wearefair-grpc 1.3.1.pre.a

Sign up to get free protection for your applications and to get access to all the features.
Files changed (1161) hide show
  1. checksums.yaml +7 -0
  2. data/.yardopts +1 -0
  3. data/Makefile +19484 -0
  4. data/etc/roots.pem +5288 -0
  5. data/include/grpc/byte_buffer.h +102 -0
  6. data/include/grpc/byte_buffer_reader.h +39 -0
  7. data/include/grpc/census.h +484 -0
  8. data/include/grpc/compression.h +85 -0
  9. data/include/grpc/grpc.h +509 -0
  10. data/include/grpc/grpc_cronet.h +51 -0
  11. data/include/grpc/grpc_posix.h +81 -0
  12. data/include/grpc/grpc_security.h +390 -0
  13. data/include/grpc/grpc_security_constants.h +114 -0
  14. data/include/grpc/impl/codegen/atm.h +100 -0
  15. data/include/grpc/impl/codegen/atm_gcc_atomic.h +97 -0
  16. data/include/grpc/impl/codegen/atm_gcc_sync.h +97 -0
  17. data/include/grpc/impl/codegen/atm_windows.h +140 -0
  18. data/include/grpc/impl/codegen/byte_buffer_reader.h +57 -0
  19. data/include/grpc/impl/codegen/compression_types.h +122 -0
  20. data/include/grpc/impl/codegen/connectivity_state.h +61 -0
  21. data/include/grpc/impl/codegen/exec_ctx_fwd.h +41 -0
  22. data/include/grpc/impl/codegen/gpr_slice.h +84 -0
  23. data/include/grpc/impl/codegen/gpr_types.h +75 -0
  24. data/include/grpc/impl/codegen/grpc_types.h +550 -0
  25. data/include/grpc/impl/codegen/port_platform.h +421 -0
  26. data/include/grpc/impl/codegen/propagation_bits.h +67 -0
  27. data/include/grpc/impl/codegen/slice.h +157 -0
  28. data/include/grpc/impl/codegen/status.h +163 -0
  29. data/include/grpc/impl/codegen/sync.h +75 -0
  30. data/include/grpc/impl/codegen/sync_generic.h +55 -0
  31. data/include/grpc/impl/codegen/sync_posix.h +47 -0
  32. data/include/grpc/impl/codegen/sync_windows.h +49 -0
  33. data/include/grpc/load_reporting.h +63 -0
  34. data/include/grpc/module.modulemap +13 -0
  35. data/include/grpc/slice.h +168 -0
  36. data/include/grpc/slice_buffer.h +94 -0
  37. data/include/grpc/status.h +39 -0
  38. data/include/grpc/support/alloc.h +82 -0
  39. data/include/grpc/support/atm.h +39 -0
  40. data/include/grpc/support/atm_gcc_atomic.h +39 -0
  41. data/include/grpc/support/atm_gcc_sync.h +39 -0
  42. data/include/grpc/support/atm_windows.h +39 -0
  43. data/include/grpc/support/avl.h +97 -0
  44. data/include/grpc/support/cmdline.h +103 -0
  45. data/include/grpc/support/cpu.h +59 -0
  46. data/include/grpc/support/histogram.h +79 -0
  47. data/include/grpc/support/host_port.h +66 -0
  48. data/include/grpc/support/log.h +118 -0
  49. data/include/grpc/support/log_windows.h +53 -0
  50. data/include/grpc/support/port_platform.h +39 -0
  51. data/include/grpc/support/string_util.h +64 -0
  52. data/include/grpc/support/subprocess.h +59 -0
  53. data/include/grpc/support/sync.h +295 -0
  54. data/include/grpc/support/sync_generic.h +39 -0
  55. data/include/grpc/support/sync_posix.h +39 -0
  56. data/include/grpc/support/sync_windows.h +39 -0
  57. data/include/grpc/support/thd.h +91 -0
  58. data/include/grpc/support/time.h +105 -0
  59. data/include/grpc/support/tls.h +77 -0
  60. data/include/grpc/support/tls_gcc.h +100 -0
  61. data/include/grpc/support/tls_msvc.h +56 -0
  62. data/include/grpc/support/tls_pthread.h +60 -0
  63. data/include/grpc/support/useful.h +80 -0
  64. data/src/boringssl/err_data.c +1270 -0
  65. data/src/core/ext/census/aggregation.h +66 -0
  66. data/src/core/ext/census/base_resources.c +71 -0
  67. data/src/core/ext/census/base_resources.h +39 -0
  68. data/src/core/ext/census/census_interface.h +76 -0
  69. data/src/core/ext/census/census_rpc_stats.h +101 -0
  70. data/src/core/ext/census/context.c +509 -0
  71. data/src/core/ext/census/gen/census.pb.c +176 -0
  72. data/src/core/ext/census/gen/census.pb.h +295 -0
  73. data/src/core/ext/census/gen/trace_context.pb.c +54 -0
  74. data/src/core/ext/census/gen/trace_context.pb.h +93 -0
  75. data/src/core/ext/census/grpc_context.c +53 -0
  76. data/src/core/ext/census/grpc_filter.c +213 -0
  77. data/src/core/ext/census/grpc_filter.h +44 -0
  78. data/src/core/ext/census/grpc_plugin.c +85 -0
  79. data/src/core/ext/census/initialize.c +66 -0
  80. data/src/core/ext/census/mlog.c +600 -0
  81. data/src/core/ext/census/mlog.h +95 -0
  82. data/src/core/ext/census/operation.c +63 -0
  83. data/src/core/ext/census/placeholders.c +64 -0
  84. data/src/core/ext/census/resource.c +312 -0
  85. data/src/core/ext/census/resource.h +63 -0
  86. data/src/core/ext/census/rpc_metric_id.h +51 -0
  87. data/src/core/ext/census/trace_context.c +86 -0
  88. data/src/core/ext/census/trace_context.h +71 -0
  89. data/src/core/ext/census/trace_label.h +61 -0
  90. data/src/core/ext/census/trace_propagation.h +63 -0
  91. data/src/core/ext/census/trace_status.h +45 -0
  92. data/src/core/ext/census/trace_string.h +50 -0
  93. data/src/core/ext/census/tracing.c +71 -0
  94. data/src/core/ext/census/tracing.h +124 -0
  95. data/src/core/ext/filters/client_channel/channel_connectivity.c +226 -0
  96. data/src/core/ext/filters/client_channel/client_channel.c +1410 -0
  97. data/src/core/ext/filters/client_channel/client_channel.h +64 -0
  98. data/src/core/ext/filters/client_channel/client_channel_factory.c +87 -0
  99. data/src/core/ext/filters/client_channel/client_channel_factory.h +92 -0
  100. data/src/core/ext/filters/client_channel/client_channel_plugin.c +106 -0
  101. data/src/core/ext/filters/client_channel/connector.c +55 -0
  102. data/src/core/ext/filters/client_channel/connector.h +88 -0
  103. data/src/core/ext/filters/client_channel/http_connect_handshaker.c +389 -0
  104. data/src/core/ext/filters/client_channel/http_connect_handshaker.h +49 -0
  105. data/src/core/ext/filters/client_channel/http_proxy.c +125 -0
  106. data/src/core/ext/filters/client_channel/http_proxy.h +39 -0
  107. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb.c +1419 -0
  108. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb.h +44 -0
