grpc 1.68.1 → 1.74.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/Makefile +379 -370
- data/include/grpc/create_channel_from_endpoint.h +54 -0
- data/include/grpc/credentials.h +11 -5
- data/include/grpc/event_engine/endpoint_config.h +5 -5
- data/include/grpc/event_engine/event_engine.h +232 -16
- data/include/grpc/event_engine/internal/write_event.h +34 -0
- data/include/grpc/event_engine/memory_request.h +3 -3
- data/include/grpc/grpc_posix.h +20 -1
- data/include/grpc/impl/channel_arg_names.h +83 -55
- data/include/grpc/impl/compression_types.h +3 -2
- data/include/grpc/impl/slice_type.h +1 -1
- data/include/grpc/module.modulemap +1 -0
- data/include/grpc/status.h +1 -1
- data/include/grpc/support/atm.h +0 -13
- data/include/grpc/support/json.h +43 -37
- data/include/grpc/support/port_platform.h +8 -5
- data/include/grpc/support/workaround_list.h +1 -4
- data/src/core/call/call_arena_allocator.cc +27 -0
- data/src/core/call/call_arena_allocator.h +91 -0
- data/src/core/call/call_destination.h +76 -0
- data/src/core/call/call_filters.cc +148 -0
- data/src/core/call/call_filters.h +1976 -0
- data/src/core/call/call_finalization.h +88 -0
- data/src/core/call/call_spine.cc +90 -0
- data/src/core/call/call_spine.h +646 -0
- data/src/core/call/call_state.cc +39 -0
- data/src/core/call/call_state.h +1154 -0
- data/src/core/call/client_call.cc +458 -0
- data/src/core/call/client_call.h +192 -0
- data/src/core/call/custom_metadata.h +30 -0
- data/src/core/call/interception_chain.cc +155 -0
- data/src/core/call/interception_chain.h +278 -0
- data/src/core/call/message.cc +44 -0
- data/src/core/call/message.h +70 -0
- data/src/core/call/metadata.cc +61 -0
- data/src/core/call/metadata.h +218 -0
- data/src/core/call/metadata_batch.cc +383 -0
- data/src/core/call/metadata_batch.h +1668 -0
- data/src/core/call/metadata_compression_traits.h +66 -0
- data/src/core/call/metadata_info.cc +73 -0
- data/src/core/call/metadata_info.h +85 -0
- data/src/core/call/parsed_metadata.cc +35 -0
- data/src/core/call/parsed_metadata.h +429 -0
- data/src/core/call/request_buffer.cc +224 -0
- data/src/core/call/request_buffer.h +192 -0
- data/src/core/call/security_context.cc +125 -0
- data/src/core/call/security_context.h +114 -0
- data/src/core/call/server_call.cc +259 -0
- data/src/core/call/server_call.h +169 -0
- data/src/core/call/simple_slice_based_metadata.h +53 -0
- data/src/core/call/status_util.cc +153 -0
- data/src/core/call/status_util.h +80 -0
- data/src/core/channelz/channel_trace.cc +217 -111
- data/src/core/channelz/channel_trace.h +389 -64
- data/src/core/channelz/channelz.cc +480 -178
- data/src/core/channelz/channelz.h +429 -93
- data/src/core/channelz/channelz_registry.cc +323 -124
- data/src/core/channelz/channelz_registry.h +203 -21
- data/src/core/channelz/property_list.cc +357 -0
- data/src/core/channelz/property_list.h +202 -0
- data/src/core/channelz/ztrace_collector.h +316 -0
- data/src/core/client_channel/backup_poller.cc +18 -3
- data/src/core/client_channel/client_channel.cc +86 -99
- data/src/core/client_channel/client_channel.h +6 -5
- data/src/core/client_channel/client_channel_args.h +21 -0
- data/src/core/client_channel/client_channel_filter.cc +102 -198
- data/src/core/client_channel/client_channel_filter.h +12 -12
- data/src/core/client_channel/client_channel_internal.h +1 -1
- data/src/core/client_channel/client_channel_plugin.cc +3 -2
- data/src/core/client_channel/client_channel_service_config.cc +1 -1
- data/src/core/client_channel/client_channel_service_config.h +6 -6
- data/src/core/client_channel/config_selector.h +10 -4
- data/src/core/client_channel/connector.h +0 -3
- data/src/core/client_channel/direct_channel.cc +5 -5
- data/src/core/client_channel/direct_channel.h +1 -1
- data/src/core/client_channel/dynamic_filters.cc +5 -7
- data/src/core/client_channel/dynamic_filters.h +1 -2
- data/src/core/client_channel/global_subchannel_pool.cc +71 -7
- data/src/core/client_channel/global_subchannel_pool.h +37 -4
- data/src/core/client_channel/lb_metadata.cc +7 -8
- data/src/core/client_channel/lb_metadata.h +4 -4
- data/src/core/client_channel/load_balanced_call_destination.cc +6 -6
- data/src/core/client_channel/load_balanced_call_destination.h +1 -1
- data/src/core/client_channel/retry_filter.cc +22 -28
- data/src/core/client_channel/retry_filter.h +11 -8
- data/src/core/client_channel/retry_filter_legacy_call_data.cc +58 -56
- data/src/core/client_channel/retry_filter_legacy_call_data.h +14 -12
- data/src/core/client_channel/retry_interceptor.cc +394 -0
- data/src/core/client_channel/retry_interceptor.h +158 -0
- data/src/core/client_channel/retry_service_config.cc +3 -3
- data/src/core/client_channel/retry_service_config.h +18 -5
- data/src/core/client_channel/retry_throttle.cc +69 -73
- data/src/core/client_channel/retry_throttle.h +23 -37
- data/src/core/client_channel/subchannel.cc +93 -105
- data/src/core/client_channel/subchannel.h +15 -14
- data/src/core/client_channel/subchannel_pool_interface.cc +5 -6
- data/src/core/client_channel/subchannel_pool_interface.h +11 -1
- data/src/core/client_channel/subchannel_stream_client.cc +14 -12
- data/src/core/client_channel/subchannel_stream_client.h +5 -5
- data/src/core/config/config_vars.cc +164 -0
- data/src/core/config/config_vars.h +137 -0
- data/src/core/config/config_vars_non_generated.cc +49 -0
- data/src/core/config/core_configuration.cc +151 -0
- data/src/core/config/core_configuration.h +335 -0
- data/src/core/config/load_config.cc +78 -0
- data/src/core/config/load_config.h +54 -0
- data/src/core/credentials/call/call_credentials.h +157 -0
- data/src/core/credentials/call/call_creds_registry.h +125 -0
- data/src/core/credentials/call/call_creds_registry_init.cc +91 -0
- data/src/core/credentials/call/call_creds_util.cc +97 -0
- data/src/core/credentials/call/call_creds_util.h +43 -0
- data/src/core/credentials/call/composite/composite_call_credentials.cc +115 -0
- data/src/core/credentials/call/composite/composite_call_credentials.h +82 -0
- data/src/core/credentials/call/external/aws_external_account_credentials.cc +528 -0
- data/src/core/credentials/call/external/aws_external_account_credentials.h +117 -0
- data/src/core/credentials/call/external/aws_request_signer.cc +231 -0
- data/src/core/credentials/call/external/aws_request_signer.h +72 -0
- data/src/core/credentials/call/external/external_account_credentials.cc +641 -0
- data/src/core/credentials/call/external/external_account_credentials.h +207 -0
- data/src/core/credentials/call/external/file_external_account_credentials.cc +174 -0
- data/src/core/credentials/call/external/file_external_account_credentials.h +80 -0
- data/src/core/credentials/call/external/url_external_account_credentials.cc +222 -0
- data/src/core/credentials/call/external/url_external_account_credentials.h +73 -0
- data/src/core/credentials/call/gcp_service_account_identity/gcp_service_account_identity_credentials.cc +154 -0
- data/src/core/credentials/call/gcp_service_account_identity/gcp_service_account_identity_credentials.h +90 -0
- data/src/core/credentials/call/iam/iam_credentials.cc +78 -0
- data/src/core/credentials/call/iam/iam_credentials.h +66 -0
- data/src/core/credentials/call/json_util.cc +69 -0
- data/src/core/credentials/call/json_util.h +43 -0
- data/src/core/credentials/call/jwt/json_token.cc +318 -0
- data/src/core/credentials/call/jwt/json_token.h +78 -0
- data/src/core/credentials/call/jwt/jwt_credentials.cc +181 -0
- data/src/core/credentials/call/jwt/jwt_credentials.h +106 -0
- data/src/core/credentials/call/jwt/jwt_verifier.cc +988 -0
- data/src/core/credentials/call/jwt/jwt_verifier.h +122 -0
- data/src/core/credentials/call/jwt_token_file/jwt_token_file_call_credentials.cc +86 -0
- data/src/core/credentials/call/jwt_token_file/jwt_token_file_call_credentials.h +74 -0
- data/src/core/credentials/call/jwt_util.cc +70 -0
- data/src/core/credentials/call/jwt_util.h +32 -0
- data/src/core/credentials/call/oauth2/oauth2_credentials.cc +656 -0
- data/src/core/credentials/call/oauth2/oauth2_credentials.h +197 -0
- data/src/core/credentials/call/plugin/plugin_credentials.cc +201 -0
- data/src/core/credentials/call/plugin/plugin_credentials.h +123 -0
- data/src/core/credentials/call/token_fetcher/token_fetcher_credentials.cc +304 -0
- data/src/core/credentials/call/token_fetcher/token_fetcher_credentials.h +181 -0
- data/src/core/credentials/transport/alts/alts_credentials.cc +116 -0
- data/src/core/credentials/transport/alts/alts_credentials.h +127 -0
- data/src/core/credentials/transport/alts/alts_security_connector.cc +304 -0
- data/src/core/credentials/transport/alts/alts_security_connector.h +78 -0
- data/src/core/credentials/transport/alts/check_gcp_environment.cc +71 -0
- data/src/core/credentials/transport/alts/check_gcp_environment.h +57 -0
- data/src/core/credentials/transport/alts/check_gcp_environment_linux.cc +67 -0
- data/src/core/credentials/transport/alts/check_gcp_environment_no_op.cc +32 -0
- data/src/core/credentials/transport/alts/check_gcp_environment_windows.cc +101 -0
- data/src/core/credentials/transport/alts/grpc_alts_credentials_client_options.cc +123 -0
- data/src/core/credentials/transport/alts/grpc_alts_credentials_options.cc +45 -0
- data/src/core/credentials/transport/alts/grpc_alts_credentials_options.h +74 -0
- data/src/core/credentials/transport/alts/grpc_alts_credentials_server_options.cc +55 -0
- data/src/core/credentials/transport/channel_creds_registry.h +126 -0
- data/src/core/credentials/transport/channel_creds_registry_init.cc +245 -0
- data/src/core/credentials/transport/composite/composite_channel_credentials.cc +68 -0
- data/src/core/credentials/transport/composite/composite_channel_credentials.h +89 -0
- data/src/core/credentials/transport/fake/fake_credentials.cc +81 -0
- data/src/core/credentials/transport/fake/fake_credentials.h +92 -0
- data/src/core/credentials/transport/fake/fake_security_connector.cc +314 -0
- data/src/core/credentials/transport/fake/fake_security_connector.h +42 -0
- data/src/core/credentials/transport/google_default/credentials_generic.cc +38 -0
- data/src/core/credentials/transport/google_default/google_default_credentials.cc +510 -0
- data/src/core/credentials/transport/google_default/google_default_credentials.h +101 -0
- data/src/core/credentials/transport/insecure/insecure_credentials.cc +71 -0
- data/src/core/credentials/transport/insecure/insecure_credentials.h +61 -0
- data/src/core/credentials/transport/insecure/insecure_security_connector.cc +118 -0
- data/src/core/credentials/transport/insecure/insecure_security_connector.h +102 -0
- data/src/core/credentials/transport/local/local_credentials.cc +68 -0
- data/src/core/credentials/transport/local/local_credentials.h +77 -0
- data/src/core/credentials/transport/local/local_security_connector.cc +306 -0
- data/src/core/credentials/transport/local/local_security_connector.h +62 -0
- data/src/core/credentials/transport/security_connector.cc +123 -0
- data/src/core/credentials/transport/security_connector.h +197 -0
- data/src/core/credentials/transport/ssl/ssl_credentials.cc +473 -0
- data/src/core/credentials/transport/ssl/ssl_credentials.h +144 -0
- data/src/core/credentials/transport/ssl/ssl_security_connector.cc +433 -0
- data/src/core/credentials/transport/ssl/ssl_security_connector.h +82 -0
- data/src/core/credentials/transport/tls/certificate_provider_factory.h +69 -0
- data/src/core/credentials/transport/tls/certificate_provider_registry.cc +50 -0
- data/src/core/credentials/transport/tls/certificate_provider_registry.h +75 -0
- data/src/core/credentials/transport/tls/grpc_tls_certificate_distributor.cc +337 -0
- data/src/core/credentials/transport/tls/grpc_tls_certificate_distributor.h +215 -0
- data/src/core/credentials/transport/tls/grpc_tls_certificate_match.cc +84 -0
- data/src/core/credentials/transport/tls/grpc_tls_certificate_provider.cc +490 -0
- data/src/core/credentials/transport/tls/grpc_tls_certificate_provider.h +206 -0
- data/src/core/credentials/transport/tls/grpc_tls_certificate_verifier.cc +237 -0
- data/src/core/credentials/transport/tls/grpc_tls_certificate_verifier.h +169 -0
- data/src/core/credentials/transport/tls/grpc_tls_credentials_options.cc +161 -0
- data/src/core/credentials/transport/tls/grpc_tls_credentials_options.h +145 -0
- data/src/core/credentials/transport/tls/grpc_tls_crl_provider.cc +257 -0
- data/src/core/credentials/transport/tls/grpc_tls_crl_provider.h +129 -0
- data/src/core/credentials/transport/tls/load_system_roots.h +35 -0
- data/src/core/credentials/transport/tls/load_system_roots_fallback.cc +36 -0
- data/src/core/credentials/transport/tls/load_system_roots_supported.cc +166 -0
- data/src/core/credentials/transport/tls/load_system_roots_supported.h +44 -0
- data/src/core/credentials/transport/tls/load_system_roots_windows.cc +85 -0
- data/src/core/credentials/transport/tls/ssl_utils.cc +646 -0
- data/src/core/credentials/transport/tls/ssl_utils.h +193 -0
- data/src/core/credentials/transport/tls/tls_credentials.cc +170 -0
- data/src/core/credentials/transport/tls/tls_credentials.h +75 -0
- data/src/core/credentials/transport/tls/tls_security_connector.cc +817 -0
- data/src/core/credentials/transport/tls/tls_security_connector.h +285 -0
- data/src/core/credentials/transport/tls/tls_utils.cc +127 -0
- data/src/core/credentials/transport/tls/tls_utils.h +50 -0
- data/src/core/credentials/transport/transport_credentials.cc +158 -0
- data/src/core/credentials/transport/transport_credentials.h +182 -0
- data/src/core/credentials/transport/xds/xds_credentials.cc +228 -0
- data/src/core/credentials/transport/xds/xds_credentials.h +110 -0
- data/src/core/ext/filters/backend_metrics/backend_metric_filter.cc +6 -13
- data/src/core/ext/filters/backend_metrics/backend_metric_filter.h +7 -7
- data/src/core/ext/filters/channel_idle/legacy_channel_idle_filter.cc +17 -11
- data/src/core/ext/filters/fault_injection/fault_injection_filter.cc +11 -18
- data/src/core/ext/filters/fault_injection/fault_injection_filter.h +6 -6
- data/src/core/ext/filters/fault_injection/fault_injection_service_config_parser.cc +2 -2
- data/src/core/ext/filters/fault_injection/fault_injection_service_config_parser.h +1 -1
- data/src/core/ext/filters/gcp_authentication/gcp_authentication_filter.cc +11 -18
- data/src/core/ext/filters/gcp_authentication/gcp_authentication_filter.h +21 -21
- data/src/core/ext/filters/gcp_authentication/gcp_authentication_service_config_parser.cc +1 -1
- data/src/core/ext/filters/gcp_authentication/gcp_authentication_service_config_parser.h +2 -2
- data/src/core/ext/filters/http/client/http_client_filter.cc +1 -6
- data/src/core/ext/filters/http/client/http_client_filter.h +5 -5
- data/src/core/ext/filters/http/client_authority_filter.cc +5 -12
- data/src/core/ext/filters/http/client_authority_filter.h +6 -6
- data/src/core/ext/filters/http/http_filters_plugin.cc +1 -1
- data/src/core/ext/filters/http/message_compress/compression_filter.cc +21 -25
- data/src/core/ext/filters/http/message_compress/compression_filter.h +56 -18
- data/src/core/ext/filters/http/server/http_server_filter.cc +5 -10
- data/src/core/ext/filters/http/server/http_server_filter.h +22 -10
- data/src/core/ext/filters/message_size/message_size_filter.cc +15 -27
- data/src/core/ext/filters/message_size/message_size_filter.h +21 -22
- data/src/core/ext/filters/rbac/rbac_filter.cc +3 -10
- data/src/core/ext/filters/rbac/rbac_filter.h +6 -6
- data/src/core/ext/filters/rbac/rbac_service_config_parser.cc +3 -3
- data/src/core/ext/filters/rbac/rbac_service_config_parser.h +1 -1
- data/src/core/ext/filters/stateful_session/stateful_session_filter.cc +3 -8
- data/src/core/ext/filters/stateful_session/stateful_session_filter.h +4 -4
- data/src/core/ext/filters/stateful_session/stateful_session_service_config_parser.cc +1 -1
- data/src/core/ext/filters/stateful_session/stateful_session_service_config_parser.h +3 -3
- data/src/core/ext/transport/chttp2/chttp2_plugin.cc +40 -0
- data/src/core/ext/transport/chttp2/client/chttp2_connector.cc +134 -153
- data/src/core/ext/transport/chttp2/client/chttp2_connector.h +7 -3
- data/src/core/ext/transport/chttp2/server/chttp2_server.cc +356 -769
- data/src/core/ext/transport/chttp2/server/chttp2_server.h +197 -13
- data/src/core/ext/transport/chttp2/transport/bin_decoder.cc +4 -3
- data/src/core/ext/transport/chttp2/transport/bin_encoder.cc +3 -3
- data/src/core/ext/transport/chttp2/transport/call_tracer_wrapper.cc +2 -2
- data/src/core/ext/transport/chttp2/transport/call_tracer_wrapper.h +5 -7
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.cc +402 -167
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.h +7 -13
- data/src/core/ext/transport/chttp2/transport/decode_huff.cc +1239 -3514
- data/src/core/ext/transport/chttp2/transport/decode_huff.h +1008 -1486
- data/src/core/ext/transport/chttp2/transport/flow_control.cc +3 -3
- data/src/core/ext/transport/chttp2/transport/flow_control.h +26 -3
- data/src/core/ext/transport/chttp2/transport/frame.cc +326 -167
- data/src/core/ext/transport/chttp2/transport/frame.h +126 -8
- data/src/core/ext/transport/chttp2/transport/frame_data.cc +25 -8
- data/src/core/ext/transport/chttp2/transport/frame_data.h +2 -0
- data/src/core/ext/transport/chttp2/transport/frame_goaway.cc +23 -11
- data/src/core/ext/transport/chttp2/transport/frame_goaway.h +5 -3
- data/src/core/ext/transport/chttp2/transport/frame_ping.cc +2 -0
- data/src/core/ext/transport/chttp2/transport/frame_rst_stream.cc +17 -7
- data/src/core/ext/transport/chttp2/transport/frame_rst_stream.h +3 -1
- data/src/core/ext/transport/chttp2/transport/frame_security.cc +80 -0
- data/src/core/ext/transport/chttp2/transport/frame_security.h +44 -0
- data/src/core/ext/transport/chttp2/transport/frame_settings.cc +43 -8
- data/src/core/ext/transport/chttp2/transport/frame_window_update.cc +21 -0
- data/src/core/ext/transport/chttp2/transport/header_assembler.h +299 -0
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.cc +12 -5
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.h +7 -5
- data/src/core/ext/transport/chttp2/transport/hpack_encoder_table.h +3 -3
- data/src/core/ext/transport/chttp2/transport/hpack_parse_result.h +3 -3
- data/src/core/ext/transport/chttp2/transport/hpack_parser.cc +36 -35
- data/src/core/ext/transport/chttp2/transport/hpack_parser.h +7 -8
- data/src/core/ext/transport/chttp2/transport/hpack_parser_table.cc +11 -5
- data/src/core/ext/transport/chttp2/transport/hpack_parser_table.h +14 -3
- data/src/core/ext/transport/chttp2/transport/http2_client_transport.cc +1017 -0
- data/src/core/ext/transport/chttp2/transport/http2_client_transport.h +593 -0
- data/src/core/ext/transport/chttp2/transport/http2_settings.cc +21 -10
- data/src/core/ext/transport/chttp2/transport/http2_settings.h +36 -5
- data/src/core/ext/transport/chttp2/transport/http2_stats_collector.cc +30 -0
- data/src/core/ext/transport/chttp2/transport/http2_stats_collector.h +33 -0
- data/src/core/ext/transport/chttp2/transport/http2_status.h +414 -0
- data/src/core/ext/transport/chttp2/transport/http2_transport.cc +43 -0
- data/src/core/ext/transport/chttp2/transport/http2_transport.h +65 -0
- data/src/core/ext/transport/chttp2/transport/http2_ztrace_collector.h +223 -0
- data/src/core/ext/transport/chttp2/transport/internal.h +90 -23
- data/src/core/ext/transport/chttp2/transport/internal_channel_arg_names.h +24 -0
- data/src/core/ext/transport/chttp2/transport/keepalive.cc +105 -0
- data/src/core/ext/transport/chttp2/transport/keepalive.h +138 -0
- data/src/core/ext/transport/chttp2/transport/legacy_frame.h +1 -0
- data/src/core/ext/transport/chttp2/transport/message_assembler.h +185 -0
- data/src/core/ext/transport/chttp2/transport/parsing.cc +91 -43
- data/src/core/ext/transport/chttp2/transport/ping_abuse_policy.cc +1 -1
- data/src/core/ext/transport/chttp2/transport/ping_callbacks.cc +2 -2
- data/src/core/ext/transport/chttp2/transport/ping_callbacks.h +21 -2
- data/src/core/ext/transport/chttp2/transport/ping_promise.cc +151 -0
- data/src/core/ext/transport/chttp2/transport/ping_promise.h +180 -0
- data/src/core/ext/transport/chttp2/transport/ping_rate_policy.cc +17 -20
- data/src/core/ext/transport/chttp2/transport/ping_rate_policy.h +19 -2
- data/src/core/ext/transport/chttp2/transport/stream_lists.cc +40 -1
- data/src/core/ext/transport/chttp2/transport/transport_common.cc +19 -0
- data/src/core/ext/transport/chttp2/transport/transport_common.h +27 -0
- data/src/core/ext/transport/chttp2/transport/varint.cc +4 -4
- data/src/core/ext/transport/chttp2/transport/write_size_policy.h +1 -1
- data/src/core/ext/transport/chttp2/transport/writing.cc +109 -77
- data/src/core/ext/transport/inproc/inproc_transport.cc +10 -7
- data/src/core/ext/transport/inproc/legacy_inproc_transport.cc +23 -14
- data/src/core/ext/upb-gen/envoy/admin/v3/certs.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/certs.upb_minitable.c +8 -8
- data/src/core/ext/upb-gen/envoy/admin/v3/certs.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/clusters.upb.h +68 -68
- data/src/core/ext/upb-gen/envoy/admin/v3/clusters.upb_minitable.c +34 -34
- data/src/core/ext/upb-gen/envoy/admin/v3/clusters.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump.upb_minitable.c +10 -10
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump_shared.upb.h +20 -18
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump_shared.upb_minitable.c +44 -44
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump_shared.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/init_dump.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/init_dump.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/admin/v3/init_dump.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/listeners.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/listeners.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/admin/v3/listeners.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/memory.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/memory.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/metrics.upb.h +9 -9
- data/src/core/ext/upb-gen/envoy/admin/v3/metrics.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/admin/v3/metrics.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/mutex_stats.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/mutex_stats.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/server_info.upb.h +149 -133
- data/src/core/ext/upb-gen/envoy/admin/v3/server_info.upb_minitable.c +76 -75
- data/src/core/ext/upb-gen/envoy/admin/v3/server_info.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/tap.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/tap.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/admin/v3/tap.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/annotations/deprecation.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/annotations/deprecation.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/annotations/resource.upb.h +5 -5
- data/src/core/ext/upb-gen/envoy/annotations/resource.upb_minitable.c +1 -1
- data/src/core/ext/upb-gen/envoy/annotations/resource.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/accesslog/v3/accesslog.upb.h +41 -29
- data/src/core/ext/upb-gen/envoy/config/accesslog/v3/accesslog.upb_minitable.c +29 -29
- data/src/core/ext/upb-gen/envoy/config/accesslog/v3/accesslog.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb.h +231 -243
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb_minitable.c +104 -104
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/circuit_breaker.upb.h +30 -30
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/circuit_breaker.upb_minitable.c +15 -15
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/circuit_breaker.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb.h +367 -349
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb_minitable.c +152 -150
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/filter.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/filter.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/filter.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/outlier_detection.upb.h +61 -61
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/outlier_detection.upb_minitable.c +16 -16
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/outlier_detection.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/common/matcher/v3/matcher.upb.h +53 -49
- data/src/core/ext/upb-gen/envoy/config/common/matcher/v3/matcher.upb_minitable.c +31 -31
- data/src/core/ext/upb-gen/envoy/config/common/matcher/v3/matcher.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/address.upb.h +44 -32
- data/src/core/ext/upb-gen/envoy/config/core/v3/address.upb_minitable.c +26 -26
- data/src/core/ext/upb-gen/envoy/config/core/v3/address.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/backoff.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/backoff.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/backoff.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb.h +329 -262
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb_minitable.c +126 -100
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb_minitable.h +5 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/config_source.upb.h +61 -57
- data/src/core/ext/upb-gen/envoy/config/core/v3/config_source.upb_minitable.c +31 -31
- data/src/core/ext/upb-gen/envoy/config/core/v3/config_source.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/event_service_config.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/event_service_config.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/event_service_config.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/extension.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/extension.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/extension.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_method_list.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_method_list.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_method_list.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_service.upb.h +91 -95
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_service.upb_minitable.c +35 -35
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_service.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/health_check.upb.h +115 -103
- data/src/core/ext/upb-gen/envoy/config/core/v3/health_check.upb_minitable.c +44 -44
- data/src/core/ext/upb-gen/envoy/config/core/v3/health_check.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_uri.upb.h +19 -15
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_uri.upb_minitable.c +7 -7
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_uri.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb.h +216 -117
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb_minitable.c +71 -65
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/proxy_protocol.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/proxy_protocol.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/proxy_protocol.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/resolver.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/resolver.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/resolver.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_cmsg_headers.upb.h +151 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_cmsg_headers.upb_minitable.c +60 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_cmsg_headers.upb_minitable.h +32 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb.h +232 -21
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb_minitable.c +65 -17
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb_minitable.h +9 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb.h +34 -30
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb_minitable.c +12 -12
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/udp_socket_config.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/udp_socket_config.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/udp_socket_config.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint.upb.h +15 -40
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint.upb_minitable.c +10 -10
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint_components.upb.h +52 -44
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint_components.upb_minitable.c +30 -30
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint_components.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/load_report.upb.h +27 -27
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/load_report.upb_minitable.c +15 -15
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/load_report.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/api_listener.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/api_listener.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/listener/v3/api_listener.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener.upb.h +150 -142
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener.upb_minitable.c +56 -56
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb.h +80 -167
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb_minitable.c +37 -58
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb_minitable.h +3 -5
- data/src/core/ext/upb-gen/envoy/config/listener/v3/quic_config.upb.h +88 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/quic_config.upb_minitable.c +26 -4
- data/src/core/ext/upb-gen/envoy/config/listener/v3/quic_config.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/udp_listener_config.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/udp_listener_config.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/listener/v3/udp_listener_config.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/metrics_service.upb.h +9 -9
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/metrics_service.upb_minitable.c +6 -6
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/metrics_service.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/stats.upb.h +56 -36
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/stats.upb_minitable.c +26 -26
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/stats.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/overload/v3/overload.upb.h +17 -4
- data/src/core/ext/upb-gen/envoy/config/overload/v3/overload.upb_minitable.c +14 -14
- data/src/core/ext/upb-gen/envoy/config/overload/v3/overload.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb.h +175 -39
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb_minitable.c +60 -30
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb_minitable.h +5 -3
- data/src/core/ext/upb-gen/envoy/config/route/v3/route.upb.h +55 -80
- data/src/core/ext/upb-gen/envoy/config/route/v3/route.upb_minitable.c +16 -16
- data/src/core/ext/upb-gen/envoy/config/route/v3/route.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb.h +927 -686
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb_minitable.c +366 -309
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb_minitable.h +7 -3
- data/src/core/ext/upb-gen/envoy/config/route/v3/scoped_route.upb.h +20 -16
- data/src/core/ext/upb-gen/envoy/config/route/v3/scoped_route.upb_minitable.c +8 -8
- data/src/core/ext/upb-gen/envoy/config/route/v3/scoped_route.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/tap/v3/common.upb.h +18 -6
- data/src/core/ext/upb-gen/envoy/config/tap/v3/common.upb_minitable.c +20 -20
- data/src/core/ext/upb-gen/envoy/config/tap/v3/common.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/datadog.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/datadog.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/config/trace/v3/datadog.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/dynamic_ot.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/dynamic_ot.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/trace/v3/dynamic_ot.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/http_tracer.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/http_tracer.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/config/trace/v3/http_tracer.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/lightstep.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/lightstep.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/trace/v3/lightstep.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opentelemetry.upb.h +10 -10
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opentelemetry.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opentelemetry.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/service.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/service.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/config/trace/v3/service.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/skywalking.upb.h +22 -18
- data/src/core/ext/upb-gen/envoy/config/trace/v3/skywalking.upb_minitable.c +11 -11
- data/src/core/ext/upb-gen/envoy/config/trace/v3/skywalking.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/trace.upb.h +3 -5
- data/src/core/ext/upb-gen/envoy/config/trace/v3/trace.upb_minitable.c +0 -1
- data/src/core/ext/upb-gen/envoy/config/trace/v3/trace.upb_minitable.h +3 -4
- data/src/core/ext/upb-gen/envoy/config/trace/v3/xray.upb.h +10 -10
- data/src/core/ext/upb-gen/envoy/config/trace/v3/xray.upb_minitable.c +7 -7
- data/src/core/ext/upb-gen/envoy/config/trace/v3/xray.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/zipkin.upb.h +19 -19
- data/src/core/ext/upb-gen/envoy/config/trace/v3/zipkin.upb_minitable.c +12 -12
- data/src/core/ext/upb-gen/envoy/config/trace/v3/zipkin.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/data/accesslog/v3/accesslog.upb.h +313 -410
- data/src/core/ext/upb-gen/envoy/data/accesslog/v3/accesslog.upb_minitable.c +114 -114
- data/src/core/ext/upb-gen/envoy/data/accesslog/v3/accesslog.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/clusters/aggregate/v3/cluster.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/clusters/aggregate/v3/cluster.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/common/fault/v3/fault.upb.h +11 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/common/fault/v3/fault.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/extensions/filters/common/fault/v3/fault.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/fault/v3/fault.upb.h +68 -64
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/fault/v3/fault.upb_minitable.c +31 -31
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/fault/v3/fault.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/gcp_authn/v3/gcp_authn.upb.h +22 -22
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/gcp_authn/v3/gcp_authn.upb_minitable.c +10 -10
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/gcp_authn/v3/gcp_authn.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/rbac/v3/rbac.upb.h +28 -28
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/rbac/v3/rbac.upb_minitable.c +13 -13
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/rbac/v3/rbac.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/router/v3/router.upb.h +37 -37
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/router/v3/router.upb_minitable.c +13 -13
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/router/v3/router.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upb.h +10 -6
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upb_minitable.c +6 -6
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h +338 -294
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb_minitable.c +144 -143
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/http/stateful_session/cookie/v3/cookie.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/http/stateful_session/cookie/v3/cookie.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/extensions/http/stateful_session/cookie/v3/cookie.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb.h +63 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb_minitable.c +15 -4
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/common/v3/common.upb.h +10 -6
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/common/v3/common.upb_minitable.c +9 -9
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/common/v3/common.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/pick_first/v3/pick_first.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/pick_first/v3/pick_first.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/ring_hash/v3/ring_hash.upb.h +26 -26
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/ring_hash/v3/ring_hash.upb_minitable.c +10 -10
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/ring_hash/v3/ring_hash.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/wrr_locality/v3/wrr_locality.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/wrr_locality/v3/wrr_locality.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/wrr_locality/v3/wrr_locality.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upb.h +3 -4
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upb_minitable.c +2 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/cert.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/cert.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb.h +91 -87
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb_minitable.c +38 -38
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/secret.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/secret.upb_minitable.c +6 -6
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/secret.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb.h +167 -77
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb_minitable.c +58 -49
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls_spiffe_validator_config.upb.h +40 -10
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls_spiffe_validator_config.upb_minitable.c +10 -8
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls_spiffe_validator_config.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/extensions/upstreams/http/v3/http_protocol_options.upb.h +35 -27
- data/src/core/ext/upb-gen/envoy/extensions/upstreams/http/v3/http_protocol_options.upb_minitable.c +13 -13
- data/src/core/ext/upb-gen/envoy/extensions/upstreams/http/v3/http_protocol_options.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/ads.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/ads.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb.h +367 -164
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb_minitable.c +94 -69
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb_minitable.h +5 -3
- data/src/core/ext/upb-gen/envoy/service/load_stats/v3/lrs.upb.h +9 -9
- data/src/core/ext/upb-gen/envoy/service/load_stats/v3/lrs.upb_minitable.c +6 -6
- data/src/core/ext/upb-gen/envoy/service/load_stats/v3/lrs.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb.h +69 -64
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb_minitable.c +36 -36
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/http/v3/cookie.upb.h +10 -10
- data/src/core/ext/upb-gen/envoy/type/http/v3/cookie.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/envoy/type/http/v3/cookie.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/http/v3/path_transformation.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/type/http/v3/path_transformation.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/type/http/v3/path_transformation.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/address.upb.h +142 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/address.upb_minitable.c +55 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/address.upb_minitable.h +32 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/filter_state.upb.h +40 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/filter_state.upb_minitable.c +8 -5
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/filter_state.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/http_inputs.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/http_inputs.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/metadata.upb.h +13 -9
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/metadata.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/metadata.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/node.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/node.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/node.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/number.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/number.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/number.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/path.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/path.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/path.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/regex.upb.h +14 -10
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/regex.upb_minitable.c +9 -9
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/regex.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/status_code_input.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/status_code_input.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/string.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/string.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/string.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/struct.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/struct.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/struct.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb.h +11 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb_minitable.c +6 -6
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/metadata/v3/metadata.upb.h +11 -3
- data/src/core/ext/upb-gen/envoy/type/metadata/v3/metadata.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/envoy/type/metadata/v3/metadata.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/tracing/v3/custom_tag.upb.h +18 -14
- data/src/core/ext/upb-gen/envoy/type/tracing/v3/custom_tag.upb_minitable.c +8 -8
- data/src/core/ext/upb-gen/envoy/type/tracing/v3/custom_tag.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/hash_policy.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/type/v3/hash_policy.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/type/v3/hash_policy.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/http.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/http.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/http_status.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/http_status.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/percent.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/percent.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/range.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/range.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/ratelimit_strategy.upb.h +7 -3
- data/src/core/ext/upb-gen/envoy/type/v3/ratelimit_strategy.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/type/v3/ratelimit_strategy.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/ratelimit_unit.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/ratelimit_unit.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/semantic_version.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/semantic_version.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/token_bucket.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/token_bucket.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/envoy/type/v3/token_bucket.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/api/annotations.upb.h +5 -5
- data/src/core/ext/upb-gen/google/api/annotations.upb_minitable.c +1 -1
- data/src/core/ext/upb-gen/google/api/annotations.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/checked.upb.h +96 -136
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/checked.upb_minitable.c +46 -46
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/checked.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/syntax.upb.h +95 -126
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/syntax.upb_minitable.c +51 -51
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/syntax.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/api/http.upb.h +59 -54
- data/src/core/ext/upb-gen/google/api/http.upb_minitable.c +26 -26
- data/src/core/ext/upb-gen/google/api/http.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/api/httpbody.upb.h +3 -3
- data/src/core/ext/upb-gen/google/api/httpbody.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/google/api/httpbody.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/protobuf/any.upb.h +4 -3
- data/src/core/ext/upb-gen/google/protobuf/any.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/protobuf/descriptor.upb.h +520 -320
- data/src/core/ext/upb-gen/google/protobuf/descriptor.upb_minitable.c +267 -217
- data/src/core/ext/upb-gen/google/protobuf/descriptor.upb_minitable.h +25 -20
- data/src/core/ext/upb-gen/google/protobuf/duration.upb.h +4 -3
- data/src/core/ext/upb-gen/google/protobuf/duration.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/protobuf/empty.upb.h +4 -3
- data/src/core/ext/upb-gen/google/protobuf/empty.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/protobuf/struct.upb.h +17 -36
- data/src/core/ext/upb-gen/google/protobuf/struct.upb_minitable.c +8 -8
- data/src/core/ext/upb-gen/google/protobuf/struct.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/protobuf/timestamp.upb.h +4 -3
- data/src/core/ext/upb-gen/google/protobuf/timestamp.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/protobuf/wrappers.upb.h +4 -3
