grpc 1.69.0 → 1.70.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/Makefile +251 -249
- data/include/grpc/support/atm.h +0 -13
- data/src/core/call/request_buffer.cc +224 -0
- data/src/core/call/request_buffer.h +192 -0
- data/src/core/client_channel/client_channel.cc +2 -3
- data/src/core/client_channel/client_channel_args.h +21 -0
- data/src/core/client_channel/client_channel_filter.h +1 -3
- data/src/core/client_channel/retry_interceptor.cc +406 -0
- data/src/core/client_channel/retry_interceptor.h +157 -0
- data/src/core/client_channel/retry_service_config.h +13 -0
- data/src/core/client_channel/retry_throttle.cc +33 -18
- data/src/core/client_channel/retry_throttle.h +3 -3
- data/src/core/ext/transport/chttp2/server/chttp2_server.cc +596 -94
- data/src/core/ext/transport/chttp2/server/chttp2_server.h +189 -13
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.cc +1 -0
- data/src/core/ext/transport/chttp2/transport/frame_security.cc +1 -3
- data/src/core/ext/transport/chttp2/transport/stream_lists.cc +40 -1
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump_shared.upb.h +3 -1
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb.h +66 -36
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb_minitable.c +19 -17
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb.h +116 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb_minitable.c +31 -5
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb_minitable.h +2 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb.h +67 -6
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb_minitable.c +12 -8
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_cmsg_headers.upb.h +151 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_cmsg_headers.upb_minitable.c +60 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_cmsg_headers.upb_minitable.h +32 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb.h +228 -21
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb_minitable.c +65 -17
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb_minitable.h +6 -0
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb.h +7 -106
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb_minitable.c +7 -28
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb_minitable.h +0 -2
- data/src/core/ext/upb-gen/envoy/config/listener/v3/quic_config.upb.h +85 -0
- data/src/core/ext/upb-gen/envoy/config/listener/v3/quic_config.upb_minitable.c +25 -3
- data/src/core/ext/upb-gen/envoy/config/overload/v3/overload.upb.h +2 -1
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb.h +152 -0
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb_minitable.c +40 -10
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb_minitable.h +2 -0
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb.h +135 -4
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb_minitable.c +41 -9
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb_minitable.h +2 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/trace.upb.h +0 -2
- data/src/core/ext/upb-gen/envoy/config/trace/v3/trace.upb_minitable.c +0 -1
- data/src/core/ext/upb-gen/envoy/config/trace/v3/trace.upb_minitable.h +0 -1
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h +16 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb_minitable.c +3 -2
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb.h +60 -0
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb_minitable.c +13 -2
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upb.h +0 -1
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upb_minitable.c +0 -1
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb.h +102 -24
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb_minitable.c +28 -19
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb.h +251 -18
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb_minitable.c +41 -16
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb_minitable.h +2 -0
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb.h +2 -1
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/config_dump_shared.upbdefs.c +11 -10
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/cluster.upbdefs.c +418 -413
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/base.upbdefs.c +161 -153
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/base.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/protocol.upbdefs.c +267 -261
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_cmsg_headers.upbdefs.c +46 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_cmsg_headers.upbdefs.h +33 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_option.upbdefs.c +29 -19
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/socket_option.upbdefs.h +15 -0
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/listener_components.upbdefs.c +58 -65
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/listener_components.upbdefs.h +0 -5
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/quic_config.upbdefs.c +73 -63
- data/src/core/ext/upbdefs-gen/envoy/config/overload/v3/overload.upbdefs.c +49 -48
- data/src/core/ext/upbdefs-gen/envoy/config/rbac/v3/rbac.upbdefs.c +117 -100
- data/src/core/ext/upbdefs-gen/envoy/config/rbac/v3/rbac.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route_components.upbdefs.c +905 -897
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route_components.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/trace.upbdefs.c +15 -18
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.c +460 -457
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/http_11_proxy/v3/upstream_http_11_connect.upbdefs.c +16 -19
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.c +95 -95
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/tls.upbdefs.c +202 -191
- data/src/core/ext/upbdefs-gen/envoy/service/discovery/v3/discovery.upbdefs.c +148 -135
- data/src/core/ext/upbdefs-gen/envoy/service/discovery/v3/discovery.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/service/status/v3/csds.upbdefs.c +23 -22
- data/src/core/filter/filter_args.h +112 -0
- data/src/core/handshaker/http_connect/http_connect_handshaker.cc +1 -1
- data/src/core/lib/channel/promise_based_filter.h +5 -79
- data/src/core/lib/debug/trace_flags.cc +2 -0
- data/src/core/lib/debug/trace_flags.h +1 -0
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.cc +14 -0
- data/src/core/lib/event_engine/posix_engine/posix_engine.cc +7 -2
- data/src/core/lib/event_engine/posix_engine/posix_engine.h +0 -2
- data/src/core/lib/event_engine/windows/windows_engine.cc +1 -0
- data/src/core/lib/experiments/experiments.cc +90 -39
- data/src/core/lib/experiments/experiments.h +43 -24
- data/src/core/lib/iomgr/event_engine_shims/endpoint.cc +1 -1
- data/src/core/lib/promise/activity.cc +2 -0
- data/src/core/lib/promise/activity.h +29 -8
- data/src/core/lib/promise/map.h +42 -0
- data/src/core/lib/promise/party.cc +36 -1
- data/src/core/lib/promise/party.h +13 -5
- data/src/core/lib/promise/sleep.h +1 -0
- data/src/core/lib/promise/status_flag.h +10 -0
- data/src/core/lib/resource_quota/arena.h +8 -0
- data/src/core/lib/resource_quota/connection_quota.h +4 -0
- data/src/core/lib/surface/call_utils.h +2 -0
- data/src/core/lib/surface/client_call.cc +43 -35
- data/src/core/lib/surface/client_call.h +5 -0
- data/src/core/lib/surface/event_string.cc +7 -1
- data/src/core/lib/surface/init_internally.h +13 -2
- data/src/core/lib/surface/server_call.cc +100 -85
- data/src/core/lib/surface/version.cc +2 -2
- data/src/core/lib/transport/call_filters.cc +10 -4
- data/src/core/lib/transport/call_filters.h +8 -0
- data/src/core/lib/transport/call_spine.cc +36 -71
- data/src/core/lib/transport/call_spine.h +131 -7
- data/src/core/lib/transport/call_state.h +132 -39
- data/src/core/lib/transport/interception_chain.cc +8 -0
- data/src/core/lib/transport/interception_chain.h +9 -0
- data/src/core/load_balancing/endpoint_list.cc +10 -0
- data/src/core/load_balancing/endpoint_list.h +13 -6
- data/src/core/load_balancing/lb_policy.h +0 -8
- data/src/core/load_balancing/pick_first/pick_first.cc +89 -56
- data/src/core/load_balancing/ring_hash/ring_hash.cc +158 -70
- data/src/core/load_balancing/ring_hash/ring_hash.h +4 -11
- data/src/core/load_balancing/round_robin/round_robin.cc +9 -14
- data/src/core/load_balancing/weighted_round_robin/weighted_round_robin.cc +12 -15
- data/src/core/resolver/dns/c_ares/dns_resolver_ares.cc +4 -4
- data/src/core/resolver/xds/xds_dependency_manager.cc +139 -135
- data/src/core/resolver/xds/xds_dependency_manager.h +24 -18
- data/src/core/resolver/xds/xds_resolver.cc +28 -47
- data/src/core/server/server.cc +290 -24
- data/src/core/server/server.h +199 -61
- data/src/core/server/xds_server_config_fetcher.cc +78 -142
- data/src/core/tsi/alts/handshaker/alts_handshaker_client.cc +1 -1
- data/src/core/util/backoff.cc +15 -4
- data/src/core/util/http_client/httpcli.cc +66 -18
- data/src/core/util/http_client/httpcli.h +14 -4
- data/src/core/util/matchers.h +5 -10
- data/src/core/util/ref_counted.h +1 -0
- data/src/core/util/ref_counted_ptr.h +1 -1
- data/src/core/util/useful.h +9 -11
- data/src/core/xds/grpc/xds_endpoint_parser.cc +54 -23
- data/src/core/xds/grpc/xds_metadata.h +8 -0
- data/src/core/xds/xds_client/xds_api.cc +0 -223
- data/src/core/xds/xds_client/xds_api.h +1 -133
- data/src/core/xds/xds_client/xds_client.cc +599 -466
- data/src/core/xds/xds_client/xds_client.h +107 -26
- data/src/core/xds/xds_client/xds_resource_type_impl.h +10 -5
- data/src/ruby/ext/grpc/extconf.rb +1 -0
- data/src/ruby/lib/grpc/version.rb +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_bitstr.c → a_bitstr.cc} +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_d2i_fp.c → a_d2i_fp.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_dup.c → a_dup.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_i2d_fp.c → a_i2d_fp.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_int.c → a_int.cc} +2 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_mbstr.c → a_mbstr.cc} +9 -7
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_object.c → a_object.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_strnid.c → a_strnid.cc} +7 -4
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_type.c → a_type.cc} +4 -4
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{asn1_lib.c → asn1_lib.cc} +4 -4
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{asn_pack.c → asn_pack.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{posix_time.c → posix_time.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{tasn_dec.c → tasn_dec.cc} +4 -3
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{tasn_enc.c → tasn_enc.cc} +9 -6
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{tasn_fre.c → tasn_fre.cc} +14 -20
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{tasn_new.c → tasn_new.cc} +7 -6
- data/third_party/boringssl-with-bazel/src/crypto/asn1/{tasn_utl.c → tasn_utl.cc} +13 -10
- data/third_party/boringssl-with-bazel/src/crypto/base64/{base64.c → base64.cc} +9 -12
- data/third_party/boringssl-with-bazel/src/crypto/bcm_support.h +7 -1
- data/third_party/boringssl-with-bazel/src/crypto/bio/{bio.c → bio.cc} +32 -58
- data/third_party/boringssl-with-bazel/src/crypto/bio/{bio_mem.c → bio_mem.cc} +8 -7
- data/third_party/boringssl-with-bazel/src/crypto/bio/{connect.c → connect.cc} +24 -16
- data/third_party/boringssl-with-bazel/src/crypto/bio/{file.c → file.cc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/bio/{pair.c → pair.cc} +22 -20
- data/third_party/boringssl-with-bazel/src/crypto/bio/{printf.c → printf.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/bio/{socket_helper.c → socket_helper.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/blake2/{blake2.c → blake2.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/bn_extra/{bn_asn1.c → bn_asn1.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/bn_extra/{convert.c → convert.cc} +21 -21
- data/third_party/boringssl-with-bazel/src/crypto/buf/{buf.c → buf.cc} +6 -3
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/{asn1_compat.c → asn1_compat.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/{ber.c → ber.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/{cbb.c → cbb.cc} +33 -49
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/{cbs.c → cbs.cc} +20 -27
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/{unicode.c → unicode.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/chacha/{chacha.c → chacha.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/chacha/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_aesctrhmac.c → e_aesctrhmac.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_aesgcmsiv.c → e_aesgcmsiv.cc} +23 -26
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_chacha20poly1305.c → e_chacha20poly1305.cc} +1 -8
