X509_PUBKEY*|.
|
|
91
|
+
DECLARE_ASN1_ITEM(X509_PUBKEY)
|
|
92
|
+
|
|
89
93
|
struct X509_name_entry_st {
|
|
90
94
|
ASN1_OBJECT *object;
|
|
91
95
|
ASN1_STRING *value;
|
|
92
96
|
int set;
|
|
93
97
|
} /* X509_NAME_ENTRY */;
|
|
94
98
|
|
|
99
|
+
// X509_NAME_ENTRY is an |ASN1_ITEM| whose ASN.1 type is AttributeTypeAndValue
|
|
100
|
+
// (RFC 5280) and C type is |X509_NAME_ENTRY*|.
|
|
101
|
+
DECLARE_ASN1_ITEM(X509_NAME_ENTRY)
|
|
102
|
+
|
|
95
103
|
// we always keep X509_NAMEs in 2 forms.
|
|
96
104
|
struct X509_name_st {
|
|
97
105
|
STACK_OF(X509_NAME_ENTRY) *entries;
|
|
98
106
|
int modified; // true if 'bytes' needs to be built
|
|
99
107
|
BUF_MEM *bytes;
|
|
100
|
-
// unsigned long hash; Keep the hash around for lookups
|
|
101
108
|
unsigned char *canon_enc;
|
|
102
109
|
int canon_enclen;
|
|
103
110
|
} /* X509_NAME */;
|
|
@@ -107,6 +114,10 @@ struct x509_attributes_st {
|
|
|
107
114
|
STACK_OF(ASN1_TYPE) *set;
|
|
108
115
|
} /* X509_ATTRIBUTE */;
|
|
109
116
|
|
|
117
|
+
// X509_ATTRIBUTE is an |ASN1_ITEM| whose ASN.1 type is Attribute (RFC 2986) and
|
|
118
|
+
// C type is |X509_ATTRIBUTE*|.
|
|
119
|
+
DECLARE_ASN1_ITEM(X509_ATTRIBUTE)
|
|
120
|
+
|
|
110
121
|
typedef struct x509_cert_aux_st {
|
|
111
122
|
STACK_OF(ASN1_OBJECT) *trust; // trusted uses
|
|
112
123
|
STACK_OF(ASN1_OBJECT) *reject; // rejected uses
|
|
@@ -122,6 +133,14 @@ struct X509_extension_st {
|
|
|
122
133
|
ASN1_OCTET_STRING *value;
|
|
123
134
|
} /* X509_EXTENSION */;
|
|
124
135
|
|
|
136
|
+
// X509_EXTENSION is an |ASN1_ITEM| whose ASN.1 type is X.509 Extension (RFC
|
|
137
|
+
// 5280) and C type is |X509_EXTENSION*|.
|
|
138
|
+
DECLARE_ASN1_ITEM(X509_EXTENSION)
|
|
139
|
+
|
|
140
|
+
// X509_EXTENSIONS is an |ASN1_ITEM| whose ASN.1 type is SEQUENCE of Extension
|
|
141
|
+
// (RFC 5280) and C type is |STACK_OF(X509_EXTENSION)*|.
|
|
142
|
+
DECLARE_ASN1_ITEM(X509_EXTENSIONS)
|
|
143
|
+
|
|
125
144
|
typedef struct {
|
|
126
145
|
ASN1_INTEGER *version; // [ 0 ] default of v1
|
|
127
146
|
ASN1_INTEGER *serialNumber;
|
|
@@ -151,7 +170,6 @@ struct x509_st {
|
|
|
151
170
|
uint32_t ex_flags;
|
|
152
171
|
uint32_t ex_kusage;
|
|
153
172
|
uint32_t ex_xkusage;
|
|
154
|
-
uint32_t ex_nscert;
|
|
155
173
|
ASN1_OCTET_STRING *skid;
|
|
156
174
|
AUTHORITY_KEYID *akid;
|
|
157
175
|
STACK_OF(DIST_POINT) *crldp;
|
|
@@ -162,6 +180,10 @@ struct x509_st {
|
|
|
162
180
|
CRYPTO_MUTEX lock;
|
|
163
181
|
} /* X509 */;
|
|
164
182
|
|
|
183
|
+
// X509 is an |ASN1_ITEM| whose ASN.1 type is X.509 Certificate (RFC 5280) and C
|
|
184
|
+
// type is |X509*|.