  109. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_channel.h +57 -0
  110. data/src/core/ext/filters/client_channel/lb_policy/grpclb/grpclb_channel_secure.c +107 -0
  111. data/src/core/ext/filters/client_channel/lb_policy/grpclb/load_balancer_api.c +249 -0
  112. data/src/core/ext/filters/client_channel/lb_policy/grpclb/load_balancer_api.h +105 -0
  113. data/src/core/ext/filters/client_channel/lb_policy/grpclb/proto/grpc/lb/v1/load_balancer.pb.c +88 -0
  114. data/src/core/ext/filters/client_channel/lb_policy/grpclb/proto/grpc/lb/v1/load_balancer.pb.h +158 -0
  115. data/src/core/ext/filters/client_channel/lb_policy/pick_first/pick_first.c +476 -0
  116. data/src/core/ext/filters/client_channel/lb_policy/round_robin/round_robin.c +795 -0
  117. data/src/core/ext/filters/client_channel/lb_policy.c +167 -0
  118. data/src/core/ext/filters/client_channel/lb_policy.h +209 -0
  119. data/src/core/ext/filters/client_channel/lb_policy_factory.c +163 -0
  120. data/src/core/ext/filters/client_channel/lb_policy_factory.h +134 -0
  121. data/src/core/ext/filters/client_channel/lb_policy_registry.c +85 -0
  122. data/src/core/ext/filters/client_channel/lb_policy_registry.h +55 -0
  123. data/src/core/ext/filters/client_channel/parse_address.c +170 -0
  124. data/src/core/ext/filters/client_channel/parse_address.h +54 -0
  125. data/src/core/ext/filters/client_channel/proxy_mapper.c +63 -0
  126. data/src/core/ext/filters/client_channel/proxy_mapper.h +89 -0
  127. data/src/core/ext/filters/client_channel/proxy_mapper_registry.c +139 -0
  128. data/src/core/ext/filters/client_channel/proxy_mapper_registry.h +59 -0
  129. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/dns_resolver_ares.c +350 -0
  130. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver.h +66 -0
  131. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_ev_driver_posix.c +319 -0
  132. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.c +289 -0
  133. data/src/core/ext/filters/client_channel/resolver/dns/c_ares/grpc_ares_wrapper.h +64 -0
  134. data/src/core/ext/filters/client_channel/resolver/dns/native/dns_resolver.c +325 -0
  135. data/src/core/ext/filters/client_channel/resolver/sockaddr/sockaddr_resolver.c +234 -0
  136. data/src/core/ext/filters/client_channel/resolver.c +88 -0
  137. data/src/core/ext/filters/client_channel/resolver.h +101 -0
  138. data/src/core/ext/filters/client_channel/resolver_factory.c +56 -0
  139. data/src/core/ext/filters/client_channel/resolver_factory.h +85 -0
  140. data/src/core/ext/filters/client_channel/resolver_registry.c +174 -0
  141. data/src/core/ext/filters/client_channel/resolver_registry.h +84 -0
  142. data/src/core/ext/filters/client_channel/retry_throttle.c +210 -0
  143. data/src/core/ext/filters/client_channel/retry_throttle.h +65 -0
  144. data/src/core/ext/filters/client_channel/subchannel.c +835 -0
  145. data/src/core/ext/filters/client_channel/subchannel.h +203 -0
  146. data/src/core/ext/filters/client_channel/subchannel_index.c +262 -0
  147. data/src/core/ext/filters/client_channel/subchannel_index.h +77 -0
  148. data/src/core/ext/filters/client_channel/uri_parser.c +315 -0
  149. data/src/core/ext/filters/client_channel/uri_parser.h +65 -0
  150. data/src/core/ext/filters/load_reporting/load_reporting.c +106 -0
  151. data/src/core/ext/filters/load_reporting/load_reporting.h +73 -0
  152. data/src/core/ext/filters/load_reporting/load_reporting_filter.c +218 -0
  153. data/src/core/ext/filters/load_reporting/load_reporting_filter.h +42 -0
  154. data/src/core/ext/filters/max_age/max_age_filter.c +439 -0
  155. data/src/core/ext/filters/max_age/max_age_filter.h +39 -0
  156. data/src/core/ext/transport/chttp2/alpn/alpn.c +56 -0
  157. data/src/core/ext/transport/chttp2/alpn/alpn.h +49 -0
  158. data/src/core/ext/transport/chttp2/client/chttp2_connector.c +221 -0
  159. data/src/core/ext/transport/chttp2/client/chttp2_connector.h +41 -0
  160. data/src/core/ext/transport/chttp2/client/insecure/channel_create.c +121 -0
  161. data/src/core/ext/transport/chttp2/client/insecure/channel_create_posix.c +95 -0
  162. data/src/core/ext/transport/chttp2/client/secure/secure_channel_create.c +239 -0
  163. data/src/core/ext/transport/chttp2/server/chttp2_server.c +304 -0
  164. data/src/core/ext/transport/chttp2/server/chttp2_server.h +47 -0
  165. data/src/core/ext/transport/chttp2/server/insecure/server_chttp2.c +59 -0
  166. data/src/core/ext/transport/chttp2/server/insecure/server_chttp2_posix.c +90 -0
  167. data/src/core/ext/transport/chttp2/server/secure/server_secure_chttp2.c +101 -0
  168. data/src/core/ext/transport/chttp2/transport/bin_decoder.c +236 -0
  169. data/src/core/ext/transport/chttp2/transport/bin_decoder.h +67 -0
  170. data/src/core/ext/transport/chttp2/transport/bin_encoder.c +241 -0
  171. data/src/core/ext/transport/chttp2/transport/bin_encoder.h +54 -0
  172. data/src/core/ext/transport/chttp2/transport/chttp2_plugin.c +43 -0
  173. data/src/core/ext/transport/chttp2/transport/chttp2_transport.c +2847 -0
  174. data/src/core/ext/transport/chttp2/transport/chttp2_transport.h +53 -0
  175. data/src/core/ext/transport/chttp2/transport/frame.h +61 -0
  176. data/src/core/ext/transport/chttp2/transport/frame_data.c +287 -0
  177. data/src/core/ext/transport/chttp2/transport/frame_data.h +104 -0
  178. data/src/core/ext/transport/chttp2/transport/frame_goaway.c +198 -0
  179. data/src/core/ext/transport/chttp2/transport/frame_goaway.h +78 -0
  180. data/src/core/ext/transport/chttp2/transport/frame_ping.c +145 -0
  181. data/src/core/ext/transport/chttp2/transport/frame_ping.h +59 -0
  182. data/src/core/ext/transport/chttp2/transport/frame_rst_stream.c +125 -0
  183. data/src/core/ext/transport/chttp2/transport/frame_rst_stream.h +58 -0
  184. data/src/core/ext/transport/chttp2/transport/frame_settings.c +239 -0
  185. data/src/core/ext/transport/chttp2/transport/frame_settings.h +76 -0