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_des.c → e_des.cc} +61 -49
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_null.c → e_null.cc} +12 -9
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_rc2.c → e_rc2.cc} +23 -19
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_rc4.c → e_rc4.cc} +10 -8
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{e_tls.c → e_tls.cc} +2 -1
- data/third_party/boringssl-with-bazel/src/crypto/conf/{conf.c → conf.cc} +17 -14
- data/third_party/boringssl-with-bazel/src/crypto/conf/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_aarch64_apple.c → cpu_aarch64_apple.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_aarch64_fuchsia.c → cpu_aarch64_fuchsia.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_aarch64_linux.c → cpu_aarch64_linux.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_aarch64_openbsd.c → cpu_aarch64_openbsd.cc} +4 -4
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_aarch64_sysreg.c → cpu_aarch64_sysreg.cc} +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_aarch64_win.c → cpu_aarch64_win.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_arm_freebsd.c → cpu_arm_freebsd.cc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_arm_linux.c → cpu_arm_linux.cc} +5 -5
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_linux.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{cpu_intel.c → cpu_intel.cc} +47 -32
- data/third_party/boringssl-with-bazel/src/crypto/{crypto.c → crypto.cc} +6 -11
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/{curve25519.c → curve25519.cc} +28 -31
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/{curve25519_64_adx.c → curve25519_64_adx.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/curve25519_tables.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/curve25519/{spake25519.c → spake25519.cc} +20 -16
- data/third_party/boringssl-with-bazel/src/crypto/dh_extra/{dh_asn1.c → dh_asn1.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/digest_extra/{digest_extra.c → digest_extra.cc} +113 -31
- data/third_party/boringssl-with-bazel/src/crypto/dsa/{dsa.c → dsa.cc} +153 -154
- data/third_party/boringssl-with-bazel/src/crypto/dsa/{dsa_asn1.c → dsa_asn1.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/dsa/internal.h +1 -3
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/{ec_asn1.c → ec_asn1.cc} +35 -0
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/{ec_derive.c → ec_derive.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/{hash_to_curve.c → hash_to_curve.cc} +66 -64
- data/third_party/boringssl-with-bazel/src/crypto/ec_extra/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/ecdsa_extra/{ecdsa_asn1.c → ecdsa_asn1.cc} +15 -25
- data/third_party/boringssl-with-bazel/src/crypto/engine/{engine.c → engine.cc} +12 -8
- data/third_party/boringssl-with-bazel/src/crypto/err/{err.c → err.cc} +24 -27
- data/third_party/boringssl-with-bazel/src/crypto/err/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/evp/{evp.c → evp.cc} +8 -9
- data/third_party/boringssl-with-bazel/src/crypto/evp/{evp_ctx.c → evp_ctx.cc} +7 -8
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_dh.c → p_dh.cc} +23 -14
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_dh_asn1.c → p_dh_asn1.cc} +38 -21
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_dsa_asn1.c → p_dsa_asn1.cc} +19 -24
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_ec.c → p_ec.cc} +20 -23
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_ec_asn1.c → p_ec_asn1.cc} +20 -20
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_ed25519.c → p_ed25519.cc} +22 -19
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_ed25519_asn1.c → p_ed25519_asn1.cc} +14 -13
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_hkdf.c → p_hkdf.cc} +18 -14
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_rsa.c → p_rsa.cc} +38 -37
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_rsa_asn1.c → p_rsa_asn1.cc} +16 -18
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_x25519.c → p_x25519.cc} +22 -19
- data/third_party/boringssl-with-bazel/src/crypto/evp/{p_x25519_asn1.c → p_x25519_asn1.cc} +18 -17
- data/third_party/boringssl-with-bazel/src/crypto/evp/{pbkdf.c → pbkdf.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/evp/{print.c → print.cc} +4 -5
- data/third_party/boringssl-with-bazel/src/crypto/evp/{scrypt.c → scrypt.cc} +7 -5
- data/third_party/boringssl-with-bazel/src/crypto/{ex_data.c → ex_data.cc} +3 -4
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/{aes_nohw.c.inc → aes_nohw.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/internal.h +1 -5
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/{key_wrap.c.inc → key_wrap.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/{bcm.c → bcm.cc} +96 -101
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bcm_interface.h +165 -12
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{add.c.inc → add.cc.inc} +1 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/asm/{x86_64-gcc.c.inc → x86_64-gcc.cc.inc} +4 -4
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{bn.c.inc → bn.cc.inc} +12 -24
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{ctx.c.inc → ctx.cc.inc} +5 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{div.c.inc → div.cc.inc} +29 -38
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{div_extra.c.inc → div_extra.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{exponentiation.c.inc → exponentiation.cc.inc} +22 -22
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{gcd.c.inc → gcd.cc.inc} +3 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{gcd_extra.c.inc → gcd_extra.cc.inc} +33 -25
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{montgomery.c.inc → montgomery.cc.inc} +10 -17
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{mul.c.inc → mul.cc.inc} +11 -15
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{prime.c.inc → prime.cc.inc} +31 -34
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{shift.c.inc → shift.cc.inc} +3 -4
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/{aead.c.inc → aead.cc.inc} +18 -10
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/{cipher.c.inc → cipher.cc.inc} +6 -9
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/{e_aes.c.inc → e_aes.cc.inc} +46 -54
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cmac/{cmac.c.inc → cmac.cc.inc} +6 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/delocate.h +14 -10
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/{dh.c.inc → dh.cc.inc} +15 -19
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/internal.h +1 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/{digest.c.inc → digest.cc.inc} +17 -13
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digest/{digests.c.inc → digests.cc.inc} +29 -113
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/digestsign/{digestsign.c.inc → digestsign.cc.inc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/builtin_curves.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{ec.c.inc → ec.cc.inc} +10 -15
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{ec_key.c.inc → ec_key.cc.inc} +12 -14
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{felem.c.inc → felem.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{oct.c.inc → oct.cc.inc} +5 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{p224-64.c.inc → p224-64.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256-nistz-table.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{p256-nistz.c.inc → p256-nistz.cc.inc} +15 -13
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{p256.c.inc → p256.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256_table.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{scalar.c.inc → scalar.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{simple_mul.c.inc → simple_mul.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{util.c.inc → util.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{wnaf.c.inc → wnaf.cc.inc} +24 -15
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdh/{ecdh.c.inc → ecdh.cc.inc} +14 -5
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/{ecdsa.c.inc → ecdsa.cc.inc} +6 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ecdsa/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/{fips_shared_support.c → fips_shared_support.cc} +2 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/hkdf/{hkdf.c.inc → hkdf.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/hmac/{hmac.c.inc → hmac.cc.inc} +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/{gcm.c.inc → gcm.cc.inc} +69 -21
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/{gcm_nohw.c.inc → gcm_nohw.cc.inc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/internal.h +53 -33
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/{polyval.c.inc → polyval.cc.inc} +2 -3
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/{ctrdrbg.c.inc → ctrdrbg.cc.inc} +5 -4
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rand/{rand.c.inc → rand.cc.inc} +20 -18
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/{blinding.c.inc → blinding.cc.inc} +5 -4
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/{padding.c.inc → padding.cc.inc} +21 -21
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/{rsa.c.inc → rsa.cc.inc} +77 -73
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/rsa/{rsa_impl.c.inc → rsa_impl.cc.inc} +50 -53
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/{fips.c.inc → fips.cc.inc} +14 -6
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/{self_check.c.inc → self_check.cc.inc} +56 -52
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/service_indicator/{service_indicator.c.inc → service_indicator.cc.inc} +10 -11
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/internal.h +2 -4
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/{sha1.c.inc → sha1.cc.inc} +26 -33
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/{sha256.c.inc → sha256.cc.inc} +37 -55
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/sha/{sha512.c.inc → sha512.cc.inc} +48 -76
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/tls/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/hpke/{hpke.c → hpke.cc} +7 -4
- data/third_party/boringssl-with-bazel/src/crypto/hrss/{hrss.c → hrss.cc} +53 -110
- data/third_party/boringssl-with-bazel/src/crypto/hrss/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/internal.h +191 -248
- data/third_party/boringssl-with-bazel/src/crypto/keccak/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/keccak/{keccak.c → keccak.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/kyber/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/kyber/{kyber.c → kyber.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/lhash/{lhash.c → lhash.cc} +8 -7
- data/third_party/boringssl-with-bazel/src/crypto/{fipsmodule/md4/md4.c.inc → md4/md4.cc} +8 -12
- data/third_party/boringssl-with-bazel/src/crypto/{fipsmodule/md5 → md5}/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{fipsmodule/md5/md5.c.inc → md5/md5.cc} +4 -3
- data/third_party/boringssl-with-bazel/src/crypto/{mem.c → mem.cc} +34 -22
- data/third_party/boringssl-with-bazel/src/crypto/mldsa/internal.h +4 -1
- data/third_party/boringssl-with-bazel/src/crypto/mldsa/{mldsa.c → mldsa.cc} +646 -543
- data/third_party/boringssl-with-bazel/src/crypto/mlkem/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/mlkem/mlkem.cc +8 -8
- data/third_party/boringssl-with-bazel/src/crypto/obj/{obj.c → obj.cc} +27 -30
- data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_info.c → pem_info.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_lib.c → pem_lib.cc} +3 -4
- data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_oth.c → pem_oth.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/{pkcs7.c → pkcs7.cc} +5 -5
- data/third_party/boringssl-with-bazel/src/crypto/pkcs7/{pkcs7_x509.c → pkcs7_x509.cc} +26 -25
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/internal.h +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/{p5_pbev2.c → p5_pbev2.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/{pkcs8.c → pkcs8.cc} +159 -158
- data/third_party/boringssl-with-bazel/src/crypto/pkcs8/{pkcs8_x509.c → pkcs8_x509.cc} +90 -97
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/{poly1305.c → poly1305.cc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/{poly1305_arm.c → poly1305_arm.cc} +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/poly1305/{poly1305_vec.c → poly1305_vec.cc} +14 -11
- data/third_party/boringssl-with-bazel/src/crypto/pool/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/pool/{pool.c → pool.cc} +12 -11
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{deterministic.c → deterministic.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{fork_detect.c → fork_detect.cc} +11 -12