- data/src/core/ext/upb-gen/google/protobuf/wrappers.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/google/rpc/status.upb.h +3 -3
- data/src/core/ext/upb-gen/google/rpc/status.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/google/rpc/status.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/channelz.upb.h +571 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/channelz.upb_minitable.c +120 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/channelz.upb_minitable.h +36 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/promise.upb.h +1272 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/promise.upb_minitable.c +312 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/promise.upb_minitable.h +50 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/property_list.upb.h +984 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/property_list.upb_minitable.c +226 -0
- data/src/core/ext/upb-gen/src/proto/grpc/channelz/v2/property_list.upb_minitable.h +44 -0
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/altscontext.upb.h +12 -31
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/altscontext.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/altscontext.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/handshaker.upb.h +202 -145
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/handshaker.upb_minitable.c +50 -44
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/handshaker.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/transport_security_common.upb.h +158 -3
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/transport_security_common.upb_minitable.c +42 -4
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/transport_security_common.upb_minitable.h +7 -3
- data/src/core/ext/upb-gen/src/proto/grpc/health/v1/health.upb.h +4 -3
- data/src/core/ext/upb-gen/src/proto/grpc/health/v1/health.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/src/proto/grpc/lb/v1/load_balancer.upb.h +17 -9
- data/src/core/ext/upb-gen/src/proto/grpc/lb/v1/load_balancer.upb_minitable.c +14 -14
- data/src/core/ext/upb-gen/src/proto/grpc/lb/v1/load_balancer.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls.upb.h +25 -43
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls_config.upb.h +73 -111
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls_config.upb_minitable.c +25 -25
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls_config.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/udpa/annotations/migrate.upb.h +13 -13
- data/src/core/ext/upb-gen/udpa/annotations/migrate.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/udpa/annotations/migrate.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/udpa/annotations/security.upb.h +5 -5
- data/src/core/ext/upb-gen/udpa/annotations/security.upb_minitable.c +1 -1
- data/src/core/ext/upb-gen/udpa/annotations/security.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/udpa/annotations/sensitive.upb.h +3 -3
- data/src/core/ext/upb-gen/udpa/annotations/sensitive.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/udpa/annotations/status.upb.h +5 -5
- data/src/core/ext/upb-gen/udpa/annotations/status.upb_minitable.c +1 -1
- data/src/core/ext/upb-gen/udpa/annotations/status.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/udpa/annotations/versioning.upb.h +5 -5
- data/src/core/ext/upb-gen/udpa/annotations/versioning.upb_minitable.c +1 -1
- data/src/core/ext/upb-gen/udpa/annotations/versioning.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/validate/validate.upb.h +385 -373
- data/src/core/ext/upb-gen/validate/validate.upb_minitable.c +133 -133
- data/src/core/ext/upb-gen/validate/validate.upb_minitable.h +4 -4
- data/src/core/ext/upb-gen/xds/annotations/v3/migrate.upb.h +13 -13
- data/src/core/ext/upb-gen/xds/annotations/v3/migrate.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/xds/annotations/v3/migrate.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/annotations/v3/security.upb.h +5 -5
- data/src/core/ext/upb-gen/xds/annotations/v3/security.upb_minitable.c +1 -1
- data/src/core/ext/upb-gen/xds/annotations/v3/security.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/annotations/v3/sensitive.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/annotations/v3/sensitive.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/annotations/v3/status.upb.h +9 -9
- data/src/core/ext/upb-gen/xds/annotations/v3/status.upb_minitable.c +3 -3
- data/src/core/ext/upb-gen/xds/annotations/v3/status.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/annotations/v3/versioning.upb.h +5 -5
- data/src/core/ext/upb-gen/xds/annotations/v3/versioning.upb_minitable.c +1 -1
- data/src/core/ext/upb-gen/xds/annotations/v3/versioning.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/authority.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/authority.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/cidr.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/cidr.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/core/v3/cidr.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/collection_entry.upb.h +7 -3
- data/src/core/ext/upb-gen/xds/core/v3/collection_entry.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/xds/core/v3/collection_entry.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/context_params.upb.h +12 -31
- data/src/core/ext/upb-gen/xds/core/v3/context_params.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/core/v3/context_params.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/extension.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/extension.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/core/v3/extension.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/resource.upb.h +10 -10
- data/src/core/ext/upb-gen/xds/core/v3/resource.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/xds/core/v3/resource.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/resource_locator.upb.h +23 -15
- data/src/core/ext/upb-gen/xds/core/v3/resource_locator.upb_minitable.c +6 -6
- data/src/core/ext/upb-gen/xds/core/v3/resource_locator.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/resource_name.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/resource_name.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/core/v3/resource_name.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/data/orca/v3/orca_load_report.upb.h +30 -87
- data/src/core/ext/upb-gen/xds/data/orca/v3/orca_load_report.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/data/orca/v3/orca_load_report.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/service/orca/v3/orca.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/service/orca/v3/orca.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/service/orca/v3/orca.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/cel.upb.h +10 -10
- data/src/core/ext/upb-gen/xds/type/matcher/v3/cel.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/xds/type/matcher/v3/cel.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/domain.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/domain.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/xds/type/matcher/v3/domain.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/http_inputs.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/http_inputs.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/ip.upb.h +6 -6
- data/src/core/ext/upb-gen/xds/type/matcher/v3/ip.upb_minitable.c +5 -5
- data/src/core/ext/upb-gen/xds/type/matcher/v3/ip.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/matcher.upb.h +45 -49
- data/src/core/ext/upb-gen/xds/type/matcher/v3/matcher.upb_minitable.c +23 -23
- data/src/core/ext/upb-gen/xds/type/matcher/v3/matcher.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/range.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/range.upb_minitable.c +12 -12
- data/src/core/ext/upb-gen/xds/type/matcher/v3/range.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/regex.upb.h +7 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/regex.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/type/matcher/v3/regex.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/string.upb.h +7 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/string.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/xds/type/matcher/v3/string.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/v3/cel.upb.h +7 -3
- data/src/core/ext/upb-gen/xds/type/v3/cel.upb_minitable.c +4 -4
- data/src/core/ext/upb-gen/xds/type/v3/cel.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/v3/range.upb.h +4 -3
- data/src/core/ext/upb-gen/xds/type/v3/range.upb_minitable.h +3 -3
- data/src/core/ext/upb-gen/xds/type/v3/typed_struct.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/type/v3/typed_struct.upb_minitable.c +2 -2
- data/src/core/ext/upb-gen/xds/type/v3/typed_struct.upb_minitable.h +3 -3
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/certs.upbdefs.c +123 -62
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/certs.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/clusters.upbdefs.c +200 -101
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/clusters.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/config_dump.upbdefs.c +152 -77
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/config_dump.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/config_dump_shared.upbdefs.c +524 -254
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/config_dump_shared.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/init_dump.upbdefs.c +44 -23
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/init_dump.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/listeners.upbdefs.c +66 -34
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/listeners.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/memory.upbdefs.c +54 -28
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/memory.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/metrics.upbdefs.c +46 -25
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/metrics.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/mutex_stats.upbdefs.c +47 -25
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/mutex_stats.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/server_info.upbdefs.c +256 -124
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/server_info.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/tap.upbdefs.c +50 -28
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/tap.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/annotations/deprecation.upbdefs.c +55 -28
- data/src/core/ext/upbdefs-gen/envoy/annotations/deprecation.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/annotations/resource.upbdefs.c +34 -18
- data/src/core/ext/upbdefs-gen/envoy/annotations/resource.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/accesslog/v3/accesslog.upbdefs.c +414 -206
- data/src/core/ext/upbdefs-gen/envoy/config/accesslog/v3/accesslog.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/bootstrap/v3/bootstrap.upbdefs.c +831 -413
- data/src/core/ext/upbdefs-gen/envoy/config/bootstrap/v3/bootstrap.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/circuit_breaker.upbdefs.c +143 -73
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/circuit_breaker.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/cluster.upbdefs.c +1132 -552
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/cluster.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/filter.upbdefs.c +63 -34
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/filter.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/outlier_detection.upbdefs.c +255 -127
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/outlier_detection.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/common/matcher/v3/matcher.upbdefs.c +363 -178
- data/src/core/ext/upbdefs-gen/envoy/config/common/matcher/v3/matcher.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/address.upbdefs.c +227 -114
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/address.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/backoff.upbdefs.c +57 -31
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/backoff.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/base.upbdefs.c +596 -287
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/base.upbdefs.h +13 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/config_source.upbdefs.c +271 -137
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/config_source.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/event_service_config.upbdefs.c +56 -30
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/event_service_config.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/extension.upbdefs.c +45 -25
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/extension.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/grpc_method_list.upbdefs.c +59 -31
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/grpc_method_list.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/grpc_service.upbdefs.c +438 -217
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/grpc_service.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/health_check.upbdefs.c +441 -221
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/health_check.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/http_service.upbdefs.c +55 -30
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/http_service.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/http_uri.upbdefs.c +57 -31
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/http_uri.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/protocol.upbdefs.c +619 -294
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/protocol.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/proxy_protocol.upbdefs.c +70 -36
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/proxy_protocol.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/resolver.upbdefs.c +62 -33
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/resolver.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_cmsg_headers.upbdefs.c +68 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_cmsg_headers.upbdefs.h +37 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_option.upbdefs.c +97 -39
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_option.upbdefs.h +23 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/substitution_format_string.upbdefs.c +97 -51
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/substitution_format_string.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/udp_socket_config.upbdefs.c +51 -27
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/udp_socket_config.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/endpoint.upbdefs.c +147 -76
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/endpoint.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/endpoint_components.upbdefs.c +230 -116
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/endpoint_components.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/load_report.upbdefs.c +277 -138
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/load_report.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/api_listener.upbdefs.c +48 -26
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/api_listener.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/listener.upbdefs.c +388 -197
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/listener.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/listener_components.upbdefs.c +304 -160
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/listener_components.upbdefs.h +8 -9
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/quic_config.upbdefs.c +175 -82
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/quic_config.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/udp_listener_config.upbdefs.c +90 -47
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/udp_listener_config.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/metrics/v3/metrics_service.upbdefs.c +98 -51
- data/src/core/ext/upbdefs-gen/envoy/config/metrics/v3/metrics_service.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/metrics/v3/stats.upbdefs.c +196 -99
- data/src/core/ext/upbdefs-gen/envoy/config/metrics/v3/stats.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/overload/v3/overload.upbdefs.c +237 -117
- data/src/core/ext/upbdefs-gen/envoy/config/overload/v3/overload.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/rbac/v3/rbac.upbdefs.c +418 -193
- data/src/core/ext/upbdefs-gen/envoy/config/rbac/v3/rbac.upbdefs.h +13 -4
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route.upbdefs.c +194 -99
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route_components.upbdefs.c +2004 -955
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route_components.upbdefs.h +18 -4
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/scoped_route.upbdefs.c +101 -53
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/scoped_route.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/tap/v3/common.upbdefs.c +352 -176
- data/src/core/ext/upbdefs-gen/envoy/config/tap/v3/common.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/datadog.upbdefs.c +79 -42
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/datadog.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/dynamic_ot.upbdefs.c +67 -37
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/dynamic_ot.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/http_tracer.upbdefs.c +63 -34
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/http_tracer.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/lightstep.upbdefs.c +88 -47
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/lightstep.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opentelemetry.upbdefs.c +80 -43
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opentelemetry.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/service.upbdefs.c +53 -29
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/service.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/skywalking.upbdefs.c +86 -46
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/skywalking.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/trace.upbdefs.c +56 -36
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/trace.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/xray.upbdefs.c +91 -49
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/xray.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/zipkin.upbdefs.c +105 -55
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/zipkin.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/data/accesslog/v3/accesslog.upbdefs.c +775 -379
- data/src/core/ext/upbdefs-gen/envoy/data/accesslog/v3/accesslog.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/clusters/aggregate/v3/cluster.upbdefs.c +52 -28
- data/src/core/ext/upbdefs-gen/envoy/extensions/clusters/aggregate/v3/cluster.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/common/fault/v3/fault.upbdefs.c +134 -68
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/common/fault/v3/fault.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/fault/v3/fault.upbdefs.c +189 -96
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/fault/v3/fault.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/gcp_authn/v3/gcp_authn.upbdefs.c +116 -61
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/gcp_authn/v3/gcp_authn.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/rbac/v3/rbac.upbdefs.c +112 -58
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/rbac/v3/rbac.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/router/v3/router.upbdefs.c +160 -82
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/router/v3/router.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upbdefs.c +75 -39
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.c +1161 -567
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/http/stateful_session/cookie/v3/cookie.upbdefs.c +52 -28
- data/src/core/ext/upbdefs-gen/envoy/extensions/http/stateful_session/cookie/v3/cookie.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upbdefs.c +56 -33
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/cert.upbdefs.c +48 -26
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/cert.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.c +390 -194
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/secret.upbdefs.c +126 -65
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/secret.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/tls.upbdefs.c +498 -235
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/tls.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/tls_spiffe_validator_config.upbdefs.c +74 -36
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/tls_spiffe_validator_config.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/extensions/upstreams/http/v3/http_protocol_options.upbdefs.c +221 -110
- data/src/core/ext/upbdefs-gen/envoy/extensions/upstreams/http/v3/http_protocol_options.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/service/discovery/v3/ads.upbdefs.c +68 -36
- data/src/core/ext/upbdefs-gen/envoy/service/discovery/v3/ads.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/service/discovery/v3/discovery.upbdefs.c +378 -174
- data/src/core/ext/upbdefs-gen/envoy/service/discovery/v3/discovery.upbdefs.h +13 -4
- data/src/core/ext/upbdefs-gen/envoy/service/load_stats/v3/lrs.upbdefs.c +100 -52
- data/src/core/ext/upbdefs-gen/envoy/service/load_stats/v3/lrs.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/service/status/v3/csds.upbdefs.c +257 -128
- data/src/core/ext/upbdefs-gen/envoy/service/status/v3/csds.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/http/v3/cookie.upbdefs.c +44 -24
- data/src/core/ext/upbdefs-gen/envoy/type/http/v3/cookie.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/http/v3/path_transformation.upbdefs.c +68 -35
- data/src/core/ext/upbdefs-gen/envoy/type/http/v3/path_transformation.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/address.upbdefs.c +59 -0
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/address.upbdefs.h +37 -0
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/filter_state.upbdefs.c +61 -27
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/filter_state.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/http_inputs.upbdefs.c +65 -34
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/http_inputs.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/metadata.upbdefs.c +72 -38
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/metadata.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/node.upbdefs.c +57 -31
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/node.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/number.upbdefs.c +52 -29
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/number.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/path.upbdefs.c +51 -28
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/path.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/regex.upbdefs.c +89 -47
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/regex.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/status_code_input.upbdefs.c +37 -20
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/status_code_input.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/string.upbdefs.c +89 -47
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/string.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/struct.upbdefs.c +67 -35
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/struct.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/value.upbdefs.c +112 -58
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/value.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/metadata/v3/metadata.upbdefs.c +110 -56
- data/src/core/ext/upbdefs-gen/envoy/type/metadata/v3/metadata.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/tracing/v3/custom_tag.upbdefs.c +123 -62
- data/src/core/ext/upbdefs-gen/envoy/type/tracing/v3/custom_tag.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/hash_policy.upbdefs.c +59 -31
- data/src/core/ext/upbdefs-gen/envoy/type/v3/hash_policy.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/http.upbdefs.c +30 -16
- data/src/core/ext/upbdefs-gen/envoy/type/v3/http.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/http_status.upbdefs.c +143 -72
- data/src/core/ext/upbdefs-gen/envoy/type/v3/http_status.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/percent.upbdefs.c +61 -32
- data/src/core/ext/upbdefs-gen/envoy/type/v3/percent.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/range.upbdefs.c +51 -27
- data/src/core/ext/upbdefs-gen/envoy/type/v3/range.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/ratelimit_strategy.upbdefs.c +85 -45
- data/src/core/ext/upbdefs-gen/envoy/type/v3/ratelimit_strategy.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/ratelimit_unit.upbdefs.c +35 -19
- data/src/core/ext/upbdefs-gen/envoy/type/v3/ratelimit_unit.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/semantic_version.upbdefs.c +44 -23
- data/src/core/ext/upbdefs-gen/envoy/type/v3/semantic_version.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/envoy/type/v3/token_bucket.upbdefs.c +61 -33
- data/src/core/ext/upbdefs-gen/envoy/type/v3/token_bucket.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/api/annotations.upbdefs.c +35 -19
- data/src/core/ext/upbdefs-gen/google/api/annotations.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/api/expr/v1alpha1/checked.upbdefs.c +272 -133
- data/src/core/ext/upbdefs-gen/google/api/expr/v1alpha1/checked.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/api/expr/v1alpha1/syntax.upbdefs.c +315 -154
- data/src/core/ext/upbdefs-gen/google/api/expr/v1alpha1/syntax.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/api/http.upbdefs.c +64 -33
- data/src/core/ext/upbdefs-gen/google/api/http.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/api/httpbody.upbdefs.c +35 -19
- data/src/core/ext/upbdefs-gen/google/api/httpbody.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/protobuf/any.upbdefs.c +26 -15
- data/src/core/ext/upbdefs-gen/google/protobuf/any.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/protobuf/descriptor.upbdefs.c +1106 -496
- data/src/core/ext/upbdefs-gen/google/protobuf/descriptor.upbdefs.h +13 -4
- data/src/core/ext/upbdefs-gen/google/protobuf/duration.upbdefs.c +28 -16
- data/src/core/ext/upbdefs-gen/google/protobuf/duration.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/protobuf/empty.upbdefs.c +23 -13
- data/src/core/ext/upbdefs-gen/google/protobuf/empty.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/protobuf/struct.upbdefs.c +69 -35
- data/src/core/ext/upbdefs-gen/google/protobuf/struct.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/protobuf/timestamp.upbdefs.c +29 -16
- data/src/core/ext/upbdefs-gen/google/protobuf/timestamp.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/protobuf/wrappers.upbdefs.c +51 -26
- data/src/core/ext/upbdefs-gen/google/protobuf/wrappers.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/google/rpc/status.upbdefs.c +32 -17
- data/src/core/ext/upbdefs-gen/google/rpc/status.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/src/proto/grpc/channelz/v2/promise.upbdefs.c +175 -0
- data/src/core/ext/upbdefs-gen/src/proto/grpc/channelz/v2/promise.upbdefs.h +82 -0
- data/src/core/ext/upbdefs-gen/src/proto/grpc/channelz/v2/property_list.upbdefs.c +135 -0
- data/src/core/ext/upbdefs-gen/src/proto/grpc/channelz/v2/property_list.upbdefs.h +67 -0
- data/src/core/ext/upbdefs-gen/src/proto/grpc/lookup/v1/rls_config.upbdefs.c +161 -79
- data/src/core/ext/upbdefs-gen/src/proto/grpc/lookup/v1/rls_config.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/udpa/annotations/migrate.upbdefs.c +84 -42
- data/src/core/ext/upbdefs-gen/udpa/annotations/migrate.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/udpa/annotations/security.upbdefs.c +48 -26
- data/src/core/ext/upbdefs-gen/udpa/annotations/security.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/udpa/annotations/sensitive.upbdefs.c +26 -14
- data/src/core/ext/upbdefs-gen/udpa/annotations/sensitive.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/udpa/annotations/status.upbdefs.c +50 -26
- data/src/core/ext/upbdefs-gen/udpa/annotations/status.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/udpa/annotations/versioning.upbdefs.c +36 -19
- data/src/core/ext/upbdefs-gen/udpa/annotations/versioning.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/validate/validate.upbdefs.c +538 -261
- data/src/core/ext/upbdefs-gen/validate/validate.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/migrate.upbdefs.c +86 -43
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/migrate.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/security.upbdefs.c +49 -26
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/security.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/sensitive.upbdefs.c +27 -15
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/sensitive.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/status.upbdefs.c +87 -44
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/status.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/versioning.upbdefs.c +37 -20
- data/src/core/ext/upbdefs-gen/xds/annotations/v3/versioning.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/authority.upbdefs.c +30 -17
- data/src/core/ext/upbdefs-gen/xds/core/v3/authority.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/cidr.upbdefs.c +41 -23
- data/src/core/ext/upbdefs-gen/xds/core/v3/cidr.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/collection_entry.upbdefs.c +62 -33
- data/src/core/ext/upbdefs-gen/xds/core/v3/collection_entry.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/context_params.upbdefs.c +36 -19
- data/src/core/ext/upbdefs-gen/xds/core/v3/context_params.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/extension.upbdefs.c +36 -20
- data/src/core/ext/upbdefs-gen/xds/core/v3/extension.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/resource.upbdefs.c +42 -23
- data/src/core/ext/upbdefs-gen/xds/core/v3/resource.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/resource_locator.upbdefs.c +76 -39
- data/src/core/ext/upbdefs-gen/xds/core/v3/resource_locator.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/core/v3/resource_name.upbdefs.c +45 -24
- data/src/core/ext/upbdefs-gen/xds/core/v3/resource_name.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/cel.upbdefs.c +41 -23
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/cel.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/domain.upbdefs.c +53 -29
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/domain.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/http_inputs.upbdefs.c +29 -16
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/http_inputs.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/ip.upbdefs.c +58 -32
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/ip.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/matcher.upbdefs.c +207 -103
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/matcher.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/range.upbdefs.c +95 -49
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/range.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/regex.upbdefs.c +38 -20
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/regex.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/string.upbdefs.c +60 -31
- data/src/core/ext/upbdefs-gen/xds/type/matcher/v3/string.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/v3/cel.upbdefs.c +67 -36
- data/src/core/ext/upbdefs-gen/xds/type/v3/cel.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/v3/range.upbdefs.c +31 -17
- data/src/core/ext/upbdefs-gen/xds/type/v3/range.upbdefs.h +8 -4
- data/src/core/ext/upbdefs-gen/xds/type/v3/typed_struct.upbdefs.c +31 -17
- data/src/core/ext/upbdefs-gen/xds/type/v3/typed_struct.upbdefs.h +8 -4
- data/src/core/filter/auth/auth_filters.h +208 -0
- data/src/core/filter/auth/client_auth_filter.cc +192 -0
- data/src/core/filter/auth/server_auth_filter.cc +208 -0
- data/src/core/filter/blackboard.cc +2 -2
- data/src/core/filter/filter_args.h +98 -0
- data/src/core/handshaker/endpoint_info/endpoint_info_handshaker.h +1 -1
- data/src/core/handshaker/handshaker.cc +23 -25
- data/src/core/handshaker/handshaker.h +3 -0
- data/src/core/handshaker/http_connect/http_connect_handshaker.cc +13 -7
- data/src/core/handshaker/http_connect/http_connect_handshaker.h +1 -1
- data/src/core/handshaker/http_connect/http_proxy_mapper.cc +36 -52
- data/src/core/handshaker/http_connect/http_proxy_mapper.h +5 -5
- data/src/core/handshaker/http_connect/xds_http_proxy_mapper.cc +5 -5
- data/src/core/handshaker/http_connect/xds_http_proxy_mapper.h +6 -6
- data/src/core/handshaker/proxy_mapper.h +4 -4
- data/src/core/handshaker/proxy_mapper_registry.cc +5 -6
- data/src/core/handshaker/proxy_mapper_registry.h +4 -4
- data/src/core/handshaker/security/legacy_secure_endpoint.cc +597 -0
- data/src/core/handshaker/security/secure_endpoint.cc +813 -311
- data/src/core/handshaker/security/secure_endpoint.h +17 -0
- data/src/core/handshaker/security/security_handshaker.cc +12 -11
- data/src/core/handshaker/security/security_handshaker.h +2 -2
- data/src/core/handshaker/tcp_connect/tcp_connect_handshaker.cc +14 -6
- data/src/core/handshaker/tcp_connect/tcp_connect_handshaker.h +1 -1
- data/src/core/lib/address_utils/sockaddr_utils.cc +5 -5
- data/src/core/lib/channel/channel_args.cc +28 -13
- data/src/core/lib/channel/channel_args.h +65 -39
- data/src/core/lib/channel/channel_args_preconditioning.h +1 -1
- data/src/core/lib/channel/channel_stack.cc +32 -4
- data/src/core/lib/channel/channel_stack.h +16 -6
- data/src/core/lib/channel/channel_stack_builder_impl.cc +2 -2
- data/src/core/lib/channel/channel_stack_builder_impl.h +2 -7
- data/src/core/lib/channel/connected_channel.cc +4 -4
- data/src/core/lib/channel/promise_based_filter.cc +10 -10
- data/src/core/lib/channel/promise_based_filter.h +749 -416
- data/src/core/lib/compression/compression.cc +3 -2
- data/src/core/lib/compression/compression_internal.cc +9 -9
- data/src/core/lib/compression/compression_internal.h +3 -3
- data/src/core/lib/debug/trace.cc +1 -1
- data/src/core/lib/debug/trace_flags.cc +7 -6
- data/src/core/lib/debug/trace_flags.h +3 -3
- data/src/core/lib/debug/trace_impl.h +0 -1
- data/src/core/lib/event_engine/ares_resolver.cc +175 -60
- data/src/core/lib/event_engine/ares_resolver.h +54 -12
- data/src/core/lib/event_engine/cf_engine/cf_engine.cc +10 -6
- data/src/core/lib/event_engine/cf_engine/cf_engine.h +3 -8
- data/src/core/lib/event_engine/cf_engine/cfstream_endpoint.cc +10 -11
- data/src/core/lib/event_engine/cf_engine/cfstream_endpoint.h +12 -10
- data/src/core/lib/event_engine/cf_engine/cftype_unique_ref.h +2 -4
- data/src/core/lib/event_engine/cf_engine/dns_service_resolver.cc +9 -10
- data/src/core/lib/event_engine/cf_engine/dns_service_resolver.h +2 -4
- data/src/core/lib/event_engine/channel_args_endpoint_config.cc +5 -7
- data/src/core/lib/event_engine/channel_args_endpoint_config.h +6 -7
- data/src/core/lib/event_engine/common_closures.h +2 -4
- data/src/core/lib/event_engine/default_event_engine.cc +63 -34
- data/src/core/lib/event_engine/default_event_engine.h +25 -34
- data/src/core/lib/event_engine/default_event_engine_factory.cc +12 -18
- data/src/core/lib/event_engine/default_event_engine_factory.h +3 -5
- data/src/core/lib/event_engine/endpoint_channel_arg_wrapper.cc +40 -0
- data/src/core/lib/event_engine/endpoint_channel_arg_wrapper.h +60 -0
- data/src/core/lib/event_engine/event_engine.cc +9 -4
- data/src/core/lib/event_engine/extensions/blocking_dns.h +46 -0
- data/src/core/lib/event_engine/extensions/can_track_errors.h +2 -4
- data/src/core/lib/event_engine/extensions/channelz.h +66 -0
- data/src/core/lib/event_engine/extensions/chaotic_good_extension.h +2 -4
- data/src/core/lib/event_engine/extensions/iomgr_compatible.h +39 -0
- data/src/core/lib/event_engine/extensions/supports_fd.h +2 -4
- data/src/core/lib/event_engine/extensions/supports_win_sockets.h +48 -0
- data/src/core/lib/event_engine/extensions/tcp_trace.h +4 -6
- data/src/core/lib/event_engine/grpc_polled_fd.h +7 -4
- data/src/core/lib/event_engine/handle_containers.h +2 -4
- data/src/core/lib/event_engine/memory_allocator_factory.h +2 -4
- data/src/core/lib/event_engine/nameser.h +1 -1
- data/src/core/lib/event_engine/poller.h +2 -4
- data/src/core/lib/event_engine/posix.h +2 -4
- data/src/core/lib/event_engine/posix_engine/ev_epoll1_linux.cc +134 -212
- data/src/core/lib/event_engine/posix_engine/ev_epoll1_linux.h +13 -19
- data/src/core/lib/event_engine/posix_engine/ev_poll_posix.cc +83 -172
- data/src/core/lib/event_engine/posix_engine/ev_poll_posix.h +9 -13
- data/src/core/lib/event_engine/posix_engine/event_poller.h +20 -19
- data/src/core/lib/event_engine/posix_engine/event_poller_posix_default.cc +3 -23
- data/src/core/lib/event_engine/posix_engine/event_poller_posix_default.h +2 -4
- data/src/core/lib/event_engine/posix_engine/file_descriptor_collection.cc +124 -0
- data/src/core/lib/event_engine/posix_engine/file_descriptor_collection.h +243 -0
- data/src/core/lib/event_engine/posix_engine/grpc_polled_fd_posix.h +31 -23
- data/src/core/lib/event_engine/posix_engine/internal_errqueue.cc +8 -6
- data/src/core/lib/event_engine/posix_engine/internal_errqueue.h +8 -5
- data/src/core/lib/event_engine/posix_engine/lockfree_event.cc +2 -4
- data/src/core/lib/event_engine/posix_engine/lockfree_event.h +2 -4
- data/src/core/lib/event_engine/posix_engine/native_posix_dns_resolver.cc +6 -11
- data/src/core/lib/event_engine/posix_engine/native_posix_dns_resolver.h +5 -4
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.cc +170 -110
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.h +31 -37
- data/src/core/lib/event_engine/posix_engine/posix_engine.cc +344 -104
- data/src/core/lib/event_engine/posix_engine/posix_engine.h +74 -35
- data/src/core/lib/event_engine/posix_engine/posix_engine_closure.h +2 -4
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener.cc +49 -43
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener.h +8 -8
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener_utils.cc +60 -146
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener_utils.h +12 -9
- data/src/core/lib/event_engine/posix_engine/posix_interface.h +211 -0
- data/src/core/lib/event_engine/posix_engine/posix_interface_posix.cc +1083 -0
- data/src/core/lib/event_engine/posix_engine/posix_interface_windows.cc +281 -0
- data/src/core/lib/event_engine/posix_engine/posix_write_event_sink.cc +154 -0
- data/src/core/lib/event_engine/posix_engine/posix_write_event_sink.h +174 -0
- data/src/core/lib/event_engine/posix_engine/set_socket_dualstack.cc +64 -0
- data/src/core/lib/event_engine/posix_engine/tcp_socket_utils.cc +8 -736
- data/src/core/lib/event_engine/posix_engine/tcp_socket_utils.h +12 -174
- data/src/core/lib/event_engine/posix_engine/timer.cc +4 -6
- data/src/core/lib/event_engine/posix_engine/timer.h +4 -6
- data/src/core/lib/event_engine/posix_engine/timer_heap.cc +3 -5
- data/src/core/lib/event_engine/posix_engine/timer_heap.h +2 -4
- data/src/core/lib/event_engine/posix_engine/timer_manager.cc +38 -29
- data/src/core/lib/event_engine/posix_engine/timer_manager.h +17 -17
- data/src/core/lib/event_engine/posix_engine/traced_buffer_list.cc +119 -157
- data/src/core/lib/event_engine/posix_engine/traced_buffer_list.h +30 -99
- data/src/core/lib/event_engine/posix_engine/wakeup_fd_eventfd.cc +28 -29
- data/src/core/lib/event_engine/posix_engine/wakeup_fd_eventfd.h +8 -6
- data/src/core/lib/event_engine/posix_engine/wakeup_fd_pipe.cc +38 -58
- data/src/core/lib/event_engine/posix_engine/wakeup_fd_pipe.h +8 -6
- data/src/core/lib/event_engine/posix_engine/wakeup_fd_posix.h +9 -10
- data/src/core/lib/event_engine/posix_engine/wakeup_fd_posix_default.cc +14 -10
- data/src/core/lib/event_engine/posix_engine/wakeup_fd_posix_default.h +5 -5
- data/src/core/lib/event_engine/query_extensions.h +12 -25
- data/src/core/lib/event_engine/ref_counted_dns_resolver_interface.h +2 -4
- data/src/core/lib/event_engine/resolved_address.cc +2 -4
- data/src/core/lib/event_engine/resolved_address_internal.h +2 -4
- data/src/core/lib/event_engine/shim.cc +18 -18
- data/src/core/lib/event_engine/shim.h +16 -4
- data/src/core/lib/event_engine/slice.cc +2 -4
- data/src/core/lib/event_engine/slice_buffer.cc +2 -4
- data/src/core/lib/event_engine/tcp_socket_utils.cc +16 -23
- data/src/core/lib/event_engine/tcp_socket_utils.h +5 -7
- data/src/core/lib/event_engine/thread_local.cc +2 -4
- data/src/core/lib/event_engine/thread_local.h +2 -4
- data/src/core/lib/event_engine/thread_pool/thread_count.cc +2 -4
- data/src/core/lib/event_engine/thread_pool/thread_count.h +4 -18
- data/src/core/lib/event_engine/thread_pool/thread_pool.h +9 -7
- data/src/core/lib/event_engine/thread_pool/thread_pool_factory.cc +2 -21
- data/src/core/lib/event_engine/thread_pool/work_stealing_thread_pool.cc +23 -15
- data/src/core/lib/event_engine/thread_pool/work_stealing_thread_pool.h +7 -7
- data/src/core/lib/event_engine/thready_event_engine/thready_event_engine.cc +2 -4
- data/src/core/lib/event_engine/thready_event_engine/thready_event_engine.h +2 -4
- data/src/core/lib/event_engine/time_util.cc +2 -4
- data/src/core/lib/event_engine/time_util.h +2 -4
- data/src/core/lib/event_engine/utils.cc +36 -4
- data/src/core/lib/event_engine/utils.h +5 -4
- data/src/core/lib/event_engine/windows/grpc_polled_fd_windows.cc +7 -5
- data/src/core/lib/event_engine/windows/grpc_polled_fd_windows.h +6 -4
- data/src/core/lib/event_engine/windows/iocp.cc +2 -4
- data/src/core/lib/event_engine/windows/iocp.h +2 -4
- data/src/core/lib/event_engine/windows/native_windows_dns_resolver.cc +2 -4
- data/src/core/lib/event_engine/windows/native_windows_dns_resolver.h +2 -4
- data/src/core/lib/event_engine/windows/win_socket.cc +13 -4
- data/src/core/lib/event_engine/windows/win_socket.h +5 -4
- data/src/core/lib/event_engine/windows/windows_endpoint.cc +32 -25
- data/src/core/lib/event_engine/windows/windows_endpoint.h +9 -8
- data/src/core/lib/event_engine/windows/windows_engine.cc +44 -4
- data/src/core/lib/event_engine/windows/windows_engine.h +10 -8
- data/src/core/lib/event_engine/windows/windows_listener.cc +21 -12
- data/src/core/lib/event_engine/windows/windows_listener.h +11 -8
- data/src/core/lib/event_engine/work_queue/basic_work_queue.cc +2 -4
- data/src/core/lib/event_engine/work_queue/basic_work_queue.h +2 -4
- data/src/core/lib/event_engine/work_queue/work_queue.h +2 -4
- data/src/core/lib/experiments/config.cc +1 -1
- data/src/core/lib/experiments/experiments.cc +515 -187
- data/src/core/lib/experiments/experiments.h +190 -91
- data/src/core/lib/iomgr/buffer_list.cc +1 -1
- data/src/core/lib/iomgr/buffer_list.h +22 -21
- data/src/core/lib/iomgr/call_combiner.h +1 -1
- data/src/core/lib/iomgr/cfstream_handle.cc +0 -2
- data/src/core/lib/iomgr/closure.h +1 -2
- data/src/core/lib/iomgr/combiner.cc +3 -3
- data/src/core/lib/iomgr/combiner.h +1 -1
- data/src/core/lib/iomgr/endpoint.cc +4 -3
- data/src/core/lib/iomgr/endpoint.h +7 -4
- data/src/core/lib/iomgr/endpoint_cfstream.cc +3 -2
- data/src/core/lib/iomgr/endpoint_pair_posix.cc +43 -16
- data/src/core/lib/iomgr/endpoint_pair_windows.cc +43 -8
- data/src/core/lib/iomgr/error.cc +28 -44
- data/src/core/lib/iomgr/ev_apple.cc +1 -1
- data/src/core/lib/iomgr/ev_epoll1_linux.cc +20 -3
- data/src/core/lib/iomgr/ev_poll_posix.cc +22 -0
- data/src/core/lib/iomgr/ev_posix.cc +1 -1
- data/src/core/lib/iomgr/event_engine_shims/closure.cc +0 -1
- data/src/core/lib/iomgr/event_engine_shims/endpoint.cc +12 -13
- data/src/core/lib/iomgr/event_engine_shims/tcp_client.cc +0 -1
- data/src/core/lib/iomgr/exec_ctx.cc +1 -7
- data/src/core/lib/iomgr/exec_ctx.h +1 -132
- data/src/core/lib/iomgr/fork_posix.cc +0 -7
- data/src/core/lib/iomgr/iomgr.cc +1 -4
- data/src/core/lib/iomgr/iomgr_posix.cc +2 -1
- data/src/core/lib/iomgr/iomgr_posix_cfstream.cc +3 -0
- data/src/core/lib/iomgr/iomgr_windows.cc +3 -1
- data/src/core/lib/iomgr/nameser.h +1 -1
- data/src/core/lib/iomgr/polling_entity.cc +2 -7
- data/src/core/lib/iomgr/resolve_address_posix.cc +37 -49
- data/src/core/lib/iomgr/resolve_address_posix.h +15 -0
- data/src/core/lib/iomgr/resolve_address_windows.cc +22 -47
- data/src/core/lib/iomgr/resolve_address_windows.h +15 -2
- data/src/core/lib/iomgr/socket_utils_common_posix.cc +1 -0
- data/src/core/lib/iomgr/socket_utils_posix.cc +23 -11
- data/src/core/lib/iomgr/socket_utils_posix.h +12 -2
- data/src/core/lib/iomgr/tcp_client_cfstream.cc +8 -9
- data/src/core/lib/iomgr/tcp_client_posix.cc +27 -23
- data/src/core/lib/iomgr/tcp_client_posix.h +1 -1
- data/src/core/lib/iomgr/tcp_client_windows.cc +3 -3
- data/src/core/lib/iomgr/tcp_posix.cc +84 -48
- data/src/core/lib/iomgr/tcp_posix.h +10 -2
- data/src/core/lib/iomgr/tcp_server_posix.cc +10 -4
- data/src/core/lib/iomgr/tcp_server_utils_posix_common.cc +1 -4
- data/src/core/lib/iomgr/tcp_server_utils_posix_ifaddrs.cc +2 -2
- data/src/core/lib/iomgr/tcp_server_windows.cc +44 -22
- data/src/core/lib/iomgr/tcp_windows.cc +3 -2
- data/src/core/lib/iomgr/timer_generic.cc +1 -1
- data/src/core/lib/iomgr/timer_heap.cc +1 -1
- data/src/core/lib/iomgr/timer_manager.cc +1 -9
- data/src/core/lib/iomgr/wakeup_fd_pipe.cc +11 -3
- data/src/core/lib/promise/activity.cc +2 -0
- data/src/core/lib/promise/activity.h +35 -13