  186. data/src/core/ext/transport/chttp2/transport/frame_window_update.c +134 -0
  187. data/src/core/ext/transport/chttp2/transport/frame_window_update.h +57 -0
  188. data/src/core/ext/transport/chttp2/transport/hpack_encoder.c +661 -0
  189. data/src/core/ext/transport/chttp2/transport/hpack_encoder.h +107 -0
  190. data/src/core/ext/transport/chttp2/transport/hpack_parser.c +1734 -0
  191. data/src/core/ext/transport/chttp2/transport/hpack_parser.h +129 -0
  192. data/src/core/ext/transport/chttp2/transport/hpack_table.c +383 -0
  193. data/src/core/ext/transport/chttp2/transport/hpack_table.h +112 -0
  194. data/src/core/ext/transport/chttp2/transport/http2_settings.c +75 -0
  195. data/src/core/ext/transport/chttp2/transport/http2_settings.h +74 -0
  196. data/src/core/ext/transport/chttp2/transport/huffsyms.c +105 -0
  197. data/src/core/ext/transport/chttp2/transport/huffsyms.h +48 -0
  198. data/src/core/ext/transport/chttp2/transport/incoming_metadata.c +88 -0
  199. data/src/core/ext/transport/chttp2/transport/incoming_metadata.h +63 -0
  200. data/src/core/ext/transport/chttp2/transport/internal.h +852 -0
  201. data/src/core/ext/transport/chttp2/transport/parsing.c +825 -0
  202. data/src/core/ext/transport/chttp2/transport/stream_lists.c +194 -0
  203. data/src/core/ext/transport/chttp2/transport/stream_map.c +176 -0
  204. data/src/core/ext/transport/chttp2/transport/stream_map.h +83 -0
  205. data/src/core/ext/transport/chttp2/transport/varint.c +65 -0
  206. data/src/core/ext/transport/chttp2/transport/varint.h +75 -0
  207. data/src/core/ext/transport/chttp2/transport/writing.c +429 -0
  208. data/src/core/lib/channel/channel_args.c +355 -0
  209. data/src/core/lib/channel/channel_args.h +126 -0
  210. data/src/core/lib/channel/channel_stack.c +291 -0
  211. data/src/core/lib/channel/channel_stack.h +319 -0
  212. data/src/core/lib/channel/channel_stack_builder.c +284 -0
  213. data/src/core/lib/channel/channel_stack_builder.h +170 -0
  214. data/src/core/lib/channel/compress_filter.c +353 -0
  215. data/src/core/lib/channel/compress_filter.h +67 -0
  216. data/src/core/lib/channel/connected_channel.c +188 -0
  217. data/src/core/lib/channel/connected_channel.h +48 -0
  218. data/src/core/lib/channel/context.h +64 -0
  219. data/src/core/lib/channel/deadline_filter.c +348 -0
  220. data/src/core/lib/channel/deadline_filter.h +102 -0
  221. data/src/core/lib/channel/handshaker.c +281 -0
  222. data/src/core/lib/channel/handshaker.h +182 -0
  223. data/src/core/lib/channel/handshaker_factory.c +54 -0
  224. data/src/core/lib/channel/handshaker_factory.h +66 -0
  225. data/src/core/lib/channel/handshaker_registry.c +113 -0
  226. data/src/core/lib/channel/handshaker_registry.h +63 -0
  227. data/src/core/lib/channel/http_client_filter.c +601 -0
  228. data/src/core/lib/channel/http_client_filter.h +47 -0
  229. data/src/core/lib/channel/http_server_filter.c +445 -0
  230. data/src/core/lib/channel/http_server_filter.h +42 -0
  231. data/src/core/lib/channel/message_size_filter.c +270 -0
  232. data/src/core/lib/channel/message_size_filter.h +39 -0
  233. data/src/core/lib/compression/algorithm_metadata.h +53 -0
  234. data/src/core/lib/compression/compression.c +198 -0
  235. data/src/core/lib/compression/message_compress.c +204 -0
  236. data/src/core/lib/compression/message_compress.h +54 -0
  237. data/src/core/lib/debug/trace.c +140 -0
  238. data/src/core/lib/debug/trace.h +43 -0
  239. data/src/core/lib/http/format_request.c +135 -0
  240. data/src/core/lib/http/format_request.h +47 -0
  241. data/src/core/lib/http/httpcli.c +336 -0
  242. data/src/core/lib/http/httpcli.h +141 -0
  243. data/src/core/lib/http/httpcli_security_connector.c +199 -0
  244. data/src/core/lib/http/parser.c +379 -0
  245. data/src/core/lib/http/parser.h +126 -0
  246. data/src/core/lib/iomgr/closure.c +168 -0
  247. data/src/core/lib/iomgr/closure.h +153 -0
  248. data/src/core/lib/iomgr/combiner.c +460 -0
  249. data/src/core/lib/iomgr/combiner.h +83 -0
  250. data/src/core/lib/iomgr/endpoint.c +78 -0
  251. data/src/core/lib/iomgr/endpoint.h +117 -0
  252. data/src/core/lib/iomgr/endpoint_pair.h +47 -0
  253. data/src/core/lib/iomgr/endpoint_pair_posix.c +87 -0
  254. data/src/core/lib/iomgr/endpoint_pair_uv.c +53 -0
  255. data/src/core/lib/iomgr/endpoint_pair_windows.c +101 -0
  256. data/src/core/lib/iomgr/error.c +793 -0
  257. data/src/core/lib/iomgr/error.h +218 -0
  258. data/src/core/lib/iomgr/error_internal.h +75 -0
  259. data/src/core/lib/iomgr/ev_epoll_linux.c +1965 -0
  260. data/src/core/lib/iomgr/ev_epoll_linux.h +48 -0
  261. data/src/core/lib/iomgr/ev_poll_posix.c +1593 -0
  262. data/src/core/lib/iomgr/ev_poll_posix.h +42 -0
  263. data/src/core/lib/iomgr/ev_posix.c +287 -0
  264. data/src/core/lib/iomgr/ev_posix.h +189 -0
  265. data/src/core/lib/iomgr/exec_ctx.c +117 -0
  266. data/src/core/lib/iomgr/exec_ctx.h +117 -0
  267. data/src/core/lib/iomgr/executor.c +170 -0
  268. data/src/core/lib/iomgr/executor.h +51 -0
  269. data/src/core/lib/iomgr/iocp_windows.c +168 -0
  270. data/src/core/lib/iomgr/iocp_windows.h +55 -0
  271. data/src/core/lib/iomgr/iomgr.c +183 -0
  272. data/src/core/lib/iomgr/iomgr.h +47 -0
  273. data/src/core/lib/iomgr/iomgr_internal.h +58 -0
  274. data/src/core/lib/iomgr/iomgr_posix.c +56 -0
  275. data/src/core/lib/iomgr/iomgr_posix.h +39 -0
  276. data/src/core/lib/iomgr/iomgr_uv.c +49 -0
  277. data/src/core/lib/iomgr/iomgr_windows.c +76 -0
  278. data/src/core/lib/iomgr/load_file.c +92 -0
  279. data/src/core/lib/iomgr/load_file.h +56 -0
  280. data/src/core/lib/iomgr/lockfree_event.c +238 -0
  281. data/src/core/lib/iomgr/lockfree_event.h +54 -0
  282. data/src/core/lib/iomgr/network_status_tracker.c +48 -0
  283. data/src/core/lib/iomgr/network_status_tracker.h +45 -0
  284. data/src/core/lib/iomgr/polling_entity.c +104 -0
  285. data/src/core/lib/iomgr/polling_entity.h +81 -0