|
|
185
|
+
DECLARE_ASN1_ITEM(X509)
|
|
186
|
+
|
|
165
187
|
typedef struct {
|
|
166
188
|
ASN1_ENCODING enc;
|
|
167
189
|
ASN1_INTEGER *version;
|
|
@@ -181,16 +203,23 @@ struct X509_req_st {
|
|
|
181
203
|
ASN1_BIT_STRING *signature;
|
|
182
204
|
} /* X509_REQ */;
|
|
183
205
|
|
|
206
|
+
// X509_REQ is an |ASN1_ITEM| whose ASN.1 type is CertificateRequest (RFC 2986)
|
|
207
|
+
// and C type is |X509_REQ*|.
|
|
208
|
+
DECLARE_ASN1_ITEM(X509_REQ)
|
|
209
|
+
|
|
184
210
|
struct x509_revoked_st {
|
|
185
211
|
ASN1_INTEGER *serialNumber;
|
|
186
212
|
ASN1_TIME *revocationDate;
|
|
187
213
|
STACK_OF(X509_EXTENSION) /* optional */ *extensions;
|
|
188
|
-
// Set up if indirect CRL
|
|
189
|
-
STACK_OF(GENERAL_NAME) *issuer;
|
|
190
214
|
// Revocation reason
|
|
191
215
|
int reason;
|
|
192
216
|
} /* X509_REVOKED */;
|
|
193
217
|
|
|
218
|
+
// X509_REVOKED is an |ASN1_ITEM| whose ASN.1 type is an element of the
|
|
219
|
+
// revokedCertificates field of TBSCertList (RFC 5280) and C type is
|
|
220
|
+
// |X509_REVOKED*|.
|
|
221
|
+
DECLARE_ASN1_ITEM(X509_REVOKED)
|
|
222
|
+
|
|
194
223
|
typedef struct {
|
|
195
224
|
ASN1_INTEGER *version;
|
|
196
225
|
X509_ALGOR *sig_alg;
|
|
@@ -206,6 +235,22 @@ typedef struct {
|
|
|
206
235
|
// an |X509_NAME|.
|
|
207
236
|
DECLARE_ASN1_FUNCTIONS(X509_CRL_INFO)
|
|
208
237
|
|
|
238
|
+
// Values in idp_flags field
|
|
239
|
+
// IDP present
|
|
240
|
+
#define IDP_PRESENT 0x1
|
|
241
|
+
// IDP values inconsistent
|
|
242
|
+
#define IDP_INVALID 0x2
|
|
243
|
+
// onlyuser true
|
|
244
|
+
#define IDP_ONLYUSER 0x4
|
|
245
|
+
// onlyCA true
|
|
246
|
+
#define IDP_ONLYCA 0x8
|
|
247
|
+
// onlyattr true
|
|
248
|
+
#define IDP_ONLYATTR 0x10
|
|
249
|
+
// indirectCRL true
|
|
250
|
+
#define IDP_INDIRECT 0x20
|
|
251
|
+
// onlysomereasons present
|
|
252
|
+
#define IDP_REASONS 0x40
|
|
253
|
+
|
|
209
254
|
struct X509_crl_st {
|
|
210
255
|
// actual signature
|
|
211
256
|
X509_CRL_INFO *crl;
|
|
@@ -218,18 +263,23 @@ struct X509_crl_st {
|
|
|
218
263
|
ISSUING_DIST_POINT *idp;
|
|
219
264
|
// Convenient breakdown of IDP
|
|
220
265
|
int idp_flags;
|
|
221
|
-
int idp_reasons;
|
|
222
|
-
// CRL and base CRL numbers for delta processing
|
|
223
|
-
ASN1_INTEGER *crl_number;
|
|
224
|
-
ASN1_INTEGER *base_crl_number;
|
|
225
266
|
unsigned char crl_hash[SHA256_DIGEST_LENGTH];
|
|
226
|
-
STACK_OF(GENERAL_NAMES) *issuers;
|
|
227
267
|
} /* X509_CRL */;
|
|
228
268
|
|
|
269
|
+
// X509_CRL is an |ASN1_ITEM| whose ASN.1 type is X.509 CertificateList (RFC
|
|
270
|
+
// 5280) and C type is |X509_CRL*|.
|
|
271
|
+
DECLARE_ASN1_ITEM(X509_CRL)
|
|
272
|
+
|
|
273
|
+
// GENERAL_NAME is an |ASN1_ITEM| whose ASN.1 type is GeneralName and C type is
|
|
274
|
+
// |GENERAL_NAME*|.
|
|
275
|
+
DECLARE_ASN1_ITEM(GENERAL_NAME)
|
|
276
|
+
|
|
277
|
+
// GENERAL_NAMES is an |ASN1_ITEM| whose ASN.1 type is SEQUENCE OF GeneralName
|
|
278
|
+
// and C type is |GENERAL_NAMES*|, aka |STACK_OF(GENERAL_NAME)*|.