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{forkunsafe.c → forkunsafe.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{getentropy.c → getentropy.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/getrandom_fillin.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{ios.c → ios.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{passive.c → passive.cc} +22 -18
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{rand_extra.c → rand_extra.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/sysrand_internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{trusty.c → trusty.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{urandom.c → urandom.cc} +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/rand_extra/{windows.c → windows.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{refcount.c → refcount.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/{rsa_asn1.c → rsa_asn1.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/{rsa_crypt.c → rsa_crypt.cc} +81 -78
- data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/rsa_extra.cc +17 -0
- data/third_party/boringssl-with-bazel/src/crypto/sha/sha1.cc +52 -0
- data/third_party/boringssl-with-bazel/src/crypto/sha/sha256.cc +87 -0
- data/third_party/boringssl-with-bazel/src/crypto/sha/sha512.cc +104 -0
- data/third_party/boringssl-with-bazel/src/crypto/siphash/{siphash.c → siphash.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/address.h +123 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/fors.cc +169 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/fors.h +58 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/internal.h +63 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/merkle.cc +161 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/merkle.h +70 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/params.h +83 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/slhdsa.cc +307 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/thash.cc +173 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/thash.h +85 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/wots.cc +171 -0
- data/third_party/boringssl-with-bazel/src/crypto/slhdsa/wots.h +50 -0
- data/third_party/boringssl-with-bazel/src/crypto/stack/{stack.c → stack.cc} +10 -6
- data/third_party/boringssl-with-bazel/src/crypto/{thread_none.c → thread_none.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/{thread_pthread.c → thread_pthread.cc} +9 -8
- data/third_party/boringssl-with-bazel/src/crypto/{thread_win.c → thread_win.cc} +21 -17
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/internal.h +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/{pmbtoken.c → pmbtoken.cc} +146 -158
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/{trust_token.c → trust_token.cc} +19 -21
- data/third_party/boringssl-with-bazel/src/crypto/trust_token/{voprf.c → voprf.cc} +165 -169
- data/third_party/boringssl-with-bazel/src/crypto/x509/{a_digest.c → a_digest.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{a_sign.c → a_sign.cc} +37 -34
- data/third_party/boringssl-with-bazel/src/crypto/x509/{a_verify.c → a_verify.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{algorithm.c → algorithm.cc} +1 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{asn1_gen.c → asn1_gen.cc} +5 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/{by_dir.c → by_dir.cc} +7 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/{policy.c → policy.cc} +188 -178
- data/third_party/boringssl-with-bazel/src/crypto/x509/{rsa_pss.c → rsa_pss.cc} +48 -44
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_akey.c → v3_akey.cc} +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_alt.c → v3_alt.cc} +5 -5
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_bcons.c → v3_bcons.cc} +3 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_bitst.c → v3_bitst.cc} +6 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_conf.c → v3_conf.cc} +5 -5
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_cpols.c → v3_cpols.cc} +47 -41
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_crld.c → v3_crld.cc} +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_enum.c → v3_enum.cc} +5 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_extku.c → v3_extku.cc} +3 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_genn.c → v3_genn.cc} +7 -7
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_ia5.c → v3_ia5.cc} +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_info.c → v3_info.cc} +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_int.c → v3_int.cc} +3 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_lib.c → v3_lib.cc} +9 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_ncons.c → v3_ncons.cc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_ocsp.c → v3_ocsp.cc} +4 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_pcons.c → v3_pcons.cc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_pmaps.c → v3_pmaps.cc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_prn.c → v3_prn.cc} +2 -1
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_purp.c → v3_purp.cc} +16 -8
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_skey.c → v3_skey.cc} +6 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_utl.c → v3_utl.cc} +15 -10
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_att.c → x509_att.cc} +3 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_lu.c → x509_lu.cc} +6 -5
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_v3.c → x509_v3.cc} +2 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_vfy.c → x509_vfy.cc} +216 -212
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_vpm.c → x509_vpm.cc} +55 -13
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x509spki.c → x509spki.cc} +3 -3
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x_all.c → x_all.cc} +10 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x_crl.c → x_crl.cc} +6 -6
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x_name.c → x_name.cc} +39 -32
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x_pubkey.c → x_pubkey.cc} +4 -2
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x_x509.c → x_x509.cc} +48 -44
- data/third_party/boringssl-with-bazel/src/crypto/x509/{x_x509a.c → x_x509a.cc} +4 -2
- data/third_party/boringssl-with-bazel/src/gen/crypto/{err_data.c → err_data.cc} +359 -358
- data/third_party/boringssl-with-bazel/src/include/openssl/aead.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/asm_base.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1_mac.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/asn1t.h +237 -275
- data/third_party/boringssl-with-bazel/src/include/openssl/base.h +12 -5
- data/third_party/boringssl-with-bazel/src/include/openssl/bcm_public.h +82 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/blake2.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/buffer.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/bytestring.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/chacha.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/cmac.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/cpu.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/crypto.h +13 -2
- data/third_party/boringssl-with-bazel/src/include/openssl/ctrdrbg.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/curve25519.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/dh.h +4 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/digest.h +6 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/dsa.h +4 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/dtls1.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/e_os2.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/ec_key.h +17 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/engine.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/evp.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/kyber.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/hkdf.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/hpke.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/hrss.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/is_boringssl.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/kdf.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/mldsa.h +8 -8
- data/third_party/boringssl-with-bazel/src/include/openssl/mlkem.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/obj_mac.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/objects.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/opensslconf.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/opensslv.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/ossl_typ.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/pkcs12.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/pkcs7.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/pkcs8.h +2 -2
- data/third_party/boringssl-with-bazel/src/include/openssl/poly1305.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/pool.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/posix_time.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/rand.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/rsa.h +10 -5
- data/third_party/boringssl-with-bazel/src/include/openssl/safestack.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/sha.h +2 -40
- data/third_party/boringssl-with-bazel/src/include/openssl/siphash.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/slhdsa.h +133 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/span.h +6 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/srtp.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl.h +160 -116
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl3.h +1 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/target.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/thread.h +2 -2
- data/third_party/boringssl-with-bazel/src/include/openssl/time.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/trust_token.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/x509_vfy.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3.h +1 -1
- data/third_party/boringssl-with-bazel/src/include/openssl/x509v3_errors.h +2 -2
- data/third_party/boringssl-with-bazel/src/ssl/bio_ssl.cc +2 -6
- data/third_party/boringssl-with-bazel/src/ssl/d1_both.cc +667 -322
- data/third_party/boringssl-with-bazel/src/ssl/d1_lib.cc +116 -119
- data/third_party/boringssl-with-bazel/src/ssl/d1_pkt.cc +163 -21
- data/third_party/boringssl-with-bazel/src/ssl/d1_srtp.cc +4 -12
- data/third_party/boringssl-with-bazel/src/ssl/dtls_method.cc +94 -49
- data/third_party/boringssl-with-bazel/src/ssl/dtls_record.cc +296 -198
- data/third_party/boringssl-with-bazel/src/ssl/encrypted_client_hello.cc +23 -14
- data/third_party/boringssl-with-bazel/src/ssl/extensions.cc +363 -343
- data/third_party/boringssl-with-bazel/src/ssl/handoff.cc +48 -58
- data/third_party/boringssl-with-bazel/src/ssl/handshake.cc +44 -36
- data/third_party/boringssl-with-bazel/src/ssl/handshake_client.cc +145 -159
- data/third_party/boringssl-with-bazel/src/ssl/handshake_server.cc +65 -58
- data/third_party/boringssl-with-bazel/src/ssl/internal.h +910 -356
- data/third_party/boringssl-with-bazel/src/ssl/s3_both.cc +29 -41
- data/third_party/boringssl-with-bazel/src/ssl/s3_lib.cc +13 -11
- data/third_party/boringssl-with-bazel/src/ssl/s3_pkt.cc +2 -2
- data/third_party/boringssl-with-bazel/src/ssl/ssl_aead_ctx.cc +90 -183
- data/third_party/boringssl-with-bazel/src/ssl/ssl_asn1.cc +38 -64
- data/third_party/boringssl-with-bazel/src/ssl/ssl_buffer.cc +1 -1
- data/third_party/boringssl-with-bazel/src/ssl/ssl_cert.cc +103 -44
- data/third_party/boringssl-with-bazel/src/ssl/ssl_cipher.cc +210 -220
- data/third_party/boringssl-with-bazel/src/ssl/ssl_credential.cc +70 -12
- data/third_party/boringssl-with-bazel/src/ssl/ssl_key_share.cc +20 -17
- data/third_party/boringssl-with-bazel/src/ssl/ssl_lib.cc +146 -169
- data/third_party/boringssl-with-bazel/src/ssl/ssl_privkey.cc +15 -16
- data/third_party/boringssl-with-bazel/src/ssl/ssl_session.cc +79 -95
- data/third_party/boringssl-with-bazel/src/ssl/ssl_stat.cc +3 -9
- data/third_party/boringssl-with-bazel/src/ssl/ssl_transcript.cc +91 -16
- data/third_party/boringssl-with-bazel/src/ssl/ssl_versions.cc +30 -16
- data/third_party/boringssl-with-bazel/src/ssl/ssl_x509.cc +51 -56
- data/third_party/boringssl-with-bazel/src/ssl/t1_enc.cc +22 -25
- data/third_party/boringssl-with-bazel/src/ssl/tls13_both.cc +43 -27
- data/third_party/boringssl-with-bazel/src/ssl/tls13_client.cc +63 -59
- data/third_party/boringssl-with-bazel/src/ssl/tls13_enc.cc +204 -121
- data/third_party/boringssl-with-bazel/src/ssl/tls13_server.cc +86 -59
- data/third_party/boringssl-with-bazel/src/ssl/tls_method.cc +51 -62