  286. data/src/core/lib/iomgr/pollset.h +97 -0
  287. data/src/core/lib/iomgr/pollset_set.h +62 -0
  288. data/src/core/lib/iomgr/pollset_set_uv.c +63 -0
  289. data/src/core/lib/iomgr/pollset_set_windows.c +64 -0
  290. data/src/core/lib/iomgr/pollset_set_windows.h +39 -0
  291. data/src/core/lib/iomgr/pollset_uv.c +156 -0
  292. data/src/core/lib/iomgr/pollset_uv.h +42 -0
  293. data/src/core/lib/iomgr/pollset_windows.c +232 -0
  294. data/src/core/lib/iomgr/pollset_windows.h +78 -0
  295. data/src/core/lib/iomgr/port.h +138 -0
  296. data/src/core/lib/iomgr/resolve_address.h +70 -0
  297. data/src/core/lib/iomgr/resolve_address_posix.c +207 -0
  298. data/src/core/lib/iomgr/resolve_address_uv.c +284 -0
  299. data/src/core/lib/iomgr/resolve_address_windows.c +190 -0
  300. data/src/core/lib/iomgr/resource_quota.c +877 -0
  301. data/src/core/lib/iomgr/resource_quota.h +167 -0
  302. data/src/core/lib/iomgr/sockaddr.h +55 -0
  303. data/src/core/lib/iomgr/sockaddr_posix.h +44 -0
  304. data/src/core/lib/iomgr/sockaddr_utils.c +272 -0
  305. data/src/core/lib/iomgr/sockaddr_utils.h +93 -0
  306. data/src/core/lib/iomgr/sockaddr_windows.h +43 -0
  307. data/src/core/lib/iomgr/socket_factory_posix.c +110 -0
  308. data/src/core/lib/iomgr/socket_factory_posix.h +90 -0
  309. data/src/core/lib/iomgr/socket_mutator.c +98 -0
  310. data/src/core/lib/iomgr/socket_mutator.h +80 -0
  311. data/src/core/lib/iomgr/socket_utils.h +42 -0
  312. data/src/core/lib/iomgr/socket_utils_common_posix.c +330 -0
  313. data/src/core/lib/iomgr/socket_utils_linux.c +57 -0
  314. data/src/core/lib/iomgr/socket_utils_posix.c +73 -0
  315. data/src/core/lib/iomgr/socket_utils_posix.h +147 -0
  316. data/src/core/lib/iomgr/socket_utils_uv.c +49 -0
  317. data/src/core/lib/iomgr/socket_utils_windows.c +52 -0
  318. data/src/core/lib/iomgr/socket_windows.c +167 -0
  319. data/src/core/lib/iomgr/socket_windows.h +125 -0
  320. data/src/core/lib/iomgr/tcp_client.h +55 -0
  321. data/src/core/lib/iomgr/tcp_client_posix.c +368 -0
  322. data/src/core/lib/iomgr/tcp_client_posix.h +45 -0
  323. data/src/core/lib/iomgr/tcp_client_uv.c +192 -0
  324. data/src/core/lib/iomgr/tcp_client_windows.c +260 -0
  325. data/src/core/lib/iomgr/tcp_posix.c +677 -0
  326. data/src/core/lib/iomgr/tcp_posix.h +70 -0
  327. data/src/core/lib/iomgr/tcp_server.h +116 -0
  328. data/src/core/lib/iomgr/tcp_server_posix.c +579 -0
  329. data/src/core/lib/iomgr/tcp_server_utils_posix.h +135 -0
  330. data/src/core/lib/iomgr/tcp_server_utils_posix_common.c +221 -0
  331. data/src/core/lib/iomgr/tcp_server_utils_posix_ifaddrs.c +196 -0
  332. data/src/core/lib/iomgr/tcp_server_utils_posix_noifaddrs.c +49 -0
  333. data/src/core/lib/iomgr/tcp_server_uv.c +393 -0
  334. data/src/core/lib/iomgr/tcp_server_windows.c +558 -0
  335. data/src/core/lib/iomgr/tcp_uv.c +374 -0
  336. data/src/core/lib/iomgr/tcp_uv.h +59 -0
  337. data/src/core/lib/iomgr/tcp_windows.c +462 -0
  338. data/src/core/lib/iomgr/tcp_windows.h +59 -0
  339. data/src/core/lib/iomgr/time_averaged_stats.c +77 -0
  340. data/src/core/lib/iomgr/time_averaged_stats.h +88 -0
  341. data/src/core/lib/iomgr/timer.h +111 -0
  342. data/src/core/lib/iomgr/timer_generic.c +567 -0
  343. data/src/core/lib/iomgr/timer_generic.h +49 -0
  344. data/src/core/lib/iomgr/timer_heap.c +152 -0
  345. data/src/core/lib/iomgr/timer_heap.h +57 -0
  346. data/src/core/lib/iomgr/timer_uv.c +103 -0
  347. data/src/core/lib/iomgr/timer_uv.h +47 -0
  348. data/src/core/lib/iomgr/udp_server.c +529 -0
  349. data/src/core/lib/iomgr/udp_server.h +89 -0
  350. data/src/core/lib/iomgr/unix_sockets_posix.c +108 -0
  351. data/src/core/lib/iomgr/unix_sockets_posix.h +56 -0
  352. data/src/core/lib/iomgr/unix_sockets_posix_noop.c +62 -0
  353. data/src/core/lib/iomgr/wakeup_fd_cv.c +118 -0
  354. data/src/core/lib/iomgr/wakeup_fd_cv.h +80 -0
  355. data/src/core/lib/iomgr/wakeup_fd_eventfd.c +97 -0
  356. data/src/core/lib/iomgr/wakeup_fd_nospecial.c +51 -0
  357. data/src/core/lib/iomgr/wakeup_fd_pipe.c +112 -0
  358. data/src/core/lib/iomgr/wakeup_fd_pipe.h +41 -0
  359. data/src/core/lib/iomgr/wakeup_fd_posix.c +101 -0
  360. data/src/core/lib/iomgr/wakeup_fd_posix.h +109 -0
  361. data/src/core/lib/iomgr/workqueue.h +87 -0
  362. data/src/core/lib/iomgr/workqueue_uv.c +65 -0
  363. data/src/core/lib/iomgr/workqueue_uv.h +37 -0
  364. data/src/core/lib/iomgr/workqueue_windows.c +63 -0
  365. data/src/core/lib/iomgr/workqueue_windows.h +37 -0
  366. data/src/core/lib/json/json.c +63 -0
  367. data/src/core/lib/json/json.h +88 -0
  368. data/src/core/lib/json/json_common.h +49 -0
  369. data/src/core/lib/json/json_reader.c +675 -0
  370. data/src/core/lib/json/json_reader.h +160 -0
  371. data/src/core/lib/json/json_string.c +379 -0
  372. data/src/core/lib/json/json_writer.c +258 -0
  373. data/src/core/lib/json/json_writer.h +97 -0
  374. data/src/core/lib/profiling/basic_timers.c +298 -0
  375. data/src/core/lib/profiling/stap_timers.c +65 -0
  376. data/src/core/lib/profiling/timers.h +121 -0
  377. data/src/core/lib/security/context/security_context.c +350 -0
  378. data/src/core/lib/security/context/security_context.h +134 -0
  379. data/src/core/lib/security/credentials/composite/composite_credentials.c +274 -0
  380. data/src/core/lib/security/credentials/composite/composite_credentials.h +72 -0
  381. data/src/core/lib/security/credentials/credentials.c +308 -0
  382. data/src/core/lib/security/credentials/credentials.h +268 -0
  383. data/src/core/lib/security/credentials/credentials_metadata.c +103 -0
  384. data/src/core/lib/security/credentials/fake/fake_credentials.c +141 -0
  385. data/src/core/lib/security/credentials/fake/fake_credentials.h +71 -0
  386. data/src/core/lib/security/credentials/google_default/credentials_generic.c +54 -0
  387. data/src/core/lib/security/credentials/google_default/google_default_credentials.c +337 -0