|
|
279
|
+
DECLARE_ASN1_ITEM(GENERAL_NAMES)
|
|
280
|
+
|
|
229
281
|
struct X509_VERIFY_PARAM_st {
|
|
230
|
-
char *name;
|
|
231
282
|
int64_t check_time; // POSIX time to use
|
|
232
|
-
unsigned long inh_flags; // Inheritance flags
|
|
233
283
|
unsigned long flags; // Various verify flags
|
|
234
284
|
int purpose; // purpose to check untrusted certificates
|
|
235
285
|
int trust; // trust setting to check
|
|
@@ -238,7 +288,6 @@ struct X509_VERIFY_PARAM_st {
|
|
|
238
288
|
// The following fields specify acceptable peer identities.
|
|
239
289
|
STACK_OF(OPENSSL_STRING) *hosts; // Set of acceptable names
|
|
240
290
|
unsigned int hostflags; // Flags to control matching features
|
|
241
|
-
char *peername; // Matching hostname in peer certificate
|
|
242
291
|
char *email; // If not NULL email address to match
|
|
243
292
|
size_t emaillen;
|
|
244
293
|
unsigned char *ip; // If not NULL IP address to match
|
|
@@ -257,19 +306,26 @@ struct x509_object_st {
|
|
|
257
306
|
} data;
|
|
258
307
|
} /* X509_OBJECT */;
|
|
259
308
|
|
|
309
|
+
// NETSCAPE_SPKI is an |ASN1_ITEM| whose ASN.1 type is
|
|
310
|
+
// SignedPublicKeyAndChallenge and C type is |NETSCAPE_SPKI*|.
|
|
311
|
+
DECLARE_ASN1_ITEM(NETSCAPE_SPKI)
|
|
312
|
+
|
|
313
|
+
// NETSCAPE_SPKAC is an |ASN1_ITEM| whose ASN.1 type is PublicKeyAndChallenge
|
|
314
|
+
// and C type is |NETSCAPE_SPKAC*|.
|
|
315
|
+
DECLARE_ASN1_ITEM(NETSCAPE_SPKAC)
|
|
316
|
+
|
|
260
317
|
// This is a static that defines the function interface
|
|
261
318
|
struct x509_lookup_method_st {
|
|
262
|
-
const char *name;
|
|
263
319
|
int (*new_item)(X509_LOOKUP *ctx);
|
|
264
320
|
void (*free)(X509_LOOKUP *ctx);
|
|
265
|
-
int (*init)(X509_LOOKUP *ctx);
|
|
266
|
-
int (*shutdown)(X509_LOOKUP *ctx);
|
|
267
321
|
int (*ctrl)(X509_LOOKUP *ctx, int cmd, const char *argc, long argl,
|
|
268
322
|
char **ret);
|
|
269
323
|
int (*get_by_subject)(X509_LOOKUP *ctx, int type, X509_NAME *name,
|
|
270
324
|
X509_OBJECT *ret);
|
|
271
325
|
} /* X509_LOOKUP_METHOD */;
|
|
272
326
|
|
|
327
|
+
DEFINE_STACK_OF(X509_LOOKUP)
|
|
328
|
+
|
|
273
329
|
// This is used to hold everything. It is used for all certificate
|
|
274
330
|
// validation. Once we have a certificate chain, the 'verify'
|
|
275
331
|
// function is then called to actually check the cert chain.
|
|
@@ -284,28 +340,16 @@ struct x509_store_st {
|
|
|
284
340
|
X509_VERIFY_PARAM *param;
|
|
285
341
|
|
|
286
342
|
// Callbacks for various operations
|
|
287
|
-
X509_STORE_CTX_verify_fn verify; // called to verify a certificate
|
|
288
343
|
X509_STORE_CTX_verify_cb verify_cb; // error callback
|
|
289
|
-
|
|
290
|
-
|
|
291
|
-
X509_STORE_CTX_check_revocation_fn
|
|
292
|
-
check_revocation; // Check revocation status of chain
|
|
293
|
-
X509_STORE_CTX_get_crl_fn get_crl; // retrieve CRL
|
|
294
|
-
X509_STORE_CTX_check_crl_fn check_crl; // Check CRL validity
|
|
295
|
-
X509_STORE_CTX_cert_crl_fn cert_crl; // Check certificate against CRL
|
|
296
|
-
X509_STORE_CTX_lookup_certs_fn lookup_certs;
|
|
297
|
-
X509_STORE_CTX_lookup_crls_fn lookup_crls;
|
|
298
|
-
X509_STORE_CTX_cleanup_fn cleanup;
|
|
344
|
+
X509_STORE_CTX_get_crl_fn get_crl; // retrieve CRL
|
|
345
|
+
X509_STORE_CTX_check_crl_fn check_crl; // Check CRL validity
|
|
299
346
|
|
|
300
347
|
CRYPTO_refcount_t references;
|
|
301
348
|
} /* X509_STORE */;
|
|
302
349
|
|
|
303
|
-
|
|
304
350
|
// This is the functions plus an instance of the local variables.