- data/third_party/boringssl-with-bazel/src/ssl/tls_record.cc +37 -25
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_32.h +6 -0
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_64.h +6 -0
- data/third_party/boringssl-with-bazel/src/third_party/fiat/curve25519_64_adx.h +4 -1
- data/third_party/boringssl-with-bazel/src/third_party/fiat/p256_32.h +1 -1
- data/third_party/boringssl-with-bazel/src/third_party/fiat/p256_64.h +3 -0
- metadata +339 -339
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb.h +0 -426
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb_minitable.c +0 -87
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb_minitable.h +0 -32
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb.h +0 -408
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb_minitable.c +0 -124
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb_minitable.h +0 -38
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opencensus.upbdefs.c +0 -108
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opencensus.upbdefs.h +0 -33
- data/src/core/ext/upbdefs-gen/opencensus/proto/trace/v1/trace_config.upbdefs.c +0 -67
- data/src/core/ext/upbdefs-gen/opencensus/proto/trace/v1/trace_config.upbdefs.h +0 -48
- data/src/core/util/atm.cc +0 -34
- data/third_party/boringssl-with-bazel/src/crypto/dilithium/dilithium.c +0 -1539
- data/third_party/boringssl-with-bazel/src/crypto/dilithium/internal.h +0 -58
- data/third_party/boringssl-with-bazel/src/crypto/spx/address.c +0 -101
- data/third_party/boringssl-with-bazel/src/crypto/spx/address.h +0 -50
- data/third_party/boringssl-with-bazel/src/crypto/spx/fors.c +0 -133
- data/third_party/boringssl-with-bazel/src/crypto/spx/fors.h +0 -54
- data/third_party/boringssl-with-bazel/src/crypto/spx/merkle.c +0 -150
- data/third_party/boringssl-with-bazel/src/crypto/spx/merkle.h +0 -61
- data/third_party/boringssl-with-bazel/src/crypto/spx/params.h +0 -71
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx.c +0 -140
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx_util.c +0 -53
- data/third_party/boringssl-with-bazel/src/crypto/spx/spx_util.h +0 -44
- data/third_party/boringssl-with-bazel/src/crypto/spx/thash.c +0 -136
- data/third_party/boringssl-with-bazel/src/crypto/spx/thash.h +0 -70
- data/third_party/boringssl-with-bazel/src/crypto/spx/wots.c +0 -135
- data/third_party/boringssl-with-bazel/src/crypto/spx/wots.h +0 -45
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/dilithium.h +0 -129
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/spx.h +0 -90
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_bool.c → a_bool.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_gentm.c → a_gentm.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_octet.c → a_octet.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_strex.c → a_strex.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_time.c → a_time.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{a_utctm.c → a_utctm.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{asn1_par.c → asn1_par.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{f_int.c → f_int.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{f_string.c → f_string.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/asn1/{tasn_typ.c → tasn_typ.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/bio/{errno.c → errno.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/bio/{fd.c → fd.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/bio/{hexdump.c → hexdump.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/bio/{socket.c → socket.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{cipher_extra.c → cipher_extra.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{derive_key.c → derive_key.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/{tls_cbc.c → tls_cbc.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/des/{des.c → des.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/dh_extra/{params.c → params.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/ecdh_extra/{ecdh_extra.c → ecdh_extra.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/evp/{evp_asn1.c → evp_asn1.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/evp/{sign.c → sign.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/{aes.c.inc → aes.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/{mode_wrappers.c.inc → mode_wrappers.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{bytes.c.inc → bytes.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{cmp.c.inc → cmp.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{generic.c.inc → generic.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{jacobi.c.inc → jacobi.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{montgomery_inv.c.inc → montgomery_inv.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{random.c.inc → random.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{rsaz_exp.c.inc → rsaz_exp.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bn/{sqrt.c.inc → sqrt.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/cipher/{e_aesccm.c.inc → e_aesccm.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/dh/{check.c.inc → check.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{ec_montgomery.c.inc → ec_montgomery.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/{simple.c.inc → simple.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/{cbc.c.inc → cbc.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/{cfb.c.inc → cfb.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/{ctr.c.inc → ctr.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/modes/{ofb.c.inc → ofb.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/tls/{kdf.c.inc → kdf.cc.inc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/obj/{obj_xref.c → obj_xref.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_all.c → pem_all.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_pk8.c → pem_pk8.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_pkey.c → pem_pkey.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_x509.c → pem_x509.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/pem/{pem_xaux.c → pem_xaux.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/rc4/{rc4.c → rc4.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/rsa_extra/{rsa_print.c → rsa_print.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/{thread.c → thread.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{by_file.c → by_file.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{i2d_pr.c → i2d_pr.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{name_print.c → name_print.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{t_crl.c → t_crl.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{t_req.c → t_req.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{t_x509.c → t_x509.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{t_x509a.c → t_x509a.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{v3_akeya.c → v3_akeya.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509.c → x509.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_cmp.c → x509_cmp.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_d2.c → x509_d2.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_def.c → x509_def.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_ext.c → x509_ext.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_obj.c → x509_obj.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_req.c → x509_req.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_set.c → x509_set.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_trs.c → x509_trs.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509_txt.c → x509_txt.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509cset.c → x509cset.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509name.c → x509name.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x509rset.c → x509rset.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x_algor.c → x_algor.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x_attrib.c → x_attrib.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x_exten.c → x_exten.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x_req.c → x_req.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x_sig.c → x_sig.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x_spki.c → x_spki.cc} +0 -0
- /data/third_party/boringssl-with-bazel/src/crypto/x509/{x_val.c → x_val.cc} +0 -0
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/* Copyright
|
|
1
|
+
/* Copyright 2022 The BoringSSL Authors
|
|
2
2
|
*
|
|
3
3
|
* Permission to use, copy, modify, and/or distribute this software for any
|
|
4
4
|
* purpose with or without fee is hereby granted, provided that the above
|
|
@@ -35,7 +35,8 @@ typedef struct {
|
|
|
35
35
|
} HKDF_PKEY_CTX;
|
|
36
36
|
|
|
37
37
|
static int pkey_hkdf_init(EVP_PKEY_CTX *ctx) {
|
|
38
|
-
HKDF_PKEY_CTX *hctx =
|
|
38
|
+
HKDF_PKEY_CTX *hctx =
|
|
39
|
+
reinterpret_cast<HKDF_PKEY_CTX *>(OPENSSL_zalloc(sizeof(HKDF_PKEY_CTX)));
|
|
39
40
|
if (hctx == NULL) {
|
|
40
41
|
return 0;
|
|
41
42
|
}
|
|
@@ -54,13 +55,15 @@ static int pkey_hkdf_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) {
|
|
|
54
55
|
return 0;
|
|
55
56
|
}
|
|
56
57
|
|
|
57
|
-
HKDF_PKEY_CTX *hctx_dst = dst->data;
|
|
58
|
-
const HKDF_PKEY_CTX *hctx_src =
|
|
58
|
+
HKDF_PKEY_CTX *hctx_dst = reinterpret_cast<HKDF_PKEY_CTX *>(dst->data);
|
|
59
|
+
const HKDF_PKEY_CTX *hctx_src =
|
|
60
|
+
reinterpret_cast<const HKDF_PKEY_CTX *>(src->data);
|
|
59
61
|
hctx_dst->mode = hctx_src->mode;
|
|
60
62
|
hctx_dst->md = hctx_src->md;
|
|
61
63
|
|
|
62
64
|
if (hctx_src->key_len != 0) {
|
|
63
|
-
hctx_dst->key =
|
|
65
|
+
hctx_dst->key = reinterpret_cast<uint8_t *>(
|
|
66
|
+
OPENSSL_memdup(hctx_src->key, hctx_src->key_len));
|
|
64
67
|
if (hctx_dst->key == NULL) {
|
|
65
68
|
return 0;
|
|
66
69
|
}
|
|
@@ -68,7 +71,8 @@ static int pkey_hkdf_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) {
|
|
|
68
71
|
}
|
|
69
72
|
|
|
70
73
|
if (hctx_src->salt_len != 0) {
|
|
71
|
-
hctx_dst->salt =
|
|
74
|
+
hctx_dst->salt = reinterpret_cast<uint8_t *>(
|
|
75
|
+
OPENSSL_memdup(hctx_src->salt, hctx_src->salt_len));
|
|
72
76
|
if (hctx_dst->salt == NULL) {
|
|
73
77
|
return 0;
|
|
74
78
|
}
|
|
@@ -84,7 +88,7 @@ static int pkey_hkdf_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) {
|
|
|
84
88
|
}
|
|
85
89
|
|
|
86
90
|
static void pkey_hkdf_cleanup(EVP_PKEY_CTX *ctx) {
|
|
87
|
-
HKDF_PKEY_CTX *hctx = ctx->data;
|
|
91
|
+
HKDF_PKEY_CTX *hctx = reinterpret_cast<HKDF_PKEY_CTX *>(ctx->data);
|
|
88
92
|
if (hctx != NULL) {
|
|
89
93
|
OPENSSL_free(hctx->key);
|
|
90
94
|
OPENSSL_free(hctx->salt);
|
|
@@ -95,7 +99,7 @@ static void pkey_hkdf_cleanup(EVP_PKEY_CTX *ctx) {
|
|
|
95
99
|
}
|
|
96
100
|
|
|
97
101
|
static int pkey_hkdf_derive(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *out_len) {
|
|
98
|
-
HKDF_PKEY_CTX *hctx = ctx->data;
|
|
102
|
+
HKDF_PKEY_CTX *hctx = reinterpret_cast<HKDF_PKEY_CTX *>(ctx->data);
|
|
99
103
|
if (hctx->md == NULL) {
|
|
100
104
|
OPENSSL_PUT_ERROR(EVP, EVP_R_MISSING_PARAMETERS);
|
|
101
105
|
return 0;
|
|
@@ -136,7 +140,7 @@ static int pkey_hkdf_derive(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *out_len) {
|
|
|
136
140
|
}
|
|
137
141
|
|
|
138
142
|
static int pkey_hkdf_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
139
|
-
HKDF_PKEY_CTX *hctx = ctx->data;
|
|
143
|
+
HKDF_PKEY_CTX *hctx = reinterpret_cast<HKDF_PKEY_CTX *>(ctx->data);
|
|
140
144
|
switch (type) {
|
|
141
145
|
case EVP_PKEY_CTRL_HKDF_MODE:
|
|
142
146
|
if (p1 != EVP_PKEY_HKDEF_MODE_EXTRACT_AND_EXPAND &&
|
|
@@ -148,24 +152,24 @@ static int pkey_hkdf_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
148
152
|
hctx->mode = p1;
|
|
149
153
|
return 1;
|
|
150
154
|
case EVP_PKEY_CTRL_HKDF_MD:
|
|
151
|
-
hctx->md = p2;
|
|
155
|
+
hctx->md = reinterpret_cast<const EVP_MD *>(p2);
|
|
152
156
|
return 1;
|
|
153
157
|
case EVP_PKEY_CTRL_HKDF_KEY: {
|
|
154
|
-
const CBS *key = p2;
|
|
158
|
+
const CBS *key = reinterpret_cast<const CBS *>(p2);
|
|
155
159
|
if (!CBS_stow(key, &hctx->key, &hctx->key_len)) {
|
|
156
160
|
return 0;
|
|
157
161
|
}
|
|
158
162
|
return 1;
|
|
159
163
|
}
|
|
160
164
|
case EVP_PKEY_CTRL_HKDF_SALT: {
|
|
161
|
-
const CBS *salt = p2;
|
|
165
|
+
const CBS *salt = reinterpret_cast<const CBS *>(p2);
|
|
162
166
|
if (!CBS_stow(salt, &hctx->salt, &hctx->salt_len)) {
|
|
163
167
|
return 0;
|
|
164
168
|
}
|
|
165
169
|
return 1;
|
|
166
170
|
}
|
|
167
171
|
case EVP_PKEY_CTRL_HKDF_INFO: {
|
|
168
|
-
const CBS *info = p2;
|
|
172
|
+
const CBS *info = reinterpret_cast<const CBS *>(p2);
|
|
169
173
|
// |EVP_PKEY_CTX_add1_hkdf_info| appends to the info string, rather than
|
|
170
174
|
// replacing it.