  388. data/src/core/lib/security/credentials/google_default/google_default_credentials.h +60 -0
  389. data/src/core/lib/security/credentials/iam/iam_credentials.c +85 -0
  390. data/src/core/lib/security/credentials/iam/iam_credentials.h +44 -0
  391. data/src/core/lib/security/credentials/jwt/json_token.c +321 -0
  392. data/src/core/lib/security/credentials/jwt/json_token.h +88 -0
  393. data/src/core/lib/security/credentials/jwt/jwt_credentials.c +195 -0
  394. data/src/core/lib/security/credentials/jwt/jwt_credentials.h +63 -0
  395. data/src/core/lib/security/credentials/jwt/jwt_verifier.c +910 -0
  396. data/src/core/lib/security/credentials/jwt/jwt_verifier.h +140 -0
  397. data/src/core/lib/security/credentials/oauth2/oauth2_credentials.c +468 -0
  398. data/src/core/lib/security/credentials/oauth2/oauth2_credentials.h +109 -0
  399. data/src/core/lib/security/credentials/plugin/plugin_credentials.c +153 -0
  400. data/src/core/lib/security/credentials/plugin/plugin_credentials.h +45 -0
  401. data/src/core/lib/security/credentials/ssl/ssl_credentials.c +242 -0
  402. data/src/core/lib/security/credentials/ssl/ssl_credentials.h +48 -0
  403. data/src/core/lib/security/transport/auth_filters.h +42 -0
  404. data/src/core/lib/security/transport/client_auth_filter.c +384 -0
  405. data/src/core/lib/security/transport/lb_targets_info.c +70 -0
  406. data/src/core/lib/security/transport/lb_targets_info.h +47 -0
  407. data/src/core/lib/security/transport/secure_endpoint.c +427 -0
  408. data/src/core/lib/security/transport/secure_endpoint.h +49 -0
  409. data/src/core/lib/security/transport/security_connector.c +909 -0
  410. data/src/core/lib/security/transport/security_connector.h +252 -0
  411. data/src/core/lib/security/transport/security_handshaker.c +507 -0
  412. data/src/core/lib/security/transport/security_handshaker.h +49 -0
  413. data/src/core/lib/security/transport/server_auth_filter.c +277 -0
  414. data/src/core/lib/security/transport/tsi_error.c +42 -0
  415. data/src/core/lib/security/transport/tsi_error.h +42 -0
  416. data/src/core/lib/security/util/json_util.c +61 -0
  417. data/src/core/lib/security/util/json_util.h +55 -0
  418. data/src/core/lib/slice/b64.c +251 -0
  419. data/src/core/lib/slice/b64.h +65 -0
  420. data/src/core/lib/slice/percent_encoding.c +182 -0
  421. data/src/core/lib/slice/percent_encoding.h +78 -0
  422. data/src/core/lib/slice/slice.c +466 -0
  423. data/src/core/lib/slice/slice_buffer.c +355 -0
  424. data/src/core/lib/slice/slice_hash_table.c +125 -0
  425. data/src/core/lib/slice/slice_hash_table.h +77 -0
  426. data/src/core/lib/slice/slice_intern.c +346 -0
  427. data/src/core/lib/slice/slice_internal.h +64 -0
  428. data/src/core/lib/slice/slice_string_helpers.c +95 -0
  429. data/src/core/lib/slice/slice_string_helpers.h +63 -0
  430. data/src/core/lib/support/alloc.c +117 -0
  431. data/src/core/lib/support/arena.c +98 -0
  432. data/src/core/lib/support/arena.h +54 -0
  433. data/src/core/lib/support/atm.c +47 -0
  434. data/src/core/lib/support/avl.c +299 -0
  435. data/src/core/lib/support/backoff.c +87 -0
  436. data/src/core/lib/support/backoff.h +71 -0
  437. data/src/core/lib/support/block_annotate.h +48 -0
  438. data/src/core/lib/support/cmdline.c +345 -0
  439. data/src/core/lib/support/cpu_iphone.c +49 -0
  440. data/src/core/lib/support/cpu_linux.c +83 -0
  441. data/src/core/lib/support/cpu_posix.c +72 -0
  442. data/src/core/lib/support/cpu_windows.c +47 -0
  443. data/src/core/lib/support/env.h +58 -0
  444. data/src/core/lib/support/env_linux.c +89 -0
  445. data/src/core/lib/support/env_posix.c +57 -0
  446. data/src/core/lib/support/env_windows.c +79 -0
  447. data/src/core/lib/support/histogram.c +243 -0
  448. data/src/core/lib/support/host_port.c +110 -0
  449. data/src/core/lib/support/log.c +103 -0
  450. data/src/core/lib/support/log_android.c +87 -0
  451. data/src/core/lib/support/log_linux.c +105 -0
  452. data/src/core/lib/support/log_posix.c +106 -0
  453. data/src/core/lib/support/log_windows.c +112 -0
  454. data/src/core/lib/support/mpscq.c +83 -0
  455. data/src/core/lib/support/mpscq.h +65 -0
  456. data/src/core/lib/support/murmur_hash.c +94 -0
  457. data/src/core/lib/support/murmur_hash.h +44 -0
  458. data/src/core/lib/support/spinlock.h +52 -0
  459. data/src/core/lib/support/stack_lockfree.c +185 -0
  460. data/src/core/lib/support/stack_lockfree.h +53 -0
  461. data/src/core/lib/support/string.c +315 -0
  462. data/src/core/lib/support/string.h +128 -0
  463. data/src/core/lib/support/string_posix.c +86 -0
  464. data/src/core/lib/support/string_util_windows.c +94 -0
  465. data/src/core/lib/support/string_windows.c +83 -0
  466. data/src/core/lib/support/string_windows.h +47 -0
  467. data/src/core/lib/support/subprocess_posix.c +114 -0
  468. data/src/core/lib/support/subprocess_windows.c +141 -0
  469. data/src/core/lib/support/sync.c +137 -0
  470. data/src/core/lib/support/sync_posix.c +113 -0
  471. data/src/core/lib/support/sync_windows.c +133 -0
  472. data/src/core/lib/support/thd.c +64 -0
  473. data/src/core/lib/support/thd_internal.h +39 -0
  474. data/src/core/lib/support/thd_posix.c +95 -0
  475. data/src/core/lib/support/thd_windows.c +117 -0
  476. data/src/core/lib/support/time.c +262 -0
  477. data/src/core/lib/support/time_posix.c +176 -0
  478. data/src/core/lib/support/time_precise.c +89 -0
  479. data/src/core/lib/support/time_precise.h +42 -0
  480. data/src/core/lib/support/time_windows.c +116 -0
  481. data/src/core/lib/support/tls_pthread.c +45 -0
  482. data/src/core/lib/support/tmpfile.h +53 -0
  483. data/src/core/lib/support/tmpfile_msys.c +73 -0
  484. data/src/core/lib/support/tmpfile_posix.c +85 -0
  485. data/src/core/lib/support/tmpfile_windows.c +84 -0
  486. data/src/core/lib/support/wrap_memcpy.c +55 -0
  487. data/src/core/lib/surface/alarm.c +87 -0
  488. data/src/core/lib/surface/api_trace.c +36 -0
  489. data/src/core/lib/surface/api_trace.h +65 -0