- data/src/core/lib/promise/all_ok.h +68 -0
- data/src/core/lib/promise/arena_promise.h +23 -7
- data/src/core/lib/promise/detail/basic_seq.h +32 -18
- data/src/core/lib/promise/detail/join_state.h +16 -68
- data/src/core/lib/promise/detail/promise_factory.h +96 -26
- data/src/core/lib/promise/detail/promise_like.h +163 -12
- data/src/core/lib/promise/detail/promise_variant.h +50 -0
- data/src/core/lib/promise/detail/seq_state.h +1162 -495
- data/src/core/lib/promise/for_each.h +14 -5
- data/src/core/lib/promise/if.h +68 -20
- data/src/core/lib/promise/inter_activity_latch.h +147 -0
- data/src/core/lib/promise/inter_activity_mutex.h +547 -0
- data/src/core/lib/promise/interceptor_list.h +9 -9
- data/src/core/lib/promise/latch.h +14 -6
- data/src/core/lib/promise/loop.h +131 -17
- data/src/core/lib/promise/map.h +269 -18
- data/src/core/lib/promise/match_promise.h +103 -0
- data/src/core/lib/promise/mpsc.cc +425 -0
- data/src/core/lib/promise/mpsc.h +490 -0
- data/src/core/lib/promise/party.cc +144 -68
- data/src/core/lib/promise/party.h +340 -54
- data/src/core/lib/promise/pipe.h +12 -12
- data/src/core/lib/promise/poll.h +34 -16
- data/src/core/lib/promise/prioritized_race.h +16 -22
- data/src/core/lib/promise/promise.h +6 -5
- data/src/core/lib/promise/race.h +35 -12
- data/src/core/lib/promise/seq.h +52 -35
- data/src/core/lib/promise/sleep.cc +9 -6
- data/src/core/lib/promise/sleep.h +15 -1
- data/src/core/lib/promise/status_flag.h +54 -12
- data/src/core/lib/promise/try_join.h +119 -5
- data/src/core/lib/promise/try_seq.h +79 -49
- data/src/core/lib/promise/wait_set.cc +28 -0
- data/src/core/lib/promise/wait_set.h +86 -0
- data/src/core/lib/resource_quota/api.h +1 -1
- data/src/core/lib/resource_quota/arena.h +106 -0
- data/src/core/lib/resource_quota/connection_quota.h +4 -0
- data/src/core/lib/resource_quota/memory_quota.cc +78 -54
- data/src/core/lib/resource_quota/memory_quota.h +10 -8
- data/src/core/lib/resource_quota/periodic_update.cc +1 -1
- data/src/core/lib/security/authorization/evaluate_args.cc +4 -4
- data/src/core/lib/security/authorization/evaluate_args.h +4 -4
- data/src/core/lib/security/authorization/grpc_server_authz_filter.cc +1 -8
- data/src/core/lib/security/authorization/grpc_server_authz_filter.h +7 -7
- data/src/core/lib/security/authorization/matchers.h +3 -3
- data/src/core/lib/security/authorization/rbac_policy.cc +1 -1
- data/src/core/lib/security/authorization/rbac_policy.h +3 -3
- data/src/core/lib/slice/slice.h +11 -0
- data/src/core/lib/slice/slice_buffer.cc +3 -2
- data/src/core/lib/slice/slice_buffer.h +8 -2
- data/src/core/lib/surface/call.cc +24 -22
- data/src/core/lib/surface/call.h +4 -3
- data/src/core/lib/surface/call_utils.cc +5 -5
- data/src/core/lib/surface/call_utils.h +17 -7
- data/src/core/lib/surface/channel.cc +6 -14
- data/src/core/lib/surface/channel.h +5 -5
- data/src/core/lib/surface/channel_create.cc +140 -5
- data/src/core/lib/surface/channel_create.h +4 -0
- data/src/core/lib/surface/channel_init.cc +165 -48
- data/src/core/lib/surface/channel_init.h +67 -4
- data/src/core/lib/surface/completion_queue.cc +88 -67
- data/src/core/lib/surface/completion_queue.h +1 -1
- data/src/core/lib/surface/connection_context.cc +77 -0
- data/src/core/lib/surface/connection_context.h +156 -0
- data/src/core/lib/surface/event_string.cc +7 -1
- data/src/core/lib/surface/filter_stack_call.cc +60 -40
- data/src/core/lib/surface/filter_stack_call.h +3 -3
- data/src/core/lib/surface/init.cc +12 -14
- data/src/core/lib/surface/init_internally.h +13 -2
- data/src/core/lib/surface/lame_client.cc +2 -2
- data/src/core/lib/surface/legacy_channel.cc +41 -37
- data/src/core/lib/surface/legacy_channel.h +6 -4
- data/src/core/lib/surface/version.cc +2 -2
- data/src/core/lib/transport/bdp_estimator.cc +1 -1
- data/src/core/lib/transport/call_final_info.h +1 -1
- data/src/core/lib/transport/connectivity_state.cc +8 -9
- data/src/core/lib/transport/connectivity_state.h +2 -4
- data/src/core/lib/transport/error_utils.cc +65 -11
- data/src/core/lib/transport/error_utils.h +2 -2
- data/src/core/lib/transport/promise_endpoint.cc +110 -0
- data/src/core/lib/transport/promise_endpoint.h +307 -0
- data/src/core/lib/transport/status_conversion.cc +11 -36
- data/src/core/lib/transport/status_conversion.h +5 -4
- data/src/core/lib/transport/timeout_encoding.cc +19 -19
- data/src/core/lib/transport/timeout_encoding.h +3 -2
- data/src/core/lib/transport/transport.cc +2 -3
- data/src/core/lib/transport/transport.h +20 -12
- data/src/core/lib/transport/transport_framing_endpoint_extension.h +47 -0
- data/src/core/lib/transport/transport_op_string.cc +1 -1
- data/src/core/load_balancing/backend_metric_parser.cc +12 -25
- data/src/core/load_balancing/child_policy_handler.cc +3 -5
- data/src/core/load_balancing/delegating_helper.h +3 -4
- data/src/core/load_balancing/endpoint_list.cc +12 -2
- data/src/core/load_balancing/endpoint_list.h +20 -13
- data/src/core/load_balancing/grpclb/client_load_reporting_filter.cc +2 -7
- data/src/core/load_balancing/grpclb/client_load_reporting_filter.h +4 -4
- data/src/core/load_balancing/grpclb/grpclb.cc +25 -43
- data/src/core/load_balancing/health_check_client.cc +19 -57
- data/src/core/load_balancing/health_check_client_internal.h +7 -7
- data/src/core/load_balancing/lb_policy.cc +4 -6
- data/src/core/load_balancing/lb_policy.h +6 -16
- data/src/core/load_balancing/lb_policy_registry.cc +10 -8
- data/src/core/load_balancing/oob_backend_metric.cc +3 -9
- data/src/core/load_balancing/outlier_detection/outlier_detection.cc +63 -73
- data/src/core/load_balancing/outlier_detection/outlier_detection.h +4 -3
- data/src/core/load_balancing/pick_first/pick_first.cc +74 -990
- data/src/core/load_balancing/priority/priority.cc +9 -14
- data/src/core/load_balancing/ring_hash/ring_hash.cc +211 -159
- data/src/core/load_balancing/ring_hash/ring_hash.h +4 -11
- data/src/core/load_balancing/rls/rls.cc +139 -233
- data/src/core/load_balancing/rls/rls.h +97 -1
- data/src/core/load_balancing/round_robin/round_robin.cc +17 -23
- data/src/core/load_balancing/weighted_round_robin/static_stride_scheduler.cc +6 -6
- data/src/core/load_balancing/weighted_round_robin/static_stride_scheduler.h +3 -3
- data/src/core/load_balancing/weighted_round_robin/weighted_round_robin.cc +25 -34
- data/src/core/load_balancing/weighted_target/weighted_target.cc +12 -26
- data/src/core/load_balancing/xds/cds.cc +25 -27
- data/src/core/load_balancing/xds/xds_cluster_impl.cc +17 -20
- data/src/core/load_balancing/xds/xds_cluster_manager.cc +11 -19
- data/src/core/load_balancing/xds/xds_override_host.cc +99 -125
- data/src/core/load_balancing/xds/xds_wrr_locality.cc +11 -13
- data/src/core/plugin_registry/grpc_plugin_registry.cc +5 -1
- data/src/core/plugin_registry/grpc_plugin_registry_extra.cc +3 -3
- data/src/core/resolver/dns/c_ares/dns_resolver_ares.cc +14 -16
- data/src/core/resolver/dns/c_ares/dns_resolver_ares.h +1 -1
- data/src/core/resolver/dns/c_ares/grpc_ares_ev_driver_windows.cc +1 -1
- data/src/core/resolver/dns/c_ares/grpc_ares_wrapper.h +4 -0
- data/src/core/resolver/dns/dns_resolver_plugin.cc +1 -1
- data/src/core/resolver/dns/dns_resolver_plugin.h +1 -1
- data/src/core/resolver/dns/event_engine/event_engine_client_channel_resolver.cc +10 -15
- data/src/core/resolver/dns/native/dns_resolver.cc +2 -2
- data/src/core/resolver/dns/native/dns_resolver.h +1 -1
- data/src/core/resolver/fake/fake_resolver.cc +11 -12
- data/src/core/resolver/fake/fake_resolver.h +2 -2
- data/src/core/resolver/google_c2p/google_c2p_resolver.cc +11 -14
- data/src/core/resolver/polling_resolver.cc +2 -5
- data/src/core/resolver/polling_resolver.h +3 -3
- data/src/core/resolver/resolver_registry.cc +4 -3
- data/src/core/resolver/sockaddr/sockaddr_resolver.cc +3 -2
- data/src/core/resolver/xds/xds_config.cc +12 -9
- data/src/core/resolver/xds/xds_config.h +11 -6
- data/src/core/resolver/xds/xds_dependency_manager.cc +220 -193
- data/src/core/resolver/xds/xds_dependency_manager.h +30 -19
- data/src/core/resolver/xds/xds_resolver.cc +116 -136
- data/src/core/server/add_port.cc +87 -0
- data/src/core/server/server.cc +459 -131
- data/src/core/server/server.h +237 -72
- data/src/core/server/server_call_tracer_filter.cc +5 -9
- data/src/core/server/server_call_tracer_filter.h +1 -1
- data/src/core/server/server_config_selector.h +1 -1
- data/src/core/server/server_config_selector_filter.cc +9 -16
- data/src/core/server/xds_channel_stack_modifier.cc +1 -1
- data/src/core/server/xds_server_config_fetcher.cc +159 -187
- data/src/core/service_config/service_config.h +1 -1
- data/src/core/service_config/service_config_channel_arg_filter.cc +9 -21
- data/src/core/service_config/service_config_impl.cc +4 -4
- data/src/core/service_config/service_config_impl.h +1 -1
- data/src/core/telemetry/call_tracer.cc +12 -14
- data/src/core/telemetry/call_tracer.h +10 -9
- data/src/core/telemetry/context_list_entry.cc +38 -0
- data/src/core/telemetry/context_list_entry.h +112 -0
- data/src/core/telemetry/default_tcp_tracer.cc +26 -0
- data/src/core/telemetry/default_tcp_tracer.h +44 -0
- data/src/core/telemetry/histogram_view.cc +3 -3
- data/src/core/telemetry/metrics.cc +44 -23
- data/src/core/telemetry/metrics.h +24 -14
- data/src/core/telemetry/stats.h +0 -5
- data/src/core/telemetry/stats_data.cc +564 -329
- data/src/core/telemetry/stats_data.h +474 -180
- data/src/core/telemetry/tcp_tracer.cc +38 -0
- data/src/core/telemetry/tcp_tracer.h +104 -100
- data/src/core/transport/auth_context.cc +235 -0
- data/src/core/transport/auth_context.h +139 -0
- data/src/core/transport/endpoint_transport.h +90 -0
- data/src/core/transport/endpoint_transport_client_channel_factory.cc +61 -0
- data/src/core/transport/endpoint_transport_client_channel_factory.h +57 -0
- data/src/core/tsi/alts/frame_protector/alts_counter.h +1 -1
- data/src/core/tsi/alts/frame_protector/alts_seal_privacy_integrity_crypter.cc +1 -1
- data/src/core/tsi/alts/frame_protector/alts_unseal_privacy_integrity_crypter.cc +1 -1
- data/src/core/tsi/alts/handshaker/alts_handshaker_client.cc +36 -4
- data/src/core/tsi/alts/handshaker/alts_handshaker_client.h +3 -1
- data/src/core/tsi/alts/handshaker/alts_tsi_handshaker.cc +74 -20
- data/src/core/tsi/alts/handshaker/alts_tsi_handshaker.h +9 -3
- data/src/core/tsi/alts/handshaker/transport_security_common_api.h +2 -2
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_zero_copy_grpc_protector.cc +12 -4
- data/src/core/tsi/fake_transport_security.cc +22 -0
- data/src/core/tsi/ssl_transport_security.cc +203 -76
- data/src/core/tsi/ssl_transport_security.h +8 -3
- data/src/core/tsi/ssl_transport_security_utils.h +1 -1
- data/src/core/tsi/transport_security.h +3 -0
- data/src/core/tsi/transport_security_grpc.cc +8 -0
- data/src/core/tsi/transport_security_grpc.h +22 -3
- data/src/core/tsi/transport_security_interface.h +32 -27
- data/src/core/util/backoff.cc +3 -3
- data/src/core/util/backoff.h +1 -1
- data/src/core/util/check_class_size.h +48 -0
- data/src/core/util/down_cast.h +1 -1
- data/src/core/util/dual_ref_counted.h +48 -0
- data/src/core/util/dump_args.h +1 -9
- data/src/core/util/env.h +3 -4
- data/src/core/util/examine_stack.cc +2 -2
- data/src/core/util/examine_stack.h +3 -4
- data/src/core/util/fork.cc +1 -1
- data/src/core/util/fork.h +2 -2
- data/src/core/util/function_signature.h +80 -0
- data/src/core/util/gcp_metadata_query.cc +4 -3
- data/src/core/util/gpr_time.cc +4 -6
- data/src/core/util/http_client/httpcli.cc +97 -36
- data/src/core/util/http_client/httpcli.h +22 -9
- data/src/core/util/http_client/httpcli_security_connector.cc +7 -6
- data/src/core/util/json/json_channel_args.h +2 -1
- data/src/core/util/json/json_object_loader.cc +4 -4
- data/src/core/util/json/json_object_loader.h +19 -19
- data/src/core/util/json/json_reader.cc +4 -4
- data/src/core/util/json/json_writer.cc +4 -4
- data/src/core/util/latent_see.cc +123 -76
- data/src/core/util/latent_see.h +34 -36
- data/src/core/util/linux/env.cc +6 -5
- data/src/core/util/load_file.cc +26 -14
- data/src/core/util/log.cc +5 -1
- data/src/core/util/lru_cache.h +4 -4
- data/src/core/util/match.h +7 -7
- data/src/core/util/matchers.cc +1 -2
- data/src/core/util/matchers.h +7 -12
- data/src/core/util/memory_usage.h +268 -0
- data/src/core/util/per_cpu.cc +2 -0
- data/src/core/util/per_cpu.h +7 -0
- data/src/core/util/posix/env.cc +2 -2
- data/src/core/util/posix/sync.cc +0 -1
- data/src/core/util/posix/time.cc +0 -1
- data/src/core/util/ref_counted.h +1 -0
- data/src/core/util/ref_counted_ptr.h +27 -1
- data/src/core/util/ring_buffer.h +4 -5
- data/src/core/util/shared_bit_gen.cc +21 -0
- data/src/core/util/shared_bit_gen.h +64 -0
- data/src/core/util/single_set_ptr.h +35 -4
- data/src/core/util/status_helper.cc +98 -79
- data/src/core/util/status_helper.h +13 -30
- data/src/core/util/string.cc +2 -2
- data/src/core/util/sync_abseil.cc +0 -1
- data/src/core/util/table.h +6 -21
- data/src/core/util/time.cc +5 -5
- data/src/core/util/time.h +5 -5
- data/src/core/util/time_precise.cc +0 -1
- data/src/core/util/type_list.h +56 -0
- data/src/core/util/upb_utils.h +42 -0
- data/src/core/util/uri.cc +91 -24
- data/src/core/util/uri.h +23 -7
- data/src/core/util/useful.h +66 -17
- data/src/core/util/validation_errors.cc +5 -5
- data/src/core/util/wait_for_single_owner.cc +31 -0
- data/src/core/util/wait_for_single_owner.h +86 -0
- data/src/core/util/windows/env.cc +3 -3
- data/src/core/util/windows/sync.cc +0 -1
- data/src/core/util/windows/time.cc +0 -1
- data/src/core/util/work_serializer.cc +27 -267
- data/src/core/util/work_serializer.h +3 -27
- data/src/core/xds/grpc/certificate_provider_store.cc +14 -19
- data/src/core/xds/grpc/certificate_provider_store.h +4 -4
- data/src/core/xds/grpc/file_watcher_certificate_provider_factory.cc +6 -6
- data/src/core/xds/grpc/file_watcher_certificate_provider_factory.h +1 -1
- data/src/core/xds/grpc/xds_audit_logger_registry.cc +1 -1
- data/src/core/xds/grpc/xds_bootstrap_grpc.cc +22 -20
- data/src/core/xds/grpc/xds_bootstrap_grpc.h +7 -2
- data/src/core/xds/grpc/xds_certificate_provider.cc +16 -16
- data/src/core/xds/grpc/xds_certificate_provider.h +2 -2
- data/src/core/xds/grpc/xds_client_grpc.cc +20 -16
- data/src/core/xds/grpc/xds_client_grpc.h +4 -2
- data/src/core/xds/grpc/xds_cluster.h +7 -7
- data/src/core/xds/grpc/xds_cluster_parser.cc +29 -28
- data/src/core/xds/grpc/xds_cluster_specifier_plugin.cc +4 -4
- data/src/core/xds/grpc/xds_common_types.cc +2 -2
- data/src/core/xds/grpc/xds_common_types.h +4 -4
- data/src/core/xds/grpc/xds_common_types_parser.cc +167 -89
- data/src/core/xds/grpc/xds_common_types_parser.h +20 -7
- data/src/core/xds/grpc/xds_endpoint.cc +3 -4
- data/src/core/xds/grpc/xds_endpoint_parser.cc +68 -37
- data/src/core/xds/grpc/xds_health_status.cc +4 -4
- data/src/core/xds/grpc/xds_health_status.h +4 -3
- data/src/core/xds/grpc/xds_http_fault_filter.cc +19 -21
- data/src/core/xds/grpc/xds_http_fault_filter.h +4 -3
- data/src/core/xds/grpc/xds_http_filter.h +11 -4
- data/src/core/xds/grpc/xds_http_filter_registry.cc +8 -10
- data/src/core/xds/grpc/xds_http_filter_registry.h +4 -4
- data/src/core/xds/grpc/xds_http_gcp_authn_filter.cc +31 -9
- data/src/core/xds/grpc/xds_http_gcp_authn_filter.h +7 -3
- data/src/core/xds/grpc/xds_http_rbac_filter.cc +21 -21
- data/src/core/xds/grpc/xds_http_rbac_filter.h +4 -3
- data/src/core/xds/grpc/xds_http_stateful_session_filter.cc +10 -10
- data/src/core/xds/grpc/xds_http_stateful_session_filter.h +4 -3
- data/src/core/xds/grpc/xds_lb_policy_registry.cc +5 -5
- data/src/core/xds/grpc/xds_lb_policy_registry.h +1 -1
- data/src/core/xds/grpc/xds_listener.cc +4 -6
- data/src/core/xds/grpc/xds_listener.h +10 -10
- data/src/core/xds/grpc/xds_listener_parser.cc +58 -51
- data/src/core/xds/grpc/xds_listener_parser.h +2 -1
- data/src/core/xds/grpc/xds_metadata.cc +5 -5
- data/src/core/xds/grpc/xds_metadata.h +8 -0
- data/src/core/xds/grpc/xds_metadata_parser.cc +26 -37
- data/src/core/xds/grpc/xds_metadata_parser.h +0 -2
- data/src/core/xds/grpc/xds_route_config.cc +10 -15
- data/src/core/xds/grpc/xds_route_config.h +10 -10
- data/src/core/xds/grpc/xds_route_config_parser.cc +85 -132
- data/src/core/xds/grpc/xds_route_config_parser.h +5 -5
- data/src/core/xds/grpc/xds_routing.cc +6 -6
- data/src/core/xds/grpc/xds_routing.h +6 -6
- data/src/core/xds/grpc/xds_server_grpc.cc +133 -50
- data/src/core/xds/grpc/xds_server_grpc.h +34 -13
- data/src/core/xds/grpc/xds_server_grpc_interface.h +37 -0
- data/src/core/xds/grpc/xds_transport_grpc.cc +29 -12
- data/src/core/xds/grpc/xds_transport_grpc.h +5 -3
- data/src/core/xds/xds_client/lrs_client.cc +77 -88
- data/src/core/xds/xds_client/lrs_client.h +15 -15
- data/src/core/xds/xds_client/xds_api.cc +5 -228
- data/src/core/xds/xds_client/xds_api.h +1 -133
- data/src/core/xds/xds_client/xds_bootstrap.cc +11 -1
- data/src/core/xds/xds_client/xds_bootstrap.h +25 -1
- data/src/core/xds/xds_client/xds_client.cc +1076 -727
- data/src/core/xds/xds_client/xds_client.h +138 -30
- data/src/core/xds/xds_client/xds_resource_type.h +3 -5
- data/src/core/xds/xds_client/xds_resource_type_impl.h +13 -8
- data/src/core/xds/xds_client/xds_transport.h +1 -1
- data/src/ruby/ext/grpc/extconf.rb +5 -2
- data/src/ruby/ext/grpc/rb_call.c +1 -8
- data/src/ruby/ext/grpc/rb_channel.c +70 -557
- data/src/ruby/ext/grpc/rb_channel.h +0 -3
- data/src/ruby/ext/grpc/rb_completion_queue.c +26 -14
- data/src/ruby/ext/grpc/rb_completion_queue.h +1 -7
- data/src/ruby/ext/grpc/rb_grpc.c +9 -5
- data/src/ruby/ext/grpc/rb_grpc.h +1 -1
- data/src/ruby/ext/grpc/rb_grpc_imports.generated.h +1 -1
- data/src/ruby/ext/grpc/rb_loader.c +0 -4
- data/src/ruby/ext/grpc/rb_server.c +31 -50
- data/src/ruby/lib/grpc/generic/client_stub.rb +4 -4
- data/src/ruby/lib/grpc/version.rb +1 -1
- data/src/ruby/spec/core_spec.rb +22 -0
- data/src/ruby/spec/generic/active_call_spec.rb +1 -1
- data/src/ruby/spec/generic/client_stub_spec.rb +2 -6
- data/src/ruby/spec/generic/rpc_server_spec.rb +1 -1
- data/third_party/abseil-cpp/absl/algorithm/algorithm.h +2 -2
- data/third_party/abseil-cpp/absl/algorithm/container.h +81 -67
- data/third_party/abseil-cpp/absl/base/attributes.h +142 -23
- data/third_party/abseil-cpp/absl/base/call_once.h +18 -16
- data/third_party/abseil-cpp/absl/base/config.h +23 -132
- data/third_party/abseil-cpp/absl/base/fast_type_id.h +45 -0
- data/third_party/abseil-cpp/absl/base/internal/cycleclock.cc +0 -5
- data/third_party/abseil-cpp/absl/base/internal/cycleclock_config.h +7 -7
- data/third_party/abseil-cpp/absl/base/internal/endian.h +34 -38
- data/third_party/abseil-cpp/absl/base/internal/iterator_traits.h +71 -0
- data/third_party/abseil-cpp/absl/base/internal/low_level_alloc.cc +6 -5
- data/third_party/abseil-cpp/absl/base/internal/nullability_deprecated.h +106 -0
- data/third_party/abseil-cpp/absl/base/internal/raw_logging.cc +1 -1
- data/third_party/abseil-cpp/absl/base/internal/spinlock.cc +0 -9
- data/third_party/abseil-cpp/absl/base/internal/spinlock.h +3 -13
- data/third_party/abseil-cpp/absl/base/internal/sysinfo.cc +14 -0
- data/third_party/abseil-cpp/absl/base/internal/thread_identity.h +5 -1
- data/third_party/abseil-cpp/absl/base/internal/tracing.cc +39 -0
- data/third_party/abseil-cpp/absl/base/internal/tracing.h +81 -0
- data/third_party/abseil-cpp/absl/base/internal/unaligned_access.h +6 -6
- data/third_party/abseil-cpp/absl/base/internal/unscaledcycleclock.cc +0 -10
- data/third_party/abseil-cpp/absl/base/internal/unscaledcycleclock.h +17 -0
- data/third_party/abseil-cpp/absl/base/macros.h +35 -4
- data/third_party/abseil-cpp/absl/base/no_destructor.h +11 -32
- data/third_party/abseil-cpp/absl/base/nullability.h +124 -56
- data/third_party/abseil-cpp/absl/base/optimization.h +8 -12
- data/third_party/abseil-cpp/absl/base/options.h +7 -81
- data/third_party/abseil-cpp/absl/base/policy_checks.h +9 -7
- data/third_party/abseil-cpp/absl/cleanup/cleanup.h +1 -3
- data/third_party/abseil-cpp/absl/cleanup/internal/cleanup.h +3 -4
- data/third_party/abseil-cpp/absl/container/btree_map.h +891 -0
- data/third_party/abseil-cpp/absl/container/btree_set.h +826 -0
- data/third_party/abseil-cpp/absl/container/fixed_array.h +9 -15
- data/third_party/abseil-cpp/absl/container/flat_hash_map.h +22 -3
- data/third_party/abseil-cpp/absl/container/flat_hash_set.h +23 -4
- data/third_party/abseil-cpp/absl/container/inlined_vector.h +10 -6
- data/third_party/abseil-cpp/absl/container/internal/btree.h +3149 -0
- data/third_party/abseil-cpp/absl/container/internal/btree_container.h +867 -0
- data/third_party/abseil-cpp/absl/container/internal/common.h +43 -0
- data/third_party/abseil-cpp/absl/container/internal/common_policy_traits.h +10 -2
- data/third_party/abseil-cpp/absl/container/internal/container_memory.h +10 -10
- data/third_party/abseil-cpp/absl/container/internal/hash_function_defaults.h +1 -8
- data/third_party/abseil-cpp/absl/container/internal/hash_policy_traits.h +0 -4
- data/third_party/abseil-cpp/absl/container/internal/hashtable_control_bytes.h +527 -0
- data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.cc +20 -4
- data/third_party/abseil-cpp/absl/container/internal/hashtablez_sampler.h +31 -12
- data/third_party/abseil-cpp/absl/container/internal/inlined_vector.h +6 -9
- data/third_party/abseil-cpp/absl/container/internal/layout.h +27 -43
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_map.h +199 -68
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.cc +1462 -263
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set.h +1170 -1547
- data/third_party/abseil-cpp/absl/container/internal/raw_hash_set_resize_impl.h +80 -0
- data/third_party/abseil-cpp/absl/crc/crc32c.cc +0 -4
- data/third_party/abseil-cpp/absl/crc/crc32c.h +7 -5
- data/third_party/abseil-cpp/absl/crc/internal/cpu_detect.cc +56 -0
- data/third_party/abseil-cpp/absl/crc/internal/crc32_x86_arm_combined_simd.h +0 -22
- data/third_party/abseil-cpp/absl/crc/internal/crc_x86_arm_combined.cc +45 -74
- data/third_party/abseil-cpp/absl/crc/internal/non_temporal_memcpy.h +21 -7
- data/third_party/abseil-cpp/absl/debugging/internal/addresses.h +57 -0
- data/third_party/abseil-cpp/absl/debugging/internal/decode_rust_punycode.cc +1 -1
- data/third_party/abseil-cpp/absl/debugging/internal/decode_rust_punycode.h +5 -5
- data/third_party/abseil-cpp/absl/debugging/internal/demangle.cc +12 -37
- data/third_party/abseil-cpp/absl/debugging/internal/demangle_rust.cc +16 -16
- data/third_party/abseil-cpp/absl/debugging/internal/elf_mem_image.h +1 -1
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_aarch64-inl.inc +40 -21
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_arm-inl.inc +16 -7
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_config.h +7 -0
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_emscripten-inl.inc +14 -5
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_generic-inl.inc +10 -4
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_powerpc-inl.inc +27 -16
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_riscv-inl.inc +20 -8
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_unimplemented-inl.inc +4 -3
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_win32-inl.inc +15 -28
- data/third_party/abseil-cpp/absl/debugging/internal/stacktrace_x86-inl.inc +19 -9
- data/third_party/abseil-cpp/absl/debugging/leak_check.cc +73 -0
- data/third_party/abseil-cpp/absl/debugging/leak_check.h +150 -0
- data/third_party/abseil-cpp/absl/debugging/stacktrace.cc +144 -27
- data/third_party/abseil-cpp/absl/debugging/stacktrace.h +73 -5
- data/third_party/abseil-cpp/absl/debugging/symbolize.cc +3 -2
- data/third_party/abseil-cpp/absl/debugging/symbolize_elf.inc +67 -18
- data/third_party/abseil-cpp/absl/debugging/symbolize_emscripten.inc +3 -2
- data/third_party/abseil-cpp/absl/debugging/symbolize_win32.inc +25 -6
- data/third_party/abseil-cpp/absl/flags/commandlineflag.cc +1 -0
- data/third_party/abseil-cpp/absl/flags/commandlineflag.h +9 -2
- data/third_party/abseil-cpp/absl/flags/flag.h +18 -15
- data/third_party/abseil-cpp/absl/flags/internal/commandlineflag.h +2 -2
- data/third_party/abseil-cpp/absl/flags/internal/flag.cc +14 -5
- data/third_party/abseil-cpp/absl/flags/internal/flag.h +23 -11
- data/third_party/abseil-cpp/absl/flags/internal/private_handle_accessor.cc +4 -0
- data/third_party/abseil-cpp/absl/flags/internal/private_handle_accessor.h +3 -0
- data/third_party/abseil-cpp/absl/flags/internal/program_name.cc +13 -12
- data/third_party/abseil-cpp/absl/flags/internal/registry.h +4 -3
- data/third_party/abseil-cpp/absl/flags/reflection.cc +2 -3
- data/third_party/abseil-cpp/absl/flags/usage_config.cc +9 -4
- data/third_party/abseil-cpp/absl/functional/any_invocable.h +8 -10
- data/third_party/abseil-cpp/absl/functional/function_ref.h +2 -9
- data/third_party/abseil-cpp/absl/functional/internal/any_invocable.h +110 -226
- data/third_party/abseil-cpp/absl/functional/internal/front_binder.h +10 -12
- data/third_party/abseil-cpp/absl/functional/internal/function_ref.h +2 -5
- data/third_party/abseil-cpp/absl/hash/hash.h +44 -2
- data/third_party/abseil-cpp/absl/hash/internal/hash.cc +14 -18
- data/third_party/abseil-cpp/absl/hash/internal/hash.h +257 -127
- data/third_party/abseil-cpp/absl/hash/internal/low_level_hash.cc +27 -72
- data/third_party/abseil-cpp/absl/hash/internal/low_level_hash.h +2 -6
- data/third_party/abseil-cpp/absl/hash/internal/weakly_mixed_integer.h +38 -0
- data/third_party/abseil-cpp/absl/log/absl_vlog_is_on.h +2 -0
- data/third_party/abseil-cpp/absl/log/check.h +2 -1
- data/third_party/abseil-cpp/absl/log/globals.h +4 -5
- data/third_party/abseil-cpp/absl/log/internal/append_truncated.h +28 -0
- data/third_party/abseil-cpp/absl/log/internal/check_op.cc +43 -38
- data/third_party/abseil-cpp/absl/log/internal/check_op.h +124 -99
- data/third_party/abseil-cpp/absl/log/internal/conditions.cc +5 -3
- data/third_party/abseil-cpp/absl/log/internal/conditions.h +7 -2
- data/third_party/abseil-cpp/absl/log/internal/log_message.cc +158 -64
- data/third_party/abseil-cpp/absl/log/internal/log_message.h +140 -83
- data/third_party/abseil-cpp/absl/log/internal/nullstream.h +1 -0
- data/third_party/abseil-cpp/absl/log/internal/proto.cc +3 -5
- data/third_party/abseil-cpp/absl/log/internal/proto.h +28 -18
- data/third_party/abseil-cpp/absl/log/internal/strip.h +4 -12
- data/third_party/abseil-cpp/absl/log/internal/structured_proto.cc +115 -0
- data/third_party/abseil-cpp/absl/log/internal/structured_proto.h +107 -0
- data/third_party/abseil-cpp/absl/log/internal/vlog_config.cc +8 -1
- data/third_party/abseil-cpp/absl/log/internal/vlog_config.h +8 -6
- data/third_party/abseil-cpp/absl/log/internal/voidify.h +10 -4
- data/third_party/abseil-cpp/absl/log/log.h +48 -35
- data/third_party/abseil-cpp/absl/log/log_sink_registry.h +5 -2
- data/third_party/abseil-cpp/absl/log/vlog_is_on.h +2 -0
- data/third_party/abseil-cpp/absl/meta/type_traits.h +62 -181
- data/third_party/abseil-cpp/absl/numeric/bits.h +68 -2
- data/third_party/abseil-cpp/absl/numeric/int128.cc +0 -52
- data/third_party/abseil-cpp/absl/numeric/int128.h +15 -3
- data/third_party/abseil-cpp/absl/numeric/int128_have_intrinsic.inc +6 -4
- data/third_party/abseil-cpp/absl/numeric/int128_no_intrinsic.inc +6 -3
- data/third_party/abseil-cpp/absl/numeric/internal/bits.h +7 -3
- data/third_party/abseil-cpp/absl/profiling/internal/exponential_biased.cc +1 -1
- data/third_party/abseil-cpp/absl/random/bernoulli_distribution.h +3 -1
- data/third_party/abseil-cpp/absl/random/beta_distribution.h +3 -1
- data/third_party/abseil-cpp/absl/random/bit_gen_ref.h +12 -12
- data/third_party/abseil-cpp/absl/random/discrete_distribution.cc +10 -0
- data/third_party/abseil-cpp/absl/random/discrete_distribution.h +4 -2
- data/third_party/abseil-cpp/absl/random/distributions.h +6 -8
- data/third_party/abseil-cpp/absl/random/exponential_distribution.h +1 -0
- data/third_party/abseil-cpp/absl/random/gaussian_distribution.h +3 -2
- data/third_party/abseil-cpp/absl/random/internal/distribution_caller.h +8 -7
- data/third_party/abseil-cpp/absl/random/internal/entropy_pool.cc +185 -0
- data/third_party/abseil-cpp/absl/random/internal/entropy_pool.h +35 -0
- data/third_party/abseil-cpp/absl/random/internal/iostream_state_saver.h +5 -2
- data/third_party/abseil-cpp/absl/random/internal/nonsecure_base.h +5 -6
- data/third_party/abseil-cpp/absl/random/internal/platform.h +12 -12
- data/third_party/abseil-cpp/absl/random/internal/randen_detect.cc +57 -6
- data/third_party/abseil-cpp/absl/random/internal/randen_engine.h +2 -1
- data/third_party/abseil-cpp/absl/random/internal/seed_material.cc +20 -12
- data/third_party/abseil-cpp/absl/random/internal/seed_material.h +5 -5
- data/third_party/abseil-cpp/absl/random/internal/uniform_helper.h +2 -2
- data/third_party/abseil-cpp/absl/random/internal/wide_multiply.h +0 -1
- data/third_party/abseil-cpp/absl/random/log_uniform_int_distribution.h +1 -4
- data/third_party/abseil-cpp/absl/random/poisson_distribution.h +4 -3
- data/third_party/abseil-cpp/absl/random/random.h +88 -53
- data/third_party/abseil-cpp/absl/random/seed_gen_exception.cc +2 -3
- data/third_party/abseil-cpp/absl/random/seed_sequences.cc +6 -2
- data/third_party/abseil-cpp/absl/random/seed_sequences.h +1 -2
- data/third_party/abseil-cpp/absl/random/uniform_int_distribution.h +2 -1
- data/third_party/abseil-cpp/absl/random/uniform_real_distribution.h +2 -0
- data/third_party/abseil-cpp/absl/random/zipf_distribution.h +5 -4
- data/third_party/abseil-cpp/absl/status/internal/status_internal.cc +10 -7
- data/third_party/abseil-cpp/absl/status/internal/status_internal.h +3 -4
- data/third_party/abseil-cpp/absl/status/internal/statusor_internal.h +4 -3
- data/third_party/abseil-cpp/absl/status/status.cc +4 -8
- data/third_party/abseil-cpp/absl/status/status.h +8 -8
- data/third_party/abseil-cpp/absl/status/status_payload_printer.h +2 -2
- data/third_party/abseil-cpp/absl/status/statusor.cc +2 -2
- data/third_party/abseil-cpp/absl/status/statusor.h +6 -6
- data/third_party/abseil-cpp/absl/strings/ascii.cc +44 -29
- data/third_party/abseil-cpp/absl/strings/ascii.h +62 -22
- data/third_party/abseil-cpp/absl/strings/charconv.cc +25 -29
- data/third_party/abseil-cpp/absl/strings/charconv.h +5 -5
- data/third_party/abseil-cpp/absl/strings/charset.h +3 -4
- data/third_party/abseil-cpp/absl/strings/cord.cc +54 -58
- data/third_party/abseil-cpp/absl/strings/cord.h +99 -102
- data/third_party/abseil-cpp/absl/strings/cord_analysis.cc +11 -11
- data/third_party/abseil-cpp/absl/strings/cord_analysis.h +3 -3
- data/third_party/abseil-cpp/absl/strings/escaping.cc +186 -197
- data/third_party/abseil-cpp/absl/strings/escaping.h +9 -10
- data/third_party/abseil-cpp/absl/strings/internal/charconv_bigint.cc +1 -1
- data/third_party/abseil-cpp/absl/strings/internal/charconv_bigint.h +1 -1
- data/third_party/abseil-cpp/absl/strings/internal/cord_internal.h +53 -22
- data/third_party/abseil-cpp/absl/strings/internal/cord_rep_btree.cc +0 -4
- data/third_party/abseil-cpp/absl/strings/internal/cordz_info.cc +0 -4
- data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.cc +7 -63
- data/third_party/abseil-cpp/absl/strings/internal/str_format/arg.h +1 -11
- data/third_party/abseil-cpp/absl/strings/internal/str_format/extension.cc +0 -22
- data/third_party/abseil-cpp/absl/strings/internal/str_format/float_conversion.cc +3 -2
- data/third_party/abseil-cpp/absl/strings/internal/str_format/output.cc +5 -3
- data/third_party/abseil-cpp/absl/strings/internal/str_format/parser.h +4 -2
- data/third_party/abseil-cpp/absl/strings/internal/str_join_internal.h +3 -3
- data/third_party/abseil-cpp/absl/strings/internal/str_split_internal.h +35 -0
- data/third_party/abseil-cpp/absl/strings/internal/string_constant.h +0 -5
- data/third_party/abseil-cpp/absl/strings/internal/utf8.cc +96 -1
- data/third_party/abseil-cpp/absl/strings/internal/utf8.h +15 -1
- data/third_party/abseil-cpp/absl/strings/match.h +21 -11
- data/third_party/abseil-cpp/absl/strings/numbers.cc +55 -33
- data/third_party/abseil-cpp/absl/strings/numbers.h +87 -58
- data/third_party/abseil-cpp/absl/strings/str_cat.cc +6 -7
- data/third_party/abseil-cpp/absl/strings/str_cat.h +41 -30
- data/third_party/abseil-cpp/absl/strings/str_format.h +18 -18
- data/third_party/abseil-cpp/absl/strings/str_replace.cc +3 -3
- data/third_party/abseil-cpp/absl/strings/str_replace.h +6 -6
- data/third_party/abseil-cpp/absl/strings/str_split.h +18 -1
- data/third_party/abseil-cpp/absl/strings/string_view.cc +4 -9
- data/third_party/abseil-cpp/absl/strings/string_view.h +46 -50
- data/third_party/abseil-cpp/absl/strings/strip.h +11 -8
- data/third_party/abseil-cpp/absl/strings/substitute.cc +5 -4
- data/third_party/abseil-cpp/absl/strings/substitute.h +66 -64
- data/third_party/abseil-cpp/absl/synchronization/blocking_counter.cc +16 -10
- data/third_party/abseil-cpp/absl/synchronization/blocking_counter.h +6 -0
- data/third_party/abseil-cpp/absl/synchronization/internal/create_thread_identity.cc +5 -1
- data/third_party/abseil-cpp/absl/synchronization/internal/futex_waiter.cc +0 -4
- data/third_party/abseil-cpp/absl/synchronization/internal/kernel_timeout.cc +0 -5
- data/third_party/abseil-cpp/absl/synchronization/internal/pthread_waiter.cc +0 -4
- data/third_party/abseil-cpp/absl/synchronization/internal/sem_waiter.cc +0 -4
- data/third_party/abseil-cpp/absl/synchronization/internal/stdcpp_waiter.cc +0 -4
- data/third_party/abseil-cpp/absl/synchronization/internal/waiter_base.cc +0 -4
- data/third_party/abseil-cpp/absl/synchronization/internal/win32_waiter.cc +0 -4
- data/third_party/abseil-cpp/absl/synchronization/mutex.cc +39 -13
- data/third_party/abseil-cpp/absl/synchronization/mutex.h +97 -69
- data/third_party/abseil-cpp/absl/synchronization/notification.cc +10 -2
- data/third_party/abseil-cpp/absl/synchronization/notification.h +12 -2
- data/third_party/abseil-cpp/absl/time/civil_time.cc +1 -0
- data/third_party/abseil-cpp/absl/time/duration.cc +18 -58
- data/third_party/abseil-cpp/absl/time/internal/cctz/include/cctz/time_zone.h +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_fixed.cc +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_format.cc +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_if.cc +3 -3
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_impl.cc +2 -2
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_impl.h +2 -2
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_info.cc +3 -3
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_info.h +2 -2
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_libc.cc +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_libc.h +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_lookup.cc +92 -112
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/time_zone_posix.cc +1 -1
- data/third_party/abseil-cpp/absl/time/internal/cctz/src/tzfile.h +6 -4
- data/third_party/abseil-cpp/absl/time/time.h +89 -23
- data/third_party/abseil-cpp/absl/types/internal/span.h +3 -2
- data/third_party/abseil-cpp/absl/types/optional.h +7 -745
- data/third_party/abseil-cpp/absl/types/span.h +98 -54
- data/third_party/abseil-cpp/absl/types/variant.h +5 -784
- data/third_party/abseil-cpp/absl/utility/utility.h +10 -185
- data/third_party/boringssl-with-bazel/src/crypto/aes/aes.cc +41 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bitstr.cc +259 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bool.cc +53 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_d2i_fp.cc +47 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_dup.cc +42 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_gentm.cc +109 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_i2d_fp.cc +43 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_int.cc +439 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_mbstr.cc +239 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_object.cc +193 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_octet.cc +32 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strex.cc +415 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strnid.cc +206 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_time.cc +224 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_type.cc +172 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_utctm.cc +109 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_lib.cc +355 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_par.cc +61 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn_pack.cc +56 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/f_int.cc +63 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/f_string.cc +52 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/internal.h +33 -61
- data/third_party/boringssl-with-bazel/src/crypto/asn1/posix_time.cc +241 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_dec.cc +963 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_enc.cc +661 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_fre.cc +164 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_new.cc +276 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_typ.cc +80 -0
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_utl.cc +229 -0
- data/third_party/boringssl-with-bazel/src/crypto/base64/base64.cc +434 -0
- data/third_party/boringssl-with-bazel/src/crypto/bcm_support.h +19 -48
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio.cc +658 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio_mem.cc +268 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/connect.cc +509 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/errno.cc +50 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/fd.cc +193 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/file.cc +292 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/hexdump.cc +152 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/internal.h +17 -61
- data/third_party/boringssl-with-bazel/src/crypto/bio/pair.cc +446 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/printf.cc +59 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/socket.cc +144 -0
- data/third_party/boringssl-with-bazel/src/crypto/bio/socket_helper.cc +131 -0
- data/third_party/boringssl-with-bazel/src/crypto/blake2/blake2.cc +169 -0
- data/third_party/boringssl-with-bazel/src/crypto/bn/bn_asn1.cc +57 -0
- data/third_party/boringssl-with-bazel/src/crypto/bn/convert.cc +407 -0
- data/third_party/boringssl-with-bazel/src/crypto/bn/div.cc +100 -0
- data/third_party/boringssl-with-bazel/src/crypto/bn/exponentiation.cc +166 -0
- data/third_party/boringssl-with-bazel/src/crypto/bn/sqrt.cc +93 -0
- data/third_party/boringssl-with-bazel/src/crypto/buf/buf.cc +118 -0
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/asn1_compat.cc +53 -0
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/ber.cc +266 -0
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbb.cc +708 -0
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbs.cc +912 -0
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/internal.h +16 -16
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/unicode.cc +156 -0
- data/third_party/boringssl-with-bazel/src/crypto/chacha/chacha.cc +224 -0
- data/third_party/boringssl-with-bazel/src/crypto/chacha/internal.h +23 -23
- data/third_party/boringssl-with-bazel/src/crypto/cipher/derive_key.cc +108 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_aesctrhmac.cc +279 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_aeseax.cc +289 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_aesgcmsiv.cc +922 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_chacha20poly1305.cc +341 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_des.cc +198 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_null.cc +51 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_rc2.cc +417 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_rc4.cc +54 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/e_tls.cc +599 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/get_cipher.cc +85 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/internal.h +240 -0
- data/third_party/boringssl-with-bazel/src/crypto/cipher/tls_cbc.cc +476 -0
- data/third_party/boringssl-with-bazel/src/crypto/cms/cms.cc +172 -0
- data/third_party/boringssl-with-bazel/src/crypto/conf/conf.cc +631 -0
- data/third_party/boringssl-with-bazel/src/crypto/conf/internal.h +13 -13
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_apple.cc +73 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_fuchsia.cc +53 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_linux.cc +60 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_openbsd.cc +59 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_sysreg.cc +92 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_win.cc +39 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_freebsd.cc +53 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_linux.cc +173 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_linux.h +24 -22
- data/third_party/boringssl-with-bazel/src/crypto/cpu_intel.cc +281 -0
- data/third_party/boringssl-with-bazel/src/crypto/crypto.cc +181 -0
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519.cc +2154 -0
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519_64_adx.cc +18 -0
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519_tables.h +13 -13
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/internal.h +17 -17
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/spake25519.cc +529 -0
- data/third_party/boringssl-with-bazel/src/crypto/des/des.cc +829 -0
- data/third_party/boringssl-with-bazel/src/crypto/des/internal.h +31 -73
- data/third_party/boringssl-with-bazel/src/crypto/dh/dh_asn1.cc +123 -0
- data/third_party/boringssl-with-bazel/src/crypto/dh/params.cc +408 -0
- data/third_party/boringssl-with-bazel/src/crypto/digest/digest_extra.cc +314 -0
- data/third_party/boringssl-with-bazel/src/crypto/dsa/dsa.cc +941 -0
- data/third_party/boringssl-with-bazel/src/crypto/dsa/dsa_asn1.cc +367 -0
- data/third_party/boringssl-with-bazel/src/crypto/dsa/internal.h +17 -19
- data/third_party/boringssl-with-bazel/src/crypto/ec/ec_asn1.cc +554 -0
- data/third_party/boringssl-with-bazel/src/crypto/ec/ec_derive.cc +96 -0
- data/third_party/boringssl-with-bazel/src/crypto/ec/hash_to_curve.cc +502 -0
- data/third_party/boringssl-with-bazel/src/crypto/ec/internal.h +78 -0
- data/third_party/boringssl-with-bazel/src/crypto/ecdh/ecdh.cc +73 -0
- data/third_party/boringssl-with-bazel/src/crypto/ecdsa/ecdsa_asn1.cc +351 -0
- data/third_party/boringssl-with-bazel/src/crypto/engine/engine.cc +95 -0
- data/third_party/boringssl-with-bazel/src/crypto/err/err.cc +808 -0
- data/third_party/boringssl-with-bazel/src/crypto/err/internal.h +13 -13
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp.cc +379 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp_asn1.cc +470 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp_ctx.cc +439 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/internal.h +17 -59
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_dh.cc +153 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_dh_asn1.cc +142 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_dsa_asn1.cc +279 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ec.cc +230 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ec_asn1.cc +286 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ed25519.cc +103 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ed25519_asn1.cc +225 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_hkdf.cc +236 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_rsa.cc +609 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_rsa_asn1.cc +198 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_x25519.cc +109 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_x25519_asn1.cc +237 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/pbkdf.cc +98 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/print.cc +342 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/scrypt.cc +216 -0
- data/third_party/boringssl-with-bazel/src/crypto/evp/sign.cc +95 -0
- data/third_party/boringssl-with-bazel/src/crypto/ex_data.cc +141 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/aes.cc.inc +202 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/aes_nohw.cc.inc +1281 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/cbc.cc.inc +130 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/cfb.cc.inc +166 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/ctr.cc.inc +100 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/gcm.cc.inc +604 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/gcm_nohw.cc.inc +302 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/internal.h +396 -76
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/key_wrap.cc.inc +209 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/mode_wrappers.cc.inc +93 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/ofb.cc.inc +53 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bcm.cc +282 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bcm_interface.h +765 -29