|
|
171
175
|
if (!CBB_add_bytes(&hctx->info, CBS_data(info), CBS_len(info))) {
|
|
@@ -180,7 +184,7 @@ static int pkey_hkdf_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
180
184
|
}
|
|
181
185
|
|
|
182
186
|
const EVP_PKEY_METHOD hkdf_pkey_meth = {
|
|
183
|
-
EVP_PKEY_HKDF,
|
|
187
|
+
/*pkey_id=*/EVP_PKEY_HKDF,
|
|
184
188
|
pkey_hkdf_init,
|
|
185
189
|
pkey_hkdf_copy,
|
|
186
190
|
pkey_hkdf_cleanup,
|
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
|
|
2
|
-
*
|
|
1
|
+
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
|
|
2
|
+
* 2006.
|
|
3
3
|
*/
|
|
4
4
|
/* ====================================================================
|
|
5
5
|
* Copyright (c) 2006 The OpenSSL Project. All rights reserved.
|
|
@@ -97,7 +97,8 @@ typedef struct {
|
|
|
97
97
|
} RSA_OAEP_LABEL_PARAMS;
|
|
98
98
|
|
|
99
99
|
static int pkey_rsa_init(EVP_PKEY_CTX *ctx) {
|
|
100
|
-
RSA_PKEY_CTX *rctx =
|
|
100
|
+
RSA_PKEY_CTX *rctx =
|
|
101
|
+
reinterpret_cast<RSA_PKEY_CTX *>(OPENSSL_zalloc(sizeof(RSA_PKEY_CTX)));
|
|
101
102
|
if (!rctx) {
|
|
102
103
|
return 0;
|
|
103
104
|
}
|
|
@@ -116,8 +117,8 @@ static int pkey_rsa_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) {
|
|
|
116
117
|
if (!pkey_rsa_init(dst)) {
|
|
117
118
|
return 0;
|
|
118
119
|
}
|
|
119
|
-
sctx = src->data;
|
|
120
|
-
dctx = dst->data;
|
|
120
|
+
sctx = reinterpret_cast<RSA_PKEY_CTX *>(src->data);
|
|
121
|
+
dctx = reinterpret_cast<RSA_PKEY_CTX *>(dst->data);
|
|
121
122
|
dctx->nbits = sctx->nbits;
|
|
122
123
|
if (sctx->pub_exp) {
|
|
123
124
|
dctx->pub_exp = BN_dup(sctx->pub_exp);
|
|
@@ -132,7 +133,8 @@ static int pkey_rsa_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) {
|
|
|
132
133
|
dctx->saltlen = sctx->saltlen;
|
|
133
134
|
if (sctx->oaep_label) {
|
|
134
135
|
OPENSSL_free(dctx->oaep_label);
|
|
135
|
-
dctx->oaep_label =
|
|
136
|
+
dctx->oaep_label = reinterpret_cast<uint8_t *>(
|
|
137
|
+
OPENSSL_memdup(sctx->oaep_label, sctx->oaep_labellen));
|
|
136
138
|
if (!dctx->oaep_label) {
|
|
137
139
|
return 0;
|
|
138
140
|
}
|
|
@@ -143,7 +145,7 @@ static int pkey_rsa_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) {
|
|
|
143
145
|
}
|
|
144
146
|
|
|
145
147
|
static void pkey_rsa_cleanup(EVP_PKEY_CTX *ctx) {
|
|
146
|
-
RSA_PKEY_CTX *rctx = ctx->data;
|
|
148
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
147
149
|
|
|
148
150
|
if (rctx == NULL) {
|
|
149
151
|
return;
|
|
@@ -159,7 +161,8 @@ static int setup_tbuf(RSA_PKEY_CTX *ctx, EVP_PKEY_CTX *pk) {
|
|
|
159
161
|
if (ctx->tbuf) {
|
|
160
162
|
return 1;
|
|
161
163
|
}
|
|
162
|
-
ctx->tbuf =
|
|
164
|
+
ctx->tbuf =
|
|
165
|
+
reinterpret_cast<uint8_t *>(OPENSSL_malloc(EVP_PKEY_size(pk->pkey)));
|
|
163
166
|
if (!ctx->tbuf) {
|
|
164
167
|
return 0;
|
|
165
168
|
}
|
|
@@ -168,8 +171,8 @@ static int setup_tbuf(RSA_PKEY_CTX *ctx, EVP_PKEY_CTX *pk) {
|
|
|
168
171
|
|
|
169
172
|
static int pkey_rsa_sign(EVP_PKEY_CTX *ctx, uint8_t *sig, size_t *siglen,
|
|
170
173
|
const uint8_t *tbs, size_t tbslen) {
|
|
171
|
-
RSA_PKEY_CTX *rctx = ctx->data;
|
|
172
|
-
RSA *rsa = ctx->pkey->pkey;
|
|
174
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
175
|
+
RSA *rsa = reinterpret_cast<RSA *>(ctx->pkey->pkey);
|
|
173
176
|
const size_t key_len = EVP_PKEY_size(ctx->pkey);
|
|
174
177
|
|
|
175
178
|
if (!sig) {
|
|
@@ -204,11 +207,10 @@ static int pkey_rsa_sign(EVP_PKEY_CTX *ctx, uint8_t *sig, size_t *siglen,
|
|
|
204
207
|
return RSA_sign_raw(rsa, siglen, sig, *siglen, tbs, tbslen, rctx->pad_mode);
|
|
205
208
|
}
|
|
206
209
|
|
|
207
|
-
static int pkey_rsa_verify(EVP_PKEY_CTX *ctx, const uint8_t *sig,
|
|
208
|
-
|
|
209
|
-
|
|
210
|
-
|
|
211
|
-
RSA *rsa = ctx->pkey->pkey;
|
|
210
|
+
static int pkey_rsa_verify(EVP_PKEY_CTX *ctx, const uint8_t *sig, size_t siglen,
|
|
211
|
+
const uint8_t *tbs, size_t tbslen) {
|
|
212
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
213
|
+
RSA *rsa = reinterpret_cast<RSA *>(ctx->pkey->pkey);
|
|
212
214
|
|
|
213
215
|
if (rctx->md) {
|
|
214
216
|
switch (rctx->pad_mode) {
|
|
@@ -229,8 +231,7 @@ static int pkey_rsa_verify(EVP_PKEY_CTX *ctx, const uint8_t *sig,
|
|
|
229
231
|
if (!setup_tbuf(rctx, ctx) ||
|
|
230
232
|
!RSA_verify_raw(rsa, &rslen, rctx->tbuf, key_len, sig, siglen,
|
|
231
233
|
rctx->pad_mode) ||
|
|
232
|
-
rslen != tbslen ||
|
|
233
|
-
CRYPTO_memcmp(tbs, rctx->tbuf, rslen) != 0) {
|
|
234
|
+
rslen != tbslen || CRYPTO_memcmp(tbs, rctx->tbuf, rslen) != 0) {
|
|
234
235
|
return 0;
|
|
235
236
|
}
|
|
236
237
|
|
|
@@ -240,8 +241,8 @@ static int pkey_rsa_verify(EVP_PKEY_CTX *ctx, const uint8_t *sig,
|
|
|
240
241
|
static int pkey_rsa_verify_recover(EVP_PKEY_CTX *ctx, uint8_t *out,
|
|
241
242
|
size_t *out_len, const uint8_t *sig,
|
|
242
243
|
size_t sig_len) {
|
|
243
|
-
RSA_PKEY_CTX *rctx = ctx->data;
|
|
244
|
-
RSA *rsa = ctx->pkey->pkey;
|
|
244
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
245
|
+
RSA *rsa = reinterpret_cast<RSA *>(ctx->pkey->pkey);
|
|
245
246
|
const size_t key_len = EVP_PKEY_size(ctx->pkey);
|
|
246
247
|
|
|
247
248
|
if (out == NULL) {
|
|
@@ -304,8 +305,8 @@ static int pkey_rsa_verify_recover(EVP_PKEY_CTX *ctx, uint8_t *out,
|
|
|
304
305
|
|
|
305
306
|
static int pkey_rsa_encrypt(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *outlen,
|
|
306
307
|
const uint8_t *in, size_t inlen) {
|
|
307
|
-
RSA_PKEY_CTX *rctx = ctx->data;
|
|
308
|
-
RSA *rsa = ctx->pkey->pkey;
|
|
308
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
309
|
+
RSA *rsa = reinterpret_cast<RSA *>(ctx->pkey->pkey);
|
|
309
310
|
const size_t key_len = EVP_PKEY_size(ctx->pkey);
|
|
310
311
|
|
|
311
312
|
if (!out) {
|
|
@@ -333,11 +334,10 @@ static int pkey_rsa_encrypt(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *outlen,
|
|
|
333
334
|
return RSA_encrypt(rsa, outlen, out, *outlen, in, inlen, rctx->pad_mode);
|
|
334
335
|
}
|
|
335
336
|
|
|
336
|
-
static int pkey_rsa_decrypt(EVP_PKEY_CTX *ctx, uint8_t *out,
|
|
337
|
-
|
|
338
|
-
|
|
339
|
-
|
|
340
|
-
RSA *rsa = ctx->pkey->pkey;
|
|
337
|
+
static int pkey_rsa_decrypt(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *outlen,