  490. data/src/core/lib/surface/byte_buffer.c +103 -0
  491. data/src/core/lib/surface/byte_buffer_reader.c +140 -0
  492. data/src/core/lib/surface/call.c +1835 -0
  493. data/src/core/lib/surface/call.h +135 -0
  494. data/src/core/lib/surface/call_details.c +56 -0
  495. data/src/core/lib/surface/call_log_batch.c +131 -0
  496. data/src/core/lib/surface/call_test_only.h +64 -0
  497. data/src/core/lib/surface/channel.c +434 -0
  498. data/src/core/lib/surface/channel.h +99 -0
  499. data/src/core/lib/surface/channel_init.c +140 -0
  500. data/src/core/lib/surface/channel_init.h +96 -0
  501. data/src/core/lib/surface/channel_ping.c +80 -0
  502. data/src/core/lib/surface/channel_stack_type.c +54 -0
  503. data/src/core/lib/surface/channel_stack_type.h +58 -0
  504. data/src/core/lib/surface/completion_queue.c +692 -0
  505. data/src/core/lib/surface/completion_queue.h +102 -0
  506. data/src/core/lib/surface/completion_queue_factory.c +77 -0
  507. data/src/core/lib/surface/completion_queue_factory.h +51 -0
  508. data/src/core/lib/surface/event_string.c +81 -0
  509. data/src/core/lib/surface/event_string.h +42 -0
  510. data/src/core/lib/surface/init.c +261 -0
  511. data/src/core/lib/surface/init.h +42 -0
  512. data/src/core/lib/surface/init_secure.c +94 -0
  513. data/src/core/lib/surface/lame_client.c +188 -0
  514. data/src/core/lib/surface/lame_client.h +41 -0
  515. data/src/core/lib/surface/metadata_array.c +49 -0
  516. data/src/core/lib/surface/server.c +1529 -0
  517. data/src/core/lib/surface/server.h +71 -0
  518. data/src/core/lib/surface/validate_metadata.c +108 -0
  519. data/src/core/lib/surface/validate_metadata.h +43 -0
  520. data/src/core/lib/surface/version.c +41 -0
  521. data/src/core/lib/transport/bdp_estimator.c +104 -0
  522. data/src/core/lib/transport/bdp_estimator.h +76 -0
  523. data/src/core/lib/transport/byte_stream.c +81 -0
  524. data/src/core/lib/transport/byte_stream.h +85 -0
  525. data/src/core/lib/transport/connectivity_state.c +219 -0
  526. data/src/core/lib/transport/connectivity_state.h +101 -0
  527. data/src/core/lib/transport/error_utils.c +124 -0
  528. data/src/core/lib/transport/error_utils.h +56 -0
  529. data/src/core/lib/transport/http2_errors.h +56 -0
  530. data/src/core/lib/transport/metadata.c +529 -0
  531. data/src/core/lib/transport/metadata.h +186 -0
  532. data/src/core/lib/transport/metadata_batch.c +328 -0
  533. data/src/core/lib/transport/metadata_batch.h +166 -0
  534. data/src/core/lib/transport/pid_controller.c +78 -0
  535. data/src/core/lib/transport/pid_controller.h +77 -0
  536. data/src/core/lib/transport/service_config.c +266 -0
  537. data/src/core/lib/transport/service_config.h +77 -0
  538. data/src/core/lib/transport/static_metadata.c +801 -0
  539. data/src/core/lib/transport/static_metadata.h +557 -0
  540. data/src/core/lib/transport/status_conversion.c +113 -0
  541. data/src/core/lib/transport/status_conversion.h +49 -0
  542. data/src/core/lib/transport/timeout_encoding.c +190 -0
  543. data/src/core/lib/transport/timeout_encoding.h +49 -0
  544. data/src/core/lib/transport/transport.c +282 -0
  545. data/src/core/lib/transport/transport.h +354 -0
  546. data/src/core/lib/transport/transport_impl.h +90 -0
  547. data/src/core/lib/transport/transport_op_string.c +217 -0
  548. data/src/core/plugin_registry/grpc_plugin_registry.c +82 -0
  549. data/src/core/tsi/fake_transport_security.c +527 -0
  550. data/src/core/tsi/fake_transport_security.h +61 -0
  551. data/src/core/tsi/ssl_transport_security.c +1533 -0
  552. data/src/core/tsi/ssl_transport_security.h +214 -0
  553. data/src/core/tsi/ssl_types.h +55 -0
  554. data/src/core/tsi/transport_security.c +266 -0
  555. data/src/core/tsi/transport_security.h +111 -0
  556. data/src/core/tsi/transport_security_interface.h +353 -0
  557. data/src/ruby/bin/apis/google/protobuf/empty.rb +44 -0
  558. data/src/ruby/bin/apis/pubsub_demo.rb +256 -0
  559. data/src/ruby/bin/apis/tech/pubsub/proto/pubsub.rb +174 -0
  560. data/src/ruby/bin/apis/tech/pubsub/proto/pubsub_services.rb +103 -0
  561. data/src/ruby/bin/math_client.rb +147 -0
  562. data/src/ruby/bin/math_pb.rb +32 -0
  563. data/src/ruby/bin/math_server.rb +206 -0
  564. data/src/ruby/bin/math_services_pb.rb +66 -0
  565. data/src/ruby/bin/noproto_client.rb +108 -0
  566. data/src/ruby/bin/noproto_server.rb +112 -0
  567. data/src/ruby/ext/grpc/extconf.rb +131 -0
  568. data/src/ruby/ext/grpc/rb_byte_buffer.c +77 -0
  569. data/src/ruby/ext/grpc/rb_byte_buffer.h +50 -0
  570. data/src/ruby/ext/grpc/rb_call.c +1009 -0
  571. data/src/ruby/ext/grpc/rb_call.h +66 -0
  572. data/src/ruby/ext/grpc/rb_call_credentials.c +295 -0
  573. data/src/ruby/ext/grpc/rb_call_credentials.h +46 -0
  574. data/src/ruby/ext/grpc/rb_channel.c +662 -0
  575. data/src/ruby/ext/grpc/rb_channel.h +49 -0
  576. data/src/ruby/ext/grpc/rb_channel_args.c +168 -0
  577. data/src/ruby/ext/grpc/rb_channel_args.h +53 -0
  578. data/src/ruby/ext/grpc/rb_channel_credentials.c +268 -0
  579. data/src/ruby/ext/grpc/rb_channel_credentials.h +47 -0
  580. data/src/ruby/ext/grpc/rb_completion_queue.c +117 -0
  581. data/src/ruby/ext/grpc/rb_completion_queue.h +51 -0
  582. data/src/ruby/ext/grpc/rb_compression_options.c +472 -0
  583. data/src/ruby/ext/grpc/rb_compression_options.h +44 -0
  584. data/src/ruby/ext/grpc/rb_event_thread.c +158 -0
  585. data/src/ruby/ext/grpc/rb_event_thread.h +37 -0
  586. data/src/ruby/ext/grpc/rb_grpc.c +343 -0
  587. data/src/ruby/ext/grpc/rb_grpc.h +87 -0
  588. data/src/ruby/ext/grpc/rb_grpc_imports.generated.c +634 -0
  589. data/src/ruby/ext/grpc/rb_grpc_imports.generated.h +955 -0
  590. data/src/ruby/ext/grpc/rb_loader.c +72 -0
  591. data/src/ruby/ext/grpc/rb_loader.h +40 -0
  592. data/src/ruby/ext/grpc/rb_server.c +359 -0
  593. data/src/ruby/ext/grpc/rb_server.h +47 -0
  594. data/src/ruby/ext/grpc/rb_server_credentials.c +258 -0