|
|
305
351
|
struct x509_lookup_st {
|
|
306
|
-
|
|
307
|
-
int skip; // don't use us.
|
|
308
|
-
X509_LOOKUP_METHOD *method; // the functions
|
|
352
|
+
const X509_LOOKUP_METHOD *method; // the functions
|
|
309
353
|
void *method_data; // method data
|
|
310
354
|
|
|
311
355
|
X509_STORE *store_ctx; // who owns us
|
|
@@ -323,39 +367,28 @@ struct x509_store_ctx_st {
|
|
|
323
367
|
STACK_OF(X509_CRL) *crls; // set of CRLs passed in
|
|
324
368
|
|
|
325
369
|
X509_VERIFY_PARAM *param;
|
|
326
|
-
|
|
370
|
+
|
|
371
|
+
// trusted_stack, if non-NULL, is a set of trusted certificates to consider
|
|
372
|
+
// instead of those from |X509_STORE|.
|
|
373
|
+
STACK_OF(X509) *trusted_stack;
|
|
327
374
|
|
|
328
375
|
// Callbacks for various operations
|
|
329
|
-
X509_STORE_CTX_verify_fn verify; // called to verify a certificate
|
|
330
376
|
X509_STORE_CTX_verify_cb verify_cb; // error callback
|
|
331
|
-
|
|
332
|
-
|
|
333
|
-
X509_STORE_CTX_check_revocation_fn
|
|
334
|
-
check_revocation; // Check revocation status of chain
|
|
335
|
-
X509_STORE_CTX_get_crl_fn get_crl; // retrieve CRL
|
|
336
|
-
X509_STORE_CTX_check_crl_fn check_crl; // Check CRL validity
|
|
337
|
-
X509_STORE_CTX_cert_crl_fn cert_crl; // Check certificate against CRL
|
|
338
|
-
X509_STORE_CTX_check_policy_fn check_policy;
|
|
339
|
-
X509_STORE_CTX_lookup_certs_fn lookup_certs;
|
|
340
|
-
X509_STORE_CTX_lookup_crls_fn lookup_crls;
|
|
341
|
-
X509_STORE_CTX_cleanup_fn cleanup;
|
|
377
|
+
X509_STORE_CTX_get_crl_fn get_crl; // retrieve CRL
|
|
378
|
+
X509_STORE_CTX_check_crl_fn check_crl; // Check CRL validity
|
|
342
379
|
|
|
343
380
|
// The following is built up
|
|
344
|
-
int
|
|
345
|
-
|
|
346
|
-
STACK_OF(X509) *chain; // chain of X509s - built up and trusted
|
|
381
|
+
int last_untrusted; // index of last untrusted cert
|
|
382
|
+
STACK_OF(X509) *chain; // chain of X509s - built up and trusted
|
|
347
383
|
|
|
348
384
|
// When something goes wrong, this is why
|
|
349
385
|
int error_depth;
|
|
350
386
|
int error;
|
|
351
387
|
X509 *current_cert;
|
|
352
|
-
X509 *current_issuer; // cert currently being tested as valid issuer
|
|
353
388
|
X509_CRL *current_crl; // current CRL
|
|
354
389
|
|
|
355
|
-
|
|
356
|
-
|
|
357
|
-
|
|
358
|
-
X509_STORE_CTX *parent; // For CRL path validation: parent context
|
|
390
|
+
X509 *current_crl_issuer; // issuer of current CRL
|
|
391
|
+
int current_crl_score; // score of current CRL
|
|
359
392
|
|
|
360
393
|
CRYPTO_EX_DATA ex_data;
|
|
361
394
|
} /* X509_STORE_CTX */;
|
|
@@ -414,6 +447,147 @@ int X509_policy_check(const STACK_OF(X509) *certs,
|
|
|
414
447
|
const STACK_OF(ASN1_OBJECT) *user_policies,
|
|
415
448
|
unsigned long flags, X509 **out_current_cert);
|
|
416
449
|
|
|
450
|
+
// x509_check_issued_with_callback calls |X509_check_issued|, but allows the
|
|
451
|
+
// verify callback to override the result. It returns one on success and zero on
|
|
452
|
+
// error.