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/add.cc.inc +269 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/asm/x86_64-gcc.cc.inc +554 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/bn.cc.inc +374 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/bytes.cc.inc +225 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/cmp.cc.inc +159 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/ctx.cc.inc +191 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/div.cc.inc +734 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/div_extra.cc.inc +87 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/exponentiation.cc.inc +739 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/gcd.cc.inc +278 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/gcd_extra.cc.inc +323 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/generic.cc.inc +582 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/internal.h +53 -160
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/jacobi.cc.inc +99 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery.cc.inc +409 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery_inv.cc.inc +222 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/mul.cc.inc +698 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/prime.cc.inc +928 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/random.cc.inc +260 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/rsaz_exp.cc.inc +142 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/rsaz_exp.h +24 -21
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/shift.cc.inc +315 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/sqrt.cc.inc +382 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/aead.cc.inc +295 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/cipher.cc.inc +672 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aes.cc.inc +1235 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aesccm.cc.inc +409 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/internal.h +18 -69
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cmac/cmac.cc.inc +288 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/delocate.h +36 -25
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/check.cc.inc +190 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/dh.cc.inc +424 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/internal.h +13 -15
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/digest.cc.inc +244 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/digests.cc.inc +178 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/internal.h +17 -59
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/md32_common.h +17 -51
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digestsign/digestsign.cc.inc +226 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/builtin_curves.h +91 -91
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec.cc.inc +971 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_key.cc.inc +494 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_montgomery.cc.inc +439 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/felem.cc.inc +104 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/internal.h +23 -70
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/oct.cc.inc +295 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p224-64.cc.inc +1163 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256-nistz-table.h +15 -10
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256-nistz.cc.inc +741 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256-nistz.h +26 -21
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256.cc.inc +749 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256_table.h +13 -13
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/scalar.cc.inc +179 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/simple.cc.inc +279 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/simple_mul.cc.inc +269 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/util.cc.inc +255 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/wnaf.cc.inc +221 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdh/ecdh.cc.inc +88 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/ecdsa.cc.inc +278 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/internal.h +13 -13
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/fips_shared_support.cc +28 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/hkdf/hkdf.cc.inc +112 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/hmac/hmac.cc.inc +215 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/keccak/internal.h +70 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/keccak/keccak.cc.inc +279 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/mldsa/fips_known_values.inc +1345 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/mldsa/mldsa.cc.inc +2300 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/mlkem/fips_known_values.inc +411 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/mlkem/mlkem.cc.inc +1397 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/ctrdrbg.cc.inc +214 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/internal.h +22 -28
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/rand.cc.inc +483 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/blinding.cc.inc +147 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/internal.h +17 -60
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/padding.cc.inc +372 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa.cc.inc +983 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa_impl.cc.inc +1279 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/fips.cc.inc +129 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/self_check.cc.inc +1055 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/service_indicator/internal.h +38 -38
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/service_indicator/service_indicator.cc.inc +327 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/internal.h +52 -78
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha1.cc.inc +390 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha256.cc.inc +299 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha512.cc.inc +473 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/address.h +119 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/fips_known_values.inc +674 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/fors.cc.inc +169 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/fors.h +58 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/merkle.cc.inc +161 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/merkle.h +70 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/params.h +78 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/slhdsa.cc.inc +504 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/thash.cc.inc +173 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/thash.h +85 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/wots.cc.inc +171 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/slhdsa/wots.h +50 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/tls/internal.h +13 -13
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/tls/kdf.cc.inc +180 -0
- data/third_party/boringssl-with-bazel/src/crypto/fuzzer_mode.cc +30 -0
- data/third_party/boringssl-with-bazel/src/crypto/hpke/hpke.cc +1095 -0
- data/third_party/boringssl-with-bazel/src/crypto/hrss/hrss.cc +2185 -0
- data/third_party/boringssl-with-bazel/src/crypto/hrss/internal.h +16 -16
- data/third_party/boringssl-with-bazel/src/crypto/internal.h +283 -457
- data/third_party/boringssl-with-bazel/src/crypto/kyber/internal.h +13 -13
- data/third_party/boringssl-with-bazel/src/crypto/kyber/kyber.cc +869 -0
- data/third_party/boringssl-with-bazel/src/crypto/lhash/internal.h +34 -78
- data/third_party/boringssl-with-bazel/src/crypto/lhash/lhash.cc +309 -0
- data/third_party/boringssl-with-bazel/src/crypto/md4/md4.cc +194 -0
- data/third_party/boringssl-with-bazel/src/crypto/md5/internal.h +37 -0
- data/third_party/boringssl-with-bazel/src/crypto/md5/md5.cc +243 -0
- data/third_party/boringssl-with-bazel/src/crypto/mem.cc +581 -0
- data/third_party/boringssl-with-bazel/src/crypto/mldsa/mldsa.cc +90 -0
- data/third_party/boringssl-with-bazel/src/crypto/mlkem/mlkem.cc +97 -1042
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj.cc +513 -0
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj_dat.h +14 -56
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj_xref.cc +80 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/internal.h +44 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_all.cc +149 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_info.cc +254 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_lib.cc +736 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_oth.cc +45 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_pk8.cc +208 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_pkey.cc +141 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_x509.cc +22 -0
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_xaux.cc +22 -0
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/internal.h +36 -22
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7.cc +195 -0
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7_x509.cc +524 -0
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/internal.h +28 -63
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/p5_pbev2.cc +279 -0
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8.cc +471 -0
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8_x509.cc +1322 -0
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/internal.h +17 -17
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305.cc +314 -0
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305_arm.cc +310 -0
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305_vec.cc +850 -0
- data/third_party/boringssl-with-bazel/src/crypto/pool/internal.h +17 -17
- data/third_party/boringssl-with-bazel/src/crypto/pool/pool.cc +262 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/deterministic.cc +65 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/fork_detect.cc +194 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/forkunsafe.cc +44 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/getentropy.cc +60 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/getrandom_fillin.h +64 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/internal.h +55 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/ios.cc +42 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/passive.cc +178 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/rand.cc +77 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/trusty.cc +46 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/urandom.cc +328 -0
- data/third_party/boringssl-with-bazel/src/crypto/rand/windows.cc +98 -0
- data/third_party/boringssl-with-bazel/src/crypto/rc4/rc4.cc +56 -0
- data/third_party/boringssl-with-bazel/src/crypto/refcount.cc +59 -0
- data/third_party/boringssl-with-bazel/src/crypto/rsa/internal.h +36 -0
- data/third_party/boringssl-with-bazel/src/crypto/rsa/rsa_asn1.cc +283 -0
- data/third_party/boringssl-with-bazel/src/crypto/rsa/rsa_crypt.cc +523 -0
- data/third_party/boringssl-with-bazel/src/crypto/rsa/rsa_extra.cc +19 -0
- data/third_party/boringssl-with-bazel/src/crypto/rsa/rsa_print.cc +27 -0
- data/third_party/boringssl-with-bazel/src/crypto/sha/sha1.cc +52 -0
- data/third_party/boringssl-with-bazel/src/crypto/sha/sha256.cc +87 -0
- data/third_party/boringssl-with-bazel/src/crypto/sha/sha512.cc +104 -0
- data/third_party/boringssl-with-bazel/src/crypto/siphash/siphash.cc +79 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/slhdsa.cc +113 -0
- data/third_party/boringssl-with-bazel/src/crypto/spake2plus/internal.h +204 -0
- data/third_party/boringssl-with-bazel/src/crypto/spake2plus/spake2plus.cc +501 -0
- data/third_party/boringssl-with-bazel/src/crypto/stack/stack.cc +496 -0
- data/third_party/boringssl-with-bazel/src/crypto/thread.cc +68 -0
- data/third_party/boringssl-with-bazel/src/crypto/thread_none.cc +51 -0
- data/third_party/boringssl-with-bazel/src/crypto/thread_pthread.cc +151 -0
- data/third_party/boringssl-with-bazel/src/crypto/thread_win.cc +238 -0
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/internal.h +17 -17
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/pmbtoken.cc +1656 -0
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/trust_token.cc +685 -0
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/voprf.cc +1263 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/a_digest.cc +52 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/a_sign.cc +95 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/a_verify.cc +74 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/algorithm.cc +136 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/asn1_gen.cc +538 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_dir.cc +355 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_file.cc +227 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/ext_dat.h +13 -55
- data/third_party/boringssl-with-bazel/src/crypto/x509/i2d_pr.cc +37 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/internal.h +29 -61
- data/third_party/boringssl-with-bazel/src/crypto/x509/name_print.cc +185 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/policy.cc +796 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/rsa_pss.cc +364 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_crl.cc +103 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_req.cc +203 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_x509.cc +287 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_x509a.cc +79 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_akey.cc +181 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_akeya.cc +31 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_alt.cc +593 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_bcons.cc +95 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_bitst.cc +102 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_conf.cc +366 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_cpols.cc +444 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_crld.cc +557 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_enum.cc +73 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_extku.cc +114 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_genn.cc +228 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_ia5.cc +79 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_info.cc +161 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_int.cc +81 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_lib.cc +304 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_ncons.cc +514 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_ocsp.cc +89 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_pcons.cc +101 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_pmaps.cc +109 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_prn.cc +183 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_purp.cc +590 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_skey.cc +131 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_utl.cc +1342 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509.cc +47 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_att.cc +186 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_cmp.cc +238 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_d2.cc +66 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_def.cc +44 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_ext.cc +139 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_lu.cc +554 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_obj.cc +164 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_req.cc +257 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_set.cc +198 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_trs.cc +118 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_txt.cc +147 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_v3.cc +249 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vfy.cc +1607 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vpm.cc +440 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509cset.cc +235 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509name.cc +365 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509rset.cc +67 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509spki.cc +91 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_algor.cc +116 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_all.cc +318 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_attrib.cc +55 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_crl.cc +342 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_exten.cc +36 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_name.cc +501 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_pubkey.cc +170 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_req.cc +74 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_sig.cc +51 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_spki.cc +34 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_val.cc +28 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509.cc +485 -0
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509a.cc +153 -0
- data/third_party/boringssl-with-bazel/src/gen/crypto/err_data.cc +1538 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/aead.h +29 -21
- data/third_party/boringssl-with-bazel/src/include/openssl/aes.h +14 -48
- data/third_party/boringssl-with-bazel/src/include/openssl/arm_arch.h +16 -76
- data/third_party/boringssl-with-bazel/src/include/openssl/asm_base.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1.h +29 -116
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1_mac.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1t.h +248 -328
- data/third_party/boringssl-with-bazel/src/include/openssl/base.h +31 -58
- data/third_party/boringssl-with-bazel/src/include/openssl/base64.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/bcm_public.h +82 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/bio.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/blake2.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/blowfish.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/bn.h +15 -122
- data/third_party/boringssl-with-bazel/src/include/openssl/buf.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/buffer.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/bytestring.h +38 -17
- data/third_party/boringssl-with-bazel/src/include/openssl/cast.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/chacha.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/cipher.h +32 -60
- data/third_party/boringssl-with-bazel/src/include/openssl/cmac.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/cms.h +146 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/conf.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/cpu.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/crypto.h +48 -17
- data/third_party/boringssl-with-bazel/src/include/openssl/ctrdrbg.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/curve25519.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/des.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/dh.h +18 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/digest.h +38 -63
- data/third_party/boringssl-with-bazel/src/include/openssl/dsa.h +18 -59
- data/third_party/boringssl-with-bazel/src/include/openssl/dtls1.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/e_os2.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/ec.h +15 -67
- data/third_party/boringssl-with-bazel/src/include/openssl/ec_key.h +32 -73
- data/third_party/boringssl-with-bazel/src/include/openssl/ecdh.h +15 -66
- data/third_party/boringssl-with-bazel/src/include/openssl/ecdsa.h +14 -52
- data/third_party/boringssl-with-bazel/src/include/openssl/engine.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/err.h +15 -108
- data/third_party/boringssl-with-bazel/src/include/openssl/evp.h +15 -57
- data/third_party/boringssl-with-bazel/src/include/openssl/evp_errors.h +13 -55
- data/third_party/boringssl-with-bazel/src/include/openssl/ex_data.h +14 -108
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/kyber.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/hkdf.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/hmac.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/hpke.h +18 -18
- data/third_party/boringssl-with-bazel/src/include/openssl/hrss.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/is_boringssl.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/kdf.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/lhash.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/md4.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/md5.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/mem.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/mldsa.h +21 -27
- data/third_party/boringssl-with-bazel/src/include/openssl/mlkem.h +14 -38
- data/third_party/boringssl-with-bazel/src/include/openssl/nid.h +28 -70
- data/third_party/boringssl-with-bazel/src/include/openssl/obj.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/obj_mac.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/objects.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/opensslconf.h +23 -17
- data/third_party/boringssl-with-bazel/src/include/openssl/opensslv.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/ossl_typ.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/pem.h +22 -60
- data/third_party/boringssl-with-bazel/src/include/openssl/pkcs12.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/pkcs7.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/pkcs8.h +32 -61
- data/third_party/boringssl-with-bazel/src/include/openssl/poly1305.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/pool.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/posix_time.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/rand.h +15 -15
- data/third_party/boringssl-with-bazel/src/include/openssl/rc4.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/ripemd.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/rsa.h +24 -64
- data/third_party/boringssl-with-bazel/src/include/openssl/safestack.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/service_indicator.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/sha.h +16 -96
- data/third_party/boringssl-with-bazel/src/include/openssl/siphash.h +14 -14
- data/third_party/boringssl-with-bazel/src/include/openssl/slhdsa.h +174 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/span.h +25 -33
- data/third_party/boringssl-with-bazel/src/include/openssl/srtp.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl.h +628 -309
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl3.h +15 -114
- data/third_party/boringssl-with-bazel/src/include/openssl/stack.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/target.h +23 -18
- data/third_party/boringssl-with-bazel/src/include/openssl/thread.h +16 -58
- data/third_party/boringssl-with-bazel/src/include/openssl/time.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/tls1.h +36 -157
- data/third_party/boringssl-with-bazel/src/include/openssl/trust_token.h +16 -16
- data/third_party/boringssl-with-bazel/src/include/openssl/type_check.h +14 -56
- data/third_party/boringssl-with-bazel/src/include/openssl/x509.h +21 -65
- data/third_party/boringssl-with-bazel/src/include/openssl/x509_vfy.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3.h +13 -13
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3_errors.h +13 -53
- data/third_party/boringssl-with-bazel/src/ssl/bio_ssl.cc +15 -14
- data/third_party/boringssl-with-bazel/src/ssl/d1_both.cc +680 -434
- data/third_party/boringssl-with-bazel/src/ssl/d1_lib.cc +129 -174
- data/third_party/boringssl-with-bazel/src/ssl/d1_pkt.cc +176 -131
- data/third_party/boringssl-with-bazel/src/ssl/d1_srtp.cc +21 -127
- data/third_party/boringssl-with-bazel/src/ssl/dtls_method.cc +109 -104
- data/third_party/boringssl-with-bazel/src/ssl/dtls_record.cc +321 -316
- data/third_party/boringssl-with-bazel/src/ssl/encrypted_client_hello.cc +101 -94
- data/third_party/boringssl-with-bazel/src/ssl/extensions.cc +920 -519
- data/third_party/boringssl-with-bazel/src/ssl/handoff.cc +78 -85
- data/third_party/boringssl-with-bazel/src/ssl/handshake.cc +67 -157
- data/third_party/boringssl-with-bazel/src/ssl/handshake_client.cc +201 -333
- data/third_party/boringssl-with-bazel/src/ssl/handshake_server.cc +113 -245
- data/third_party/boringssl-with-bazel/src/ssl/internal.h +1054 -540
- data/third_party/boringssl-with-bazel/src/ssl/s3_both.cc +47 -157
- data/third_party/boringssl-with-bazel/src/ssl/s3_lib.cc +29 -159
- data/third_party/boringssl-with-bazel/src/ssl/s3_pkt.cc +18 -112
- data/third_party/boringssl-with-bazel/src/ssl/ssl_aead_ctx.cc +108 -207
- data/third_party/boringssl-with-bazel/src/ssl/ssl_asn1.cc +70 -149
- data/third_party/boringssl-with-bazel/src/ssl/ssl_buffer.cc +15 -20
- data/third_party/boringssl-with-bazel/src/ssl/ssl_cert.cc +117 -157
- data/third_party/boringssl-with-bazel/src/ssl/ssl_cipher.cc +229 -365
- data/third_party/boringssl-with-bazel/src/ssl/ssl_credential.cc +294 -32
- data/third_party/boringssl-with-bazel/src/ssl/ssl_file.cc +13 -109
- data/third_party/boringssl-with-bazel/src/ssl/ssl_key_share.cc +35 -34
- data/third_party/boringssl-with-bazel/src/ssl/ssl_lib.cc +352 -354
- data/third_party/boringssl-with-bazel/src/ssl/ssl_privkey.cc +43 -101
- data/third_party/boringssl-with-bazel/src/ssl/ssl_session.cc +127 -249
- data/third_party/boringssl-with-bazel/src/ssl/ssl_stat.cc +17 -91
- data/third_party/boringssl-with-bazel/src/ssl/ssl_transcript.cc +109 -157
- data/third_party/boringssl-with-bazel/src/ssl/ssl_versions.cc +44 -30
- data/third_party/boringssl-with-bazel/src/ssl/ssl_x509.cc +66 -195
- data/third_party/boringssl-with-bazel/src/ssl/t1_enc.cc +46 -177
- data/third_party/boringssl-with-bazel/src/ssl/tls13_both.cc +88 -48
- data/third_party/boringssl-with-bazel/src/ssl/tls13_client.cc +160 -96
- data/third_party/boringssl-with-bazel/src/ssl/tls13_enc.cc +251 -184
- data/third_party/boringssl-with-bazel/src/ssl/tls13_server.cc +250 -119
- data/third_party/boringssl-with-bazel/src/ssl/tls_method.cc +64 -117
- data/third_party/boringssl-with-bazel/src/ssl/tls_record.cc +54 -139
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_32.h +6 -0
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_64.h +6 -0
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_64_adx.h +4 -1
- data/third_party/boringssl-with-bazel/src/third_party/fiat/p256_32.h +1 -1
- data/third_party/boringssl-with-bazel/src/third_party/fiat/p256_64.h +3 -0
- data/third_party/upb/upb/base/internal/log2.h +3 -1
- data/third_party/upb/upb/base/string_view.h +10 -0
- data/third_party/upb/upb/hash/common.c +312 -187
- data/third_party/upb/upb/hash/common.h +44 -43
- data/third_party/upb/upb/hash/int_table.h +29 -5
- data/third_party/upb/upb/hash/str_table.h +6 -0
- data/third_party/upb/upb/json/decode.c +39 -10
- data/third_party/upb/upb/json/decode.h +25 -3
- data/third_party/upb/upb/mem/alloc.h +5 -0
- data/third_party/upb/upb/mem/arena.c +438 -161
- data/third_party/upb/upb/mem/arena.h +57 -11
- data/third_party/upb/upb/mem/arena.hpp +4 -20
- data/third_party/upb/upb/mem/internal/arena.h +65 -29
- data/third_party/upb/upb/message/accessors.c +1 -5
- data/third_party/upb/upb/message/accessors.h +49 -0
- data/third_party/upb/upb/message/array.c +7 -6
- data/third_party/upb/upb/message/array.h +4 -4
- data/third_party/upb/upb/message/compat.c +11 -14
- data/third_party/upb/upb/message/compat.h +4 -3
- data/third_party/upb/upb/message/copy.c +35 -30
- data/third_party/upb/upb/message/internal/accessors.h +151 -15
- data/third_party/upb/upb/message/internal/extension.c +16 -25
- data/third_party/upb/upb/message/internal/extension.h +17 -5
- data/third_party/upb/upb/message/internal/iterator.c +58 -0
- data/third_party/upb/upb/message/internal/iterator.h +29 -0
- data/third_party/upb/upb/message/internal/map.h +76 -22
- data/third_party/upb/upb/message/internal/map_sorter.h +13 -4
- data/third_party/upb/upb/message/internal/message.c +48 -29
- data/third_party/upb/upb/message/internal/message.h +203 -25
- data/third_party/upb/upb/message/map.c +68 -20
- data/third_party/upb/upb/message/map.h +8 -1
- data/third_party/upb/upb/message/map_gencode_util.h +3 -45
- data/third_party/upb/upb/message/map_sorter.c +52 -16
- data/third_party/upb/upb/message/merge.h +3 -3
- data/third_party/upb/upb/message/message.c +200 -42
- data/third_party/upb/upb/message/message.h +69 -4
- data/third_party/upb/upb/message/value.h +9 -0
- data/third_party/upb/upb/mini_descriptor/build_enum.c +16 -6
- data/third_party/upb/upb/mini_descriptor/decode.c +115 -138
- data/third_party/upb/upb/mini_descriptor/decode.h +4 -3
- data/third_party/upb/upb/mini_descriptor/internal/encode.hpp +1 -1
- data/third_party/upb/upb/mini_descriptor/link.c +4 -0
- data/third_party/upb/upb/mini_table/extension.h +8 -1
- data/third_party/upb/upb/mini_table/extension_registry.c +25 -13
- data/third_party/upb/upb/mini_table/extension_registry.h +13 -6
- data/third_party/upb/upb/mini_table/internal/enum.h +1 -1
- data/third_party/upb/upb/mini_table/internal/extension.h +24 -1
- data/third_party/upb/upb/mini_table/internal/field.h +4 -4
- data/third_party/upb/upb/mini_table/internal/message.h +1 -1
- data/third_party/upb/upb/mini_table/message.c +21 -13
- data/third_party/upb/upb/port/atomic.h +134 -7
- data/third_party/upb/upb/port/def.inc +184 -47
- data/third_party/upb/upb/port/undef.inc +14 -0
- data/third_party/upb/upb/reflection/common.h +1 -11
- data/third_party/upb/upb/reflection/def.hpp +5 -1
- data/third_party/upb/upb/reflection/def_pool.c +10 -3
- data/third_party/upb/upb/reflection/def_pool.h +2 -2
- data/third_party/upb/upb/reflection/descriptor_bootstrap.h +19 -0
- data/third_party/upb/upb/reflection/enum_def.c +4 -4
- data/third_party/upb/upb/reflection/enum_reserved_range.c +1 -1
- data/third_party/upb/upb/reflection/enum_value_def.c +9 -8
- data/third_party/upb/upb/reflection/extension_range.c +1 -2
- data/third_party/upb/upb/reflection/field_def.c +6 -22
- data/third_party/upb/upb/reflection/field_def.h +1 -1
- data/third_party/upb/upb/reflection/file_def.c +16 -10
- data/third_party/upb/upb/reflection/internal/def_builder.c +1 -1
- data/third_party/upb/upb/reflection/internal/def_builder.h +35 -10
- data/third_party/upb/upb/reflection/internal/enum_value_def.h +1 -1
- data/third_party/upb/upb/reflection/internal/upb_edition_defaults.h +1 -1
- data/third_party/upb/upb/reflection/message.c +19 -16
- data/third_party/upb/upb/reflection/message.h +3 -1
- data/third_party/upb/upb/reflection/message_def.c +4 -7
- data/third_party/upb/upb/reflection/message_reserved_range.c +1 -1
- data/third_party/upb/upb/reflection/method_def.c +1 -1
- data/third_party/upb/upb/reflection/oneof_def.c +3 -3
- data/third_party/upb/upb/reflection/service_def.c +2 -5
- data/third_party/upb/upb/text/encode.c +17 -20
- data/third_party/upb/upb/text/internal/encode.c +25 -6
- data/third_party/upb/upb/text/internal/encode.h +6 -1
- data/third_party/upb/upb/wire/decode.c +154 -107
- data/third_party/upb/upb/wire/decode.h +5 -3
- data/third_party/upb/upb/wire/encode.c +114 -55
- data/third_party/upb/upb/wire/encode.h +2 -0
- data/third_party/upb/upb/wire/eps_copy_input_stream.h +18 -20
- data/third_party/upb/upb/wire/internal/decode_fast.c +2 -2
- data/third_party/upb/upb/wire/internal/decode_fast.h +4 -0
- data/third_party/upb/upb/wire/internal/decoder.h +4 -11
- data/third_party/utf8_range/utf8_range.c +15 -275
- data/third_party/utf8_range/utf8_range_neon.inc +117 -0
- data/third_party/utf8_range/utf8_range_sse.inc +272 -0
- data/third_party/zlib/deflate.c +40 -15
- data/third_party/zlib/deflate.h +33 -2
- data/third_party/zlib/gzguts.h +2 -6
- data/third_party/zlib/inflate.c +1 -1
- data/third_party/zlib/inftrees.c +3 -3
- data/third_party/zlib/inftrees.h +2 -2
- data/third_party/zlib/trees.c +18 -4
- data/third_party/zlib/zconf.h +1 -9
- data/third_party/zlib/zlib.h +12 -12
- data/third_party/zlib/zutil.h +4 -25
- metadata +631 -521
- data/include/grpc/grpc_cronet.h +0 -37
- data/src/core/ext/transport/chttp2/transport/context_list_entry.h +0 -82
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb.h +0 -426
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb_minitable.c +0 -87
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb_minitable.h +0 -32
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb.h +0 -407
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb_minitable.c +0 -124
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb_minitable.h +0 -38
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opencensus.upbdefs.c +0 -108
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opencensus.upbdefs.h +0 -33
- data/src/core/ext/upbdefs-gen/opencensus/proto/trace/v1/trace_config.upbdefs.c +0 -67
- data/src/core/ext/upbdefs-gen/opencensus/proto/trace/v1/trace_config.upbdefs.h +0 -48
- data/src/core/lib/channel/call_finalization.h +0 -88
- data/src/core/lib/channel/status_util.cc +0 -153
- data/src/core/lib/channel/status_util.h +0 -80
- data/src/core/lib/config/config_vars.cc +0 -151
- data/src/core/lib/config/config_vars.h +0 -128
- data/src/core/lib/config/config_vars_non_generated.cc +0 -49
- data/src/core/lib/config/core_configuration.cc +0 -111
- data/src/core/lib/config/core_configuration.h +0 -242
- data/src/core/lib/config/load_config.cc +0 -77
- data/src/core/lib/config/load_config.h +0 -54
- data/src/core/lib/event_engine/forkable.cc +0 -107
- data/src/core/lib/event_engine/forkable.h +0 -69
- data/src/core/lib/iomgr/executor.cc +0 -452
- data/src/core/lib/iomgr/executor.h +0 -119
- data/src/core/lib/iomgr/python_util.h +0 -46
- data/src/core/lib/security/certificate_provider/certificate_provider_factory.h +0 -69
- data/src/core/lib/security/certificate_provider/certificate_provider_registry.cc +0 -50
- data/src/core/lib/security/certificate_provider/certificate_provider_registry.h +0 -75
- data/src/core/lib/security/context/security_context.cc +0 -331
- data/src/core/lib/security/context/security_context.h +0 -202
- data/src/core/lib/security/credentials/alts/alts_credentials.cc +0 -116
- data/src/core/lib/security/credentials/alts/alts_credentials.h +0 -127
- data/src/core/lib/security/credentials/alts/check_gcp_environment.cc +0 -71
- data/src/core/lib/security/credentials/alts/check_gcp_environment.h +0 -57
- data/src/core/lib/security/credentials/alts/check_gcp_environment_linux.cc +0 -67
- data/src/core/lib/security/credentials/alts/check_gcp_environment_no_op.cc +0 -32
- data/src/core/lib/security/credentials/alts/check_gcp_environment_windows.cc +0 -101
- data/src/core/lib/security/credentials/alts/grpc_alts_credentials_client_options.cc +0 -123
- data/src/core/lib/security/credentials/alts/grpc_alts_credentials_options.cc +0 -45
- data/src/core/lib/security/credentials/alts/grpc_alts_credentials_options.h +0 -74
- data/src/core/lib/security/credentials/alts/grpc_alts_credentials_server_options.cc +0 -55
- data/src/core/lib/security/credentials/call_creds_util.cc +0 -97
- data/src/core/lib/security/credentials/call_creds_util.h +0 -43
- data/src/core/lib/security/credentials/channel_creds_registry.h +0 -126
- data/src/core/lib/security/credentials/channel_creds_registry_init.cc +0 -241
- data/src/core/lib/security/credentials/composite/composite_credentials.cc +0 -168
- data/src/core/lib/security/credentials/composite/composite_credentials.h +0 -134
- data/src/core/lib/security/credentials/credentials.cc +0 -160
- data/src/core/lib/security/credentials/credentials.h +0 -298
- data/src/core/lib/security/credentials/external/aws_external_account_credentials.cc +0 -529
- data/src/core/lib/security/credentials/external/aws_external_account_credentials.h +0 -117
- data/src/core/lib/security/credentials/external/aws_request_signer.cc +0 -230
- data/src/core/lib/security/credentials/external/aws_request_signer.h +0 -72
- data/src/core/lib/security/credentials/external/external_account_credentials.cc +0 -642
- data/src/core/lib/security/credentials/external/external_account_credentials.h +0 -207
- data/src/core/lib/security/credentials/external/file_external_account_credentials.cc +0 -175
- data/src/core/lib/security/credentials/external/file_external_account_credentials.h +0 -80
- data/src/core/lib/security/credentials/external/url_external_account_credentials.cc +0 -221
- data/src/core/lib/security/credentials/external/url_external_account_credentials.h +0 -73
- data/src/core/lib/security/credentials/fake/fake_credentials.cc +0 -103
- data/src/core/lib/security/credentials/fake/fake_credentials.h +0 -124
- data/src/core/lib/security/credentials/gcp_service_account_identity/gcp_service_account_identity_credentials.cc +0 -195
- data/src/core/lib/security/credentials/gcp_service_account_identity/gcp_service_account_identity_credentials.h +0 -90
- data/src/core/lib/security/credentials/google_default/credentials_generic.cc +0 -38
- data/src/core/lib/security/credentials/google_default/google_default_credentials.cc +0 -430
- data/src/core/lib/security/credentials/google_default/google_default_credentials.h +0 -101
- data/src/core/lib/security/credentials/iam/iam_credentials.cc +0 -78
- data/src/core/lib/security/credentials/iam/iam_credentials.h +0 -66
- data/src/core/lib/security/credentials/insecure/insecure_credentials.cc +0 -71
- data/src/core/lib/security/credentials/insecure/insecure_credentials.h +0 -61
- data/src/core/lib/security/credentials/jwt/json_token.cc +0 -318
- data/src/core/lib/security/credentials/jwt/json_token.h +0 -78
- data/src/core/lib/security/credentials/jwt/jwt_credentials.cc +0 -182
- data/src/core/lib/security/credentials/jwt/jwt_credentials.h +0 -106
- data/src/core/lib/security/credentials/jwt/jwt_verifier.cc +0 -988
- data/src/core/lib/security/credentials/jwt/jwt_verifier.h +0 -122
- data/src/core/lib/security/credentials/local/local_credentials.cc +0 -68
- data/src/core/lib/security/credentials/local/local_credentials.h +0 -77
- data/src/core/lib/security/credentials/oauth2/oauth2_credentials.cc +0 -653
- data/src/core/lib/security/credentials/oauth2/oauth2_credentials.h +0 -197
- data/src/core/lib/security/credentials/plugin/plugin_credentials.cc +0 -202
- data/src/core/lib/security/credentials/plugin/plugin_credentials.h +0 -123
- data/src/core/lib/security/credentials/ssl/ssl_credentials.cc +0 -474
- data/src/core/lib/security/credentials/ssl/ssl_credentials.h +0 -144
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_distributor.cc +0 -338
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_distributor.h +0 -215
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_match.cc +0 -84
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc +0 -482
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.h +0 -206
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.cc +0 -237
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.h +0 -169
- data/src/core/lib/security/credentials/tls/grpc_tls_credentials_options.cc +0 -161
- data/src/core/lib/security/credentials/tls/grpc_tls_credentials_options.h +0 -145
- data/src/core/lib/security/credentials/tls/grpc_tls_crl_provider.cc +0 -258
- data/src/core/lib/security/credentials/tls/grpc_tls_crl_provider.h +0 -130
- data/src/core/lib/security/credentials/tls/tls_credentials.cc +0 -170
- data/src/core/lib/security/credentials/tls/tls_credentials.h +0 -75
- data/src/core/lib/security/credentials/tls/tls_utils.cc +0 -127
- data/src/core/lib/security/credentials/tls/tls_utils.h +0 -50
- data/src/core/lib/security/credentials/token_fetcher/token_fetcher_credentials.cc +0 -298
- data/src/core/lib/security/credentials/token_fetcher/token_fetcher_credentials.h +0 -175
- data/src/core/lib/security/credentials/xds/xds_credentials.cc +0 -230
- data/src/core/lib/security/credentials/xds/xds_credentials.h +0 -110
- data/src/core/lib/security/security_connector/alts/alts_security_connector.cc +0 -303
- data/src/core/lib/security/security_connector/alts/alts_security_connector.h +0 -78
- data/src/core/lib/security/security_connector/fake/fake_security_connector.cc +0 -314
- data/src/core/lib/security/security_connector/fake/fake_security_connector.h +0 -42
- data/src/core/lib/security/security_connector/insecure/insecure_security_connector.cc +0 -118
- data/src/core/lib/security/security_connector/insecure/insecure_security_connector.h +0 -102
- data/src/core/lib/security/security_connector/load_system_roots.h +0 -35
- data/src/core/lib/security/security_connector/load_system_roots_fallback.cc +0 -36
- data/src/core/lib/security/security_connector/load_system_roots_supported.cc +0 -165
- data/src/core/lib/security/security_connector/load_system_roots_supported.h +0 -44
- data/src/core/lib/security/security_connector/load_system_roots_windows.cc +0 -85
- data/src/core/lib/security/security_connector/local/local_security_connector.cc +0 -306
- data/src/core/lib/security/security_connector/local/local_security_connector.h +0 -62
- data/src/core/lib/security/security_connector/security_connector.cc +0 -123
- data/src/core/lib/security/security_connector/security_connector.h +0 -197
- data/src/core/lib/security/security_connector/ssl/ssl_security_connector.cc +0 -403
- data/src/core/lib/security/security_connector/ssl/ssl_security_connector.h +0 -81
- data/src/core/lib/security/security_connector/ssl_utils.cc +0 -628
- data/src/core/lib/security/security_connector/ssl_utils.h +0 -188
- data/src/core/lib/security/security_connector/tls/tls_security_connector.cc +0 -816
- data/src/core/lib/security/security_connector/tls/tls_security_connector.h +0 -285
- data/src/core/lib/security/transport/auth_filters.h +0 -144
- data/src/core/lib/security/transport/client_auth_filter.cc +0 -219
- data/src/core/lib/security/transport/server_auth_filter.cc +0 -215
- data/src/core/lib/security/util/json_util.cc +0 -69
- data/src/core/lib/security/util/json_util.h +0 -43
- data/src/core/lib/surface/client_call.cc +0 -427
- data/src/core/lib/surface/client_call.h +0 -179
- data/src/core/lib/surface/server_call.cc +0 -221
- data/src/core/lib/surface/server_call.h +0 -168
- data/src/core/lib/transport/call_arena_allocator.cc +0 -27
- data/src/core/lib/transport/call_arena_allocator.h +0 -91
- data/src/core/lib/transport/call_destination.h +0 -76
- data/src/core/lib/transport/call_filters.cc +0 -142
- data/src/core/lib/transport/call_filters.h +0 -1899
- data/src/core/lib/transport/call_spine.cc +0 -131
- data/src/core/lib/transport/call_spine.h +0 -435
- data/src/core/lib/transport/call_state.cc +0 -39
- data/src/core/lib/transport/call_state.h +0 -1061
- data/src/core/lib/transport/custom_metadata.h +0 -30
- data/src/core/lib/transport/http2_errors.h +0 -41
- data/src/core/lib/transport/interception_chain.cc +0 -147
- data/src/core/lib/transport/interception_chain.h +0 -253
- data/src/core/lib/transport/message.cc +0 -44
- data/src/core/lib/transport/message.h +0 -66
- data/src/core/lib/transport/metadata.cc +0 -61
- data/src/core/lib/transport/metadata.h +0 -113
- data/src/core/lib/transport/metadata_batch.cc +0 -374
- data/src/core/lib/transport/metadata_batch.h +0 -1599
- data/src/core/lib/transport/metadata_compression_traits.h +0 -66
- data/src/core/lib/transport/metadata_info.cc +0 -55
- data/src/core/lib/transport/metadata_info.h +0 -85
- data/src/core/lib/transport/parsed_metadata.cc +0 -35
- data/src/core/lib/transport/parsed_metadata.h +0 -429
- data/src/core/lib/transport/simple_slice_based_metadata.h +0 -53
- data/src/core/util/atm.cc +0 -34
- data/third_party/abseil-cpp/absl/base/internal/fast_type_id.h +0 -50
- data/third_party/abseil-cpp/absl/base/internal/inline_variable.h +0 -108
- data/third_party/abseil-cpp/absl/base/internal/invoke.h +0 -241
- data/third_party/abseil-cpp/absl/base/internal/nullability_impl.h +0 -108
- data/third_party/abseil-cpp/absl/log/log_entry.cc +0 -41
- data/third_party/abseil-cpp/absl/random/internal/pool_urbg.cc +0 -253
- data/third_party/abseil-cpp/absl/random/internal/pool_urbg.h +0 -131
- data/third_party/abseil-cpp/absl/strings/cord_buffer.cc +0 -30
- data/third_party/abseil-cpp/absl/types/bad_optional_access.cc +0 -66
- data/third_party/abseil-cpp/absl/types/bad_optional_access.h +0 -78
- data/third_party/abseil-cpp/absl/types/bad_variant_access.cc +0 -82
- data/third_party/abseil-cpp/absl/types/bad_variant_access.h +0 -82
- data/third_party/abseil-cpp/absl/types/internal/optional.h +0 -352
- data/third_party/abseil-cpp/absl/types/internal/variant.h +0 -1622
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bitstr.c +0 -284
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_bool.c +0 -95
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_d2i_fp.c +0 -89
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_dup.c +0 -84
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_gentm.c +0 -151
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_i2d_fp.c +0 -85
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_int.c +0 -465
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_mbstr.c +0 -279
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_object.c +0 -235
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_octet.c +0 -74
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strex.c +0 -457
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_strnid.c +0 -245
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_time.c +0 -259
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_type.c +0 -214
- data/third_party/boringssl-with-bazel/src/crypto/asn1/a_utctm.c +0 -183
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_lib.c +0 -397
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn1_par.c +0 -103