  595. data/src/ruby/ext/grpc/rb_server_credentials.h +47 -0
  596. data/src/ruby/lib/grpc/core/time_consts.rb +71 -0
  597. data/src/ruby/lib/grpc/errors.rb +215 -0
  598. data/src/ruby/lib/grpc/generic/active_call.rb +547 -0
  599. data/src/ruby/lib/grpc/generic/bidi_call.rb +229 -0
  600. data/src/ruby/lib/grpc/generic/client_stub.rb +463 -0
  601. data/src/ruby/lib/grpc/generic/rpc_desc.rb +173 -0
  602. data/src/ruby/lib/grpc/generic/rpc_server.rb +476 -0
  603. data/src/ruby/lib/grpc/generic/service.rb +225 -0
  604. data/src/ruby/lib/grpc/grpc.rb +39 -0
  605. data/src/ruby/lib/grpc/grpc_c.bundle +0 -0
  606. data/src/ruby/lib/grpc/logconfig.rb +59 -0
  607. data/src/ruby/lib/grpc/notifier.rb +60 -0
  608. data/src/ruby/lib/grpc/version.rb +33 -0
  609. data/src/ruby/lib/grpc.rb +49 -0
  610. data/src/ruby/pb/README.md +42 -0
  611. data/src/ruby/pb/generate_proto_ruby.sh +58 -0
  612. data/src/ruby/pb/grpc/health/checker.rb +77 -0
  613. data/src/ruby/pb/grpc/health/v1/health_pb.rb +28 -0
  614. data/src/ruby/pb/grpc/health/v1/health_services_pb.rb +56 -0
  615. data/src/ruby/pb/grpc/testing/duplicate/echo_duplicate_services_pb.rb +58 -0
  616. data/src/ruby/pb/grpc/testing/metrics_pb.rb +28 -0
  617. data/src/ruby/pb/grpc/testing/metrics_services_pb.rb +64 -0
  618. data/src/ruby/pb/src/proto/grpc/testing/empty_pb.rb +15 -0
  619. data/src/ruby/pb/src/proto/grpc/testing/messages_pb.rb +82 -0
  620. data/src/ruby/pb/src/proto/grpc/testing/test_pb.rb +14 -0
  621. data/src/ruby/pb/src/proto/grpc/testing/test_services_pb.rb +117 -0
  622. data/src/ruby/pb/test/client.rb +779 -0
  623. data/src/ruby/pb/test/server.rb +267 -0
  624. data/src/ruby/spec/call_credentials_spec.rb +57 -0
  625. data/src/ruby/spec/call_spec.rb +162 -0
  626. data/src/ruby/spec/channel_connection_spec.rb +141 -0
  627. data/src/ruby/spec/channel_credentials_spec.rb +97 -0
  628. data/src/ruby/spec/channel_spec.rb +205 -0
  629. data/src/ruby/spec/client_server_spec.rb +491 -0
  630. data/src/ruby/spec/compression_options_spec.rb +164 -0
  631. data/src/ruby/spec/error_sanity_spec.rb +64 -0
  632. data/src/ruby/spec/generic/active_call_spec.rb +632 -0
  633. data/src/ruby/spec/generic/client_stub_spec.rb +556 -0
  634. data/src/ruby/spec/generic/rpc_desc_spec.rb +351 -0
  635. data/src/ruby/spec/generic/rpc_server_pool_spec.rb +142 -0
  636. data/src/ruby/spec/generic/rpc_server_spec.rb +524 -0
  637. data/src/ruby/spec/generic/service_spec.rb +276 -0
  638. data/src/ruby/spec/pb/duplicate/codegen_spec.rb +71 -0
  639. data/src/ruby/spec/pb/health/checker_spec.rb +222 -0
  640. data/src/ruby/spec/server_credentials_spec.rb +94 -0
  641. data/src/ruby/spec/server_spec.rb +205 -0
  642. data/src/ruby/spec/spec_helper.rb +71 -0
  643. data/src/ruby/spec/testdata/README +1 -0
  644. data/src/ruby/spec/testdata/ca.pem +15 -0
  645. data/src/ruby/spec/testdata/server1.key +16 -0
  646. data/src/ruby/spec/testdata/server1.pem +16 -0
  647. data/src/ruby/spec/time_consts_spec.rb +89 -0
  648. data/third_party/boringssl/crypto/aes/aes.c +1142 -0
  649. data/third_party/boringssl/crypto/aes/internal.h +87 -0
  650. data/third_party/boringssl/crypto/aes/mode_wrappers.c +112 -0
  651. data/third_party/boringssl/crypto/asn1/a_bitstr.c +263 -0
  652. data/third_party/boringssl/crypto/asn1/a_bool.c +110 -0
  653. data/third_party/boringssl/crypto/asn1/a_d2i_fp.c +282 -0
  654. data/third_party/boringssl/crypto/asn1/a_dup.c +111 -0
  655. data/third_party/boringssl/crypto/asn1/a_enum.c +181 -0
  656. data/third_party/boringssl/crypto/asn1/a_gentm.c +256 -0
  657. data/third_party/boringssl/crypto/asn1/a_i2d_fp.c +147 -0
  658. data/third_party/boringssl/crypto/asn1/a_int.c +460 -0
  659. data/third_party/boringssl/crypto/asn1/a_mbstr.c +409 -0
  660. data/third_party/boringssl/crypto/asn1/a_object.c +400 -0
  661. data/third_party/boringssl/crypto/asn1/a_octet.c +77 -0
  662. data/third_party/boringssl/crypto/asn1/a_print.c +121 -0
  663. data/third_party/boringssl/crypto/asn1/a_strnid.c +309 -0
  664. data/third_party/boringssl/crypto/asn1/a_time.c +206 -0
  665. data/third_party/boringssl/crypto/asn1/a_type.c +151 -0
  666. data/third_party/boringssl/crypto/asn1/a_utctm.c +304 -0
  667. data/third_party/boringssl/crypto/asn1/a_utf8.c +234 -0
  668. data/third_party/boringssl/crypto/asn1/asn1_lib.c +483 -0
  669. data/third_party/boringssl/crypto/asn1/asn1_locl.h +63 -0
  670. data/third_party/boringssl/crypto/asn1/asn1_par.c +80 -0
  671. data/third_party/boringssl/crypto/asn1/asn_pack.c +105 -0
  672. data/third_party/boringssl/crypto/asn1/f_enum.c +93 -0
  673. data/third_party/boringssl/crypto/asn1/f_int.c +97 -0
  674. data/third_party/boringssl/crypto/asn1/f_string.c +91 -0
  675. data/third_party/boringssl/crypto/asn1/t_bitst.c +103 -0
  676. data/third_party/boringssl/crypto/asn1/tasn_dec.c +1221 -0
  677. data/third_party/boringssl/crypto/asn1/tasn_enc.c +665 -0
  678. data/third_party/boringssl/crypto/asn1/tasn_fre.c +246 -0
  679. data/third_party/boringssl/crypto/asn1/tasn_new.c +381 -0
  680. data/third_party/boringssl/crypto/asn1/tasn_typ.c +131 -0
  681. data/third_party/boringssl/crypto/asn1/tasn_utl.c +266 -0
  682. data/third_party/boringssl/crypto/asn1/x_bignum.c +153 -0
  683. data/third_party/boringssl/crypto/asn1/x_long.c +197 -0
  684. data/third_party/boringssl/crypto/base64/base64.c +442 -0
  685. data/third_party/boringssl/crypto/bio/bio.c +598 -0
  686. data/third_party/boringssl/crypto/bio/bio_mem.c +328 -0
  687. data/third_party/boringssl/crypto/bio/buffer.c +496 -0
  688. data/third_party/boringssl/crypto/bio/connect.c +553 -0
  689. data/third_party/boringssl/crypto/bio/fd.c +277 -0
  690. data/third_party/boringssl/crypto/bio/file.c +313 -0
  691. data/third_party/boringssl/crypto/bio/hexdump.c +191 -0
  692. data/third_party/boringssl/crypto/bio/internal.h +111 -0
  693. data/third_party/boringssl/crypto/bio/pair.c +803 -0