|
|
338
|
+
const uint8_t *in, size_t inlen) {
|
|
339
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
340
|
+
RSA *rsa = reinterpret_cast<RSA *>(ctx->pkey->pkey);
|
|
341
341
|
const size_t key_len = EVP_PKEY_size(ctx->pkey);
|
|
342
342
|
|
|
343
343
|
if (!out) {
|
|
@@ -392,7 +392,7 @@ static int is_known_padding(int padding_mode) {
|
|
|
392
392
|
}
|
|
393
393
|
|
|
394
394
|
static int pkey_rsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
395
|
-
RSA_PKEY_CTX *rctx = ctx->data;
|
|
395
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
396
396
|
switch (type) {
|
|
397
397
|
case EVP_PKEY_CTRL_RSA_PADDING:
|
|
398
398
|
if (!is_known_padding(p1) || !check_padding_md(rctx->md, p1) ||
|
|
@@ -443,7 +443,7 @@ static int pkey_rsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
443
443
|
return 0;
|
|
444
444
|
}
|
|
445
445
|
BN_free(rctx->pub_exp);
|
|
446
|
-
rctx->pub_exp = p2;
|
|
446
|
+
rctx->pub_exp = reinterpret_cast<BIGNUM *>(p2);
|
|
447
447
|
return 1;
|
|
448
448
|
|
|
449
449
|
case EVP_PKEY_CTRL_RSA_OAEP_MD:
|
|
@@ -455,15 +455,15 @@ static int pkey_rsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
455
455
|
if (type == EVP_PKEY_CTRL_GET_RSA_OAEP_MD) {
|
|
456
456
|
*(const EVP_MD **)p2 = rctx->md;
|
|
457
457
|
} else {
|
|
458
|
-
rctx->md = p2;
|
|
458
|
+
rctx->md = reinterpret_cast<EVP_MD *>(p2);
|
|
459
459
|
}
|
|
460
460
|
return 1;
|
|
461
461
|
|
|
462
462
|
case EVP_PKEY_CTRL_MD:
|
|
463
|
-
if (!check_padding_md(p2, rctx->pad_mode)) {
|
|
463
|
+
if (!check_padding_md(reinterpret_cast<EVP_MD *>(p2), rctx->pad_mode)) {
|
|
464
464
|
return 0;
|
|
465
465
|
}
|
|
466
|
-
rctx->md = p2;
|
|
466
|
+
rctx->md = reinterpret_cast<EVP_MD *>(p2);
|
|
467
467
|
return 1;
|
|
468
468
|
|
|
469
469
|
case EVP_PKEY_CTRL_GET_MD:
|
|
@@ -484,7 +484,7 @@ static int pkey_rsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
484
484
|
*(const EVP_MD **)p2 = rctx->md;
|
|
485
485
|
}
|
|
486
486
|
} else {
|
|
487
|
-
rctx->mgf1md = p2;
|
|
487
|
+
rctx->mgf1md = reinterpret_cast<EVP_MD *>(p2);
|
|
488
488
|
}
|
|
489
489
|
return 1;
|
|
490
490
|
|
|
@@ -494,7 +494,8 @@ static int pkey_rsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
494
494
|
return 0;
|
|
495
495
|
}
|
|
496
496
|
OPENSSL_free(rctx->oaep_label);
|
|
497
|
-
RSA_OAEP_LABEL_PARAMS *params =
|
|
497
|
+
RSA_OAEP_LABEL_PARAMS *params =
|
|
498
|
+
reinterpret_cast<RSA_OAEP_LABEL_PARAMS *>(p2);
|
|
498
499
|
rctx->oaep_label = params->data;
|
|
499
500
|
rctx->oaep_labellen = params->len;
|
|
500
501
|
return 1;
|
|
@@ -516,7 +517,7 @@ static int pkey_rsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
516
517
|
|
|
517
518
|
static int pkey_rsa_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY *pkey) {
|
|
518
519
|
RSA *rsa = NULL;
|
|
519
|
-
RSA_PKEY_CTX *rctx = ctx->data;
|
|
520
|
+
RSA_PKEY_CTX *rctx = reinterpret_cast<RSA_PKEY_CTX *>(ctx->data);
|
|
520
521
|
|
|
521
522
|
if (!rctx->pub_exp) {
|
|
522
523
|
rctx->pub_exp = BN_new();
|
|
@@ -608,19 +609,19 @@ int EVP_PKEY_CTX_set_rsa_oaep_md(EVP_PKEY_CTX *ctx, const EVP_MD *md) {
|
|
|
608
609
|
|
|
609
610
|
int EVP_PKEY_CTX_get_rsa_oaep_md(EVP_PKEY_CTX *ctx, const EVP_MD **out_md) {
|
|
610
611
|
return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_RSA, EVP_PKEY_OP_TYPE_CRYPT,
|
|
611
|
-
EVP_PKEY_CTRL_GET_RSA_OAEP_MD, 0, (void*)
|
|
612
|
+
EVP_PKEY_CTRL_GET_RSA_OAEP_MD, 0, (void *)out_md);
|
|
612
613
|
}
|
|
613
614
|
|
|
614
615
|
int EVP_PKEY_CTX_set_rsa_mgf1_md(EVP_PKEY_CTX *ctx, const EVP_MD *md) {
|
|
615
616
|
return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_RSA,
|
|
616
617
|
EVP_PKEY_OP_TYPE_SIG | EVP_PKEY_OP_TYPE_CRYPT,
|
|
617
|
-
EVP_PKEY_CTRL_RSA_MGF1_MD, 0, (void*)
|
|
618
|
+
EVP_PKEY_CTRL_RSA_MGF1_MD, 0, (void *)md);
|
|
618
619
|
}
|
|
619
620
|
|
|
620
621
|
int EVP_PKEY_CTX_get_rsa_mgf1_md(EVP_PKEY_CTX *ctx, const EVP_MD **out_md) {
|
|
621
622
|
return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_RSA,
|
|
622
623
|
EVP_PKEY_OP_TYPE_SIG | EVP_PKEY_OP_TYPE_CRYPT,
|
|
623
|
-
EVP_PKEY_CTRL_GET_RSA_MGF1_MD, 0, (void*)
|
|
624
|
+
EVP_PKEY_CTRL_GET_RSA_MGF1_MD, 0, (void *)out_md);
|
|
624
625
|
}
|
|
625
626
|
|
|
626
627
|
int EVP_PKEY_CTX_set0_rsa_oaep_label(EVP_PKEY_CTX *ctx, uint8_t *label,
|
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
|
|
2
|
-
*
|
|
1
|
+
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
|
|
2
|
+
* 2006.
|
|
3
3
|
*/
|
|
4
4
|
/* ====================================================================
|
|
5
5
|
* Copyright (c) 2006 The OpenSSL Project. All rights reserved.
|
|
@@ -9,7 +9,7 @@
|
|
|
9
9
|
* are met:
|
|
10
10
|
*
|
|
11
11
|
* 1. Redistributions of source code must retain the above copyright
|
|
12
|
-
* notice, this list of conditions and the following disclaimer.
|
|
12
|
+
* notice, this list of conditions and the following disclaimer.
|
|
13
13
|
*
|
|
14
14
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
15
15
|
* notice, this list of conditions and the following disclaimer in
|
|
@@ -68,7 +68,7 @@
|
|
|
68
68
|
|
|
69
69
|
static int rsa_pub_encode(CBB *out, const EVP_PKEY *key) {
|
|
70
70
|
// See RFC 3279, section 2.3.1.
|
|
71
|
-
const RSA *rsa = key->pkey;
|
|
71
|
+
const RSA *rsa = reinterpret_cast<const RSA *>(key->pkey);
|
|
72
72
|
CBB spki, algorithm, oid, null, key_bitstring;
|
|
73
73
|
if (!CBB_add_asn1(out, &spki, CBS_ASN1_SEQUENCE) ||
|
|
74
74
|
!CBB_add_asn1(&spki, &algorithm, CBS_ASN1_SEQUENCE) ||
|
|
@@ -77,7 +77,7 @@ static int rsa_pub_encode(CBB *out, const EVP_PKEY *key) {
|
|
|
77
77
|
!CBB_add_asn1(&algorithm, &null, CBS_ASN1_NULL) ||
|
|
78
78
|
!CBB_add_asn1(&spki, &key_bitstring, CBS_ASN1_BITSTRING) ||
|
|
79
79
|
!CBB_add_u8(&key_bitstring, 0 /* padding */) ||
|
|
80
|
-
!RSA_marshal_public_key(&key_bitstring, rsa) ||
|
|
80
|
+
!RSA_marshal_public_key(&key_bitstring, rsa) || //
|
|
81
81
|
!CBB_flush(out)) {
|
|
82
82
|
OPENSSL_PUT_ERROR(EVP, EVP_R_ENCODE_ERROR);
|
|
83
83
|
return 0;
|
|
@@ -91,8 +91,7 @@ static int rsa_pub_decode(EVP_PKEY *out, CBS *params, CBS *key) {
|
|
|
91
91
|
|
|
92
92
|
// The parameters must be NULL.