- data/third_party/boringssl-with-bazel/src/crypto/asn1/asn_pack.c +0 -98
- data/third_party/boringssl-with-bazel/src/crypto/asn1/f_int.c +0 -105
- data/third_party/boringssl-with-bazel/src/crypto/asn1/f_string.c +0 -94
- data/third_party/boringssl-with-bazel/src/crypto/asn1/posix_time.c +0 -241
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_dec.c +0 -973
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_enc.c +0 -708
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_fre.c +0 -212
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_new.c +0 -317
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_typ.c +0 -126
- data/third_party/boringssl-with-bazel/src/crypto/asn1/tasn_utl.c +0 -268
- data/third_party/boringssl-with-bazel/src/crypto/base64/base64.c +0 -479
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio.c +0 -726
- data/third_party/boringssl-with-bazel/src/crypto/bio/bio_mem.c +0 -309
- data/third_party/boringssl-with-bazel/src/crypto/bio/connect.c +0 -544
- data/third_party/boringssl-with-bazel/src/crypto/bio/errno.c +0 -92
- data/third_party/boringssl-with-bazel/src/crypto/bio/fd.c +0 -235
- data/third_party/boringssl-with-bazel/src/crypto/bio/file.c +0 -334
- data/third_party/boringssl-with-bazel/src/crypto/bio/hexdump.c +0 -192
- data/third_party/boringssl-with-bazel/src/crypto/bio/pair.c +0 -480
- data/third_party/boringssl-with-bazel/src/crypto/bio/printf.c +0 -102
- data/third_party/boringssl-with-bazel/src/crypto/bio/socket.c +0 -189
- data/third_party/boringssl-with-bazel/src/crypto/bio/socket_helper.c +0 -133
- data/third_party/boringssl-with-bazel/src/crypto/blake2/blake2.c +0 -169
- data/third_party/boringssl-with-bazel/src/crypto/bn_extra/bn_asn1.c +0 -57
- data/third_party/boringssl-with-bazel/src/crypto/bn_extra/convert.c +0 -465
- data/third_party/boringssl-with-bazel/src/crypto/buf/buf.c +0 -158
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/asn1_compat.c +0 -53
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/ber.c +0 -266
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbb.c +0 -718
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbs.c +0 -911
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/unicode.c +0 -156
- data/third_party/boringssl-with-bazel/src/crypto/chacha/chacha.c +0 -224
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/cipher_extra.c +0 -127
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/derive_key.c +0 -152
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_aesctrhmac.c +0 -284
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_aesgcmsiv.c +0 -841
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_chacha20poly1305.c +0 -348
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_des.c +0 -228
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_null.c +0 -90
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_rc2.c +0 -455
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_rc4.c +0 -94
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_tls.c +0 -598
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/internal.h +0 -280
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/tls_cbc.c +0 -514
- data/third_party/boringssl-with-bazel/src/crypto/conf/conf.c +0 -672
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_apple.c +0 -75
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_fuchsia.c +0 -55
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_linux.c +0 -62
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_openbsd.c +0 -61
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_sysreg.c +0 -93
- data/third_party/boringssl-with-bazel/src/crypto/cpu_aarch64_win.c +0 -41
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_freebsd.c +0 -54
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_linux.c +0 -151
- data/third_party/boringssl-with-bazel/src/crypto/cpu_intel.c +0 -326
- data/third_party/boringssl-with-bazel/src/crypto/crypto.c +0 -188
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519.c +0 -2157
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519_64_adx.c +0 -18
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/spake25519.c +0 -523
- data/third_party/boringssl-with-bazel/src/crypto/des/des.c +0 -871
- data/third_party/boringssl-with-bazel/src/crypto/dh_extra/dh_asn1.c +0 -165
- data/third_party/boringssl-with-bazel/src/crypto/dh_extra/params.c +0 -480
- data/third_party/boringssl-with-bazel/src/crypto/digest_extra/digest_extra.c +0 -266
- data/third_party/boringssl-with-bazel/src/crypto/dilithium/dilithium.c +0 -1539
- data/third_party/boringssl-with-bazel/src/crypto/dilithium/internal.h +0 -58
- data/third_party/boringssl-with-bazel/src/crypto/dsa/dsa.c +0 -997
- data/third_party/boringssl-with-bazel/src/crypto/dsa/dsa_asn1.c +0 -419
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/ec_asn1.c +0 -572
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/ec_derive.c +0 -96
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/hash_to_curve.c +0 -508
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/internal.h +0 -78
- data/third_party/boringssl-with-bazel/src/crypto/ecdh_extra/ecdh_extra.c +0 -124
- data/third_party/boringssl-with-bazel/src/crypto/ecdsa_extra/ecdsa_asn1.c +0 -411
- data/third_party/boringssl-with-bazel/src/crypto/engine/engine.c +0 -91
- data/third_party/boringssl-with-bazel/src/crypto/err/err.c +0 -903
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp.c +0 -430
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp_asn1.c +0 -547
- data/third_party/boringssl-with-bazel/src/crypto/evp/evp_ctx.c +0 -483
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_dh.c +0 -137
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_dh_asn1.c +0 -120
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_dsa_asn1.c +0 -338
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ec.c +0 -274
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ec_asn1.c +0 -332
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ed25519.c +0 -100
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_ed25519_asn1.c +0 -224
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_hkdf.c +0 -232
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_rsa.c +0 -646
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_rsa_asn1.c +0 -241
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_x25519.c +0 -106
- data/third_party/boringssl-with-bazel/src/crypto/evp/p_x25519_asn1.c +0 -236
- data/third_party/boringssl-with-bazel/src/crypto/evp/pbkdf.c +0 -146
- data/third_party/boringssl-with-bazel/src/crypto/evp/print.c +0 -381
- data/third_party/boringssl-with-bazel/src/crypto/evp/scrypt.c +0 -209
- data/third_party/boringssl-with-bazel/src/crypto/evp/sign.c +0 -156
- data/third_party/boringssl-with-bazel/src/crypto/ex_data.c +0 -236
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/aes.c.inc +0 -127
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/aes_nohw.c.inc +0 -1281
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/key_wrap.c.inc +0 -242
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/mode_wrappers.c.inc +0 -124
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bcm.c +0 -279
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/add.c.inc +0 -310
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/asm/x86_64-gcc.c.inc +0 -541
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/bn.c.inc +0 -428
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/bytes.c.inc +0 -267
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/cmp.c.inc +0 -201
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/ctx.c.inc +0 -234
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/div.c.inc +0 -876
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/div_extra.c.inc +0 -87
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/exponentiation.c.inc +0 -1320
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/gcd.c.inc +0 -397
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/gcd_extra.c.inc +0 -331
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/generic.c.inc +0 -624
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/jacobi.c.inc +0 -146
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery.c.inc +0 -532
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/montgomery_inv.c.inc +0 -222
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/mul.c.inc +0 -744
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/prime.c.inc +0 -1077
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/random.c.inc +0 -354
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/rsaz_exp.c.inc +0 -137
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/shift.c.inc +0 -363
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/sqrt.c.inc +0 -499
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/aead.c.inc +0 -287
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/cipher.c.inc +0 -717
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aes.c.inc +0 -1464
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/e_aesccm.c.inc +0 -446
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cmac/cmac.c.inc +0 -322
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/check.c.inc +0 -245
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/dh.c.inc +0 -489
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/digest.c.inc +0 -288
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/digests.c.inc +0 -304
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digestsign/digestsign.c.inc +0 -267
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec.c.inc +0 -1043
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_key.c.inc +0 -561
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/ec_montgomery.c.inc +0 -491
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/felem.c.inc +0 -104
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/oct.c.inc +0 -359
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p224-64.c.inc +0 -1163
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256-nistz.c.inc +0 -734
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256.c.inc +0 -749
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/scalar.c.inc +0 -173
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/simple.c.inc +0 -336
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/simple_mul.c.inc +0 -269
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/util.c.inc +0 -255
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/wnaf.c.inc +0 -264
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdh/ecdh.c.inc +0 -130
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/ecdsa.c.inc +0 -317
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/fips_shared_support.c +0 -29
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/hkdf/hkdf.c.inc +0 -112
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/hmac/hmac.c.inc +0 -256
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/md4/md4.c.inc +0 -240
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/md5/internal.h +0 -37
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/md5/md5.c.inc +0 -284
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/cbc.c.inc +0 -164
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/cfb.c.inc +0 -200
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/ctr.c.inc +0 -196
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/gcm.c.inc +0 -743
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/gcm_nohw.c.inc +0 -302
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/internal.h +0 -428
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/ofb.c.inc +0 -87
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/polyval.c.inc +0 -90
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/ctrdrbg.c.inc +0 -220
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/rand.c.inc +0 -479
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/blinding.c.inc +0 -241
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/padding.c.inc +0 -420
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa.c.inc +0 -1038
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/rsa_impl.c.inc +0 -1351
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/fips.c.inc +0 -121
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/self_check.c.inc +0 -1038
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/service_indicator/service_indicator.c.inc +0 -328
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha1.c.inc +0 -439
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha256.c.inc +0 -359
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/sha512.c.inc +0 -543
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/tls/kdf.c.inc +0 -218
- data/third_party/boringssl-with-bazel/src/crypto/hpke/hpke.c +0 -1092
- data/third_party/boringssl-with-bazel/src/crypto/hrss/hrss.c +0 -2234
- data/third_party/boringssl-with-bazel/src/crypto/keccak/internal.h +0 -70
- data/third_party/boringssl-with-bazel/src/crypto/keccak/keccak.c +0 -279
- data/third_party/boringssl-with-bazel/src/crypto/kyber/kyber.c +0 -845
- data/third_party/boringssl-with-bazel/src/crypto/lhash/lhash.c +0 -350
- data/third_party/boringssl-with-bazel/src/crypto/mem.c +0 -613
- data/third_party/boringssl-with-bazel/src/crypto/mldsa/internal.h +0 -73
- data/third_party/boringssl-with-bazel/src/crypto/mldsa/mldsa.c +0 -1687
- data/third_party/boringssl-with-bazel/src/crypto/mlkem/internal.h +0 -90
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj.c +0 -564
- data/third_party/boringssl-with-bazel/src/crypto/obj/obj_xref.c +0 -122
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_all.c +0 -243
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_info.c +0 -294
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_lib.c +0 -789
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_oth.c +0 -87
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_pk8.c +0 -250
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_pkey.c +0 -183
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_x509.c +0 -64
- data/third_party/boringssl-with-bazel/src/crypto/pem/pem_xaux.c +0 -64
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7.c +0 -193
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/pkcs7_x509.c +0 -523
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/p5_pbev2.c +0 -316
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8.c +0 -527
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/pkcs8_x509.c +0 -1352
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305.c +0 -314
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305_arm.c +0 -308
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/poly1305_vec.c +0 -847
- data/third_party/boringssl-with-bazel/src/crypto/pool/pool.c +0 -261
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/deterministic.c +0 -65
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/fork_detect.c +0 -195
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/forkunsafe.c +0 -44
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/getentropy.c +0 -60
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/getrandom_fillin.h +0 -64
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/ios.c +0 -42
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/passive.c +0 -174
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/rand_extra.c +0 -77
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/sysrand_internal.h +0 -37
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/trusty.c +0 -46
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/urandom.c +0 -328
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/windows.c +0 -102
- data/third_party/boringssl-with-bazel/src/crypto/rc4/rc4.c +0 -98
- data/third_party/boringssl-with-bazel/src/crypto/refcount.c +0 -59
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/internal.h +0 -79
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/rsa_asn1.c +0 -324
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/rsa_crypt.c +0 -570
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/rsa_print.c +0 -22
- data/third_party/boringssl-with-bazel/src/crypto/siphash/siphash.c +0 -79
- data/third_party/boringssl-with-bazel/src/crypto/spx/address.c +0 -101
- data/third_party/boringssl-with-bazel/src/crypto/spx/address.h +0 -50
- data/third_party/boringssl-with-bazel/src/crypto/spx/fors.c +0 -133
- data/third_party/boringssl-with-bazel/src/crypto/spx/fors.h +0 -54
- data/third_party/boringssl-with-bazel/src/crypto/spx/merkle.c +0 -150
- data/third_party/boringssl-with-bazel/src/crypto/spx/merkle.h +0 -61
- data/third_party/boringssl-with-bazel/src/crypto/spx/params.h +0 -71
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx.c +0 -140
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx_util.c +0 -53
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx_util.h +0 -44
- data/third_party/boringssl-with-bazel/src/crypto/spx/thash.c +0 -136
- data/third_party/boringssl-with-bazel/src/crypto/spx/thash.h +0 -70
- data/third_party/boringssl-with-bazel/src/crypto/spx/wots.c +0 -135
- data/third_party/boringssl-with-bazel/src/crypto/spx/wots.h +0 -45
- data/third_party/boringssl-with-bazel/src/crypto/stack/stack.c +0 -534
- data/third_party/boringssl-with-bazel/src/crypto/thread.c +0 -110
- data/third_party/boringssl-with-bazel/src/crypto/thread_none.c +0 -51
- data/third_party/boringssl-with-bazel/src/crypto/thread_pthread.c +0 -150
- data/third_party/boringssl-with-bazel/src/crypto/thread_win.c +0 -236
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/pmbtoken.c +0 -1668
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/trust_token.c +0 -687
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/voprf.c +0 -1267
- data/third_party/boringssl-with-bazel/src/crypto/x509/a_digest.c +0 -94
- data/third_party/boringssl-with-bazel/src/crypto/x509/a_sign.c +0 -136
- data/third_party/boringssl-with-bazel/src/crypto/x509/a_verify.c +0 -116
- data/third_party/boringssl-with-bazel/src/crypto/x509/algorithm.c +0 -178
- data/third_party/boringssl-with-bazel/src/crypto/x509/asn1_gen.c +0 -585
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_dir.c +0 -400
- data/third_party/boringssl-with-bazel/src/crypto/x509/by_file.c +0 -269
- data/third_party/boringssl-with-bazel/src/crypto/x509/i2d_pr.c +0 -79
- data/third_party/boringssl-with-bazel/src/crypto/x509/name_print.c +0 -227
- data/third_party/boringssl-with-bazel/src/crypto/x509/policy.c +0 -786
- data/third_party/boringssl-with-bazel/src/crypto/x509/rsa_pss.c +0 -401
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_crl.c +0 -145
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_req.c +0 -245
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_x509.c +0 -329
- data/third_party/boringssl-with-bazel/src/crypto/x509/t_x509a.c +0 -121
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_akey.c +0 -221
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_akeya.c +0 -73
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_alt.c +0 -634
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_bcons.c +0 -135
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_bitst.c +0 -141
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_conf.c +0 -416
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_cpols.c +0 -482
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_crld.c +0 -598
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_enum.c +0 -112
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_extku.c +0 -154
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_genn.c +0 -270
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_ia5.c +0 -122
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_info.c +0 -211
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_int.c +0 -121
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_lib.c +0 -344
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_ncons.c +0 -555
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_ocsp.c +0 -81
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_pcons.c +0 -142
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_pmaps.c +0 -150
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_prn.c +0 -224
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_purp.c +0 -624
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_skey.c +0 -170
- data/third_party/boringssl-with-bazel/src/crypto/x509/v3_utl.c +0 -1390
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509.c +0 -89
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_att.c +0 -227
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_cmp.c +0 -280
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_d2.c +0 -108
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_def.c +0 -86
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_ext.c +0 -181
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_lu.c +0 -599
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_obj.c +0 -206
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_req.c +0 -299
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_set.c +0 -240
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_trs.c +0 -160
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_txt.c +0 -189
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_v3.c +0 -291
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vfy.c +0 -1638
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509_vpm.c +0 -440
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509cset.c +0 -277
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509name.c +0 -407
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509rset.c +0 -109
- data/third_party/boringssl-with-bazel/src/crypto/x509/x509spki.c +0 -133
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_algor.c +0 -149
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_all.c +0 -356
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_attrib.c +0 -97
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_crl.c +0 -384
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_exten.c +0 -78
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_name.c +0 -527
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_pubkey.c +0 -210
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_req.c +0 -116
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_sig.c +0 -93
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_spki.c +0 -79
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_val.c +0 -70
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509.c +0 -544
- data/third_party/boringssl-with-bazel/src/crypto/x509/x_x509a.c +0 -209
- data/third_party/boringssl-with-bazel/src/gen/crypto/err_data.c +0 -1514
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/dilithium.h +0 -129
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/spx.h +0 -90
- data/third_party/upb/upb/message/internal/compare_unknown.c +0 -289
- data/third_party/upb/upb/message/internal/compare_unknown.h +0 -49
|
@@ -1,143 +1,18 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
* the code are not to be removed.
|
|
17
|
-
* If this package is used in a product, Eric Young should be given attribution
|
|
18
|
-
* as the author of the parts of the library used.
|
|
19
|
-
* This can be in the form of a textual message at program startup or
|
|
20
|
-
* in documentation (online or textual) provided with the package.
|
|
21
|
-
*
|
|
22
|
-
* Redistribution and use in source and binary forms, with or without
|
|
23
|
-
* modification, are permitted provided that the following conditions
|
|
24
|
-
* are met:
|
|
25
|
-
* 1. Redistributions of source code must retain the copyright
|
|
26
|
-
* notice, this list of conditions and the following disclaimer.
|
|
27
|
-
* 2. Redistributions in binary form must reproduce the above copyright
|
|
28
|
-
* notice, this list of conditions and the following disclaimer in the
|
|
29
|
-
* documentation and/or other materials provided with the distribution.
|
|
30
|
-
* 3. All advertising materials mentioning features or use of this software
|
|
31
|
-
* must display the following acknowledgement:
|
|
32
|
-
* "This product includes cryptographic software written by
|
|
33
|
-
* Eric Young (eay@cryptsoft.com)"
|
|
34
|
-
* The word 'cryptographic' can be left out if the rouines from the library
|
|
35
|
-
* being used are not cryptographic related :-).
|
|
36
|
-
* 4. If you include any Windows specific code (or a derivative thereof) from
|
|
37
|
-
* the apps directory (application code) you must include an acknowledgement:
|
|
38
|
-
* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
|
|
39
|
-
*
|
|
40
|
-
* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
|
|
41
|
-
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
42
|
-
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
43
|
-
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
|
|
44
|
-
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
45
|
-
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
46
|
-
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
47
|
-
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
48
|
-
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
49
|
-
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
50
|
-
* SUCH DAMAGE.
|
|
51
|
-
*
|
|
52
|
-
* The licence and distribution terms for any publically available version or
|
|
53
|
-
* derivative of this code cannot be changed. i.e. this code cannot simply be
|
|
54
|
-
* copied and put under another distribution licence
|
|
55
|
-
* [including the GNU Public Licence.]
|
|
56
|
-
*/
|
|
57
|
-
/* ====================================================================
|
|
58
|
-
* Copyright (c) 1998-2007 The OpenSSL Project. All rights reserved.
|
|
59
|
-
*
|
|
60
|
-
* Redistribution and use in source and binary forms, with or without
|
|
61
|
-
* modification, are permitted provided that the following conditions
|
|
62
|
-
* are met:
|
|
63
|
-
*
|
|
64
|
-
* 1. Redistributions of source code must retain the above copyright
|
|
65
|
-
* notice, this list of conditions and the following disclaimer.
|
|
66
|
-
*
|
|
67
|
-
* 2. Redistributions in binary form must reproduce the above copyright
|
|
68
|
-
* notice, this list of conditions and the following disclaimer in
|
|
69
|
-
* the documentation and/or other materials provided with the
|
|
70
|
-
* distribution.
|
|
71
|
-
*
|
|
72
|
-
* 3. All advertising materials mentioning features or use of this
|
|
73
|
-
* software must display the following acknowledgment:
|
|
74
|
-
* "This product includes software developed by the OpenSSL Project
|
|
75
|
-
* for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
|
|
76
|
-
*
|
|
77
|
-
* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
|
|
78
|
-
* endorse or promote products derived from this software without
|
|
79
|
-
* prior written permission. For written permission, please contact
|
|
80
|
-
* openssl-core@openssl.org.
|
|
81
|
-
*
|
|
82
|
-
* 5. Products derived from this software may not be called "OpenSSL"
|
|
83
|
-
* nor may "OpenSSL" appear in their names without prior written
|
|
84
|
-
* permission of the OpenSSL Project.
|
|
85
|
-
*
|
|
86
|
-
* 6. Redistributions of any form whatsoever must retain the following
|
|
87
|
-
* acknowledgment:
|
|
88
|
-
* "This product includes software developed by the OpenSSL Project
|
|
89
|
-
* for use in the OpenSSL Toolkit (http://www.openssl.org/)"
|
|
90
|
-
*
|
|
91
|
-
* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
|
|
92
|
-
* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
93
|
-
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
|
|
94
|
-
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
|
|
95
|
-
* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
96
|
-
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
97
|
-
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
|
|
98
|
-
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
99
|
-
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
|
|
100
|
-
* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
|
|
101
|
-
* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
|
|
102
|
-
* OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
103
|
-
* ====================================================================
|
|
104
|
-
*
|
|
105
|
-
* This product includes cryptographic software written by Eric Young
|
|
106
|
-
* (eay@cryptsoft.com). This product includes software written by Tim
|
|
107
|
-
* Hudson (tjh@cryptsoft.com).
|
|
108
|
-
*
|
|
109
|
-
*/
|
|
110
|
-
/* ====================================================================
|
|
111
|
-
* Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED.
|
|
112
|
-
* ECC cipher suite support in OpenSSL originally developed by
|
|
113
|
-
* SUN MICROSYSTEMS, INC., and contributed to the OpenSSL project.
|
|
114
|
-
*/
|
|
115
|
-
/* ====================================================================
|
|
116
|
-
* Copyright 2005 Nokia. All rights reserved.
|
|
117
|
-
*
|
|
118
|
-
* The portions of the attached software ("Contribution") is developed by
|
|
119
|
-
* Nokia Corporation and is licensed pursuant to the OpenSSL open source
|
|
120
|
-
* license.
|
|
121
|
-
*
|
|
122
|
-
* The Contribution, originally written by Mika Kousa and Pasi Eronen of
|
|
123
|
-
* Nokia Corporation, consists of the "PSK" (Pre-Shared Key) ciphersuites
|
|
124
|
-
* support (see RFC 4279) to OpenSSL.
|
|
125
|
-
*
|
|
126
|
-
* No patent licenses or other rights except those expressly stated in
|
|
127
|
-
* the OpenSSL open source license shall be deemed granted or received
|
|
128
|
-
* expressly, by implication, estoppel, or otherwise.
|
|
129
|
-
*
|
|
130
|
-
* No assurances are provided by Nokia that the Contribution does not
|
|
131
|
-
* infringe the patent or other intellectual property rights of any third
|
|
132
|
-
* party or that the license provides you with all the necessary rights
|
|
133
|
-
* to make use of the Contribution.
|
|
134
|
-
*
|
|
135
|
-
* THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IN
|
|
136
|
-
* ADDITION TO THE DISCLAIMERS INCLUDED IN THE LICENSE, NOKIA
|
|
137
|
-
* SPECIFICALLY DISCLAIMS ANY LIABILITY FOR CLAIMS BROUGHT BY YOU OR ANY
|
|
138
|
-
* OTHER ENTITY BASED ON INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS OR
|
|
139
|
-
* OTHERWISE.
|
|
140
|
-
*/
|
|
1
|
+
// Copyright 1995-2016 The OpenSSL Project Authors. All Rights Reserved.
|
|
2
|
+
// Copyright (c) 2002, Oracle and/or its affiliates. All rights reserved.
|
|
3
|
+
// Copyright 2005 Nokia. All rights reserved.
|
|
4
|
+
//
|
|
5
|
+
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
6
|
+
// you may not use this file except in compliance with the License.
|
|
7
|
+
// You may obtain a copy of the License at
|
|
8
|
+
//
|
|
9
|
+
// https://www.apache.org/licenses/LICENSE-2.0
|
|
10
|
+
//
|
|
11
|
+
// Unless required by applicable law or agreed to in writing, software
|
|
12
|
+
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
13
|
+
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
14
|
+
// See the License for the specific language governing permissions and
|
|
15
|
+
// limitations under the License.
|
|
141
16
|
|
|
142
17
|
#ifndef OPENSSL_HEADER_SSL_INTERNAL_H
|
|
143
18
|
#define OPENSSL_HEADER_SSL_INTERNAL_H
|
|
@@ -147,15 +22,17 @@
|
|
|
147
22
|
#include <stdlib.h>
|
|
148
23
|
|
|
149
24
|
#include <algorithm>
|
|
25
|
+
#include <atomic>
|
|
150
26
|
#include <bitset>
|
|
151
27
|
#include <initializer_list>
|
|
152
28
|
#include <limits>
|
|
153
29
|
#include <new>
|
|
30
|
+
#include <optional>
|
|
31
|
+
#include <string_view>
|
|
154
32
|
#include <type_traits>
|
|
155
33
|
#include <utility>
|
|
156
34
|
|
|
157
35
|
#include <openssl/aead.h>
|
|
158
|
-
#include <openssl/aes.h>
|
|
159
36
|
#include <openssl/curve25519.h>
|
|
160
37
|
#include <openssl/err.h>
|
|
161
38
|
#include <openssl/hpke.h>
|
|
@@ -168,13 +45,12 @@
|
|
|
168
45
|
#include "../crypto/err/internal.h"
|
|
169
46
|
#include "../crypto/internal.h"
|
|
170
47
|
#include "../crypto/lhash/internal.h"
|
|
48
|
+
#include "../crypto/spake2plus/internal.h"
|
|
171
49
|
|
|
172
50
|
|
|
173
51
|
#if defined(OPENSSL_WINDOWS)
|
|
174
52
|
// Windows defines struct timeval in winsock2.h.
|
|
175
|
-
OPENSSL_MSVC_PRAGMA(warning(push, 3))
|
|
176
53
|
#include <winsock2.h>
|
|
177
|
-
OPENSSL_MSVC_PRAGMA(warning(pop))
|
|
178
54
|
#else
|
|
179
55
|
#include <sys/time.h>
|
|
180
56
|
#endif
|
|
@@ -195,7 +71,7 @@ struct SSL_X509_METHOD;
|
|
|
195
71
|
//
|
|
196
72
|
// Note: unlike |new|, this does not support non-public constructors.
|
|
197
73
|
template <typename T, typename... Args>
|
|
198
|
-
T *New(Args &&...
|
|
74
|
+
T *New(Args &&...args) {
|
|
199
75
|
void *t = OPENSSL_malloc(sizeof(T));
|
|
200
76
|
if (t == nullptr) {
|
|
201
77
|
return nullptr;
|
|
@@ -226,7 +102,7 @@ struct DeleterImpl<T, std::enable_if_t<T::kAllowUniquePtr>> {
|
|
|
226
102
|
// MakeUnique behaves like |std::make_unique| but returns nullptr on allocation
|
|
227
103
|
// error.
|
|
228
104
|
template <typename T, typename... Args>
|
|
229
|
-
UniquePtr<T> MakeUnique(Args &&...
|
|
105
|
+
UniquePtr<T> MakeUnique(Args &&...args) {
|
|
230
106
|
return UniquePtr<T>(New<T>(std::forward<Args>(args)...));
|
|
231
107
|
}
|
|
232
108
|
|
|
@@ -253,8 +129,14 @@ class Array {
|
|
|
253
129
|
size_t size() const { return size_; }
|
|
254
130
|
bool empty() const { return size_ == 0; }
|
|
255
131
|
|
|
256
|
-
const T &operator[](size_t i) const {
|
|
257
|
-
|
|
132
|
+
const T &operator[](size_t i) const {
|
|
133
|
+
BSSL_CHECK(i < size_);
|
|
134
|
+
return data_[i];
|
|
135
|
+
}
|
|
136
|
+
T &operator[](size_t i) {
|
|
137
|
+
BSSL_CHECK(i < size_);
|
|
138
|
+
return data_[i];
|
|
139
|
+
}
|
|
258
140
|
|
|
259
141
|
T *begin() { return data_; }
|
|
260
142
|
const T *begin() const { return data_; }
|
|
@@ -266,9 +148,7 @@ class Array {
|
|
|
266
148
|
// Reset releases the current contents of the array and takes ownership of the
|
|
267
149
|
// raw pointer supplied by the caller.
|
|
268
150
|
void Reset(T *new_data, size_t new_size) {
|
|
269
|
-
|
|
270
|
-
data_[i].~T();
|
|
271
|
-
}
|
|
151
|
+
std::destroy_n(data_, size_);
|
|
272
152
|
OPENSSL_free(data_);
|
|
273
153
|
data_ = new_data;
|
|
274
154
|
size_ = new_size;
|
|
@@ -284,38 +164,35 @@ class Array {
|
|
|
284
164
|
}
|
|
285
165
|
|
|
286
166
|
// Init replaces the array with a newly-allocated array of |new_size|
|
|
287
|
-
//
|
|
288
|
-
// error.
|
|
289
|
-
//
|
|
290
|
-
|
|
291
|
-
|
|
292
|
-
Reset();
|
|
293
|
-
if (new_size == 0) {
|
|
294
|
-
return true;
|
|
295
|
-
}
|
|
296
|
-
|
|
297
|
-
if (new_size > std::numeric_limits<size_t>::max() / sizeof(T)) {
|
|
298
|
-
OPENSSL_PUT_ERROR(SSL, ERR_R_OVERFLOW);
|
|
167
|
+
// value-constructed copies of |T|. It returns true on success and false on
|
|
168
|
+
// error. If |T| is a primitive type like |uint8_t|, value-construction means
|
|
169
|
+
// it will be zero-initialized.
|
|
170
|
+
[[nodiscard]] bool Init(size_t new_size) {
|
|
171
|
+
if (!InitUninitialized(new_size)) {
|
|
299
172
|
return false;
|
|
300
173
|
}
|
|
301
|
-
data_
|
|
302
|
-
|
|
174
|
+
std::uninitialized_value_construct_n(data_, size_);
|
|
175
|
+
return true;
|
|
176
|
+
}
|
|
177
|
+
|
|
178
|
+
// InitForOverwrite behaves like |Init| but it default-constructs each element
|
|
179
|
+
// instead. This means that, if |T| is a primitive type, the array will be
|
|
180
|
+
// uninitialized and thus must be filled in by the caller.
|
|
181
|
+
[[nodiscard]] bool InitForOverwrite(size_t new_size) {
|
|
182
|
+
if (!InitUninitialized(new_size)) {
|
|
303
183
|
return false;
|
|
304
184
|
}
|
|
305
|
-
size_
|
|
306
|
-
for (size_t i = 0; i < size_; i++) {
|
|
307
|
-
new (&data_[i]) T;
|
|
308
|
-
}
|
|
185
|
+
std::uninitialized_default_construct_n(data_, size_);
|
|
309
186
|
return true;
|
|
310
187
|
}
|
|
311
188
|
|
|
312
189
|
// CopyFrom replaces the array with a newly-allocated copy of |in|. It returns
|
|
313
190
|
// true on success and false on error.
|
|
314
|
-
bool CopyFrom(Span<const T> in) {
|
|
315
|
-
if (!
|
|
191
|
+
[[nodiscard]] bool CopyFrom(Span<const T> in) {
|
|
192
|
+
if (!InitUninitialized(in.size())) {
|
|
316
193
|
return false;
|
|
317
194
|
}
|
|
318
|
-
std::
|
|
195
|
+
std::uninitialized_copy(in.begin(), in.end(), data_);
|
|
319
196
|
return true;
|
|
320
197
|
}
|
|
321
198
|
|
|
@@ -325,75 +202,103 @@ class Array {
|
|
|
325
202
|
if (new_size > size_) {
|
|
326
203
|
abort();
|
|
327
204
|
}
|
|
328
|
-
|
|
329
|
-
data_[i].~T();
|
|
330
|
-
}
|
|
205
|
+
std::destroy_n(data_ + new_size, size_ - new_size);
|
|
331
206
|
size_ = new_size;
|
|
332
207
|
}
|
|
333
208
|
|
|
334
209
|
private:
|
|
210
|
+
// InitUninitialized replaces the array with a newly-allocated array of
|
|
211
|
+
// |new_size| elements, but whose constructor has not yet run. On success, the
|
|
212
|
+
// elements must be constructed before returning control to the caller.
|
|
213
|
+
bool InitUninitialized(size_t new_size) {
|
|
214
|
+
Reset();
|
|
215
|
+
if (new_size == 0) {
|
|
216
|
+
return true;
|
|
217
|
+
}
|
|
218
|
+
|
|
219
|
+
if (new_size > std::numeric_limits<size_t>::max() / sizeof(T)) {
|
|
220
|
+
OPENSSL_PUT_ERROR(SSL, ERR_R_OVERFLOW);
|
|
221
|
+
return false;
|
|
222
|
+
}
|
|
223
|
+
data_ = reinterpret_cast<T *>(OPENSSL_malloc(new_size * sizeof(T)));
|
|
224
|
+
if (data_ == nullptr) {
|
|
225
|
+
return false;
|
|
226
|
+
}
|
|
227
|
+
size_ = new_size;
|
|
228
|
+
return true;
|
|
229
|
+
}
|
|
230
|
+
|
|
335
231
|
T *data_ = nullptr;
|
|
336
232
|
size_t size_ = 0;
|
|
337
233
|
};
|
|
338
234
|
|
|
339
|
-
//
|
|
340
|
-
// Array<T>. When necessary, pushing will automatically trigger a resize.
|
|
341
|
-
//
|
|
342
|
-
// Note, for simplicity, this class currently differs from |std::vector| in that
|
|
343
|
-
// |T| must be efficiently default-constructible. Allocated elements beyond the
|
|
344
|
-
// end of the array are constructed and destructed.
|
|
235
|
+
// Vector<T> is a resizable array of elements of |T|.
|
|
345
236
|
template <typename T>
|
|
346
|
-
class
|
|
237
|
+
class Vector {
|
|
347
238
|
public:
|
|
348
|
-
|
|
349
|
-
|
|
350
|
-
|
|
351
|
-
~
|
|
352
|
-
|
|
353
|
-
|
|
354
|
-
|
|
355
|
-
|
|
356
|
-
other.
|
|
357
|
-
|
|
239
|
+
Vector() = default;
|
|
240
|
+
Vector(const Vector &) = delete;
|
|
241
|
+
Vector(Vector &&other) { *this = std::move(other); }
|
|
242
|
+
~Vector() { clear(); }
|
|
243
|
+
|
|
244
|
+
Vector &operator=(const Vector &) = delete;
|
|
245
|
+
Vector &operator=(Vector &&other) {
|
|
246
|
+
clear();
|
|
247
|
+
std::swap(data_, other.data_);
|
|
248
|
+
std::swap(size_, other.size_);
|
|
249
|
+
std::swap(capacity_, other.capacity_);
|
|
358
250
|
return *this;
|
|
359
251
|
}
|
|
360
252
|
|
|
361
|
-
const T *data() const { return
|
|
362
|
-
T *data() { return
|
|
253
|
+
const T *data() const { return data_; }
|
|
254
|
+
T *data() { return data_; }
|
|
363
255
|
size_t size() const { return size_; }
|
|
364
256
|
bool empty() const { return size_ == 0; }
|
|
365
257
|
|
|
366
|
-
const T &operator[](size_t i) const {
|
|
367
|
-
|
|
258
|
+
const T &operator[](size_t i) const {
|
|
259
|
+
BSSL_CHECK(i < size_);
|
|
260
|
+
return data_[i];
|
|
261
|
+
}
|
|
262
|
+
T &operator[](size_t i) {
|
|
263
|
+
BSSL_CHECK(i < size_);
|
|
264
|
+
return data_[i];
|
|
265
|
+
}
|
|
368
266
|
|
|
369
|
-
T *begin() { return
|
|
370
|
-
const T *begin() const { return
|
|
371
|
-
T *end() { return
|
|
372
|
-
const T *end() const { return
|
|
267
|
+
T *begin() { return data_; }
|
|
268
|
+
const T *begin() const { return data_; }
|
|
269
|
+
T *end() { return data_ + size_; }
|
|
270
|
+
const T *end() const { return data_ + size_; }
|
|
373
271
|
|
|
374
272
|
void clear() {
|
|
273
|
+
std::destroy_n(data_, size_);
|
|
274
|
+
OPENSSL_free(data_);
|
|
275
|
+
data_ = nullptr;
|
|
375
276
|
size_ = 0;
|
|
376
|
-
|
|
277
|
+
capacity_ = 0;
|
|
377
278
|
}
|
|
378
279
|
|
|
379
280
|
// Push adds |elem| at the end of the internal array, growing if necessary. It
|
|
380
281
|
// returns false when allocation fails.
|
|
381
|
-
bool Push(T elem) {
|
|
282
|
+
[[nodiscard]] bool Push(T elem) {
|
|
382
283
|
if (!MaybeGrow()) {
|
|
383
284
|
return false;
|
|
384
285
|
}
|
|
385
|
-
|
|
286
|
+
new (&data_[size_]) T(std::move(elem));
|
|
386
287
|
size_++;
|
|
387
288
|
return true;
|
|
388
289
|
}
|
|
389
290
|
|
|
390
291
|
// CopyFrom replaces the contents of the array with a copy of |in|. It returns
|
|
391
292
|
// true on success and false on allocation error.
|
|
392
|
-
bool CopyFrom(Span<const T> in) {
|
|
393
|
-
|
|
293
|
+
[[nodiscard]] bool CopyFrom(Span<const T> in) {
|
|
294
|
+
Array<T> copy;
|
|
295
|
+
if (!copy.CopyFrom(in)) {
|
|
394
296
|
return false;
|
|
395
297
|
}
|
|
396
|
-
|
|
298
|
+
|
|
299
|
+
clear();
|
|
300
|
+
copy.Release(&data_, &size_);
|
|
301
|
+
capacity_ = size_;
|
|
397
302
|
return true;
|
|
398
303
|
}
|
|
399
304
|
|
|
@@ -401,39 +306,249 @@ class GrowableArray {
|
|
|
401
306
|
// If there is no room for one more element, creates a new backing array with
|
|
402
307
|
// double the size of the old one and copies elements over.
|
|
403
308
|
bool MaybeGrow() {
|
|
404
|
-
if (array_.size() == 0) {
|
|
405
|
-
return array_.Init(kDefaultSize);
|
|
406
|
-
}
|
|
407
309
|
// No need to grow if we have room for one more T.
|
|
408
|
-
if (size_ <
|
|
310
|
+
if (size_ < capacity_) {
|
|
409
311
|
return true;
|
|
410
312
|
}
|
|
411
|
-
|
|
412
|
-
if (
|
|
313
|
+
size_t new_capacity = kDefaultSize;
|
|
314
|
+
if (capacity_ > 0) {
|
|
315
|
+
// Double the array's size if it's safe to do so.
|
|
316
|
+
if (capacity_ > std::numeric_limits<size_t>::max() / 2) {
|
|
317
|
+
OPENSSL_PUT_ERROR(SSL, ERR_R_OVERFLOW);
|
|
318
|
+
return false;
|
|
319
|
+
}
|
|
320
|
+
new_capacity = capacity_ * 2;
|
|
321
|
+
}
|
|
322
|
+
if (new_capacity > std::numeric_limits<size_t>::max() / sizeof(T)) {
|
|
413
323
|
OPENSSL_PUT_ERROR(SSL, ERR_R_OVERFLOW);
|
|
414
324
|
return false;
|
|
415
325
|
}
|
|
416
|
-
|
|
417
|
-
|
|
326
|
+
T *new_data =
|
|
327
|
+
reinterpret_cast<T *>(OPENSSL_malloc(new_capacity * sizeof(T)));
|
|
328
|
+
if (new_data == nullptr) {
|
|
418
329
|
return false;
|
|
419
330
|
}
|
|
420
|
-
|
|
421
|
-
|
|
422
|
-
|
|
423
|
-
|
|
424
|
-
|
|
331
|
+
size_t new_size = size_;
|
|
332
|
+
std::uninitialized_move(begin(), end(), new_data);
|
|
333
|
+
clear();
|
|
334
|
+
data_ = new_data;
|
|
335
|
+
size_ = new_size;
|
|
336
|
+
capacity_ = new_capacity;
|
|
425
337
|
return true;
|
|
426
338
|
}
|
|
427
339
|
|
|
428
|
-
//
|
|
340
|
+
// data_ is a pointer to |capacity_| objects of size |T|, the first |size_| of
|
|
341
|
+
// which are constructed.
|
|
342
|
+
T *data_ = nullptr;
|
|
343
|
+
// |size_| is the number of elements stored in this Vector.
|
|
429
344
|
size_t size_ = 0;
|
|
430
|
-
// |
|
|
431
|
-
|
|
432
|
-
Array<T> array_;
|
|
345
|
+
// |capacity_| is the number of elements allocated in this Vector.
|
|
346
|
+
size_t capacity_ = 0;
|
|
433
347
|
// |kDefaultSize| is the default initial size of the backing array.
|
|
434
348
|
static constexpr size_t kDefaultSize = 16;
|
|
435
349
|
};
|
|
436
350
|
|
|
351
|
+
// A PackedSize is an integer that can store values from 0 to N, represented as
|
|
352
|
+
// a minimal-width integer.
|
|
353
|
+
template <size_t N>
|
|
354
|
+
using PackedSize = std::conditional_t<
|
|
355
|
+
N <= 0xff, uint8_t,
|
|
356
|
+
std::conditional_t<N <= 0xffff, uint16_t,
|
|
357
|
+
std::conditional_t<N <= 0xffffffff, uint32_t, size_t>>>;
|
|
358
|
+
|
|
359
|
+
// An InplaceVector is like a Vector, but stores up to N elements inline in the
|
|
360
|
+
// object. It is inspired by std::inplace_vector in C++26.
|
|
361
|
+
template <typename T, size_t N>
|
|
362
|
+
class InplaceVector {
|
|
363
|
+
public:
|
|
364
|
+
InplaceVector() = default;
|
|
365
|
+
InplaceVector(const InplaceVector &other) { *this = other; }
|
|
366
|
+
InplaceVector(InplaceVector &&other) { *this = std::move(other); }
|
|
367
|
+
~InplaceVector() { clear(); }
|
|
368
|
+
InplaceVector &operator=(const InplaceVector &other) {
|
|
369
|
+
if (this != &other) {
|
|
370
|
+
CopyFrom(other);
|
|
371
|
+
}
|
|
372
|
+
return *this;
|
|
373
|
+
}
|
|
374
|
+
InplaceVector &operator=(InplaceVector &&other) {
|
|
375
|
+
clear();
|
|
376
|
+
std::uninitialized_move(other.begin(), other.end(), data());
|
|
377
|
+
size_ = other.size();
|
|
378
|
+
return *this;
|
|
379
|
+
}
|
|
380
|
+
|
|
381
|
+
const T *data() const { return reinterpret_cast<const T *>(storage_); }
|
|
382
|
+
T *data() { return reinterpret_cast<T *>(storage_); }
|
|
383
|
+
size_t size() const { return size_; }
|
|
384
|
+
static constexpr size_t capacity() { return N; }
|
|
385
|
+
bool empty() const { return size_ == 0; }
|
|
386
|
+
|
|
387
|
+
const T &operator[](size_t i) const {
|
|
388
|
+
BSSL_CHECK(i < size_);
|
|
389
|
+
return data()[i];
|
|
390
|
+
}
|
|
391
|
+
T &operator[](size_t i) {
|
|
392
|
+
BSSL_CHECK(i < size_);
|
|
393
|
+
return data()[i];
|
|
394
|
+
}
|
|
395
|
+
|
|
396
|
+
T *begin() { return data(); }
|
|
397
|
+
const T *begin() const { return data(); }
|
|
398
|
+
T *end() { return data() + size_; }
|
|
399
|
+
const T *end() const { return data() + size_; }
|
|
400
|
+
|
|
401
|
+
void clear() { Shrink(0); }
|
|
402
|
+
|
|
403
|
+
// Shrink resizes the vector to |new_size|, which must not be larger than the
|
|
404
|
+
// current size. Unlike |Resize|, this can be called when |T| is not
|
|
405
|
+
// default-constructible.