|
|
453
|
+
//
|
|
454
|
+
// TODO(davidben): Reduce the scope of the verify callback and remove this. The
|
|
455
|
+
// callback only runs with |X509_V_FLAG_CB_ISSUER_CHECK|, which is only used by
|
|
456
|
+
// one internal project and rust-openssl, who use it by mistake.
|
|
457
|
+
int x509_check_issued_with_callback(X509_STORE_CTX *ctx, X509 *x, X509 *issuer);
|
|
458
|
+
|
|
459
|
+
// x509v3_bytes_to_hex encodes |len| bytes from |in| to hex and returns a
|
|
460
|
+
// newly-allocated NUL-terminated string containing the result, or NULL on
|
|
461
|
+
// allocation error.
|
|
462
|
+
//
|
|
463
|
+
// This function was historically named |hex_to_string| in OpenSSL. Despite the
|
|
464
|
+
// name, |hex_to_string| converted to hex.
|
|
465
|
+
OPENSSL_EXPORT char *x509v3_bytes_to_hex(const uint8_t *in, size_t len);
|
|
466
|
+
|
|
467
|
+
// x509v3_hex_string_to_bytes decodes |str| in hex and returns a newly-allocated
|
|
468
|
+
// array containing the result, or NULL on error. On success, it sets |*len| to
|
|
469
|
+
// the length of the result. Colon separators between bytes in the input are
|
|
470
|
+
// allowed and ignored.
|
|
471
|
+
//
|
|
472
|
+
// This function was historically named |string_to_hex| in OpenSSL. Despite the
|
|
473
|
+
// name, |string_to_hex| converted from hex.
|
|
474
|
+
unsigned char *x509v3_hex_to_bytes(const char *str, size_t *len);
|
|
475
|
+
|
|
476
|
+
// x509v3_conf_name_matches returns one if |name| is equal to |cmp| or begins
|
|
477
|
+
// with |cmp| followed by '.', and zero otherwise.
|
|
478
|
+
int x509v3_conf_name_matches(const char *name, const char *cmp);
|
|
479
|
+
|
|
480
|
+
// x509v3_looks_like_dns_name returns one if |in| looks like a DNS name and zero
|
|
481
|
+
// otherwise.
|
|
482
|
+
OPENSSL_EXPORT int x509v3_looks_like_dns_name(const unsigned char *in,
|
|
483
|
+
size_t len);
|
|
484
|
+
|
|
485
|
+
// x509v3_cache_extensions fills in a number of fields relating to X.509
|
|
486
|
+
// extensions in |x|. It returns one on success and zero if some extensions were
|
|
487
|
+
// invalid.
|
|
488
|
+
OPENSSL_EXPORT int x509v3_cache_extensions(X509 *x);
|
|
489
|
+
|
|
490
|
+
// x509v3_a2i_ipadd decodes |ipasc| as an IPv4 or IPv6 address. IPv6 addresses
|
|
491
|
+
// use colon-separated syntax while IPv4 addresses use dotted decimal syntax. If
|
|
492
|
+
// it decodes an IPv4 address, it writes the result to the first four bytes of
|
|
493
|
+
// |ipout| and returns four. If it decodes an IPv6 address, it writes the result
|
|
494
|
+
// to all 16 bytes of |ipout| and returns 16. Otherwise, it returns zero.
|
|
495
|
+
int x509v3_a2i_ipadd(unsigned char ipout[16], const char *ipasc);
|
|
496
|
+
|
|
497
|
+
// A |BIT_STRING_BITNAME| is used to contain a list of bit names.
|
|
498
|
+
typedef struct {
|
|
499
|
+
int bitnum;
|
|
500
|
+
const char *lname;
|
|
501
|
+
const char *sname;
|
|
502
|
+
} BIT_STRING_BITNAME;
|
|
503
|
+
|
|
504
|
+
// x509V3_add_value_asn1_string appends a |CONF_VALUE| with the specified name
|
|
505
|
+
// and value to |*extlist|. if |*extlist| is NULL, it sets |*extlist| to a
|
|
506
|
+
// newly-allocated |STACK_OF(CONF_VALUE)| first. It returns one on success and
|
|
507
|
+
// zero on error.