|
|
93
93
|
CBS null;
|
|
94
|
-
if (!CBS_get_asn1(params, &null, CBS_ASN1_NULL) ||
|
|
95
|
-
CBS_len(&null) != 0 ||
|
|
94
|
+
if (!CBS_get_asn1(params, &null, CBS_ASN1_NULL) || CBS_len(&null) != 0 ||
|
|
96
95
|
CBS_len(params) != 0) {
|
|
97
96
|
OPENSSL_PUT_ERROR(EVP, EVP_R_DECODE_ERROR);
|
|
98
97
|
return 0;
|
|
@@ -110,14 +109,14 @@ static int rsa_pub_decode(EVP_PKEY *out, CBS *params, CBS *key) {
|
|
|
110
109
|
}
|
|
111
110
|
|
|
112
111
|
static int rsa_pub_cmp(const EVP_PKEY *a, const EVP_PKEY *b) {
|
|
113
|
-
const RSA *a_rsa = a->pkey;
|
|
114
|
-
const RSA *b_rsa = b->pkey;
|
|
112
|
+
const RSA *a_rsa = reinterpret_cast<const RSA *>(a->pkey);
|
|
113
|
+
const RSA *b_rsa = reinterpret_cast<const RSA *>(b->pkey);
|
|
115
114
|
return BN_cmp(RSA_get0_n(b_rsa), RSA_get0_n(a_rsa)) == 0 &&
|
|
116
115
|
BN_cmp(RSA_get0_e(b_rsa), RSA_get0_e(a_rsa)) == 0;
|
|
117
116
|
}
|
|
118
117
|
|
|
119
118
|
static int rsa_priv_encode(CBB *out, const EVP_PKEY *key) {
|
|
120
|
-
const RSA *rsa = key->pkey;
|
|
119
|
+
const RSA *rsa = reinterpret_cast<const RSA *>(key->pkey);
|
|
121
120
|
CBB pkcs8, algorithm, oid, null, private_key;
|
|
122
121
|
if (!CBB_add_asn1(out, &pkcs8, CBS_ASN1_SEQUENCE) ||
|
|
123
122
|
!CBB_add_asn1_uint64(&pkcs8, 0 /* version */) ||
|
|
@@ -126,7 +125,7 @@ static int rsa_priv_encode(CBB *out, const EVP_PKEY *key) {
|
|
|
126
125
|
!CBB_add_bytes(&oid, rsa_asn1_meth.oid, rsa_asn1_meth.oid_len) ||
|
|
127
126
|
!CBB_add_asn1(&algorithm, &null, CBS_ASN1_NULL) ||
|
|
128
127
|
!CBB_add_asn1(&pkcs8, &private_key, CBS_ASN1_OCTETSTRING) ||
|
|
129
|
-
!RSA_marshal_private_key(&private_key, rsa) ||
|
|
128
|
+
!RSA_marshal_private_key(&private_key, rsa) || //
|
|
130
129
|
!CBB_flush(out)) {
|
|
131
130
|
OPENSSL_PUT_ERROR(EVP, EVP_R_ENCODE_ERROR);
|
|
132
131
|
return 0;
|
|
@@ -138,8 +137,7 @@ static int rsa_priv_encode(CBB *out, const EVP_PKEY *key) {
|
|
|
138
137
|
static int rsa_priv_decode(EVP_PKEY *out, CBS *params, CBS *key) {
|
|
139
138
|
// Per RFC 3447, A.1, the parameters have type NULL.
|
|
140
139
|
CBS null;
|
|
141
|
-
if (!CBS_get_asn1(params, &null, CBS_ASN1_NULL) ||
|
|
142
|
-
CBS_len(&null) != 0 ||
|
|
140
|
+
if (!CBS_get_asn1(params, &null, CBS_ASN1_NULL) || CBS_len(&null) != 0 ||
|
|
143
141
|
CBS_len(params) != 0) {
|
|
144
142
|
OPENSSL_PUT_ERROR(EVP, EVP_R_DECODE_ERROR);
|
|
145
143
|
return 0;
|
|
@@ -157,22 +155,22 @@ static int rsa_priv_decode(EVP_PKEY *out, CBS *params, CBS *key) {
|
|
|
157
155
|
}
|
|
158
156
|
|
|
159
157
|
static int rsa_opaque(const EVP_PKEY *pkey) {
|
|
160
|
-
const RSA *rsa = pkey->pkey;
|
|
158
|
+
const RSA *rsa = reinterpret_cast<const RSA *>(pkey->pkey);
|
|
161
159
|
return RSA_is_opaque(rsa);
|
|
162
160
|
}
|
|
163
161
|
|
|
164
162
|
static int int_rsa_size(const EVP_PKEY *pkey) {
|
|
165
|
-
const RSA *rsa = pkey->pkey;
|
|
163
|
+
const RSA *rsa = reinterpret_cast<const RSA *>(pkey->pkey);
|
|
166
164
|
return RSA_size(rsa);
|
|
167
165
|
}
|
|
168
166
|
|
|
169
167
|
static int rsa_bits(const EVP_PKEY *pkey) {
|
|
170
|
-
const RSA *rsa = pkey->pkey;
|
|
168
|
+
const RSA *rsa = reinterpret_cast<const RSA *>(pkey->pkey);
|
|
171
169
|
return RSA_bits(rsa);
|
|
172
170
|
}
|
|
173
171
|
|
|
174
172
|
static void int_rsa_free(EVP_PKEY *pkey) {
|
|
175
|
-
RSA_free(pkey->pkey);
|
|
173
|
+
RSA_free(reinterpret_cast<RSA *>(pkey->pkey));
|
|
176
174
|
pkey->pkey = NULL;
|
|
177
175
|
}
|
|
178
176
|
|
|
@@ -229,7 +227,7 @@ RSA *EVP_PKEY_get0_RSA(const EVP_PKEY *pkey) {
|
|
|
229
227
|
OPENSSL_PUT_ERROR(EVP, EVP_R_EXPECTING_AN_RSA_KEY);
|
|
230
228
|
return NULL;
|
|
231
229
|
}
|
|
232
|
-
return pkey->pkey;
|
|
230
|
+
return reinterpret_cast<RSA *>(pkey->pkey);
|
|
233
231
|
}
|
|
234
232
|
|
|
235
233
|
RSA *EVP_PKEY_get1_RSA(const EVP_PKEY *pkey) {
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/* Copyright
|
|
1
|
+
/* Copyright 2019 The BoringSSL Authors
|
|
2
2
|
*
|
|
3
3
|
* Permission to use, copy, modify, and/or distribute this software for any
|
|
4
4
|
* purpose with or without fee is hereby granted, provided that the above
|
|
@@ -25,7 +25,8 @@
|
|
|
25
25
|
static int pkey_x25519_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) { return 1; }
|
|
26
26
|
|
|
27
27
|
static int pkey_x25519_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY *pkey) {
|
|
28
|
-
X25519_KEY *key =
|
|
28
|
+
X25519_KEY *key =
|
|
29
|
+
reinterpret_cast<X25519_KEY *>(OPENSSL_malloc(sizeof(X25519_KEY)));
|
|
29
30
|
if (key == NULL) {
|
|
30
31
|
return 0;
|
|
31
32
|
}
|
|
@@ -47,8 +48,10 @@ static int pkey_x25519_derive(EVP_PKEY_CTX *ctx, uint8_t *out,
|
|
|
47
48
|
return 0;
|
|
48
49
|
}
|
|
49
50
|
|
|
50
|
-
const X25519_KEY *our_key =
|
|
51
|
-
|
|
51
|
+
const X25519_KEY *our_key =
|
|
52
|
+
reinterpret_cast<const X25519_KEY *>(ctx->pkey->pkey);
|
|
53
|
+
const X25519_KEY *peer_key =
|
|
54
|
+
reinterpret_cast<const X25519_KEY *>(ctx->peerkey->pkey);
|
|
52
55
|
if (our_key == NULL || peer_key == NULL) {
|
|
53
56
|
OPENSSL_PUT_ERROR(EVP, EVP_R_KEYS_NOT_SET);
|
|
54
57
|
return 0;
|
|
@@ -88,19 +91,19 @@ static int pkey_x25519_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) {
|
|
|
88
91
|
}
|
|
89
92
|
|
|
90
93
|
const EVP_PKEY_METHOD x25519_pkey_meth = {
|
|
91
|
-
EVP_PKEY_X25519,
|
|
92
|
-
|
|
93
|
-
pkey_x25519_copy,
|
|
94
|
-
|
|
95
|
-
pkey_x25519_keygen,
|
|
96
|
-
|
|
97
|
-
|
|
98
|
-
|
|
99
|
-
|
|
100
|
-
|
|
101
|
-
|
|
102
|
-
|
|
103
|
-
pkey_x25519_derive,
|
|
104
|
-
|
|
105
|
-
pkey_x25519_ctrl,
|
|
94
|
+
/*pkey_id=*/EVP_PKEY_X25519,
|
|
95
|
+
/*init=*/NULL,
|
|
96
|
+
/*copy=*/pkey_x25519_copy,
|
|
97
|
+
/*cleanup=*/NULL,
|
|
98
|
+
/*keygen=*/pkey_x25519_keygen,
|
|
99
|
+
/*sign=*/NULL,
|
|
100
|
+
/*sign_message=*/NULL,
|
|
101
|
+
/*verify=*/NULL,
|
|
102
|
+
/*verify_message=*/NULL,
|
|
103
|
+
/*verify_recover=*/NULL,
|
|
104
|
+
/*encrypt=*/NULL,
|
|
105
|
+
/*decrypt=*/NULL,
|
|
106
|
+
/*derive=*/pkey_x25519_derive,
|
|
107
|
+
/*paramgen=*/NULL,
|
|
108
|
+
/*ctrl=*/pkey_x25519_ctrl,
|
|
106
109
|
};
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/* Copyright
|
|
1
|
+
/* Copyright 2019 The BoringSSL Authors
|
|
2
2
|
*
|
|
3
3
|
* Permission to use, copy, modify, and/or distribute this software for any
|
|
4
4
|
* purpose with or without fee is hereby granted, provided that the above
|
|
@@ -19,8 +19,8 @@
|
|
|
19
19
|
#include <openssl/err.h>
|
|
20
20
|
#include <openssl/mem.h>
|
|
21
21
|
|
|
22
|
-
#include "internal.h"
|
|
23
22
|
#include "../internal.h"
|
|
23
|
+
#include "internal.h"
|
|
24
24
|
|
|
25
25
|
|
|
26
26
|
static void x25519_free(EVP_PKEY *pkey) {
|
|
@@ -34,7 +34,8 @@ static int x25519_set_priv_raw(EVP_PKEY *pkey, const uint8_t *in, size_t len) {
|
|
|
34
34
|
return 0;
|
|
35
35
|
}
|
|
36
36
|
|
|
37
|
-
X25519_KEY *key =
|
|
37
|
+
X25519_KEY *key =
|
|
38
|
+
reinterpret_cast<X25519_KEY *>(OPENSSL_malloc(sizeof(X25519_KEY)));
|
|
38
39
|