|
|
406
|
+
void Shrink(size_t new_size) {
|
|
407
|
+
BSSL_CHECK(new_size <= size_);
|
|
408
|
+
std::destroy_n(data() + new_size, size_ - new_size);
|
|
409
|
+
size_ = static_cast<PackedSize<N>>(new_size);
|
|
410
|
+
}
|
|
411
|
+
|
|
412
|
+
// TryResize resizes the vector to |new_size| and returns true, or returns
|
|
413
|
+
// false if |new_size| is too large. Any newly-added elements are
|
|
414
|
+
// value-initialized.
|
|
415
|
+
[[nodiscard]] bool TryResize(size_t new_size) {
|
|
416
|
+
if (new_size <= size_) {
|
|
417
|
+
Shrink(new_size);
|
|
418
|
+
return true;
|
|
419
|
+
}
|
|
420
|
+
if (new_size > capacity()) {
|
|
421
|
+
return false;
|
|
422
|
+
}
|
|
423
|
+
std::uninitialized_value_construct_n(data() + size_, new_size - size_);
|
|
424
|
+
size_ = static_cast<PackedSize<N>>(new_size);
|
|
425
|
+
return true;
|
|
426
|
+
}
|
|
427
|
+
|
|
428
|
+
// TryResizeForOverwrite behaves like |TryResize|, but newly-added elements
|
|
429
|
+
// are default-initialized, so POD types may contain uninitialized values that
|
|
430
|
+
// the caller is responsible for filling in.
|
|
431
|
+
[[nodiscard]] bool TryResizeForOverwrite(size_t new_size) {
|
|
432
|
+
if (new_size <= size_) {
|
|
433
|
+
Shrink(new_size);
|
|
434
|
+
return true;
|
|
435
|
+
}
|
|
436
|
+
if (new_size > capacity()) {
|
|
437
|
+
return false;
|
|
438
|
+
}
|
|
439
|
+
std::uninitialized_default_construct_n(data() + size_, new_size - size_);
|
|
440
|
+
size_ = static_cast<PackedSize<N>>(new_size);
|
|
441
|
+
return true;
|
|
442
|
+
}
|
|
443
|
+
|
|
444
|
+
// TryCopyFrom sets the vector to a copy of |in| and returns true, or returns
|
|
445
|
+
// false if |in| is too large.
|
|
446
|
+
[[nodiscard]] bool TryCopyFrom(Span<const T> in) {
|
|
447
|
+
if (in.size() > capacity()) {
|
|
448
|
+
return false;
|
|
449
|
+
}
|
|
450
|
+
clear();
|
|
451
|
+
std::uninitialized_copy(in.begin(), in.end(), data());
|
|
452
|
+
size_ = in.size();
|
|
453
|
+
return true;
|
|
454
|
+
}
|
|
455
|
+
|
|
456
|
+
// TryPushBack appends |val| to the vector and returns a pointer to the
|
|
457
|
+
// newly-inserted value, or nullptr if the vector is at capacity.
|
|
458
|
+
[[nodiscard]] T *TryPushBack(T val) {
|
|
459
|
+
if (size() >= capacity()) {
|
|
460
|
+
return nullptr;
|
|
461
|
+
}
|
|
462
|
+
T *ret = &data()[size_];
|
|
463
|
+
new (ret) T(std::move(val));
|
|
464
|
+
size_++;
|
|
465
|
+
return ret;
|
|
466
|
+
}
|
|
467
|
+
|
|
468
|
+
// The following methods behave like their |Try*| counterparts, but abort the
|
|
469
|
+
// program on failure.
|
|
470
|
+
void Resize(size_t size) { BSSL_CHECK(TryResize(size)); }
|
|
471
|
+
void ResizeForOverwrite(size_t size) {
|
|
472
|
+
BSSL_CHECK(TryResizeForOverwrite(size));
|
|
473
|
+
}
|
|
474
|
+
void CopyFrom(Span<const T> in) { BSSL_CHECK(TryCopyFrom(in)); }
|
|
475
|
+
T &PushBack(T val) {
|
|
476
|
+
T *ret = TryPushBack(std::move(val));
|
|
477
|
+
BSSL_CHECK(ret != nullptr);
|
|
478
|
+
return *ret;
|
|
479
|
+
}
|
|
480
|
+
|
|
481
|
+
template <typename Pred>
|
|
482
|
+
void EraseIf(Pred pred) {
|
|
483
|
+
// See if anything needs to be erased at all. This avoids a self-move.
|
|
484
|
+
auto iter = std::find_if(begin(), end(), pred);
|
|
485
|
+
if (iter == end()) {
|
|
486
|
+
return;
|
|
487
|
+
}
|
|
488
|
+
|
|
489
|
+
// Elements before the first to be erased may be left as-is.
|
|
490
|
+
size_t new_size = iter - begin();
|
|
491
|
+
// Swap all subsequent elements in if they are to be kept.
|
|
492
|
+
for (size_t i = new_size + 1; i < size(); i++) {
|
|
493
|
+
if (!pred((*this)[i])) {
|
|
494
|
+
(*this)[new_size] = std::move((*this)[i]);
|
|
495
|
+
new_size++;
|
|
496
|
+
}
|
|
497
|
+
}
|
|
498
|
+
|
|
499
|
+
Shrink(new_size);
|
|
500
|
+
}
|
|
501
|
+
|
|
502
|
+
private:
|
|
503
|
+
alignas(T) char storage_[sizeof(T[N])];
|
|
504
|
+
PackedSize<N> size_ = 0;
|
|
505
|
+
};
|
|
506
|
+
|
|
507
|
+
// An MRUQueue maintains a queue of up to |N| objects of type |T|. If the queue
|
|
508
|
+
// is at capacity, adding to the queue pops the least recently added element.
|
|
509
|
+
template <typename T, size_t N>
|
|
510
|
+
class MRUQueue {
|
|
511
|
+
public:
|
|
512
|
+
static constexpr bool kAllowUniquePtr = true;
|
|
513
|
+
|
|
514
|
+
MRUQueue() = default;
|
|
515
|
+
|
|
516
|
+
// If we ever need to make this type movable, we could. (The defaults almost
|
|
517
|
+
// work except we need |start_| to be reset when moved-from.)
|
|
518
|
+
MRUQueue(const MRUQueue &other) = delete;
|
|
519
|
+
MRUQueue &operator=(const MRUQueue &other) = delete;
|
|
520
|
+
|
|
521
|
+
bool empty() const { return size() == 0; }
|
|
522
|
+
size_t size() const { return storage_.size(); }
|
|
523
|
+
|
|
524
|
+
T &operator[](size_t i) {
|
|
525
|
+
BSSL_CHECK(i < size());
|
|
526
|
+
return storage_[(start_ + i) % N];
|
|
527
|
+
}
|
|
528
|
+
const T &operator[](size_t i) const {
|
|
529
|
+
return (*const_cast<MRUQueue *>(this))[i];
|
|
530
|
+
}
|
|
531
|
+
|
|
532
|
+
void Clear() {
|
|
533
|
+
storage_.clear();
|
|
534
|
+
start_ = 0;
|
|
535
|
+
}
|
|
536
|
+
|
|
537
|
+
void PushBack(T t) {
|
|
538
|
+
if (storage_.size() < N) {
|
|
539
|
+
assert(start_ == 0);
|
|
540
|
+
storage_.PushBack(std::move(t));
|
|
541
|
+
} else {
|
|
542
|
+
(*this)[0] = std::move(t);
|
|
543
|
+
start_ = (start_ + 1) % N;
|
|
544
|
+
}
|
|
545
|
+
}
|
|
546
|
+
|
|
547
|
+
private:
|
|
548
|
+
InplaceVector<T, N> storage_;
|
|
549
|
+
PackedSize<N> start_ = 0;
|
|
550
|
+
};
|
|
551
|
+
|
|
437
552
|
// CBBFinishArray behaves like |CBB_finish| but stores the result in an Array.
|
|
438
553
|
OPENSSL_EXPORT bool CBBFinishArray(CBB *cbb, Array<uint8_t> *out);
|
|
439
554
|
|
|
@@ -446,7 +561,7 @@ template <typename T, typename Name>
|
|
|
446
561
|
inline size_t GetAllNames(const char **out, size_t max_out,
|
|
447
562
|
Span<const char *const> fixed_names, Name(T::*name),
|
|
448
563
|
Span<const T> objects) {
|
|
449
|
-
auto span = bssl::
|
|
564
|
+
auto span = bssl::Span(out, max_out);
|
|
450
565
|
for (size_t i = 0; !span.empty() && i < fixed_names.size(); i++) {
|
|
451
566
|
span[0] = fixed_names[i];
|
|
452
567
|
span = span.subspan(1);
|
|
@@ -548,6 +663,11 @@ bool ssl_add_supported_versions(const SSL_HANDSHAKE *hs, CBB *cbb,
|
|
|
548
663
|
bool ssl_negotiate_version(SSL_HANDSHAKE *hs, uint8_t *out_alert,
|
|
549
664
|
uint16_t *out_version, const CBS *peer_versions);
|
|
550
665
|
|
|
666
|
+
// ssl_has_final_version returns whether |ssl| has determined the final version.
|
|
667
|
+
// This may be used to distinguish the predictive 0-RTT version from the final
|
|
668
|
+
// one.
|
|
669
|
+
bool ssl_has_final_version(const SSL *ssl);
|
|
670
|
+
|
|
551
671
|
// ssl_protocol_version returns |ssl|'s protocol version. It is an error to
|
|
552
672
|
// call this function before the version is determined.
|
|
553
673
|
uint16_t ssl_protocol_version(const SSL *ssl);
|
|
@@ -672,7 +792,7 @@ Span<const SSL_CIPHER> AllCiphers();
|
|
|
672
792
|
bool ssl_cipher_get_evp_aead(const EVP_AEAD **out_aead,
|
|
673
793
|
size_t *out_mac_secret_len,
|
|
674
794
|
size_t *out_fixed_iv_len, const SSL_CIPHER *cipher,
|
|
675
|
-
uint16_t version
|
|
795
|
+
uint16_t version);
|
|
676
796
|
|
|
677
797
|
// ssl_get_handshake_digest returns the |EVP_MD| corresponding to |version| and
|
|
678
798
|
// |cipher|.
|
|
@@ -733,7 +853,7 @@ OPENSSL_EXPORT bool ssl_cipher_is_deprecated(const SSL_CIPHER *cipher);
|
|
|
733
853
|
// buffer and running hash.
|
|
734
854
|
class SSLTranscript {
|
|
735
855
|
public:
|
|
736
|
-
SSLTranscript();
|
|
856
|
+
explicit SSLTranscript(bool is_dtls);
|
|
737
857
|
~SSLTranscript();
|
|
738
858
|
|
|
739
859
|
SSLTranscript(SSLTranscript &&other) = default;
|
|
@@ -764,8 +884,8 @@ class SSLTranscript {
|
|
|
764
884
|
bool CopyToHashContext(EVP_MD_CTX *ctx, const EVP_MD *digest) const;
|
|
765
885
|
|
|
766
886
|
Span<const uint8_t> buffer() const {
|
|
767
|
-
return
|
|
768
|
-
|
|
887
|
+
return Span(reinterpret_cast<const uint8_t *>(buffer_->data),
|
|
888
|
+
buffer_->length);
|
|
769
889
|
}
|
|
770
890
|
|
|
771
891
|
// FreeBuffer releases the handshake buffer. Subsequent calls to
|
|
@@ -796,37 +916,40 @@ class SSLTranscript {
|
|
|
796
916
|
bool from_server) const;
|
|
797
917
|
|
|
798
918
|
private:
|
|
919
|
+
// HashBuffer initializes |ctx| to use |digest| and writes the contents of
|
|
920
|
+
// |buffer_| to |ctx|. If this SSLTranscript is for DTLS 1.3, the appropriate
|
|
921
|
+
// bytes in |buffer_| will be skipped when hashing the buffer.
|
|
922
|
+
bool HashBuffer(EVP_MD_CTX *ctx, const EVP_MD *digest) const;
|
|
923
|
+
|
|
924
|
+
// AddToBufferOrHash directly adds the contents of |in| to |buffer_| and/or
|
|
925
|
+
// |hash_|.
|
|
926
|
+
bool AddToBufferOrHash(Span<const uint8_t> in);
|
|
927
|
+
|
|
799
928
|
// buffer_, if non-null, contains the handshake transcript.
|
|
800
929
|
UniquePtr<BUF_MEM> buffer_;
|
|
801
930
|
// hash, if initialized with an |EVP_MD|, maintains the handshake hash.
|
|
802
931
|
ScopedEVP_MD_CTX hash_;
|
|
932
|
+
// is_dtls_ indicates whether this is a transcript for a DTLS connection.
|
|
933
|
+
bool is_dtls_ : 1;
|
|
934
|
+
// version_ contains the version for the connection (if known).
|
|
935
|
+
uint16_t version_ = 0;
|
|
803
936
|
};
|
|
804
937
|
|
|
805
938
|
// tls1_prf computes the PRF function for |ssl|. It fills |out|, using |secret|
|
|
806
939
|
// as the secret and |label| as the label. |seed1| and |seed2| are concatenated
|
|
807
940
|
// to form the seed parameter. It returns true on success and false on failure.
|
|
808
941
|
bool tls1_prf(const EVP_MD *digest, Span<uint8_t> out,
|
|
809
|
-
Span<const uint8_t> secret,
|
|
942
|
+
Span<const uint8_t> secret, std::string_view label,
|
|
810
943
|
Span<const uint8_t> seed1, Span<const uint8_t> seed2);
|
|
811
944
|
|
|
812
945
|
|
|
813
946
|
// Encryption layer.
|
|
814
947
|
|
|
815
|
-
class RecordNumberEncrypter {
|
|
816
|
-
public:
|
|
817
|
-
virtual ~RecordNumberEncrypter() = default;
|
|
818
|
-
static constexpr bool kAllowUniquePtr = true;
|
|
819
|
-
|
|
820
|
-
virtual size_t KeySize() = 0;
|
|
821
|
-
virtual bool SetKey(Span<const uint8_t> key) = 0;
|
|
822
|
-
virtual bool GenerateMask(Span<uint8_t> out, Span<const uint8_t> sample) = 0;
|
|
823
|
-
};
|
|
824
|
-
|
|
825
948
|
// SSLAEADContext contains information about an AEAD that is being used to
|
|
826
949
|
// encrypt an SSL connection.
|
|
827
950
|
class SSLAEADContext {
|
|
828
951
|
public:
|
|
829
|
-
SSLAEADContext(
|
|
952
|
+
explicit SSLAEADContext(const SSL_CIPHER *cipher);
|
|
830
953
|
~SSLAEADContext();
|
|
831
954
|
static constexpr bool kAllowUniquePtr = true;
|
|
832
955
|
|
|
@@ -834,38 +957,23 @@ class SSLAEADContext {
|
|
|
834
957
|
SSLAEADContext &operator=(const SSLAEADContext &&) = delete;
|
|
835
958
|
|
|
836
959
|
// CreateNullCipher creates an |SSLAEADContext| for the null cipher.
|
|
837
|
-
static UniquePtr<SSLAEADContext> CreateNullCipher(
|
|
960
|
+
static UniquePtr<SSLAEADContext> CreateNullCipher();
|
|
838
961
|
|
|
839
962
|
// Create creates an |SSLAEADContext| using the supplied key material. It
|
|
840
963
|
// returns nullptr on error. Only one of |Open| or |Seal| may be used with the
|
|
841
|
-
// resulting object, depending on |direction|. |version| is the
|
|
842
|
-
// protocol version, so DTLS 1.0 is represented as 0x0301, not 0xffef.
|
|
964
|
+
// resulting object, depending on |direction|. |version| is the wire version.
|
|
843
965
|
static UniquePtr<SSLAEADContext> Create(enum evp_aead_direction_t direction,
|
|
844
|
-
uint16_t version,
|
|
966
|
+
uint16_t version,
|
|
845
967
|
const SSL_CIPHER *cipher,
|
|
846
968
|
Span<const uint8_t> enc_key,
|
|
847
969
|
Span<const uint8_t> mac_key,
|
|
848
970
|
Span<const uint8_t> fixed_iv);
|
|
849
971
|
|
|
850
972
|
// CreatePlaceholderForQUIC creates a placeholder |SSLAEADContext| for the
|
|
851
|
-
// given cipher
|
|
852
|
-
//
|
|
973
|
+
// given cipher. The resulting object can be queried for various properties
|
|
974
|
+
// but cannot encrypt or decrypt data.
|
|
853
975
|
static UniquePtr<SSLAEADContext> CreatePlaceholderForQUIC(
|
|
854
|
-
|
|
855
|
-
|
|
856
|
-
// SetVersionIfNullCipher sets the version the SSLAEADContext for the null
|
|
857
|
-
// cipher, to make version-specific determinations in the record layer prior
|
|
858
|
-
// to a cipher being selected.
|
|
859
|
-
void SetVersionIfNullCipher(uint16_t version);
|
|
860
|
-
|
|
861
|
-
// ProtocolVersion returns the protocol version associated with this
|
|
862
|
-
// SSLAEADContext. It can only be called once |version_| has been set to a
|
|
863
|
-
// valid value.
|
|
864
|
-
uint16_t ProtocolVersion() const;
|
|
865
|
-
|
|
866
|
-
// RecordVersion returns the record version that should be used with this
|
|
867
|
-
// SSLAEADContext for record construction and crypto.
|
|
868
|
-
uint16_t RecordVersion() const;
|
|
976
|
+
const SSL_CIPHER *cipher);
|
|
869
977
|
|
|
870
978
|
const SSL_CIPHER *cipher() const { return cipher_; }
|
|
871
979
|
|
|
@@ -878,6 +986,10 @@ class SSLAEADContext {
|
|
|
878
986
|
// MaxOverhead returns the maximum overhead of calling |Seal|.
|
|
879
987
|
size_t MaxOverhead() const;
|
|
880
988
|
|
|
989
|
+
// MaxSealInputLen returns the maximum length for |Seal| that can fit in
|
|
990
|
+
// |max_out| output bytes, or zero if no input may fit.
|
|
991
|
+
size_t MaxSealInputLen(size_t max_out) const;
|
|
992
|
+
|
|
881
993
|
// SuffixLen calculates the suffix length written by |SealScatter| and writes
|
|
882
994
|
// it to |*out_suffix_len|. It returns true on success and false on error.
|
|
883
995
|
// |in_len| and |extra_in_len| should equal the argument of the same names
|
|
@@ -927,17 +1039,6 @@ class SSLAEADContext {
|
|
|
927
1039
|
|
|
928
1040
|
bool GetIV(const uint8_t **out_iv, size_t *out_iv_len) const;
|
|
929
1041
|
|
|
930
|
-
RecordNumberEncrypter *GetRecordNumberEncrypter() {
|
|
931
|
-
return rn_encrypter_.get();
|
|
932
|
-
}
|
|
933
|
-
|
|
934
|
-
// GenerateRecordNumberMask computes the mask used for DTLS 1.3 record number
|
|
935
|
-
// encryption (RFC 9147 section 4.2.3), writing it to |out|. The |out| buffer
|
|
936
|
-
// must be sized to AES_BLOCK_SIZE. The |sample| buffer must be at least 16
|
|
937
|
-
// bytes, as required by the AES and ChaCha20 cipher suites in RFC 9147. Extra
|
|
938
|
-
// bytes in |sample| will be ignored.
|
|
939
|
-
bool GenerateRecordNumberMask(Span<uint8_t> out, Span<const uint8_t> sample);
|
|
940
|
-
|
|
941
1042
|
private:
|
|
942
1043
|
// GetAdditionalData returns the additional data, writing into |storage| if
|
|
943
1044
|
// necessary.
|
|
@@ -946,19 +1047,12 @@ class SSLAEADContext {
|
|
|
946
1047
|
uint64_t seqnum, size_t plaintext_len,
|
|
947
1048
|
Span<const uint8_t> header);
|
|
948
1049
|
|
|
949
|
-
void CreateRecordNumberEncrypter();
|
|
950
|
-
|
|
951
1050
|
const SSL_CIPHER *cipher_;
|
|
952
1051
|
ScopedEVP_AEAD_CTX ctx_;
|
|
953
1052
|
// fixed_nonce_ contains any bytes of the nonce that are fixed for all
|
|
954
1053
|
// records.
|
|
955
|
-
uint8_t fixed_nonce_
|
|
956
|
-
uint8_t
|
|
957
|
-
// version_ is the wire version that should be used with this AEAD.
|
|
958
|
-
uint16_t version_;
|
|
959
|
-
UniquePtr<RecordNumberEncrypter> rn_encrypter_;
|
|
960
|
-
// is_dtls_ is whether DTLS is being used with this AEAD.
|
|
961
|
-
bool is_dtls_;
|
|
1054
|
+
InplaceVector<uint8_t, 12> fixed_nonce_;
|
|
1055
|
+
uint8_t variable_nonce_len_ = 0;
|
|
962
1056
|
// variable_nonce_included_in_record_ is true if the variable nonce
|
|
963
1057
|
// for a record is included as a prefix before the ciphertext.
|
|
964
1058
|
bool variable_nonce_included_in_record_ : 1;
|
|
@@ -976,57 +1070,31 @@ class SSLAEADContext {
|
|
|
976
1070
|
bool ad_is_header_ : 1;
|
|
977
1071
|
};
|
|
978
1072
|
|
|
979
|
-
class AESRecordNumberEncrypter : public RecordNumberEncrypter {
|
|
980
|
-
public:
|
|
981
|
-
bool SetKey(Span<const uint8_t> key) override;
|
|
982
|
-
bool GenerateMask(Span<uint8_t> out, Span<const uint8_t> sample) override;
|
|
983
1073
|
|
|
984
|
-
|
|
985
|
-
AES_KEY key_;
|
|
986
|
-
};
|
|
1074
|
+
// DTLS replay bitmap.
|
|
987
1075
|
|
|
988
|
-
|
|
1076
|
+
// DTLSReplayBitmap maintains a sliding window of sequence numbers to detect
|
|
1077
|
+
// replayed packets.
|
|
1078
|
+
class DTLSReplayBitmap {
|
|
989
1079
|
public:
|
|
990
|
-
|
|
991
|
-
|
|
1080
|
+
// ShouldDiscard returns true if |seq_num| has been seen in
|
|
1081
|
+
// |bitmap| or is stale. Otherwise it returns false.
|
|
1082
|
+
bool ShouldDiscard(uint64_t seqnum) const;
|
|
992
1083
|
|
|
993
|
-
|
|
994
|
-
|
|
995
|
-
|
|
996
|
-
|
|
1084
|
+
// Record updates the bitmap to record receipt of sequence number
|
|
1085
|
+
// |seq_num|. It slides the window forward if needed. It is an error to call
|
|
1086
|
+
// this function on a stale sequence number.
|
|
1087
|
+
void Record(uint64_t seqnum);
|
|
997
1088
|
|
|
998
|
-
|
|
999
|
-
public:
|
|
1000
|
-
size_t KeySize() override;
|
|
1001
|
-
bool SetKey(Span<const uint8_t> key) override;
|
|
1002
|
-
bool GenerateMask(Span<uint8_t> out, Span<const uint8_t> sample) override;
|
|
1089
|
+
uint64_t max_seq_num() const { return max_seq_num_; }
|
|
1003
1090
|
|
|
1004
1091
|
private:
|
|
1005
|
-
static const size_t kKeySize = 32;
|
|
1006
|
-
uint8_t key_[kKeySize];
|
|
1007
|
-
};
|
|
1008
|
-
|
|
1009
|
-
#if defined(BORINGSSL_UNSAFE_FUZZER_MODE)
|
|
1010
|
-
class NullRecordNumberEncrypter : public RecordNumberEncrypter {
|
|
1011
|
-
public:
|
|
1012
|
-
size_t KeySize() override;
|
|
1013
|
-
bool SetKey(Span<const uint8_t> key) override;
|
|
1014
|
-
bool GenerateMask(Span<uint8_t> out, Span<const uint8_t> sample) override;
|
|
1015
|
-
};
|
|
1016
|
-
#endif // BORINGSSL_UNSAFE_FUZZER_MODE
|
|
1017
|
-
|
|
1018
|
-
|
|
1019
|
-
// DTLS replay bitmap.
|
|
1020
|
-
|
|
1021
|
-
// DTLS1_BITMAP maintains a sliding window of 64 sequence numbers to detect
|
|
1022
|
-
// replayed packets. It should be initialized by zeroing every field.
|
|
1023
|
-
struct DTLS1_BITMAP {
|
|
1024
1092
|
// map is a bitset of sequence numbers that have been seen. Bit i corresponds
|
|
1025
|
-
// to |
|
|
1026
|
-
std::bitset<256>
|
|
1027
|
-
//
|
|
1028
|
-
// integer.
|
|
1029
|
-
uint64_t
|
|
1093
|
+
// to |max_seq_num_ - i|.
|
|
1094
|
+
std::bitset<256> map_;
|
|
1095
|
+
// max_seq_num_ is the largest sequence number seen so far as a 64-bit
|
|
1096
|
+
// integer, or zero if none have been seen.
|
|
1097
|
+
uint64_t max_seq_num_ = 0;
|
|
1030
1098
|
};
|
|
1031
1099
|
|
|
1032
1100
|
// reconstruct_seqnum takes the low order bits of a record sequence number from
|
|
@@ -1038,11 +1106,91 @@ struct DTLS1_BITMAP {
|
|
|
1038
1106
|
// successfully deprotected in this epoch. This function returns the sequence
|
|
1039
1107
|
// number that is numerically closest to one plus |max_valid_seqnum| that when
|
|
1040
1108
|
// bitwise and-ed with |seq_mask| equals |wire_seq|.
|
|
1109
|
+
//
|
|
1110
|
+
// |max_valid_seqnum| must be most 2^48-1, in which case the output will also be
|
|
1111
|
+
// at most 2^48-1.
|
|
1041
1112
|
OPENSSL_EXPORT uint64_t reconstruct_seqnum(uint16_t wire_seq, uint64_t seq_mask,
|
|
1042
1113
|
uint64_t max_valid_seqnum);
|
|
1043
1114
|
|
|
1115
|
+
|
|
1044
1116
|
// Record layer.
|
|
1045
1117
|
|
|
1118
|
+
class DTLSRecordNumber {
|
|
1119
|
+
public:
|
|
1120
|
+
static constexpr uint64_t kMaxSequence = (uint64_t{1} << 48) - 1;
|
|
1121
|
+
|
|
1122
|
+
DTLSRecordNumber() = default;
|
|
1123
|
+
DTLSRecordNumber(uint16_t epoch, uint64_t sequence) {
|
|
1124
|
+
BSSL_CHECK(sequence <= kMaxSequence);
|
|
1125
|
+
combined_ = (uint64_t{epoch} << 48) | sequence;
|
|
1126
|
+
}
|
|
1127
|
+
|
|
1128
|
+
static DTLSRecordNumber FromCombined(uint64_t combined) {
|
|
1129
|
+
return DTLSRecordNumber(combined);
|
|
1130
|
+
}
|
|
1131
|
+
|
|
1132
|
+
bool operator==(DTLSRecordNumber r) const {
|
|
1133
|
+
return combined() == r.combined();
|
|
1134
|
+
}
|
|
1135
|
+
bool operator!=(DTLSRecordNumber r) const { return !((*this) == r); }
|
|
1136
|
+
bool operator<(DTLSRecordNumber r) const { return combined() < r.combined(); }
|
|
1137
|
+
|
|
1138
|
+
uint64_t combined() const { return combined_; }
|
|
1139
|
+
uint16_t epoch() const { return combined_ >> 48; }
|
|
1140
|
+
uint64_t sequence() const { return combined_ & kMaxSequence; }
|
|
1141
|
+
|
|
1142
|
+
bool HasNext() const { return sequence() < kMaxSequence; }
|
|
1143
|
+
DTLSRecordNumber Next() const {
|
|
1144
|
+
BSSL_CHECK(HasNext());
|
|
1145
|
+
// This will not overflow into the epoch.
|
|
1146
|
+
return DTLSRecordNumber::FromCombined(combined_ + 1);
|
|
1147
|
+
}
|
|
1148
|
+
|
|
1149
|
+
private:
|
|
1150
|
+
explicit DTLSRecordNumber(uint64_t combined) : combined_(combined) {}
|
|
1151
|
+
|
|
1152
|
+
uint64_t combined_ = 0;
|
|
1153
|
+
};
|
|
1154
|
+
|
|
1155
|
+
class RecordNumberEncrypter {
|
|
1156
|
+
public:
|
|
1157
|
+
static constexpr bool kAllowUniquePtr = true;
|
|
1158
|
+
static constexpr size_t kMaxKeySize = 32;
|
|
1159
|
+
|
|
1160
|
+
// Create returns a DTLS 1.3 record number encrypter for |traffic_secret|, or
|
|
1161
|
+
// nullptr on error.
|
|
1162
|
+
static UniquePtr<RecordNumberEncrypter> Create(
|
|
1163
|
+
const SSL_CIPHER *cipher, Span<const uint8_t> traffic_secret);
|
|
1164
|
+
|
|
1165
|
+
virtual ~RecordNumberEncrypter() = default;
|
|
1166
|
+
virtual size_t KeySize() = 0;
|
|
1167
|
+
virtual bool SetKey(Span<const uint8_t> key) = 0;
|
|
1168
|
+
virtual bool GenerateMask(Span<uint8_t> out, Span<const uint8_t> sample) = 0;
|
|
1169
|
+
};
|
|
1170
|
+
|
|
1171
|
+
struct DTLSReadEpoch {
|
|
1172
|
+
static constexpr bool kAllowUniquePtr = true;
|
|
1173
|
+
|
|
1174
|
+
// TODO(davidben): This could be made slightly more compact if |bitmap| stored
|
|
1175
|
+
// a DTLSRecordNumber.
|
|
1176
|
+
uint16_t epoch = 0;
|
|
1177
|
+
UniquePtr<SSLAEADContext> aead;
|
|
1178
|
+
UniquePtr<RecordNumberEncrypter> rn_encrypter;
|
|
1179
|
+
DTLSReplayBitmap bitmap;
|
|
1180
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> traffic_secret;
|
|
1181
|
+
};
|
|
1182
|
+
|
|
1183
|
+
struct DTLSWriteEpoch {
|
|
1184
|
+
static constexpr bool kAllowUniquePtr = true;
|
|
1185
|
+
|
|
1186
|
+
uint16_t epoch() const { return next_record.epoch(); }
|
|
1187
|
+
|
|
1188
|
+
DTLSRecordNumber next_record;
|
|
1189
|
+
UniquePtr<SSLAEADContext> aead;
|
|
1190
|
+
UniquePtr<RecordNumberEncrypter> rn_encrypter;
|
|
1191
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> traffic_secret;
|
|
1192
|
+
};
|
|
1193
|
+
|
|
1046
1194
|
// ssl_record_prefix_len returns the length of the prefix before the ciphertext
|
|
1047
1195
|
// of a record for |ssl|.
|
|
1048
1196
|
//
|
|
@@ -1087,8 +1235,10 @@ enum ssl_open_record_t tls_open_record(SSL *ssl, uint8_t *out_type,
|
|
|
1087
1235
|
|
|
1088
1236
|
// dtls_open_record implements |tls_open_record| for DTLS. It only returns
|
|
1089
1237
|
// |ssl_open_record_partial| if |in| was empty and sets |*out_consumed| to
|
|
1090
|
-
// zero. The caller should read one packet and try again.
|
|
1238
|
+
// zero. The caller should read one packet and try again. On success,
|
|
1239
|
+
// |*out_number| is set to the record number of the record.
|
|
1091
1240
|
enum ssl_open_record_t dtls_open_record(SSL *ssl, uint8_t *out_type,
|
|
1241
|
+
DTLSRecordNumber *out_number,
|
|
1092
1242
|
Span<uint8_t> *out,
|
|
1093
1243
|
size_t *out_consumed,
|
|
1094
1244
|
uint8_t *out_alert, Span<uint8_t> in);
|
|
@@ -1123,13 +1273,23 @@ size_t dtls_max_seal_overhead(const SSL *ssl, uint16_t epoch);
|
|
|
1123
1273
|
// front of the plaintext when sealing a record in-place.
|
|
1124
1274
|
size_t dtls_seal_prefix_len(const SSL *ssl, uint16_t epoch);
|
|
1125
1275
|
|
|
1276
|
+
// dtls_seal_max_input_len returns the maximum number of input bytes that can
|
|
1277
|
+
// fit in a record of up to |max_out| bytes, or zero if none may fit.
|
|
1278
|
+
size_t dtls_seal_max_input_len(const SSL *ssl, uint16_t epoch, size_t max_out);
|
|
1279
|
+
|
|
1280
|
+
// dtls_get_read_epoch and dtls_get_write_epoch return the epoch corresponding
|
|
1281
|
+
// to |epoch| or nullptr if there is none.
|
|
1282
|
+
DTLSReadEpoch *dtls_get_read_epoch(const SSL *ssl, uint16_t epoch);
|
|
1283
|
+
DTLSWriteEpoch *dtls_get_write_epoch(const SSL *ssl, uint16_t epoch);
|
|
1284
|
+
|
|
1126
1285
|
// dtls_seal_record implements |tls_seal_record| for DTLS. |epoch| selects which
|
|
1127
1286
|
// epoch's cipher state to use. Unlike |tls_seal_record|, |in| and |out| may
|
|
1128
1287
|
// alias but, if they do, |in| must be exactly |dtls_seal_prefix_len| bytes
|
|
1129
|
-
// ahead of |out|.
|
|
1130
|
-
|
|
1131
|
-
|
|
1132
|
-
|
|
1288
|
+
// ahead of |out|. On success, |*out_number| is set to the record number of the
|
|
1289
|
+
// record.
|
|
1290
|
+
bool dtls_seal_record(SSL *ssl, DTLSRecordNumber *out_number, uint8_t *out,
|
|
1291
|
+
size_t *out_len, size_t max_out, uint8_t type,
|
|
1292
|
+
const uint8_t *in, size_t in_len, uint16_t epoch);
|
|
1133
1293
|
|
|
1134
1294
|
// ssl_process_alert processes |in| as an alert and updates |ssl|'s shutdown
|
|
1135
1295
|
// state. It returns one of |ssl_open_record_discard|, |ssl_open_record_error|,
|
|
@@ -1201,8 +1361,7 @@ class SSLKeyShare {
|
|
|
1201
1361
|
// |out_ciphertext|, and sets |*out_secret| to the shared secret. On failure,
|
|
1202
1362
|
// it returns false and sets |*out_alert| to an alert to send to the peer.
|
|
1203
1363
|
virtual bool Encap(CBB *out_ciphertext, Array<uint8_t> *out_secret,
|
|
1204
|
-
uint8_t *out_alert,
|
|
1205
|
-
Span<const uint8_t> peer_key) = 0;
|
|
1364
|
+
uint8_t *out_alert, Span<const uint8_t> peer_key) = 0;
|
|
1206
1365
|
|
|
1207
1366
|
// Decap decapsulates the symmetric secret in |ciphertext|. On success, it
|
|
1208
1367
|
// returns true and sets |*out_secret| to the shared secret. On failure, it
|
|
@@ -1288,21 +1447,13 @@ bool dtls_has_unprocessed_handshake_data(const SSL *ssl);
|
|
|
1288
1447
|
// tls_flush_pending_hs_data flushes any handshake plaintext data.
|
|
1289
1448
|
bool tls_flush_pending_hs_data(SSL *ssl);
|
|
1290
1449
|
|
|
1291
|
-
struct DTLS_OUTGOING_MESSAGE {
|
|
1292
|
-
DTLS_OUTGOING_MESSAGE() {}
|
|
1293
|
-
DTLS_OUTGOING_MESSAGE(const DTLS_OUTGOING_MESSAGE &) = delete;
|
|
1294
|
-
DTLS_OUTGOING_MESSAGE &operator=(const DTLS_OUTGOING_MESSAGE &) = delete;
|
|
1295
|
-
|
|
1296
|
-
void Clear();
|
|
1297
|
-
|
|
1298
|
-
Array<uint8_t> data;
|
|
1299
|
-
uint16_t epoch = 0;
|
|
1300
|
-
bool is_ccs = false;
|
|
1301
|
-
};
|
|
1302
|
-
|
|
1303
1450
|
// dtls_clear_outgoing_messages releases all buffered outgoing messages.
|
|
1304
1451
|
void dtls_clear_outgoing_messages(SSL *ssl);
|
|
1305
1452
|
|
|
1453
|
+
// dtls_clear_unused_write_epochs releases any write epochs that are no longer
|
|
1454
|
+
// needed.
|
|
1455
|
+
void dtls_clear_unused_write_epochs(SSL *ssl);
|
|
1456
|
+
|
|
1306
1457
|
|
|
1307
1458
|
// Callbacks.
|
|
1308
1459
|
|
|
@@ -1329,11 +1480,9 @@ class SSLBuffer {
|
|
|
1329
1480
|
bool empty() const { return size_ == 0; }
|
|
1330
1481
|
size_t cap() const { return cap_; }
|
|
1331
1482
|
|
|
1332
|
-
Span<uint8_t> span() { return
|
|
1483
|
+
Span<uint8_t> span() { return Span(data(), size()); }
|
|
1333
1484
|
|
|
1334
|
-
Span<uint8_t> remaining() {
|
|
1335
|
-
return MakeSpan(data() + size(), cap() - size());
|
|
1336
|
-
}
|
|
1485
|
+
Span<uint8_t> remaining() { return Span(data() + size(), cap() - size()); }
|
|
1337
1486
|
|
|
1338
1487
|
// Clear releases the buffer.
|
|
1339
1488
|
void Clear();
|
|
@@ -1368,9 +1517,6 @@ class SSLBuffer {
|
|
|
1368
1517
|
uint16_t cap_ = 0;
|
|
1369
1518
|
// inline_buf_ is a static buffer for short reads.
|
|
1370
1519
|
uint8_t inline_buf_[SSL3_RT_HEADER_LENGTH];
|
|
1371
|
-
// buf_allocated_ is true if |buf_| points to allocated data and must be freed
|
|
1372
|
-
// or false if it points into |inline_buf_|.
|
|
1373
|
-
bool buf_allocated_ = false;
|
|
1374
1520
|
};
|
|
1375
1521
|
|
|
1376
1522
|
// ssl_read_buffer_extend_to extends the read buffer to the desired length. For
|
|
@@ -1425,32 +1571,51 @@ enum ssl_key_usage_t {
|
|
|
1425
1571
|
OPENSSL_EXPORT bool ssl_cert_check_key_usage(const CBS *in,
|
|
1426
1572
|
enum ssl_key_usage_t bit);
|
|
1427
1573
|
|
|
1574
|
+
// ssl_cert_extract_issuer parses the DER-encoded, X.509 certificate in |in|
|
|
1575
|
+
// and extracts the issuer. On success it returns true and the DER encoded
|
|
1576
|
+
// issuer is in |out_dn|, otherwise it returns false.
|
|
1577
|
+
OPENSSL_EXPORT bool ssl_cert_extract_issuer(const CBS *in, CBS *out_dn);
|
|
1578
|
+
|
|
1579
|
+
// ssl_cert_matches_issuer parses the DER-encoded, X.509 certificate in |in|
|
|
1580
|
+
// and returns true if its issuer is an exact match for the DER encoded
|
|
1581
|
+
// distinguished name in |dn|
|
|
1582
|
+
bool ssl_cert_matches_issuer(const CBS *in, const CBS *dn);
|
|
1583
|
+
|
|
1428
1584
|
// ssl_cert_parse_pubkey extracts the public key from the DER-encoded, X.509
|
|
1429
1585
|
// certificate in |in|. It returns an allocated |EVP_PKEY| or else returns
|
|
1430
1586
|
// nullptr and pushes to the error queue.
|
|
1431
1587
|
UniquePtr<EVP_PKEY> ssl_cert_parse_pubkey(const CBS *in);
|
|
1432
1588
|
|
|
1433
|
-
//
|
|
1434
|
-
//
|
|
1435
|
-
// |CRYPTO_BUFFER| list and advances
|
|
1436
|
-
// sets |*out_alert| to an alert to
|
|
1437
|
-
|
|
1438
|
-
|
|
1439
|
-
|
|
1589
|
+
// SSL_parse_CA_list parses a CA list from |cbs| in the format used by a TLS
|
|
1590
|
+
// CertificateRequest message and Certificate Authorities extension. On success,
|
|
1591
|
+
// it returns a newly-allocated |CRYPTO_BUFFER| list and advances
|
|
1592
|
+
// |cbs|. Otherwise, it returns nullptr and sets |*out_alert| to an alert to
|
|
1593
|
+
// send to the peer.