|
|
508
|
+
int x509V3_add_value_asn1_string(const char *name, const ASN1_STRING *value,
|
|
509
|
+
STACK_OF(CONF_VALUE) **extlist);
|
|
510
|
+
|
|
511
|
+
// X509V3_NAME_from_section adds attributes to |nm| by interpreting the
|
|
512
|
+
// key/value pairs in |dn_sk|. It returns one on success and zero on error.
|
|
513
|
+
// |chtype|, which should be one of |MBSTRING_*| constants, determines the
|
|
514
|
+
// character encoding used to interpret values.
|
|
515
|
+
int X509V3_NAME_from_section(X509_NAME *nm, const STACK_OF(CONF_VALUE) *dn_sk,
|
|
516
|
+
int chtype);
|
|
517
|
+
|
|
518
|
+
// X509V3_bool_from_string decodes |str| as a boolean. On success, it returns
|
|
519
|
+
// one and sets |*out_bool| to resulting value. Otherwise, it returns zero.
|
|
520
|
+
int X509V3_bool_from_string(const char *str, ASN1_BOOLEAN *out_bool);
|
|
521
|
+
|
|
522
|
+
// X509V3_get_value_bool decodes |value| as a boolean. On success, it returns
|
|
523
|
+
// one and sets |*out_bool| to the resulting value. Otherwise, it returns zero.
|
|
524
|
+
int X509V3_get_value_bool(const CONF_VALUE *value, ASN1_BOOLEAN *out_bool);
|
|
525
|
+
|
|
526
|
+
// X509V3_get_value_int decodes |value| as an integer. On success, it returns
|
|
527
|
+
// one and sets |*aint| to the resulting value. Otherwise, it returns zero. If
|
|
528
|
+
// |*aint| was non-NULL at the start of the function, it frees the previous
|
|
529
|
+
// value before writing a new one.
|
|
530
|
+
int X509V3_get_value_int(const CONF_VALUE *value, ASN1_INTEGER **aint);
|
|
531
|
+
|
|
532
|
+
// X509V3_get_section behaves like |NCONF_get_section| but queries |ctx|'s
|
|
533
|
+
// config database.
|
|
534
|
+
const STACK_OF(CONF_VALUE) *X509V3_get_section(const X509V3_CTX *ctx,
|
|
535
|
+
const char *section);
|
|
536
|
+
|
|
537
|
+
// X509V3_add_value appends a |CONF_VALUE| containing |name| and |value| to
|
|
538
|
+
// |*extlist|. It returns one on success and zero on error. If |*extlist| is
|
|
539
|
+
// NULL, it sets |*extlist| to a newly-allocated |STACK_OF(CONF_VALUE)|
|
|
540
|
+
// containing the result. Either |name| or |value| may be NULL to omit the
|
|
541
|
+
// field.
|
|
542
|
+
//
|
|
543
|
+
// On failure, if |*extlist| was NULL, |*extlist| will remain NULL when the
|
|
544
|
+
// function returns.
|
|
545
|
+
int X509V3_add_value(const char *name, const char *value,
|
|
546
|
+
STACK_OF(CONF_VALUE) **extlist);
|
|
547
|
+
|
|
548
|
+
// X509V3_add_value_bool behaves like |X509V3_add_value| but stores the value
|
|
549
|
+
// "TRUE" if |asn1_bool| is non-zero and "FALSE" otherwise.
|
|
550
|
+
int X509V3_add_value_bool(const char *name, int asn1_bool,
|
|
551
|
+
STACK_OF(CONF_VALUE) **extlist);
|
|
552
|
+
|
|
553
|
+
// X509V3_add_value_bool behaves like |X509V3_add_value| but stores a string
|
|
554
|
+
// representation of |aint|. Note this string representation may be decimal or
|
|
555
|
+
// hexadecimal, depending on the size of |aint|.
|
|
556
|
+
int X509V3_add_value_int(const char *name, const ASN1_INTEGER *aint,
|
|
557
|
+
STACK_OF(CONF_VALUE) **extlist);
|
|
558
|
+
|
|
559
|
+
STACK_OF(CONF_VALUE) *X509V3_parse_list(const char *line);
|
|
560
|
+
|
|
561
|
+
#define X509V3_conf_err(val) \
|
|
562
|
+
ERR_add_error_data(6, "section:", (val)->section, ",name:", (val)->name, \
|
|
563
|
+
",value:", (val)->value);
|
|
564
|
+
|
|
565
|
+
// GENERAL_NAME_cmp returns zero if |a| and |b| are equal and a non-zero
|
|
566
|
+
// value otherwise. Note this function does not provide a comparison suitable
|
|
567
|
+
// for sorting.