if (key == NULL) {
|
|
39
40
|
return 0;
|
|
40
41
|
}
|
|
@@ -54,7 +55,8 @@ static int x25519_set_pub_raw(EVP_PKEY *pkey, const uint8_t *in, size_t len) {
|
|
|
54
55
|
return 0;
|
|
55
56
|
}
|
|
56
57
|
|
|
57
|
-
X25519_KEY *key =
|
|
58
|
+
X25519_KEY *key =
|
|
59
|
+
reinterpret_cast<X25519_KEY *>(OPENSSL_malloc(sizeof(X25519_KEY)));
|
|
58
60
|
if (key == NULL) {
|
|
59
61
|
return 0;
|
|
60
62
|
}
|
|
@@ -69,7 +71,7 @@ static int x25519_set_pub_raw(EVP_PKEY *pkey, const uint8_t *in, size_t len) {
|
|
|
69
71
|
|
|
70
72
|
static int x25519_get_priv_raw(const EVP_PKEY *pkey, uint8_t *out,
|
|
71
73
|
size_t *out_len) {
|
|
72
|
-
const X25519_KEY *key = pkey->pkey;
|
|
74
|
+
const X25519_KEY *key = reinterpret_cast<X25519_KEY *>(pkey->pkey);
|
|
73
75
|
if (!key->has_private) {
|
|
74
76
|
OPENSSL_PUT_ERROR(EVP, EVP_R_NOT_A_PRIVATE_KEY);
|
|
75
77
|
return 0;
|
|
@@ -91,8 +93,8 @@ static int x25519_get_priv_raw(const EVP_PKEY *pkey, uint8_t *out,
|
|
|
91
93
|
}
|
|
92
94
|
|
|
93
95
|
static int x25519_get_pub_raw(const EVP_PKEY *pkey, uint8_t *out,
|
|
94
|
-
|
|
95
|
-
const X25519_KEY *key = pkey->pkey;
|
|
96
|
+
size_t *out_len) {
|
|
97
|
+
const X25519_KEY *key = reinterpret_cast<X25519_KEY *>(pkey->pkey);
|
|
96
98
|
if (out == NULL) {
|
|
97
99
|
*out_len = 32;
|
|
98
100
|
return 1;
|
|
@@ -115,13 +117,13 @@ static int x25519_set1_tls_encodedpoint(EVP_PKEY *pkey, const uint8_t *in,
|
|
|
115
117
|
|
|
116
118
|
static size_t x25519_get1_tls_encodedpoint(const EVP_PKEY *pkey,
|
|
117
119
|
uint8_t **out_ptr) {
|
|
118
|
-
const X25519_KEY *key = pkey->pkey;
|
|
120
|
+
const X25519_KEY *key = reinterpret_cast<X25519_KEY *>(pkey->pkey);
|
|
119
121
|
if (key == NULL) {
|
|
120
122
|
OPENSSL_PUT_ERROR(EVP, EVP_R_NO_KEY_SET);
|
|
121
123
|
return 0;
|
|
122
124
|
}
|
|
123
125
|
|
|
124
|
-
*out_ptr = OPENSSL_memdup(key->pub, 32);
|
|
126
|
+
*out_ptr = reinterpret_cast<uint8_t *>(OPENSSL_memdup(key->pub, 32));
|
|
125
127
|
return *out_ptr == NULL ? 0 : 32;
|
|
126
128
|
}
|
|
127
129
|
|
|
@@ -138,7 +140,7 @@ static int x25519_pub_decode(EVP_PKEY *out, CBS *params, CBS *key) {
|
|
|
138
140
|
}
|
|
139
141
|
|
|
140
142
|
static int x25519_pub_encode(CBB *out, const EVP_PKEY *pkey) {
|
|
141
|
-
const X25519_KEY *key = pkey->pkey;
|
|
143
|
+
const X25519_KEY *key = reinterpret_cast<X25519_KEY *>(pkey->pkey);
|
|
142
144
|
|
|
143
145
|
// See RFC 8410, section 4.
|
|
144
146
|
CBB spki, algorithm, oid, key_bitstring;
|
|
@@ -148,7 +150,7 @@ static int x25519_pub_encode(CBB *out, const EVP_PKEY *pkey) {
|
|
|
148
150
|
!CBB_add_bytes(&oid, x25519_asn1_meth.oid, x25519_asn1_meth.oid_len) ||
|
|
149
151
|
!CBB_add_asn1(&spki, &key_bitstring, CBS_ASN1_BITSTRING) ||
|
|
150
152
|
!CBB_add_u8(&key_bitstring, 0 /* padding */) ||
|
|
151
|
-
!CBB_add_bytes(&key_bitstring, key->pub, 32) ||
|
|
153
|
+
!CBB_add_bytes(&key_bitstring, key->pub, 32) || //
|
|
152
154
|
!CBB_flush(out)) {
|
|
153
155
|
OPENSSL_PUT_ERROR(EVP, EVP_R_ENCODE_ERROR);
|
|
154
156
|
return 0;
|
|
@@ -158,8 +160,8 @@ static int x25519_pub_encode(CBB *out, const EVP_PKEY *pkey) {
|
|
|
158
160
|
}
|
|
159
161
|
|
|
160
162
|
static int x25519_pub_cmp(const EVP_PKEY *a, const EVP_PKEY *b) {
|
|
161
|
-
const X25519_KEY *a_key = a->pkey;
|
|
162
|
-
const X25519_KEY *b_key = b->pkey;
|
|
163
|
+
const X25519_KEY *a_key = reinterpret_cast<const X25519_KEY *>(a->pkey);
|
|
164
|
+
const X25519_KEY *b_key = reinterpret_cast<const X25519_KEY *>(b->pkey);
|
|
163
165
|
return OPENSSL_memcmp(a_key->pub, b_key->pub, 32) == 0;
|
|
164
166
|
}
|
|
165
167
|
|
|
@@ -170,8 +172,7 @@ static int x25519_priv_decode(EVP_PKEY *out, CBS *params, CBS *key) {
|
|
|
170
172
|
// OCTET STRING layer.
|
|
171
173
|
CBS inner;
|
|
172
174
|
if (CBS_len(params) != 0 ||
|
|
173
|
-
!CBS_get_asn1(key, &inner, CBS_ASN1_OCTETSTRING) ||
|
|
174
|
-
CBS_len(key) != 0) {
|
|
175
|
+
!CBS_get_asn1(key, &inner, CBS_ASN1_OCTETSTRING) || CBS_len(key) != 0) {
|
|
175
176
|
OPENSSL_PUT_ERROR(EVP, EVP_R_DECODE_ERROR);
|
|
176
177
|
return 0;
|
|
177
178
|
}
|
|
@@ -180,7 +181,7 @@ static int x25519_priv_decode(EVP_PKEY *out, CBS *params, CBS *key) {
|
|
|
180
181
|
}
|
|
181
182
|
|
|
182
183
|
static int x25519_priv_encode(CBB *out, const EVP_PKEY *pkey) {
|
|
183
|
-
const X25519_KEY *key = pkey->pkey;
|
|
184
|
+
const X25519_KEY *key = reinterpret_cast<const X25519_KEY *>(pkey->pkey);
|
|
184
185
|
if (!key->has_private) {
|
|
185
186
|
OPENSSL_PUT_ERROR(EVP, EVP_R_NOT_A_PRIVATE_KEY);
|
|
186
187
|
return 0;
|
|
@@ -197,7 +198,7 @@ static int x25519_priv_encode(CBB *out, const EVP_PKEY *pkey) {
|
|
|
197
198
|
!CBB_add_asn1(&private_key, &inner, CBS_ASN1_OCTETSTRING) ||
|
|
198
199
|
// The PKCS#8 encoding stores only the 32-byte seed which is the first 32
|
|
199
200
|
// bytes of the private key.
|
|
200
|
-
!CBB_add_bytes(&inner, key->priv, 32) ||
|
|
201
|
+
!CBB_add_bytes(&inner, key->priv, 32) || //
|
|
201
202
|
!CBB_flush(out)) {
|
|
202
203
|
OPENSSL_PUT_ERROR(EVP, EVP_R_ENCODE_ERROR);
|
|
203
204
|
return 0;
|
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
|
|
2
|
-
*
|
|
1
|
+
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
|
|
2
|
+
* 1999.
|
|
3
3
|
*/
|
|
4
4
|
/* ====================================================================
|
|
5
5
|
* Copyright (c) 1999 The OpenSSL Project. All rights reserved.
|
|
@@ -60,8 +60,8 @@
|
|
|
60
60
|
#include <openssl/mem.h>
|
|
61
61
|
#include <openssl/rsa.h>
|
|
62
62
|
|
|
63
|
-
#include "../internal.h"
|
|
64
63
|
#include "../fipsmodule/rsa/internal.h"
|
|
64
|
+
#include "../internal.h"
|
|
65
65
|
|
|
66
66
|
|
|
67
67
|
static int print_hex(BIO *bp, const uint8_t *data, size_t len, int off) {
|
|
@@ -105,7 +105,7 @@ static int bn_print(BIO *bp, const char *name, const BIGNUM *num, int off) {
|
|
|
105
105
|
}
|
|
106
106
|
|
|
107
107
|
if (BIO_printf(bp, "%s%s", name,
|
|
108
|
-
|
|
108
|
+
(BN_is_negative(num)) ? " (Negative)" : "") <= 0) {
|
|
109
109
|
return 0;
|
|
110
110
|
}
|
|
111
111
|
|
|
@@ -115,7 +115,7 @@ static int bn_print(BIO *bp, const char *name, const BIGNUM *num, int off) {
|
|
|
115
115
|
// TODO(davidben): Do we need to do this? We already print "(Negative)" above
|
|
116
116
|
// and negative values are never valid in keys anyway.
|
|
117
117
|
size_t len = BN_num_bytes(num);
|
|
118
|
-
uint8_t *buf = OPENSSL_malloc(len + 1);
|
|
118
|
+
uint8_t *buf = reinterpret_cast<uint8_t *>(OPENSSL_malloc(len + 1));
|
|
119
119
|
if (buf == NULL) {
|
|
120
120
|
return 0;
|
|
121
121
|
}
|
|
@@ -161,8 +161,7 @@ static int do_rsa_print(BIO *out, const RSA *rsa, int off,
|
|
|
161
161
|
str = "Modulus:";
|
|
162
162
|
s = "Exponent:";
|
|
163
163
|
}
|
|
164
|
-
if (!bn_print(out, str, rsa->n, off) ||
|
|
165
|
-
!bn_print(out, s, rsa->e, off)) {
|
|
164
|
+
if (!bn_print(out, str, rsa->n, off) || !bn_print(out, s, rsa->e, off)) {
|
|
166
165
|
return 0;
|
|
167
166
|
}
|
|
168
167
|
|