|
|
1594
|
+
UniquePtr<STACK_OF(CRYPTO_BUFFER)> SSL_parse_CA_list(SSL *ssl,
|
|
1595
|
+
uint8_t *out_alert,
|
|
1596
|
+
CBS *cbs);
|
|
1440
1597
|
|
|
1441
|
-
// ssl_has_client_CAs returns there are configured CAs.
|
|
1598
|
+
// ssl_has_client_CAs returns whether there are configured CAs.
|
|
1442
1599
|
bool ssl_has_client_CAs(const SSL_CONFIG *cfg);
|
|
1443
1600
|
|
|
1444
1601
|
// ssl_add_client_CA_list adds the configured CA list to |cbb| in the format
|
|
1445
1602
|
// used by a TLS CertificateRequest message. It returns true on success and
|
|
1446
1603
|
// false on error.
|
|
1447
|
-
bool ssl_add_client_CA_list(SSL_HANDSHAKE *hs, CBB *cbb);
|
|
1604
|
+
bool ssl_add_client_CA_list(const SSL_HANDSHAKE *hs, CBB *cbb);
|
|
1605
|
+
|
|
1606
|
+
// ssl_has_CA_names returns whether there are configured CA names.
|
|
1607
|
+
bool ssl_has_CA_names(const SSL_CONFIG *cfg);
|
|
1608
|
+
|
|
1609
|
+
// ssl_add_CA_names adds the configured CA_names list to |cbb| in the format
|
|
1610
|
+
// used by a TLS Certificate Authorities extension. It returns true on success
|
|
1611
|
+
// and false on error.
|
|
1612
|
+
bool ssl_add_CA_names(const SSL_HANDSHAKE *hs, CBB *cbb);
|
|
1448
1613
|
|
|
1449
1614
|
// ssl_check_leaf_certificate returns one if |pkey| and |leaf| are suitable as
|
|
1450
1615
|
// a server's leaf certificate for |hs|. Otherwise, it returns zero and pushes
|
|
1451
1616
|
// an error on the error queue.
|
|
1452
1617
|
bool ssl_check_leaf_certificate(SSL_HANDSHAKE *hs, EVP_PKEY *pkey,
|
|
1453
|
-
|
|
1618
|
+
const CRYPTO_BUFFER *leaf);
|
|
1454
1619
|
|
|
1455
1620
|
|
|
1456
1621
|
// TLS 1.3 key derivation.
|
|
@@ -1500,9 +1665,9 @@ bool tls13_derive_resumption_secret(SSL_HANDSHAKE *hs);
|
|
|
1500
1665
|
|
|
1501
1666
|
// tls13_export_keying_material provides an exporter interface to use the
|
|
1502
1667
|
// |exporter_secret|.
|
|
1503
|
-
bool tls13_export_keying_material(SSL *ssl, Span<uint8_t> out,
|
|
1668
|
+
bool tls13_export_keying_material(const SSL *ssl, Span<uint8_t> out,
|
|
1504
1669
|
Span<const uint8_t> secret,
|
|
1505
|
-
|
|
1670
|
+
std::string_view label,
|
|
1506
1671
|
Span<const uint8_t> context);
|
|
1507
1672
|
|
|
1508
1673
|
// tls13_finished_mac calculates the MAC of the handshake transcript to verify
|
|
@@ -1666,6 +1831,8 @@ bool ssl_encrypt_client_hello(SSL_HANDSHAKE *hs, Span<const uint8_t> enc);
|
|
|
1666
1831
|
enum class SSLCredentialType {
|
|
1667
1832
|
kX509,
|
|
1668
1833
|
kDelegated,
|
|
1834
|
+
kSPAKE2PlusV1Client,
|
|
1835
|
+
kSPAKE2PlusV1Server,
|
|
1669
1836
|
};
|
|
1670
1837
|
|
|
1671
1838
|
BSSL_NAMESPACE_END
|
|
@@ -1677,7 +1844,7 @@ struct ssl_credential_st : public bssl::RefCounted<ssl_credential_st> {
|
|
|
1677
1844
|
ssl_credential_st &operator=(const ssl_credential_st &) = delete;
|
|
1678
1845
|
|
|
1679
1846
|
// Dup returns a copy of the credential, or nullptr on error. The |ex_data|
|
|
1680
|
-
// values are not copied. This is only used on the
|
|
1847
|
+
// values are not copied. This is only used on the legacy credential, whose
|
|
1681
1848
|
// |ex_data| is inaccessible.
|
|
1682
1849
|
bssl::UniquePtr<SSL_CREDENTIAL> Dup() const;
|
|
1683
1850
|
|
|
@@ -1711,6 +1878,10 @@ struct ssl_credential_st : public bssl::RefCounted<ssl_credential_st> {
|
|
|
1711
1878
|
// returns one on success and zero on error.
|
|
1712
1879
|
bool AppendIntermediateCert(bssl::UniquePtr<CRYPTO_BUFFER> cert);
|
|
1713
1880
|
|
|
1881
|
+
// ChainContainsIssuer returns true if |dn| is a byte for byte match with the
|
|
1882
|
+
// issuer of any certificate in |chain|, false otherwise.
|
|
1883
|
+
bool ChainContainsIssuer(bssl::Span<const uint8_t> dn) const;
|
|
1884
|
+
|
|
1714
1885
|
// type is the credential type and determines which other fields apply.
|
|
1715
1886
|
bssl::SSLCredentialType type;
|
|
1716
1887
|
|
|
@@ -1756,8 +1927,40 @@ struct ssl_credential_st : public bssl::RefCounted<ssl_credential_st> {
|
|
|
1756
1927
|
// OCSP response to be sent to the client, if requested.
|
|
1757
1928
|
bssl::UniquePtr<CRYPTO_BUFFER> ocsp_response;
|
|
1758
1929
|
|
|
1930
|
+
// SPAKE2+-specific information.
|
|
1931
|
+
bssl::Array<uint8_t> pake_context;
|
|
1932
|
+
bssl::Array<uint8_t> client_identity;
|
|
1933
|
+
bssl::Array<uint8_t> server_identity;
|
|
1934
|
+
bssl::Array<uint8_t> password_verifier_w0;
|
|
1935
|
+
bssl::Array<uint8_t> password_verifier_w1; // server-only
|
|
1936
|
+
bssl::Array<uint8_t> registration_record; // client-only
|
|
1937
|
+
mutable std::atomic<uint32_t> pake_limit;
|
|
1938
|
+
|
|
1939
|
+
// Checks whether there are still permitted PAKE attempts remaining, without
|
|
1940
|
+
// changing the counter.
|
|
1941
|
+
bool HasPAKEAttempts() const;
|
|
1942
|
+
|
|
1943
|
+
// Atomically decrement |pake_limit|. Return true if successful and false if
|
|
1944
|
+
// |pake_limit| is already zero.
|
|
1945
|
+
bool ClaimPAKEAttempt() const;
|
|
1946
|
+
|
|
1947
|
+
// Atomically increment |pake_limit|. This must be paired with a
|
|
1948
|
+
// |ClaimPAKEAttempt| call.
|
|
1949
|
+
void RestorePAKEAttempt() const;
|
|
1950
|
+
|
|
1951
|
+
// trust_anchor_id, if non-empty, is the trust anchor ID for the root of the
|
|
1952
|
+
// chain in |chain|.
|
|
1953
|
+
bssl::Array<uint8_t> trust_anchor_id;
|
|
1954
|
+
|
|
1759
1955
|
CRYPTO_EX_DATA ex_data;
|
|
1760
1956
|
|
|
1957
|
+
// must_match_issuer is a flag indicating that this credential should be
|
|
1958
|
+
// considered only when it matches a peer request for a particular issuer via
|
|
1959
|
+
// a negotiation mechanism (such as the certificate_authorities extension).
|
|
1960
|
+
// This also implies that chain is a certificate path ending in a certificate
|
|
1961
|
+
// issued by the certificate with that trust anchor identifier.
|
|
1962
|
+
bool must_match_issuer = false;
|
|
1963
|
+
|
|
1761
1964
|
private:
|
|
1762
1965
|
friend RefCounted;
|
|
1763
1966
|
~ssl_credential_st();
|
|
@@ -1765,14 +1968,26 @@ struct ssl_credential_st : public bssl::RefCounted<ssl_credential_st> {
|
|
|
1765
1968
|
|
|
1766
1969
|
BSSL_NAMESPACE_BEGIN
|
|
1767
1970
|
|
|
1768
|
-
//
|
|
1769
|
-
// writes it to |*out| and returns true.
|
|
1770
|
-
// credential list may be empty, in which case
|
|
1771
|
-
//
|
|
1971
|
+
// ssl_get_full_credential_list computes |hs|'s full credential list, including
|
|
1972
|
+
// the legacy credential. On success, it writes it to |*out| and returns true.
|
|
1973
|
+
// Otherwise, it returns false. The credential list may be empty, in which case
|
|
1974
|
+
// this function will successfully output an empty array.
|
|
1975
|
+
//
|
|
1976
|
+
// This function should be called at most once during the handshake and is
|
|
1977
|
+
// intended to be used for certificate-based credentials. It runs the
|
|
1978
|
+
// auto-chaining logic as part of finishing the legacy credential. Other uses of
|
|
1979
|
+
// the credential list (e.g. PAKE credentials) should iterate over
|
|
1980
|
+
// |hs->config->cert->credentials|.
|
|
1772
1981
|
//
|
|
1773
1982
|
// The pointers in the result are only valid until |hs| is next mutated.
|
|
1774
|
-
bool
|
|
1983
|
+
bool ssl_get_full_credential_list(SSL_HANDSHAKE *hs,
|
|
1984
|
+
Array<SSL_CREDENTIAL *> *out);
|
|
1775
1985
|
|
|
1986
|
+
// ssl_credential_matches_requested_issuers returns true if |cred| is a
|
|
1987
|
+
// usable match for any requested issuers in |hs|, and false with an error
|
|
1988
|
+
// otherwise.
|
|
1989
|
+
bool ssl_credential_matches_requested_issuers(SSL_HANDSHAKE *hs,
|
|
1990
|
+
const SSL_CREDENTIAL *cred);
|
|
1776
1991
|
|
|
1777
1992
|
// Handshake functions.
|
|
1778
1993
|
|
|
@@ -1896,6 +2111,14 @@ struct SSL_HANDSHAKE_HINTS {
|
|
|
1896
2111
|
bool ignore_ticket = false;
|
|
1897
2112
|
};
|
|
1898
2113
|
|
|
2114
|
+
struct SSLPAKEShare {
|
|
2115
|
+
static constexpr bool kAllowUniquePtr = true;
|
|
2116
|
+
uint16_t named_pake;
|
|
2117
|
+
Array<uint8_t> client_identity;
|
|
2118
|
+
Array<uint8_t> server_identity;
|
|
2119
|
+
Array<uint8_t> pake_message;
|
|
2120
|
+
};
|
|
2121
|
+
|
|
1899
2122
|
struct SSL_HANDSHAKE {
|
|
1900
2123
|
explicit SSL_HANDSHAKE(SSL *ssl);
|
|
1901
2124
|
~SSL_HANDSHAKE();
|
|
@@ -1927,18 +2150,13 @@ struct SSL_HANDSHAKE {
|
|
|
1927
2150
|
// |SSL_OP_NO_*| and |SSL_CTX_set_max_proto_version| APIs.
|
|
1928
2151
|
uint16_t max_version = 0;
|
|
1929
2152
|
|
|
1930
|
-
|
|
1931
|
-
|
|
1932
|
-
uint8_t
|
|
1933
|
-
uint8_t
|
|
1934
|
-
uint8_t
|
|
1935
|
-
uint8_t
|
|
1936
|
-
uint8_t
|
|
1937
|
-
uint8_t server_traffic_secret_0_[SSL_MAX_MD_SIZE] = {0};
|
|
1938
|
-
uint8_t expected_client_finished_[SSL_MAX_MD_SIZE] = {0};
|
|
1939
|
-
|
|
1940
|
-
public:
|
|
1941
|
-
void ResizeSecrets(size_t hash_len);
|
|
2153
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> secret;
|
|
2154
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> early_traffic_secret;
|
|
2155
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> client_handshake_secret;
|
|
2156
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> server_handshake_secret;
|
|
2157
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> client_traffic_secret_0;
|
|
2158
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> server_traffic_secret_0;
|
|
2159
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> expected_client_finished;
|
|
1942
2160
|
|
|
1943
2161
|
// GetClientHello, on the server, returns either the normal ClientHello
|
|
1944
2162
|
// message or the ClientHelloInner if it has been serialized to
|
|
@@ -1951,29 +2169,6 @@ struct SSL_HANDSHAKE {
|
|
|
1951
2169
|
// SSL_HANDSHAKE.
|
|
1952
2170
|
bool GetClientHello(SSLMessage *out_msg, SSL_CLIENT_HELLO *out_client_hello);
|
|
1953
2171
|
|
|
1954
|
-
Span<uint8_t> secret() { return MakeSpan(secret_, hash_len_); }
|
|
1955
|
-
Span<const uint8_t> secret() const {
|
|
1956
|
-
return MakeConstSpan(secret_, hash_len_);
|
|
1957
|
-
}
|
|
1958
|
-
Span<uint8_t> early_traffic_secret() {
|
|
1959
|
-
return MakeSpan(early_traffic_secret_, hash_len_);
|
|
1960
|
-
}
|
|
1961
|
-
Span<uint8_t> client_handshake_secret() {
|
|
1962
|
-
return MakeSpan(client_handshake_secret_, hash_len_);
|
|
1963
|
-
}
|
|
1964
|
-
Span<uint8_t> server_handshake_secret() {
|
|
1965
|
-
return MakeSpan(server_handshake_secret_, hash_len_);
|
|
1966
|
-
}
|
|
1967
|
-
Span<uint8_t> client_traffic_secret_0() {
|
|
1968
|
-
return MakeSpan(client_traffic_secret_0_, hash_len_);
|
|
1969
|
-
}
|
|
1970
|
-
Span<uint8_t> server_traffic_secret_0() {
|
|
1971
|
-
return MakeSpan(server_traffic_secret_0_, hash_len_);
|
|
1972
|
-
}
|
|
1973
|
-
Span<uint8_t> expected_client_finished() {
|
|
1974
|
-
return MakeSpan(expected_client_finished_, hash_len_);
|
|
1975
|
-
}
|
|
1976
|
-
|
|
1977
2172
|
union {
|
|
1978
2173
|
// sent is a bitset where the bits correspond to elements of kExtensions
|
|
1979
2174
|
// in extensions.cc. Each bit is set if that extension was sent in a
|
|
@@ -2014,7 +2209,8 @@ struct SSL_HANDSHAKE {
|
|
|
2014
2209
|
|
|
2015
2210
|
// dtls_cookie is the value of the cookie in DTLS HelloVerifyRequest. If
|
|
2016
2211
|
// empty, either none was received or HelloVerifyRequest contained an empty
|
|
2017
|
-
// cookie.
|
|
2212
|
+
// cookie. Check the received_hello_verify_request field to distinguish an
|
|
2213
|
+
// empty cookie from no HelloVerifyRequest message being received.
|
|
2018
2214
|
Array<uint8_t> dtls_cookie;
|
|
2019
2215
|
|
|
2020
2216
|
// ech_client_outer contains the outer ECH extension to send in the
|
|
@@ -2078,10 +2274,20 @@ struct SSL_HANDSHAKE {
|
|
|
2078
2274
|
// server when using a TLS 1.2 PSK key exchange.
|
|
2079
2275
|
UniquePtr<char> peer_psk_identity_hint;
|
|
2080
2276
|
|
|
2081
|
-
// ca_names
|
|
2082
|
-
// CertificateRequest message
|
|
2277
|
+
// ca_names contains the list of CAs received via the Certificate Authorities
|
|
2278
|
+
// extension in our peer's CertificateRequest or ClientHello message
|
|
2083
2279
|
UniquePtr<STACK_OF(CRYPTO_BUFFER)> ca_names;
|
|
2084
2280
|
|
|
2281
|
+
// peer_requested_trust_anchors, if not nullopt, contains the trust anchor IDs
|
|
2282
|
+
// (possibly none) the peer requested in ClientHello or CertificateRequest. If
|
|
2283
|
+
// nullopt, the peer did not send the extension.
|
|
2284
|
+
std::optional<Array<uint8_t>> peer_requested_trust_anchors;
|
|
2285
|
+
|
|
2286
|
+
// peer_available_trust_anchors, if not empty, is the list of trust anchor IDs
|
|
2287
|
+
// the peer reported as available in EncryptedExtensions. This is only sent by
|
|
2288
|
+
// servers to clients.
|
|
2289
|
+
Array<uint8_t> peer_available_trust_anchors;
|
|
2290
|
+
|
|
2085
2291
|
// cached_x509_ca_names contains a cache of parsed versions of the elements of
|
|
2086
2292
|
// |ca_names|. This pointer is left non-owning so only
|
|
2087
2293
|
// |ssl_crypto_x509_method| needs to link against crypto/x509.
|
|
@@ -2181,6 +2387,10 @@ struct SSL_HANDSHAKE {
|
|
|
2181
2387
|
// the handshake.
|
|
2182
2388
|
bool can_early_write : 1;
|
|
2183
2389
|
|
|
2390
|
+
// is_early_version is true if the protocol version configured is not
|
|
2391
|
+
// necessarily the final version and is just the predicted 0-RTT version.
|
|
2392
|
+
bool is_early_version : 1;
|
|
2393
|
+
|
|
2184
2394
|
// next_proto_neg_seen is one of NPN was negotiated.
|
|
2185
2395
|
bool next_proto_neg_seen : 1;
|
|
2186
2396
|
|
|
@@ -2222,6 +2432,18 @@ struct SSL_HANDSHAKE {
|
|
|
2222
2432
|
// handshake.
|
|
2223
2433
|
bool channel_id_negotiated : 1;
|
|
2224
2434
|
|
|
2435
|
+
// received_hello_verify_request is true if we received a HelloVerifyRequest
|
|
2436
|
+
// message from the server.
|
|
2437
|
+
bool received_hello_verify_request : 1;
|
|
2438
|
+
|
|
2439
|
+
// matched_peer_trust_anchor indicates that we have matched a trust anchor
|
|
2440
|
+
// the peer requested in the trust anchors extension.
|
|
2441
|
+
bool matched_peer_trust_anchor : 1;
|
|
2442
|
+
|
|
2443
|
+
// peer_matched_trust_anchor is true if the peer indicated a match with one of
|
|
2444
|
+
// our requested trust anchors.
|
|
2445
|
+
bool peer_matched_trust_anchor : 1;
|
|
2446
|
+
|
|
2225
2447
|
// client_version is the value sent or received in the ClientHello version.
|
|
2226
2448
|
uint16_t client_version = 0;
|
|
2227
2449
|
|
|
@@ -2241,11 +2463,22 @@ struct SSL_HANDSHAKE {
|
|
|
2241
2463
|
uint8_t ech_config_id = 0;
|
|
2242
2464
|
|
|
2243
2465
|
// session_id is the session ID in the ClientHello.
|
|
2244
|
-
uint8_t
|
|
2245
|
-
uint8_t session_id_len = 0;
|
|
2466
|
+
InplaceVector<uint8_t, SSL_MAX_SSL_SESSION_ID_LENGTH> session_id;
|
|
2246
2467
|
|
|
2247
2468
|
// grease_seed is the entropy for GREASE values.
|
|
2248
2469
|
uint8_t grease_seed[ssl_grease_last_index + 1] = {0};
|
|
2470
|
+
|
|
2471
|
+
// pake_share is the PAKE message received over the wire, if any.
|
|
2472
|
+
UniquePtr<SSLPAKEShare> pake_share;
|
|
2473
|
+
|
|
2474
|
+
// pake_share_bytes are the bytes of the PAKEShare to send, if any.
|
|
2475
|
+
Array<uint8_t> pake_share_bytes;
|
|
2476
|
+
|
|
2477
|
+
// pake_prover is the PAKE context for a client.
|
|
2478
|
+
UniquePtr<spake2plus::Prover> pake_prover;
|
|
2479
|
+
|
|
2480
|
+
// pake_verifier is the PAKE context for a server.
|
|
2481
|
+
UniquePtr<spake2plus::Verifier> pake_verifier;
|
|
2249
2482
|
};
|
|
2250
2483
|
|
|
2251
2484
|
// kMaxTickets is the maximum number of tickets to send immediately after the
|
|
@@ -2278,10 +2511,9 @@ const char *ssl_server_handshake_state(SSL_HANDSHAKE *hs);
|
|
|
2278
2511
|
const char *tls13_client_handshake_state(SSL_HANDSHAKE *hs);
|
|
2279
2512
|
const char *tls13_server_handshake_state(SSL_HANDSHAKE *hs);
|
|
2280
2513
|
|
|
2281
|
-
// tls13_add_key_update queues a KeyUpdate message on |ssl|.
|
|
2282
|
-
//
|
|
2283
|
-
|
|
2284
|
-
bool tls13_add_key_update(SSL *ssl, int update_requested);
|
|
2514
|
+
// tls13_add_key_update queues a KeyUpdate message on |ssl|. |request_type| must
|
|
2515
|
+
// be one of |SSL_KEY_UPDATE_REQUESTED| or |SSL_KEY_UPDATE_NOT_REQUESTED|.
|
|
2516
|
+
bool tls13_add_key_update(SSL *ssl, int request_type);
|
|
2285
2517
|
|
|
2286
2518
|
// tls13_post_handshake processes a post-handshake message. It returns true on
|
|
2287
2519
|
// success and false on failure.
|
|
@@ -2319,6 +2551,10 @@ bool ssl_setup_extension_permutation(SSL_HANDSHAKE *hs);
|
|
|
2319
2551
|
// a single key share of the specified group.
|
|
2320
2552
|
bool ssl_setup_key_shares(SSL_HANDSHAKE *hs, uint16_t override_group_id);
|
|
2321
2553
|
|
|
2554
|
+
// ssl_setup_pake_shares computes the client PAKE shares and saves them in |hs|.
|
|
2555
|
+
// It returns true on success and false on failure.
|
|
2556
|
+
bool ssl_setup_pake_shares(SSL_HANDSHAKE *hs);
|
|
2557
|
+
|
|
2322
2558
|
bool ssl_ext_key_share_parse_serverhello(SSL_HANDSHAKE *hs,
|
|
2323
2559
|
Array<uint8_t> *out_secret,
|
|
2324
2560
|
uint8_t *out_alert, CBS *contents);
|
|
@@ -2326,8 +2562,13 @@ bool ssl_ext_key_share_parse_clienthello(SSL_HANDSHAKE *hs, bool *out_found,
|
|
|
2326
2562
|
Span<const uint8_t> *out_peer_key,
|
|
2327
2563
|
uint8_t *out_alert,
|
|
2328
2564
|
const SSL_CLIENT_HELLO *client_hello);
|
|
2565
|
+
bool ssl_ext_pake_add_serverhello(SSL_HANDSHAKE *hs, CBB *out);
|
|
2329
2566
|
bool ssl_ext_key_share_add_serverhello(SSL_HANDSHAKE *hs, CBB *out);
|
|
2330
2567
|
|
|
2568
|
+
bool ssl_ext_pake_parse_serverhello(SSL_HANDSHAKE *hs,
|
|
2569
|
+
Array<uint8_t> *out_secret,
|
|
2570
|
+
uint8_t *out_alert, CBS *contents);
|
|
2571
|
+
|
|
2331
2572
|
bool ssl_ext_pre_shared_key_parse_serverhello(SSL_HANDSHAKE *hs,
|
|
2332
2573
|
uint8_t *out_alert,
|
|
2333
2574
|
CBS *contents);
|
|
@@ -2415,6 +2656,10 @@ bool ssl_get_local_application_settings(const SSL_HANDSHAKE *hs,
|
|
|
2415
2656
|
bool ssl_negotiate_alps(SSL_HANDSHAKE *hs, uint8_t *out_alert,
|
|
2416
2657
|
const SSL_CLIENT_HELLO *client_hello);
|
|
2417
2658
|
|
|
2659
|
+
// ssl_is_valid_trust_anchor_list returns whether |in| is a valid trust anchor
|
|
2660
|
+
// identifiers list.
|
|
2661
|
+
bool ssl_is_valid_trust_anchor_list(Span<const uint8_t> in);
|
|
2662
|
+
|
|
2418
2663
|
struct SSLExtension {
|
|
2419
2664
|
SSLExtension(uint16_t type_arg, bool allowed_arg = true)
|
|
2420
2665
|
: type(type_arg), allowed(allowed_arg), present(false) {
|
|
@@ -2462,6 +2707,43 @@ const SSL_SESSION *ssl_handshake_session(const SSL_HANDSHAKE *hs);
|
|
|
2462
2707
|
void ssl_done_writing_client_hello(SSL_HANDSHAKE *hs);
|
|
2463
2708
|
|
|
2464
2709
|
|
|
2710
|
+
// Flags.
|
|
2711
|
+
|
|
2712
|
+
// SSLFlags is a bitmask of flags that can be encoded with the TLS flags
|
|
2713
|
+
// extension, draft-ietf-tls-tlsflags-14. For now, our in-memory representation
|
|
2714
|
+
// matches the wire representation, and we only support flags up to 32. If
|
|
2715
|
+
// higher values are needed, we can increase the size of the bitmask, or only
|
|
2716
|
+
// store the flags we implement in the bitmask.
|
|
2717
|
+
using SSLFlags = uint32_t;
|
|
2718
|
+
inline constexpr SSLFlags kSSLFlagResumptionAcrossNames = 1 << 8;
|
|
2719
|
+
|
|
2720
|
+
// ssl_add_flags_extension encodes a tls_flags extension (including the header)
|
|
2721
|
+
// containing the flags in |flags|. It returns true on success and false on
|
|
2722
|
+
// error. If |flags| is zero (no flags set), it returns true without adding
|
|
2723
|
+
// anything to |cbb|.
|
|
2724
|
+
bool ssl_add_flags_extension(CBB *cbb, SSLFlags flags);
|
|
2725
|
+
|
|
2726
|
+
// ssl_parse_flags_extension_request parses tls_flags extension value (excluding
|
|
2727
|
+
// the header) from |cbs|, for a request message (ClientHello,
|
|
2728
|
+
// CertificateRequest, or NewSessionTicket). Unrecognized flags will be ignored.
|
|
2729
|
+
//
|
|
2730
|
+
// On success, it sets |*out| to the parsed flags and returns true. On error, it
|
|
2731
|
+
// sets |*out_alert| to a TLS alert and returns false.
|
|
2732
|
+
bool ssl_parse_flags_extension_request(const CBS *cbs, SSLFlags *out,
|
|
2733
|
+
uint8_t *out_alert);
|
|
2734
|
+
|
|
2735
|
+
// ssl_parse_flags_extension_response parses tls_flags extension value
|
|
2736
|
+
// (excluding the header) from |cbs|, for a response message (HelloRetryRequest,
|
|
2737
|
+
// ServerHello, EncryptedExtensions, or Certificate). Only the flags in
|
|
2738
|
+
// |allowed_flags| may be present.
|
|
2739
|
+
//
|
|
2740
|
+
// On success, it sets |*out| to the parsed flags and returns true. On error, it
|
|
2741
|
+
// sets |*out_alert| to a TLS alert and returns false.
|
|
2742
|
+
bool ssl_parse_flags_extension_response(const CBS *cbs, SSLFlags *out,
|
|
2743
|
+
uint8_t *out_alert,
|
|
2744
|
+
SSLFlags allowed_flags);
|
|
2745
|
+
|
|
2746
|
+
|
|
2465
2747
|
// SSLKEYLOGFILE functions.
|
|
2466
2748
|
|
|
2467
2749
|
// ssl_log_secret logs |secret| with label |label|, if logging is enabled for
|
|
@@ -2472,12 +2754,6 @@ bool ssl_log_secret(const SSL *ssl, const char *label,
|
|
|
2472
2754
|
|
|
2473
2755
|
// ClientHello functions.
|
|
2474
2756
|
|
|
2475
|
-
// ssl_client_hello_init parses |body| as a ClientHello message, excluding the
|
|
2476
|
-
// message header, and writes the result to |*out|. It returns true on success
|
|
2477
|
-
// and false on error. This function is exported for testing.
|
|
2478
|
-
OPENSSL_EXPORT bool ssl_client_hello_init(const SSL *ssl, SSL_CLIENT_HELLO *out,
|
|
2479
|
-
Span<const uint8_t> body);
|
|
2480
|
-
|
|
2481
2757
|
bool ssl_parse_client_hello_with_trailing_data(const SSL *ssl, CBS *cbs,
|
|
2482
2758
|
SSL_CLIENT_HELLO *out);
|
|
2483
2759
|
|
|
@@ -2542,32 +2818,32 @@ struct CERT {
|
|
|
2542
2818
|
explicit CERT(const SSL_X509_METHOD *x509_method);
|
|
2543
2819
|
~CERT();
|
|
2544
2820
|
|
|
2545
|
-
bool is_valid() const { return
|
|
2821
|
+
bool is_valid() const { return legacy_credential != nullptr; }
|
|
2546
2822
|
|
|
2547
2823
|
// credentials is the list of credentials to select between. Elements of this
|
|
2548
2824
|
// array immutable.
|
|
2549
|
-
|
|
2825
|
+
Vector<UniquePtr<SSL_CREDENTIAL>> credentials;
|
|
2550
2826
|
|
|
2551
|
-
//
|
|
2827
|
+
// legacy_credential is the credential configured by the legacy
|
|
2552
2828
|
// non-credential-based APIs. If IsComplete() returns true, it is appended to
|
|
2553
2829
|
// the list of credentials.
|
|
2554
|
-
UniquePtr<SSL_CREDENTIAL>
|
|
2830
|
+
UniquePtr<SSL_CREDENTIAL> legacy_credential;
|
|
2555
2831
|
|
|
2556
2832
|
// x509_method contains pointers to functions that might deal with |X509|
|
|
2557
2833
|
// compatibility, or might be a no-op, depending on the application.
|
|
2558
2834
|
const SSL_X509_METHOD *x509_method = nullptr;
|
|
2559
2835
|
|
|
2560
|
-
// x509_chain may contain a parsed copy of |chain[1..]| from the
|
|
2836
|
+
// x509_chain may contain a parsed copy of |chain[1..]| from the legacy
|
|
2561
2837
|
// credential. This is only used as a cache in order to implement “get0”
|
|
2562
2838
|
// functions that return a non-owning pointer to the certificate chain.
|
|
2563
2839
|
STACK_OF(X509) *x509_chain = nullptr;
|
|
2564
2840
|
|
|
2565
2841
|
// x509_leaf may contain a parsed copy of the first element of |chain| from
|
|
2566
|
-
// the
|
|
2842
|
+
// the legacy credential. This is only used as a cache in order to implement
|
|
2567
2843
|
// “get0” functions that return a non-owning pointer to the certificate chain.
|
|
2568
2844
|
X509 *x509_leaf = nullptr;
|
|
2569
2845
|
|
|
2570
|
-
// x509_stash contains the last |X509| object append to the
|
|
2846
|
+
// x509_stash contains the last |X509| object append to the legacy
|
|
2571
2847
|
// credential's chain. This is a workaround for some third-party code that
|
|
2572
2848
|
// continue to use an |X509| object even after passing ownership with an
|
|
2573
2849
|
// “add0” function.
|
|
@@ -2588,8 +2864,7 @@ struct CERT {
|
|
|
2588
2864
|
|
|
2589
2865
|
// sid_ctx partitions the session space within a shared session cache or
|
|
2590
2866
|
// ticket key. Only sessions with a matching value will be accepted.
|
|
2591
|
-
uint8_t
|
|
2592
|
-
uint8_t sid_ctx[SSL_MAX_SID_CTX_LENGTH] = {0};
|
|
2867
|
+
InplaceVector<uint8_t, SSL_MAX_SID_CTX_LENGTH> sid_ctx;
|
|
2593
2868
|
};
|
|
2594
2869
|
|
|
2595
2870
|
// |SSL_PROTOCOL_METHOD| abstracts between TLS and DTLS.
|
|
@@ -2638,25 +2913,37 @@ struct SSL_PROTOCOL_METHOD {
|
|
|
2638
2913
|
// add_change_cipher_spec adds a ChangeCipherSpec record to the pending
|
|
2639
2914
|
// flight. It returns true on success and false on error.
|
|
2640
2915
|
bool (*add_change_cipher_spec)(SSL *ssl);
|
|
2641
|
-
//
|
|
2642
|
-
//
|
|
2643
|
-
|
|
2916
|
+
// finish_flight marks the pending flight as finished and ready to send.
|
|
2917
|
+
// |flush| must be called to write it.
|
|
2918
|
+
void (*finish_flight)(SSL *ssl);
|
|
2919
|
+
// schedule_ack schedules a DTLS 1.3 ACK to be sent, without an ACK delay.
|
|
2920
|
+
// |flush| must be called to write it.
|
|
2921
|
+
void (*schedule_ack)(SSL *ssl);
|
|
2922
|
+
// flush writes any scheduled data to the transport. It returns one on success
|
|
2923
|
+
// and <= 0 on error.
|
|
2924
|
+
int (*flush)(SSL *ssl);
|
|
2644
2925
|
// on_handshake_complete is called when the handshake is complete.
|
|
2645
2926
|
void (*on_handshake_complete)(SSL *ssl);
|
|
2646
2927
|
// set_read_state sets |ssl|'s read cipher state and level to |aead_ctx| and
|
|
2647
|
-
// |level|. In QUIC, |aead_ctx| is a placeholder object
|
|
2648
|
-
// is the original secret. This function returns true
|
|
2649
|
-
// error.
|
|
2928
|
+
// |level|. In QUIC, |aead_ctx| is a placeholder object. In TLS 1.3,
|
|
2929
|
+
// |traffic_secret| is the original traffic secret. This function returns true
|
|
2930
|
+
// on success and false on error.
|
|
2931
|
+
//
|
|
2932
|
+
// TODO(crbug.com/371998381): Take the traffic secrets as input and let the
|
|
2933
|
+
// function create the SSLAEADContext.
|
|
2650
2934
|
bool (*set_read_state)(SSL *ssl, ssl_encryption_level_t level,
|
|
2651
2935
|
UniquePtr<SSLAEADContext> aead_ctx,
|
|
2652
|
-
Span<const uint8_t>
|
|
2936
|
+
Span<const uint8_t> traffic_secret);
|
|
2653
2937
|
// set_write_state sets |ssl|'s write cipher state and level to |aead_ctx| and
|
|
2654
|
-
// |level|. In QUIC, |aead_ctx| is a placeholder object
|
|
2655
|
-
// is the original secret. This function returns true
|
|
2656
|
-
// error.
|
|
2938
|
+
// |level|. In QUIC, |aead_ctx| is a placeholder object In TLS 1.3,
|
|
2939
|
+
// |traffic_secret| is the original traffic secret. This function returns true
|
|
2940
|
+
// on success and false on error.
|
|
2941
|
+
//
|
|
2942
|
+
// TODO(crbug.com/371998381): Take the traffic secrets as input and let the
|
|
2943
|
+
// function create the SSLAEADContext.
|
|
2657
2944
|
bool (*set_write_state)(SSL *ssl, ssl_encryption_level_t level,
|
|
2658
2945
|
UniquePtr<SSLAEADContext> aead_ctx,
|
|
2659
|
-
Span<const uint8_t>
|
|
2946
|
+
Span<const uint8_t> traffic_secret);
|
|
2660
2947
|
};
|
|
2661
2948
|
|
|
2662
2949
|
// The following wrappers call |open_*| but handle |read_shutdown| correctly.
|
|
@@ -2682,10 +2969,10 @@ ssl_open_record_t ssl_open_app_data(SSL *ssl, Span<uint8_t> *out,
|
|
|
2682
2969
|
Span<uint8_t> in);
|
|
2683
2970
|
|
|
2684
2971
|
struct SSL_X509_METHOD {
|
|
2685
|
-
//
|
|
2686
|
-
//
|
|
2687
|
-
//
|
|
2688
|
-
bool (*
|
|
2972
|
+
// check_CA_list returns one if |names| is a good list of X.509 distinguished
|
|
2973
|
+
// names and zero otherwise. This is used to ensure that we can reject
|
|
2974
|
+
// unparsable values at handshake time when using crypto/x509.
|
|
2975
|
+
bool (*check_CA_list)(STACK_OF(CRYPTO_BUFFER) *names);
|
|
2689
2976
|
|
|
2690
2977
|
// cert_clear frees and NULLs all X509 certificate-related state.
|
|
2691
2978
|
void (*cert_clear)(CERT *cert);
|
|
@@ -2846,8 +3133,14 @@ struct SSL3_STATE {
|
|
|
2846
3133
|
// needs re-doing when in SSL_accept or SSL_connect
|
|
2847
3134
|
int rwstate = SSL_ERROR_NONE;
|
|
2848
3135
|
|
|
2849
|
-
enum ssl_encryption_level_t
|
|
2850
|
-
enum ssl_encryption_level_t
|
|
3136
|
+
enum ssl_encryption_level_t quic_read_level = ssl_encryption_initial;
|
|
3137
|
+
enum ssl_encryption_level_t quic_write_level = ssl_encryption_initial;
|
|
3138
|
+
|
|
3139
|
+
// version is the protocol version, or zero if the version has not yet been
|
|
3140
|
+
// set. In clients offering 0-RTT, this version will initially be set to the
|
|
3141
|
+
// early version, then switched to the final version. To distinguish these
|
|
3142
|
+
// cases, use |ssl_has_final_version|.
|
|
3143
|
+
uint16_t version = 0;
|
|
2851
3144
|
|
|
2852
3145
|
// early_data_skipped is the amount of early data that has been skipped by the
|
|
2853
3146
|
// record layer.
|
|
@@ -2870,10 +3163,6 @@ struct SSL3_STATE {
|
|
|
2870
3163
|
// messages when 0RTT is rejected.
|
|
2871
3164
|
bool skip_early_data : 1;
|
|
2872
3165
|
|
|
2873
|
-
// have_version is true if the connection's final version is known. Otherwise
|
|
2874
|
-
// the version has not been negotiated yet.
|
|
2875
|
-
bool have_version : 1;
|
|
2876
|
-
|
|
2877
3166
|
// v2_hello_done is true if the peer's V2ClientHello, if any, has been handled
|
|
2878
3167
|
// and future messages should use the record layer.
|
|
2879
3168
|
bool v2_hello_done : 1;
|
|
@@ -2899,8 +3188,10 @@ struct SSL3_STATE {
|
|
|
2899
3188
|
// Channel ID and the |channel_id| field is filled in.
|
|
2900
3189
|
bool channel_id_valid : 1;
|
|
2901
3190
|
|
|
2902
|
-
// key_update_pending is true if we
|
|
2903
|
-
//
|
|
3191
|
+
// key_update_pending is true if we are in the process of sending a KeyUpdate
|
|
3192
|
+
// message. As a DoS mitigation (and a requirement in DTLS), we never send
|
|
3193
|
+
// more than one KeyUpdate at once. In DTLS, this tracks whether there is an
|
|
3194
|
+
// unACKed KeyUpdate.
|
|
2904
3195
|
bool key_update_pending : 1;
|
|
2905
3196
|
|
|
2906
3197
|
// early_data_accepted is true if early data was accepted by the server.
|
|
@@ -2957,18 +3248,13 @@ struct SSL3_STATE {
|
|
|
2957
3248
|
// one.
|
|
2958
3249
|
UniquePtr<SSL_HANDSHAKE> hs;
|
|
2959
3250
|
|
|
2960
|
-
uint8_t
|
|
2961
|
-
uint8_t
|
|
2962
|
-
uint8_t
|
|
2963
|
-
uint8_t write_traffic_secret_len = 0;
|
|
2964
|
-
uint8_t read_traffic_secret_len = 0;
|
|
2965
|
-
uint8_t exporter_secret_len = 0;
|
|
3251
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> write_traffic_secret;
|
|
3252
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> read_traffic_secret;
|
|
3253
|
+
InplaceVector<uint8_t, SSL_MAX_MD_SIZE> exporter_secret;
|
|
2966
3254
|
|
|
2967
3255
|
// Connection binding to prevent renegotiation attacks
|
|
2968
|
-
uint8_t
|
|
2969
|
-
uint8_t
|
|
2970
|
-
uint8_t previous_server_finished_len = 0;
|
|
2971
|
-
uint8_t previous_server_finished[12] = {0};
|
|
3256
|
+
InplaceVector<uint8_t, 12> previous_client_finished;
|
|
3257
|
+
InplaceVector<uint8_t, 12> previous_server_finished;
|
|
2972
3258
|
|
|
2973
3259
|
uint8_t send_alert[2] = {0};
|
|
2974
3260
|
|
|
@@ -3031,9 +3317,47 @@ static_assert(DTLS1_RT_MAX_HEADER_LENGTH >= DTLS1_3_RECORD_HEADER_WRITE_LENGTH,
|
|
|
3031
3317
|
|
|
3032
3318
|
#define DTLS1_HM_HEADER_LENGTH 12
|
|
3033
3319
|
|
|
3034
|
-
|
|
3320
|
+
// A DTLSMessageBitmap maintains a list of bits which may be marked to indicate
|
|
3321
|
+
// a portion of a message was received or ACKed.