|
|
568
|
+
//
|
|
569
|
+
// This function is exported for testing.
|
|
570
|
+
OPENSSL_EXPORT int GENERAL_NAME_cmp(const GENERAL_NAME *a,
|
|
571
|
+
const GENERAL_NAME *b);
|
|
572
|
+
|
|
573
|
+
// X509_VERIFY_PARAM_lookup returns a pre-defined |X509_VERIFY_PARAM| named by
|
|
574
|
+
// |name|, or NULL if no such name is defined.
|
|
575
|
+
const X509_VERIFY_PARAM *X509_VERIFY_PARAM_lookup(const char *name);
|
|
576
|
+
|
|
577
|
+
GENERAL_NAME *v2i_GENERAL_NAME(const X509V3_EXT_METHOD *method,
|
|
578
|
+
const X509V3_CTX *ctx, const CONF_VALUE *cnf);
|
|
579
|
+
GENERAL_NAME *v2i_GENERAL_NAME_ex(GENERAL_NAME *out,
|
|
580
|
+
const X509V3_EXT_METHOD *method,
|
|
581
|
+
const X509V3_CTX *ctx, const CONF_VALUE *cnf,
|
|
582
|
+
int is_nc);
|
|
583
|
+
GENERAL_NAMES *v2i_GENERAL_NAMES(const X509V3_EXT_METHOD *method,
|
|
584
|
+
const X509V3_CTX *ctx,
|
|
585
|
+
const STACK_OF(CONF_VALUE) *nval);
|
|
586
|
+
|
|
587
|
+
// TODO(https://crbug.com/boringssl/407): Make |issuer| const once the
|
|
588
|
+
// |X509_NAME| issue is resolved.
|
|
589
|
+
int X509_check_akid(X509 *issuer, const AUTHORITY_KEYID *akid);
|
|
590
|
+
|
|
417
591
|
|
|
418
592
|
#if defined(__cplusplus)
|
|
419
593
|
} // extern C
|
|
@@ -19,10 +19,8 @@
|
|
|
19
19
|
#include <openssl/mem.h>
|
|
20
20
|
#include <openssl/obj.h>
|
|
21
21
|
#include <openssl/stack.h>
|
|
22
|
-
#include <openssl/x509v3.h>
|
|
23
22
|
|
|
24
23
|
#include "../internal.h"
|
|
25
|
-
#include "../x509v3/internal.h"
|
|
26
24
|
#include "internal.h"
|
|
27
25
|
|
|
28
26
|
|
|
@@ -107,11 +105,10 @@ static void x509_policy_node_free(X509_POLICY_NODE *node) {
|
|
|
107
105
|
|
|
108
106
|
static X509_POLICY_NODE *x509_policy_node_new(const ASN1_OBJECT *policy) {
|
|
109
107
|
assert(!is_any_policy(policy));
|
|
110
|
-
X509_POLICY_NODE *node =
|
|
108
|
+
X509_POLICY_NODE *node = OPENSSL_zalloc(sizeof(X509_POLICY_NODE));
|
|
111
109
|
if (node == NULL) {
|
|
112
110
|
return NULL;
|
|
113
111
|
}
|
|
114
|
-
OPENSSL_memset(node, 0, sizeof(X509_POLICY_NODE));
|
|
115
112
|
node->policy = OBJ_dup(policy);
|
|
116
113
|
node->parent_policies = sk_ASN1_OBJECT_new_null();
|
|
117
114
|
if (node->policy == NULL || node->parent_policies == NULL) {
|
|
@@ -134,11 +131,10 @@ static void x509_policy_level_free(X509_POLICY_LEVEL *level) {
|
|
|
134
131
|
}
|
|
135
132
|
|
|
136
133
|
static X509_POLICY_LEVEL *x509_policy_level_new(void) {
|
|
137
|
-
X509_POLICY_LEVEL *level =
|
|
134
|
+
X509_POLICY_LEVEL *level = OPENSSL_zalloc(sizeof(X509_POLICY_LEVEL));
|
|
138
135
|
if (level == NULL) {
|
|
139
136
|
return NULL;
|
|
140
137
|
}
|
|
141
|
-
OPENSSL_memset(level, 0, sizeof(X509_POLICY_LEVEL));
|
|
142
138
|
level->nodes = sk_X509_POLICY_NODE_new(x509_policy_node_cmp);
|
|
143
139
|
if (level->nodes == NULL) {
|
|
144
140
|
x509_policy_level_free(level);
|
|
@@ -145,7 +145,9 @@ static int rsa_md_to_mgf1(X509_ALGOR **palg, const EVP_MD *mgf1md) {
|
|
|
145
145
|
if (!*palg) {
|
|
146
146
|
goto err;
|
|
147
147
|
}
|
|
148
|
-
X509_ALGOR_set0(*palg, OBJ_nid2obj(NID_mgf1), V_ASN1_SEQUENCE, stmp)
|
|
148
|
+
if (!X509_ALGOR_set0(*palg, OBJ_nid2obj(NID_mgf1), V_ASN1_SEQUENCE, stmp)) {
|
|
149
|
+
goto err;
|
|
150
|
+
}
|
|
149
151
|
stmp = NULL;
|
|
150
152
|
|
|
151
153
|
err:
|
|
@@ -235,7 +237,9 @@ int x509_rsa_ctx_to_pss(EVP_MD_CTX *ctx, X509_ALGOR *algor) {
|
|
|
235
237
|
goto err;
|
|
236
238
|
}
|
|
237
239
|
|
|
238
|
-
X509_ALGOR_set0(algor, OBJ_nid2obj(NID_rsassaPss), V_ASN1_SEQUENCE, os)
|
|
240
|
+
if (!X509_ALGOR_set0(algor, OBJ_nid2obj(NID_rsassaPss), V_ASN1_SEQUENCE, os)) {
|
|
241
|
+
goto err;
|
|
242
|
+
}
|
|
239
243
|
os = NULL;
|
|
240
244
|
ret = 1;
|
|
241
245
|
|
|
@@ -62,7 +62,6 @@
|
|
|
62
62
|
#include <openssl/err.h>
|
|
63
63
|
#include <openssl/objects.h>
|
|
64
64
|
#include <openssl/x509.h>
|
|
65
|
-
#include <openssl/x509v3.h>
|
|
66
65
|
|
|
67
66
|
#include "internal.h"
|
|
68
67
|
|
|
@@ -81,7 +80,6 @@ int X509_REQ_print_fp(FILE *fp, X509_REQ *x) {
|
|
|
81
80
|
int X509_REQ_print_ex(BIO *bio, X509_REQ *x, unsigned long nmflags,
|
|
82
81
|
unsigned long cflag) {
|
|
83
82
|
long l;
|
|
84
|
-
EVP_PKEY *pkey;
|
|
85
83
|
STACK_OF(X509_ATTRIBUTE) *sk;
|
|
86
84
|
char mlch = ' ';
|
|
87
85
|
|
|
@@ -128,13 +126,12 @@ int X509_REQ_print_ex(BIO *bio, X509_REQ *x, unsigned long nmflags,
|
|
|
128
126
|
goto err;
|
|
129
127
|
}
|
|
130
128
|
|
|
131
|
-
pkey =
|
|
129
|
+
const EVP_PKEY *pkey = X509_REQ_get0_pubkey(x);
|
|
132
130
|
if (pkey == NULL) {
|
|
133
131
|
BIO_printf(bio, "%12sUnable to load Public Key\n", "");
|
|
134
132
|
ERR_print_errors(bio);
|
|
135
133
|
} else {
|
|
136
134
|
EVP_PKEY_print_public(bio, pkey, 16, NULL);
|
|
137
|
-
EVP_PKEY_free(pkey);
|
|
138
135
|
}
|
|
139
136
|
}
|
|
140
137
|
|
|
@@ -64,7 +64,6 @@
|
|
|
64
64
|
#include <openssl/mem.h>
|
|
65
65
|
#include <openssl/obj.h>
|
|
66
66
|
#include <openssl/x509.h>
|
|
67
|
-
#include <openssl/x509v3.h>
|
|
68
67
|
|
|
69
68
|
#include "internal.h"
|
|
70
69
|
|
|
@@ -213,13 +212,12 @@ int X509_print_ex(BIO *bp, X509 *x, unsigned long nmflags,
|
|
|
213
212
|
return 0;
|
|
214
213
|
}
|
|
215
214
|
|
|
216
|
-
EVP_PKEY *pkey =
|
|
215
|
+
const EVP_PKEY *pkey = X509_get0_pubkey(x);
|
|
217
216
|
if (pkey == NULL) {
|
|
218
217
|
BIO_printf(bp, "%12sUnable to load Public Key\n", "");
|
|
219
218
|
ERR_print_errors(bp);
|
|
220
219
|
} else {
|
|
221
220
|
EVP_PKEY_print_public(bp, pkey, 16, NULL);
|
|
222
|
-
EVP_PKEY_free(pkey);
|
|
223
221
|
}
|
|
224
222
|
}
|
|
225
223
|
|