|
|
3322
|
+
class DTLSMessageBitmap {
|
|
3323
|
+
public:
|
|
3324
|
+
// A Range represents a range of bits from |start|, inclusive, to |end|,
|
|
3325
|
+
// exclusive.
|
|
3326
|
+
struct Range {
|
|
3327
|
+
size_t start = 0;
|
|
3328
|
+
size_t end = 0;
|
|
3329
|
+
|
|
3330
|
+
bool empty() const { return start == end; }
|
|
3331
|
+
size_t size() const { return end - start; }
|
|
3332
|
+
bool operator==(const Range &r) const {
|
|
3333
|
+
return start == r.start && end == r.end;
|
|
3334
|
+
}
|
|
3335
|
+
bool operator!=(const Range &r) const { return !(*this == r); }
|
|
3336
|
+
};
|
|
3337
|
+
|
|
3338
|
+
// Init initializes the structure with |num_bits| unmarked bits, from zero
|
|
3339
|
+
// to |num_bits - 1|.
|
|
3340
|
+
bool Init(size_t num_bits);
|
|
3341
|
+
|
|
3342
|
+
// MarkRange marks the bits from |start|, inclusive, to |end|, exclusive.
|
|
3343
|
+
void MarkRange(size_t start, size_t end);
|
|
3035
3344
|
|
|
3036
|
-
|
|
3345
|
+
// NextUnmarkedRange returns the next range of unmarked bits, starting from
|
|
3346
|
+
// |start|, inclusive. If all bits after |start| are marked, it returns an
|
|
3347
|
+
// empty range.
|
|
3348
|
+
Range NextUnmarkedRange(size_t start) const;
|
|
3349
|
+
|
|
3350
|
+
// IsComplete returns whether every bit in the bitmask has been marked.
|
|
3351
|
+
bool IsComplete() const { return bytes_.empty(); }
|
|
3352
|
+
|
|
3353
|
+
private:
|
|
3354
|
+
// bytes_ contains the unmarked bits. We maintain an invariant: if |bytes_| is
|
|
3355
|
+
// not empty, some bit is unset.
|
|
3356
|
+
Array<uint8_t> bytes_;
|
|
3357
|
+
// first_unmarked_byte_ is the index of first byte in |bytes_| that is not
|
|
3358
|
+
// 0xff. This is maintained to amortize checking if the message is complete.
|
|
3359
|
+
size_t first_unmarked_byte_ = 0;
|
|
3360
|
+
};
|
|
3037
3361
|
|
|
3038
3362
|
struct hm_header_st {
|
|
3039
3363
|
uint8_t type;
|
|
@@ -3043,28 +3367,47 @@ struct hm_header_st {
|
|
|
3043
3367
|
uint32_t frag_len;
|
|
3044
3368
|
};
|
|
3045
3369
|
|
|
3046
|
-
// An
|
|
3047
|
-
|
|
3370
|
+
// An DTLSIncomingMessage is an incoming DTLS message, possibly not yet
|
|
3371
|
+
// assembled.
|
|
3372
|
+
struct DTLSIncomingMessage {
|
|
3048
3373
|
static constexpr bool kAllowUniquePtr = true;
|
|
3049
3374
|
|
|
3050
|
-
|
|
3051
|
-
|
|
3052
|
-
|
|
3053
|
-
|
|
3054
|
-
|
|
3375
|
+
Span<uint8_t> msg() { return Span(data).subspan(DTLS1_HM_HEADER_LENGTH); }
|
|
3376
|
+
Span<const uint8_t> msg() const {
|
|
3377
|
+
return Span(data).subspan(DTLS1_HM_HEADER_LENGTH);
|
|
3378
|
+
}
|
|
3379
|
+
size_t msg_len() const { return msg().size(); }
|
|
3055
3380
|
|
|
3056
3381
|
// type is the type of the message.
|
|
3057
3382
|
uint8_t type = 0;
|
|
3058
3383
|
// seq is the sequence number of this message.
|
|
3059
3384
|
uint16_t seq = 0;
|
|
3060
|
-
//
|
|
3061
|
-
|
|
3062
|
-
|
|
3063
|
-
//
|
|
3064
|
-
|
|
3065
|
-
|
|
3066
|
-
|
|
3067
|
-
|
|
3385
|
+
// data contains the message, including the message header of length
|
|
3386
|
+
// |DTLS1_HM_HEADER_LENGTH|.
|
|
3387
|
+
Array<uint8_t> data;
|
|
3388
|
+
// reassembly tracks which parts of the message have been received.
|
|
3389
|
+
DTLSMessageBitmap reassembly;
|
|
3390
|
+
};
|
|
3391
|
+
|
|
3392
|
+
struct DTLSOutgoingMessage {
|
|
3393
|
+
size_t msg_len() const {
|
|
3394
|
+
assert(!is_ccs);
|
|
3395
|
+
assert(data.size() >= DTLS1_HM_HEADER_LENGTH);
|
|
3396
|
+
return data.size() - DTLS1_HM_HEADER_LENGTH;
|
|
3397
|
+
}
|
|
3398
|
+
|
|
3399
|
+
bool IsFullyAcked() const {
|
|
3400
|
+
// ACKs only exist in DTLS 1.3, which does not send ChangeCipherSpec.
|
|
3401
|
+
return !is_ccs && acked.IsComplete();
|
|
3402
|
+
}
|
|
3403
|
+
|
|
3404
|
+
Array<uint8_t> data;
|
|
3405
|
+
uint16_t epoch = 0;
|
|
3406
|
+
bool is_ccs = false;
|
|
3407
|
+
// acked tracks which bits of the message have been ACKed by the peer. If
|
|
3408
|
+
// |msg_len| is zero, it tracks one bit for whether the header has been
|
|
3409
|
+
// received.
|
|
3410
|
+
DTLSMessageBitmap acked;
|
|
3068
3411
|
};
|
|
3069
3412
|
|
|
3070
3413
|
struct OPENSSL_timeval {
|
|
@@ -3072,12 +3415,111 @@ struct OPENSSL_timeval {
|
|
|
3072
3415
|
uint32_t tv_usec;
|
|
3073
3416
|
};
|
|
3074
3417
|
|
|
3418
|
+
struct DTLSTimer {
|
|
3419
|
+
public:
|
|
3420
|
+
static constexpr uint64_t kNever = UINT64_MAX;
|
|
3421
|
+
|
|
3422
|
+
// StartMicroseconds schedules the timer to expire the specified number of
|
|
3423
|
+
// microseconds from |now|.
|
|
3424
|
+
void StartMicroseconds(OPENSSL_timeval now, uint64_t microseconds);
|
|
3425
|
+
|
|
3426
|
+
// Stop disables the timer.
|
|
3427
|
+
void Stop();
|
|
3428
|
+
|
|
3429
|
+
// IsExpired returns true if the timer was set and is expired at time |now|.
|
|
3430
|
+
bool IsExpired(OPENSSL_timeval now) const;
|
|
3431
|
+
|
|
3432
|
+
// IsSet returns true if the timer is scheduled or expired, and false if it is
|
|
3433
|
+
// stopped.
|
|
3434
|
+
bool IsSet() const;
|
|
3435
|
+
|
|
3436
|
+
// MicrosecondsRemaining returns the time remaining, in microseconds, at
|
|
3437
|
+
// |now|, or |kNever| if the timer is unset.
|
|
3438
|
+
uint64_t MicrosecondsRemaining(OPENSSL_timeval now) const;
|
|
3439
|
+
|
|
3440
|
+
private:
|
|
3441
|
+
// expire_time_ is the time when the timer expires, or zero if the timer is
|
|
3442
|
+
// unset.
|
|
3443
|
+
//
|
|
3444
|
+
// TODO(crbug.com/366284846): This is an extremely inconvenient time
|
|
3445
|
+
// representation. Switch libssl to something like a 64-bit count of
|
|
3446
|
+
// microseconds. While it's decidedly past 1970 now, zero is a less obviously
|
|
3447
|
+
// sound distinguished value for the monotonic clock, so maybe we should use a
|
|
3448
|
+
// different distinguished time, like |INT64_MAX| in the microseconds
|
|
3449
|
+
// representation.
|
|
3450
|
+
OPENSSL_timeval expire_time_ = {0, 0};
|
|
3451
|
+
};
|
|
3452
|
+
|
|
3453
|
+
// DTLS_MAX_EXTRA_WRITE_EPOCHS is the maximum number of additional write epochs
|
|
3454
|
+
// that DTLS may need to retain.
|
|
3455
|
+
//
|
|
3456
|
+
// The maximum is, as a DTLS 1.3 server, immediately after sending Finished. At
|
|
3457
|
+
// this point, the current epoch is the application write keys (epoch 3), but we
|
|
3458
|
+
// may have ServerHello (epoch 0) and EncryptedExtensions (epoch 1) to
|
|
3459
|
+
// retransmit. KeyUpdate does not increase this count. If the server were to
|
|
3460
|
+
// initiate KeyUpdate from this state, it would not apply the new epoch until
|
|
3461
|
+
// the client's ACKs have caught up. At that point, epochs 0 and 1 can be
|
|
3462
|
+
// discarded.
|
|
3463
|
+
#define DTLS_MAX_EXTRA_WRITE_EPOCHS 2
|
|
3464
|
+
|
|
3465
|
+
// DTLS_MAX_ACK_BUFFER is the maximum number of records worth of data we'll keep
|
|
3466
|
+
// track of with DTLS 1.3 ACKs. When we exceed this value, information about
|
|
3467
|
+
// stale records will be dropped. This will not break the connection but may
|
|
3468
|
+
// cause ACKs to perform worse and retransmit unnecessary information.
|
|
3469
|
+
#define DTLS_MAX_ACK_BUFFER 32
|
|
3470
|
+
|
|
3471
|
+
// A DTLSSentRecord records information about a record we sent. Each record
|
|
3472
|
+
// covers all bytes from |first_msg_start| (inclusive) of |first_msg| to
|
|
3473
|
+
// |last_msg_end| (exclusive) of |last_msg|. Messages are referenced by index
|
|
3474
|
+
// into |outgoing_messages|. |last_msg_end| may be |outgoing_messages.size()| if
|
|
3475
|
+
// |last_msg_end| is zero.
|
|
3476
|
+
//
|
|
3477
|
+
// When the message is empty, |first_msg_start| and |last_msg_end| are
|
|
3478
|
+
// maintained as if there is a single bit in the message representing the
|
|
3479
|
+
// header. See |acked| in DTLSOutgoingMessage.
|
|
3480
|
+
struct DTLSSentRecord {
|
|
3481
|
+
DTLSRecordNumber number;
|
|
3482
|
+
PackedSize<SSL_MAX_HANDSHAKE_FLIGHT> first_msg = 0;
|
|
3483
|
+
PackedSize<SSL_MAX_HANDSHAKE_FLIGHT> last_msg = 0;
|
|
3484
|
+
uint32_t first_msg_start = 0;
|
|
3485
|
+
uint32_t last_msg_end = 0;
|
|
3486
|
+
};
|
|
3487
|
+
|
|
3488
|
+
enum class QueuedKeyUpdate {
|
|
3489
|
+
kNone,
|
|
3490
|
+
kUpdateNotRequested,
|
|
3491
|
+
kUpdateRequested,
|
|
3492
|
+
};
|
|
3493
|
+
|
|
3494
|
+
// DTLS_PREV_READ_EPOCH_EXPIRE_SECONDS is how long to retain the previous read
|
|
3495
|
+
// epoch in DTLS 1.3. This value is set based on the following:
|
|
3496
|
+
//
|
|
3497
|
+
// - Section 4.2.1 of RFC 9147 recommends retaining past read epochs for the
|
|
3498
|
+
// default TCP MSL. This accommodates packet reordering with KeyUpdate.
|
|
3499
|
+
//
|
|
3500
|
+
// - Section 5.8.1 of RFC 9147 requires being capable of ACKing the client's
|
|
3501
|
+
// final flight for at least twice the default MSL. That requires retaining
|
|
3502
|
+
// epoch 2 after the handshake.
|
|
3503
|
+
//
|
|
3504
|
+
// - Section 4 of RFC 9293 defines the MSL to be two minutes.
|
|
3505
|
+
#define DTLS_PREV_READ_EPOCH_EXPIRE_SECONDS (4 * 60)
|
|
3506
|
+
|
|
3507
|
+
struct DTLSPrevReadEpoch {
|
|
3508
|
+
static constexpr bool kAllowUniquePtr = true;
|
|
3509
|
+
DTLSReadEpoch epoch;
|
|
3510
|
+
// expire is the expiration time of the read epoch, expressed as a POSIX
|
|
3511
|
+
// timestamp in seconds.
|
|
3512
|
+
uint64_t expire;
|
|
3513
|
+
};
|
|
3514
|
+
|
|
3075
3515
|
struct DTLS1_STATE {
|
|
3076
3516
|
static constexpr bool kAllowUniquePtr = true;
|
|
3077
3517
|
|
|
3078
3518
|
DTLS1_STATE();
|
|
3079
3519
|
~DTLS1_STATE();
|
|
3080
3520
|
|
|
3521
|
+
bool Init();
|
|
3522
|
+
|
|
3081
3523
|
// has_change_cipher_spec is true if we have received a ChangeCipherSpec from
|
|
3082
3524
|
// the peer in this epoch.
|
|
3083
3525
|
bool has_change_cipher_spec : 1;
|
|
@@ -3092,36 +3534,63 @@ struct DTLS1_STATE {
|
|
|
3092
3534
|
// peer sent the final flight.
|
|
3093
3535
|
bool flight_has_reply : 1;
|
|
3094
3536
|
|
|
3095
|
-
//
|
|
3096
|
-
//
|
|
3097
|
-
|
|
3098
|
-
|
|
3537
|
+
// handshake_write_overflow and handshake_read_overflow are true if
|
|
3538
|
+
// handshake_write_seq and handshake_read_seq, respectively have overflowed.
|
|
3539
|
+
bool handshake_write_overflow : 1;
|
|
3540
|
+
bool handshake_read_overflow : 1;
|
|
3541
|
+
|
|
3542
|
+
// sending_flight and sending_ack are true if we are in the process of sending
|
|
3543
|
+
// a handshake flight and ACK, respectively.
|
|
3544
|
+
bool sending_flight : 1;
|
|
3545
|
+
bool sending_ack : 1;
|
|
3099
3546
|
|
|
3100
|
-
//
|
|
3101
|
-
|
|
3547
|
+
// queued_key_update, if not kNone, indicates we've queued a KeyUpdate message
|
|
3548
|
+
// to send after the current flight is ACKed.
|
|
3549
|
+
QueuedKeyUpdate queued_key_update : 2;
|
|
3102
3550
|
|
|
3103
3551
|
uint16_t handshake_write_seq = 0;
|
|
3104
3552
|
uint16_t handshake_read_seq = 0;
|
|
3105
3553
|
|
|
3106
|
-
//
|
|
3107
|
-
|
|
3108
|
-
UniquePtr<SSLAEADContext> last_aead_write_ctx;
|
|
3554
|
+
// read_epoch is the current read epoch.
|
|
3555
|
+
DTLSReadEpoch read_epoch;
|
|
3109
3556
|
|
|
3557
|
+
// next_read_epoch is the next read epoch in DTLS 1.3. It will become
|
|
3558
|
+
// current once a record is received from it.
|
|
3559
|
+
UniquePtr<DTLSReadEpoch> next_read_epoch;
|
|
3110
3560
|
|
|
3111
|
-
//
|
|
3112
|
-
|
|
3113
|
-
|
|
3561
|
+
// prev_read_epoch is the previous read epoch in DTLS 1.3.
|
|
3562
|
+
UniquePtr<DTLSPrevReadEpoch> prev_read_epoch;
|
|
3563
|
+
|
|
3564
|
+
// write_epoch is the current DTLS write epoch. Non-retransmit records will
|
|
3565
|
+
// generally use this epoch.
|
|
3566
|
+
// TODO(crbug.com/381113363): 0-RTT will be the exception, when implemented.
|
|
3567
|
+
DTLSWriteEpoch write_epoch;
|
|
3568
|
+
|
|
3569
|
+
// extra_write_epochs is the collection available write epochs.
|
|
3570
|
+
InplaceVector<UniquePtr<DTLSWriteEpoch>, DTLS_MAX_EXTRA_WRITE_EPOCHS>
|
|
3571
|
+
extra_write_epochs;
|
|
3114
3572
|
|
|
3115
3573
|
// incoming_messages is a ring buffer of incoming handshake messages that have
|
|
3116
3574
|
// yet to be processed. The front of the ring buffer is message number
|
|
3117
3575
|
// |handshake_read_seq|, at position |handshake_read_seq| %
|
|
3118
3576
|
// |SSL_MAX_HANDSHAKE_FLIGHT|.
|
|
3119
|
-
UniquePtr<
|
|
3577
|
+
UniquePtr<DTLSIncomingMessage> incoming_messages[SSL_MAX_HANDSHAKE_FLIGHT];
|
|
3120
3578
|
|
|
3121
3579
|
// outgoing_messages is the queue of outgoing messages from the last handshake
|
|
3122
3580
|
// flight.
|
|
3123
|
-
|
|
3124
|
-
|
|
3581
|
+
InplaceVector<DTLSOutgoingMessage, SSL_MAX_HANDSHAKE_FLIGHT>
|
|
3582
|
+
outgoing_messages;
|
|
3583
|
+
|
|
3584
|
+
// sent_records is a queue of records we sent, for processing ACKs. To save
|
|
3585
|
+
// memory in the steady state, the structure is stored on the heap and dropped
|
|
3586
|
+
// when empty.
|
|
3587
|
+
UniquePtr<MRUQueue<DTLSSentRecord, DTLS_MAX_ACK_BUFFER>> sent_records;
|
|
3588
|
+
|
|
3589
|
+
// records_to_ack is a queue of received records that we should ACK. This is
|
|
3590
|
+
// not stored on the heap because, in the steady state, DTLS 1.3 does not
|
|
3591
|
+
// necessarily empty this list. (We probably could drop records from here once
|
|
3592
|
+
// they are sufficiently old.)
|
|
3593
|
+
MRUQueue<DTLSRecordNumber, DTLS_MAX_ACK_BUFFER> records_to_ack;
|
|
3125
3594
|
|
|
3126
3595
|
// outgoing_written is the number of outgoing messages that have been
|
|
3127
3596
|
// written.
|
|
@@ -3136,12 +3605,15 @@ struct DTLS1_STATE {
|
|
|
3136
3605
|
// the last time it was reset.
|
|
3137
3606
|
unsigned num_timeouts = 0;
|
|
3138
3607
|
|
|
3139
|
-
//
|
|
3140
|
-
//
|
|
3141
|
-
|
|
3608
|
+
// retransmit_timer tracks when to schedule the next DTLS retransmit if we do
|
|
3609
|
+
// not hear from the peer.
|
|
3610
|
+
DTLSTimer retransmit_timer;
|
|
3611
|
+
|
|
3612
|
+
// ack_timer tracks when to send an ACK.
|
|
3613
|
+
DTLSTimer ack_timer;
|
|
3142
3614
|
|
|
3143
3615
|
// timeout_duration_ms is the timeout duration in milliseconds.
|
|
3144
|
-
|
|
3616
|
+
uint32_t timeout_duration_ms = 0;
|
|
3145
3617
|
};
|
|
3146
3618
|
|
|
3147
3619
|
// An ALPSConfig is a pair of ALPN protocol and settings value to use with ALPS.
|
|
@@ -3207,6 +3679,16 @@ struct SSL_CONFIG {
|
|
|
3207
3679
|
// |client_CA|.
|
|
3208
3680
|
STACK_OF(X509_NAME) *cached_x509_client_CA = nullptr;
|
|
3209
3681
|
|
|
3682
|
+
// For client side, keep the list of CA distinguished names we can use
|
|
3683
|
+
// for the Certificate Authorities extension.
|
|
3684
|
+
// TODO(bbe) having this separate from the client side (above) is mildly
|
|
3685
|
+
// silly, but OpenSSL has *_client_CA API's for this exposed, and for the
|
|
3686
|
+
// moment we are not crossing those streams.
|
|
3687
|
+
UniquePtr<STACK_OF(CRYPTO_BUFFER)> CA_names;
|
|
3688
|
+
|
|
3689
|
+
// Trust anchor IDs to be requested in the trust_anchors extension.
|
|
3690
|
+
std::optional<Array<uint8_t>> requested_trust_anchors;
|
|
3691
|
+
|
|
3210
3692
|
Array<uint16_t> supported_group_list; // our list
|
|
3211
3693
|
|
|
3212
3694
|
// channel_id_private is the client's Channel ID private key, or null if
|
|
@@ -3219,7 +3701,7 @@ struct SSL_CONFIG {
|
|
|
3219
3701
|
|
|
3220
3702
|
// alps_configs contains the list of supported protocols to use with ALPS,
|
|
3221
3703
|
// along with their corresponding ALPS values.
|
|
3222
|
-
|
|
3704
|
+
Vector<ALPSConfig> alps_configs;
|
|
3223
3705
|
|
|
3224
3706
|
// Contains the QUIC transport params that this endpoint will send.
|
|
3225
3707
|
Array<uint8_t> quic_transport_params;
|
|
@@ -3239,9 +3721,9 @@ struct SSL_CONFIG {
|
|
|
3239
3721
|
// structure for the client to use when negotiating ECH.
|
|
3240
3722
|
Array<uint8_t> client_ech_config_list;
|
|
3241
3723
|
|
|
3242
|
-
//
|
|
3724
|
+
// compliance_policy limits the set of ciphers that can be selected when
|
|
3243
3725
|
// negotiating a TLS 1.3 connection.
|
|
3244
|
-
enum ssl_compliance_policy_t
|
|
3726
|
+
enum ssl_compliance_policy_t compliance_policy = ssl_compliance_policy_none;
|
|
3245
3727
|
|
|
3246
3728
|
// verify_mode is a bitmask of |SSL_VERIFY_*| values.
|
|
3247
3729
|
uint8_t verify_mode = SSL_VERIFY_NONE;
|
|
@@ -3304,15 +3786,6 @@ struct SSL_CONFIG {
|
|
|
3304
3786
|
// alps_use_new_codepoint if set indicates we use new ALPS extension codepoint
|
|
3305
3787
|
// to negotiate and convey application settings.
|
|
3306
3788
|
bool alps_use_new_codepoint : 1;
|
|
3307
|
-
|
|
3308
|
-
// check_client_certificate_type indicates whether the client, in TLS 1.2 and
|
|
3309
|
-
// below, will check its certificate against the server's requested
|
|
3310
|
-
// certificate types.
|
|
3311
|
-
bool check_client_certificate_type : 1;
|
|
3312
|
-
|
|
3313
|
-
// check_ecdsa_curve indicates whether the server, in TLS 1.2 and below, will
|
|
3314
|
-
// check its certificate against the client's supported ECDSA curves.
|
|
3315
|
-
bool check_ecdsa_curve : 1;
|
|
3316
3789
|
};
|
|
3317
3790
|
|
|
3318
3791
|
// From RFC 8446, used in determining PSK modes.
|
|
@@ -3330,10 +3803,15 @@ bool ssl_is_key_type_supported(int key_type);
|
|
|
3330
3803
|
// counterpart to |privkey|. Otherwise it returns false and pushes a helpful
|
|
3331
3804
|
// message on the error queue.
|
|
3332
3805
|
bool ssl_compare_public_and_private_key(const EVP_PKEY *pubkey,
|
|
3333
|
-
|
|
3806
|
+
const EVP_PKEY *privkey);
|
|
3334
3807
|
bool ssl_get_new_session(SSL_HANDSHAKE *hs);
|
|
3808
|
+
|
|
3809
|
+
// ssl_encrypt_ticket encrypt a ticket for |session| and writes the result to
|
|
3810
|
+
// |out|. It returns true on success and false on error. If, on success, nothing
|
|
3811
|
+
// was written to |out|, the caller should skip sending a ticket.
|
|
3335
3812
|
bool ssl_encrypt_ticket(SSL_HANDSHAKE *hs, CBB *out,
|
|
3336
3813
|
const SSL_SESSION *session);
|
|
3814
|
+
|
|
3337
3815
|
bool ssl_ctx_rotate_ticket_encryption_key(SSL_CTX *ctx);
|
|
3338
3816
|
|
|
3339
3817
|
// ssl_session_new returns a newly-allocated blank |SSL_SESSION| or nullptr on
|
|
@@ -3354,6 +3832,20 @@ OPENSSL_EXPORT UniquePtr<SSL_SESSION> SSL_SESSION_parse(
|
|
|
3354
3832
|
// error.
|
|
3355
3833
|
OPENSSL_EXPORT bool ssl_session_serialize(const SSL_SESSION *in, CBB *cbb);
|
|
3356
3834
|
|
|
3835
|
+
enum class SSLSessionType {
|
|
3836
|
+
// The session is not resumable.
|
|
3837
|
+
kNotResumable,
|
|
3838
|
+
// The session uses a TLS 1.2 session ID.
|
|
3839
|
+
kID,
|
|
3840
|
+
// The session uses a TLS 1.2 ticket.
|
|
3841
|
+
kTicket,
|
|
3842
|
+
// The session uses a TLS 1.3 pre-shared key.
|
|
3843
|
+
kPreSharedKey,
|
|
3844
|
+
};
|
|
3845
|
+
|
|
3846
|
+
// ssl_session_get_type returns the type of |session|.
|
|
3847
|
+
SSLSessionType ssl_session_get_type(const SSL_SESSION *session);
|
|
3848
|
+
|
|
3357
3849
|
// ssl_session_is_context_valid returns whether |session|'s session ID context
|
|
3358
3850
|
// matches the one set on |hs|.
|
|
3359
3851
|
bool ssl_session_is_context_valid(const SSL_HANDSHAKE *hs,
|
|
@@ -3438,13 +3930,15 @@ bool tls_init_message(const SSL *ssl, CBB *cbb, CBB *body, uint8_t type);
|
|
|
3438
3930
|
bool tls_finish_message(const SSL *ssl, CBB *cbb, Array<uint8_t> *out_msg);
|
|
3439
3931
|
bool tls_add_message(SSL *ssl, Array<uint8_t> msg);
|
|
3440
3932
|
bool tls_add_change_cipher_spec(SSL *ssl);
|
|
3441
|
-
int
|
|
3933
|
+
int tls_flush(SSL *ssl);
|
|
3442
3934
|
|
|
3443
3935
|
bool dtls1_init_message(const SSL *ssl, CBB *cbb, CBB *body, uint8_t type);
|
|
3444
3936
|
bool dtls1_finish_message(const SSL *ssl, CBB *cbb, Array<uint8_t> *out_msg);
|
|
3445
3937
|
bool dtls1_add_message(SSL *ssl, Array<uint8_t> msg);
|
|
3446
3938
|
bool dtls1_add_change_cipher_spec(SSL *ssl);
|
|
3447
|
-
|
|
3939
|
+
void dtls1_finish_flight(SSL *ssl);
|
|
3940
|
+
void dtls1_schedule_ack(SSL *ssl);
|
|
3941
|
+
int dtls1_flush(SSL *ssl);
|
|
3448
3942
|
|
|
3449
3943
|
// ssl_add_message_cbb finishes the handshake message in |cbb| and adds it to
|
|
3450
3944
|
// the pending flight. It returns true on success and false on error.
|
|
@@ -3454,6 +3948,9 @@ bool ssl_add_message_cbb(SSL *ssl, CBB *cbb);
|
|
|
3454
3948
|
// on success and false on allocation failure.
|
|
3455
3949
|
bool ssl_hash_message(SSL_HANDSHAKE *hs, const SSLMessage &msg);
|
|
3456
3950
|
|
|
3951
|
+
ssl_open_record_t dtls1_process_ack(SSL *ssl, uint8_t *out_alert,
|
|
3952
|
+
DTLSRecordNumber ack_record_number,
|
|
3953
|
+
Span<const uint8_t> data);
|
|
3457
3954
|
ssl_open_record_t dtls1_open_app_data(SSL *ssl, Span<uint8_t> *out,
|
|
3458
3955
|
size_t *out_consumed, uint8_t *out_alert,
|
|
3459
3956
|
Span<uint8_t> in);
|
|
@@ -3469,19 +3966,27 @@ int dtls1_write_app_data(SSL *ssl, bool *out_needs_handshake,
|
|
|
3469
3966
|
int dtls1_write_record(SSL *ssl, int type, Span<const uint8_t> in,
|
|
3470
3967
|
uint16_t epoch);
|
|
3471
3968
|
|
|
3472
|
-
int dtls1_retransmit_outgoing_messages(SSL *ssl);
|
|
3473
3969
|
bool dtls1_parse_fragment(CBS *cbs, struct hm_header_st *out_hdr,
|
|
3474
3970
|
CBS *out_body);
|
|
3475
|
-
bool dtls1_check_timeout_num(SSL *ssl);
|
|
3476
3971
|
|
|
3477
|
-
|
|
3972
|
+
// DTLS1_MTU_TIMEOUTS is the maximum number of retransmit timeouts to expire
|
|
3973
|
+
// before starting to decrease the MTU.
|
|
3974
|
+
#define DTLS1_MTU_TIMEOUTS 2
|
|
3975
|
+
|
|
3976
|
+
// DTLS1_MAX_TIMEOUTS is the maximum number of retransmit timeouts to expire
|
|
3977
|
+
// before failing the DTLS handshake.
|
|
3978
|
+
#define DTLS1_MAX_TIMEOUTS 12
|
|
3979
|
+
|
|
3478
3980
|
void dtls1_stop_timer(SSL *ssl);
|
|
3479
|
-
|
|
3981
|
+
|
|
3480
3982
|
unsigned int dtls1_min_mtu(void);
|
|
3481
3983
|
|
|
3482
3984
|
bool dtls1_new(SSL *ssl);
|
|
3483
3985
|
void dtls1_free(SSL *ssl);
|
|
3484
3986
|
|
|
3987
|
+
bool dtls1_process_handshake_fragments(SSL *ssl, uint8_t *out_alert,
|
|
3988
|
+
DTLSRecordNumber record_number,
|
|
3989
|
+
Span<const uint8_t> record);
|
|
3485
3990
|
bool dtls1_get_message(const SSL *ssl, SSLMessage *out);
|
|
3486
3991
|
ssl_open_record_t dtls1_open_handshake(SSL *ssl, size_t *out_consumed,
|
|
3487
3992
|
uint8_t *out_alert, Span<uint8_t> in);
|
|
@@ -3500,8 +4005,11 @@ bool tls1_configure_aead(SSL *ssl, evp_aead_direction_t direction,
|
|
|
3500
4005
|
|
|
3501
4006
|
bool tls1_change_cipher_state(SSL_HANDSHAKE *hs,
|
|
3502
4007
|
evp_aead_direction_t direction);
|
|
3503
|
-
|
|
3504
|
-
|
|
4008
|
+
|
|
4009
|
+
// tls1_generate_master_secret computes the master secret from |premaster| and
|
|
4010
|
+
// writes it to |out|. |out| must have size |SSL3_MASTER_SECRET_SIZE|.
|
|
4011
|
+
bool tls1_generate_master_secret(SSL_HANDSHAKE *hs, Span<uint8_t> out,
|
|
4012
|
+
Span<const uint8_t> premaster);
|
|
3505
4013
|
|
|
3506
4014
|
// tls1_get_grouplist returns the locally-configured group preference list.
|
|
3507
4015
|
Span<const uint16_t> tls1_get_grouplist(const SSL_HANDSHAKE *ssl);
|
|
@@ -3580,9 +4088,7 @@ bool ssl_can_write(const SSL *ssl);
|
|
|
3580
4088
|
// ssl_can_read returns wheter |ssl| is allowed to read.
|
|
3581
4089
|
bool ssl_can_read(const SSL *ssl);
|
|
3582
4090
|
|
|
3583
|
-
|
|
3584
|
-
void ssl_ctx_get_current_time(const SSL_CTX *ctx,
|
|
3585
|
-
struct OPENSSL_timeval *out_clock);
|
|
4091
|
+
OPENSSL_timeval ssl_ctx_get_current_time(const SSL_CTX *ctx);
|
|
3586
4092
|
|
|
3587
4093
|
// ssl_reset_error_state resets state for |SSL_get_error|.
|
|
3588
4094
|
void ssl_reset_error_state(SSL *ssl);
|
|
@@ -3713,6 +4219,11 @@ struct ssl_ctx_st : public bssl::RefCounted<ssl_ctx_st> {
|
|
|
3713
4219
|
// |client_CA|.
|
|
3714
4220
|
STACK_OF(X509_NAME) *cached_x509_client_CA = nullptr;
|
|
3715
4221
|
|
|
4222
|
+
// What we put in client hello in the CA extension.
|
|
4223
|
+
bssl::UniquePtr<STACK_OF(CRYPTO_BUFFER)> CA_names;
|
|
4224
|
+
|
|
4225
|
+
// What we request in the trust_anchors extension.
|
|
4226
|
+
std::optional<bssl::Array<uint8_t>> requested_trust_anchors;
|
|
3716
4227
|
|
|
3717
4228
|
// Default values to use in SSL structures follow (these are copied by
|
|
3718
4229
|
// SSL_new)
|
|
@@ -3822,7 +4333,7 @@ struct ssl_ctx_st : public bssl::RefCounted<ssl_ctx_st> {
|
|
|
3822
4333
|
bssl::UniquePtr<STACK_OF(SRTP_PROTECTION_PROFILE)> srtp_profiles;
|
|
3823
4334
|
|
|
3824
4335
|
// Defined compression algorithms for certificates.
|
|
3825
|
-
bssl::
|
|
4336
|
+
bssl::Vector<bssl::CertCompressionAlg> cert_compression_algs;
|
|
3826
4337
|
|
|
3827
4338
|
// Supported group values inherited by SSL structure
|
|
3828
4339
|
bssl::Array<uint16_t> supported_group_list;
|
|
@@ -3858,9 +4369,9 @@ struct ssl_ctx_st : public bssl::RefCounted<ssl_ctx_st> {
|
|
|
3858
4369
|
int (*legacy_ocsp_callback)(SSL *ssl, void *arg) = nullptr;
|
|
3859
4370
|
void *legacy_ocsp_callback_arg = nullptr;
|
|
3860
4371
|
|
|
3861
|
-
//
|
|
4372
|
+
// compliance_policy limits the set of ciphers that can be selected when
|
|
3862
4373
|
// negotiating a TLS 1.3 connection.
|
|
3863
|
-
enum ssl_compliance_policy_t
|
|
4374
|
+
enum ssl_compliance_policy_t compliance_policy = ssl_compliance_policy_none;
|
|
3864
4375
|
|
|
3865
4376
|
// verify_sigalgs, if not empty, is the set of signature algorithms
|
|
3866
4377
|
// accepted from the peer in decreasing order of preference.
|
|
@@ -3918,6 +4429,10 @@ struct ssl_ctx_st : public bssl::RefCounted<ssl_ctx_st> {
|
|
|
3918
4429
|
// |aes_hw_override| is true.
|
|
3919
4430
|
bool aes_hw_override_value : 1;
|
|
3920
4431
|
|
|
4432
|
+
// resumption_across_names_enabled indicates whether a TLS 1.3 server should
|
|
4433
|
+
// signal its sessions may be resumed across names in the server certificate.
|
|
4434
|
+
bool resumption_across_names_enabled : 1;
|
|
4435
|
+
|
|
3921
4436
|
private:
|
|
3922
4437
|
friend RefCounted;
|
|
3923
4438
|
~ssl_ctx_st();
|
|
@@ -3939,9 +4454,6 @@ struct ssl_st {
|
|
|
3939
4454
|
// that instead, and skip the null check.)
|
|
3940
4455
|
bssl::UniquePtr<bssl::SSL_CONFIG> config;
|
|
3941
4456
|
|
|
3942
|
-
// version is the protocol version.
|
|
3943
|
-
uint16_t version = 0;
|
|
3944
|
-
|
|
3945
4457
|
uint16_t max_send_fragment = 0;
|
|
3946
4458
|
|
|
3947
4459
|
// There are 2 BIO's even though they are normally both the same. This is so
|
|
@@ -3967,11 +4479,9 @@ struct ssl_st {
|
|
|
3967
4479
|
// session info
|
|
3968
4480
|
|
|
3969
4481
|
// initial_timeout_duration_ms is the default DTLS timeout duration in
|
|
3970
|
-
// milliseconds. It's used to initialize the timer any time it's restarted.
|
|
3971
|
-
//
|
|
3972
|
-
|
|
3973
|
-
// second.
|
|
3974
|
-
unsigned initial_timeout_duration_ms = 1000;
|
|
4482
|
+
// milliseconds. It's used to initialize the timer any time it's restarted. We
|
|
4483
|
+
// default to RFC 9147's recommendation for real-time applications, 400ms.
|
|
4484
|
+
uint32_t initial_timeout_duration_ms = 400;
|
|
3975
4485
|
|
|
3976
4486
|
// session is the configured session to be offered by the client. This session
|
|
3977
4487
|
// is immutable.
|
|
@@ -4010,6 +4520,10 @@ struct ssl_st {
|
|
|
4010
4520
|
|
|
4011
4521
|
// If enable_early_data is true, early data can be sent and accepted.
|
|
4012
4522
|
bool enable_early_data : 1;
|
|
4523
|
+
|
|
4524
|
+
// resumption_across_names_enabled indicates whether a TLS 1.3 server should
|
|
4525
|
+
// signal its sessions may be resumed across names in the server certificate.
|
|
4526
|
+
bool resumption_across_names_enabled : 1;
|
|
4013
4527
|
};
|
|
4014
4528
|
|
|
4015
4529
|
struct ssl_session_st : public bssl::RefCounted<ssl_session_st> {
|
|
@@ -4032,17 +4546,14 @@ struct ssl_session_st : public bssl::RefCounted<ssl_session_st> {
|
|
|
4032
4546
|
// session. In TLS 1.3 and up, it is the resumption PSK for sessions handed to
|
|
4033
4547
|
// the caller, but it stores the resumption secret when stored on |SSL|
|
|
4034
4548
|
// objects.
|
|
4035
|
-
uint8_t
|
|
4036
|
-
|
|
4549
|
+
bssl::InplaceVector<uint8_t, SSL_MAX_MASTER_KEY_LENGTH> secret;
|
|
4550
|
+
|
|
4551
|
+
bssl::InplaceVector<uint8_t, SSL_MAX_SSL_SESSION_ID_LENGTH> session_id;
|
|
4037
4552
|
|
|
4038
|
-
// session_id - valid?
|
|
4039
|
-
uint8_t session_id_length = 0;
|
|
4040
|
-
uint8_t session_id[SSL_MAX_SSL_SESSION_ID_LENGTH] = {0};
|
|
4041
4553
|
// this is used to determine whether the session is being reused in
|
|
4042
4554
|
// the appropriate context. It is up to the application to set this,
|
|
4043
4555
|
// via SSL_new
|
|
4044
|
-
uint8_t
|
|
4045
|
-
uint8_t sid_ctx[SSL_MAX_SID_CTX_LENGTH] = {0};
|
|
4556
|
+
bssl::InplaceVector<uint8_t, SSL_MAX_SID_CTX_LENGTH> sid_ctx;
|
|
4046
4557
|
|
|
4047
4558
|
bssl::UniquePtr<char> psk_identity;
|
|
4048
4559
|
|
|
@@ -4105,8 +4616,7 @@ struct ssl_session_st : public bssl::RefCounted<ssl_session_st> {
|
|
|
4105
4616
|
// original_handshake_hash contains the handshake hash (either SHA-1+MD5 or
|
|
4106
4617
|
// SHA-2, depending on TLS version) for the original, full handshake that
|
|
4107
4618
|
// created a session. This is used by Channel IDs during resumption.
|
|
4108
|
-
uint8_t original_handshake_hash
|
|
4109
|
-
uint8_t original_handshake_hash_len = 0;
|
|
4619
|
+
bssl::InplaceVector<uint8_t, SSL_MAX_MD_SIZE> original_handshake_hash;
|
|
4110
4620
|
|
|
4111
4621
|
uint32_t ticket_lifetime_hint = 0; // Session lifetime hint in seconds
|
|
4112
4622
|
|
|
@@ -4154,6 +4664,10 @@ struct ssl_session_st : public bssl::RefCounted<ssl_session_st> {
|
|
|
4154
4664
|
// session.
|
|
4155
4665
|
bool has_application_settings : 1;
|
|
4156
4666
|
|
|
4667
|
+
// is_resumable_across_names indicates whether the session may be resumed for
|
|
4668
|
+
// any of the identities presented in the certificate.
|
|
4669
|
+
bool is_resumable_across_names : 1;
|
|
4670
|
+
|
|
4157
4671
|
// quic_early_data_context is used to determine whether early data must be
|
|
4158
4672
|
// rejected when performing a QUIC handshake.
|
|
4159
4673
|
bssl::Array<uint8_t> quic_early_data_context;
|
|
@@ -4166,7 +4680,7 @@ struct ssl_session_st : public bssl::RefCounted<ssl_session_st> {
|
|
|
4166
4680
|
struct ssl_ech_keys_st : public bssl::RefCounted<ssl_ech_keys_st> {
|
|
4167
4681
|
ssl_ech_keys_st() : RefCounted(CheckSubClass()) {}
|
|
4168
4682
|
|
|
4169
|
-
bssl::
|
|
4683
|
+
bssl::Vector<bssl::UniquePtr<bssl::ECHServerConfig>> configs;
|
|
4170
4684
|
|
|
4171
4685
|
private:
|
|
4172
4686
|
friend RefCounted;
|