  694. data/third_party/boringssl/crypto/bio/printf.c +119 -0
  695. data/third_party/boringssl/crypto/bio/socket.c +203 -0
  696. data/third_party/boringssl/crypto/bio/socket_helper.c +113 -0
  697. data/third_party/boringssl/crypto/bn/add.c +377 -0
  698. data/third_party/boringssl/crypto/bn/asm/x86_64-gcc.c +531 -0
  699. data/third_party/boringssl/crypto/bn/bn.c +379 -0
  700. data/third_party/boringssl/crypto/bn/bn_asn1.c +80 -0
  701. data/third_party/boringssl/crypto/bn/cmp.c +225 -0
  702. data/third_party/boringssl/crypto/bn/convert.c +599 -0
  703. data/third_party/boringssl/crypto/bn/ctx.c +311 -0
  704. data/third_party/boringssl/crypto/bn/div.c +671 -0
  705. data/third_party/boringssl/crypto/bn/exponentiation.c +1258 -0
  706. data/third_party/boringssl/crypto/bn/gcd.c +628 -0
  707. data/third_party/boringssl/crypto/bn/generic.c +703 -0
  708. data/third_party/boringssl/crypto/bn/internal.h +245 -0
  709. data/third_party/boringssl/crypto/bn/kronecker.c +175 -0
  710. data/third_party/boringssl/crypto/bn/montgomery.c +410 -0
  711. data/third_party/boringssl/crypto/bn/montgomery_inv.c +160 -0
  712. data/third_party/boringssl/crypto/bn/mul.c +869 -0
  713. data/third_party/boringssl/crypto/bn/prime.c +861 -0
  714. data/third_party/boringssl/crypto/bn/random.c +340 -0
  715. data/third_party/boringssl/crypto/bn/rsaz_exp.c +319 -0
  716. data/third_party/boringssl/crypto/bn/rsaz_exp.h +56 -0
  717. data/third_party/boringssl/crypto/bn/shift.c +299 -0
  718. data/third_party/boringssl/crypto/bn/sqrt.c +504 -0
  719. data/third_party/boringssl/crypto/buf/buf.c +239 -0
  720. data/third_party/boringssl/crypto/bytestring/asn1_compat.c +51 -0
  721. data/third_party/boringssl/crypto/bytestring/ber.c +263 -0
  722. data/third_party/boringssl/crypto/bytestring/cbb.c +473 -0
  723. data/third_party/boringssl/crypto/bytestring/cbs.c +439 -0
  724. data/third_party/boringssl/crypto/bytestring/internal.h +75 -0
  725. data/third_party/boringssl/crypto/chacha/chacha.c +167 -0
  726. data/third_party/boringssl/crypto/cipher/aead.c +156 -0
  727. data/third_party/boringssl/crypto/cipher/cipher.c +652 -0
  728. data/third_party/boringssl/crypto/cipher/derive_key.c +154 -0
  729. data/third_party/boringssl/crypto/cipher/e_aes.c +1717 -0
  730. data/third_party/boringssl/crypto/cipher/e_chacha20poly1305.c +300 -0
  731. data/third_party/boringssl/crypto/cipher/e_des.c +205 -0
  732. data/third_party/boringssl/crypto/cipher/e_null.c +85 -0
  733. data/third_party/boringssl/crypto/cipher/e_rc2.c +443 -0
  734. data/third_party/boringssl/crypto/cipher/e_rc4.c +87 -0
  735. data/third_party/boringssl/crypto/cipher/e_ssl3.c +403 -0
  736. data/third_party/boringssl/crypto/cipher/e_tls.c +602 -0
  737. data/third_party/boringssl/crypto/cipher/internal.h +162 -0
  738. data/third_party/boringssl/crypto/cipher/tls_cbc.c +553 -0
  739. data/third_party/boringssl/crypto/cmac/cmac.c +239 -0
  740. data/third_party/boringssl/crypto/conf/conf.c +788 -0
  741. data/third_party/boringssl/crypto/conf/conf_def.h +127 -0
  742. data/third_party/boringssl/crypto/conf/internal.h +31 -0
  743. data/third_party/boringssl/crypto/cpu-aarch64-linux.c +61 -0
  744. data/third_party/boringssl/crypto/cpu-arm-linux.c +360 -0
  745. data/third_party/boringssl/crypto/cpu-arm.c +38 -0
  746. data/third_party/boringssl/crypto/cpu-intel.c +263 -0
  747. data/third_party/boringssl/crypto/cpu-ppc64le.c +40 -0
  748. data/third_party/boringssl/crypto/crypto.c +164 -0
  749. data/third_party/boringssl/crypto/curve25519/curve25519.c +4944 -0
  750. data/third_party/boringssl/crypto/curve25519/internal.h +109 -0
  751. data/third_party/boringssl/crypto/curve25519/spake25519.c +464 -0
  752. data/third_party/boringssl/crypto/curve25519/x25519-x86_64.c +246 -0
  753. data/third_party/boringssl/crypto/des/des.c +771 -0
  754. data/third_party/boringssl/crypto/des/internal.h +212 -0
  755. data/third_party/boringssl/crypto/dh/check.c +218 -0
  756. data/third_party/boringssl/crypto/dh/dh.c +487 -0
  757. data/third_party/boringssl/crypto/dh/dh_asn1.c +160 -0
  758. data/third_party/boringssl/crypto/dh/params.c +253 -0
  759. data/third_party/boringssl/crypto/digest/digest.c +248 -0
  760. data/third_party/boringssl/crypto/digest/digests.c +321 -0
  761. data/third_party/boringssl/crypto/digest/internal.h +112 -0
  762. data/third_party/boringssl/crypto/digest/md32_common.h +262 -0
  763. data/third_party/boringssl/crypto/dsa/dsa.c +964 -0
  764. data/third_party/boringssl/crypto/dsa/dsa_asn1.c +339 -0
  765. data/third_party/boringssl/crypto/ec/ec.c +847 -0
  766. data/third_party/boringssl/crypto/ec/ec_asn1.c +549 -0
  767. data/third_party/boringssl/crypto/ec/ec_key.c +479 -0
  768. data/third_party/boringssl/crypto/ec/ec_montgomery.c +308 -0
  769. data/third_party/boringssl/crypto/ec/internal.h +276 -0
  770. data/third_party/boringssl/crypto/ec/oct.c +428 -0
  771. data/third_party/boringssl/crypto/ec/p224-64.c +1187 -0
  772. data/third_party/boringssl/crypto/ec/p256-64.c +1741 -0
  773. data/third_party/boringssl/crypto/ec/p256-x86_64-table.h +9543 -0
  774. data/third_party/boringssl/crypto/ec/p256-x86_64.c +574 -0
  775. data/third_party/boringssl/crypto/ec/simple.c +1117 -0
  776. data/third_party/boringssl/crypto/ec/util-64.c +109 -0
  777. data/third_party/boringssl/crypto/ec/wnaf.c +449 -0
  778. data/third_party/boringssl/crypto/ecdh/ecdh.c +159 -0
  779. data/third_party/boringssl/crypto/ecdsa/ecdsa.c +478 -0
  780. data/third_party/boringssl/crypto/ecdsa/ecdsa_asn1.c +227 -0
  781. data/third_party/boringssl/crypto/engine/engine.c +96 -0
  782. data/third_party/boringssl/crypto/err/err.c +756 -0
  783. data/third_party/boringssl/crypto/evp/digestsign.c +159 -0
  784. data/third_party/boringssl/crypto/evp/evp.c +367 -0
  785. data/third_party/boringssl/crypto/evp/evp_asn1.c +337 -0
  786. data/third_party/boringssl/crypto/evp/evp_ctx.c +448 -0
  787. data/third_party/boringssl/crypto/evp/internal.h +237 -0
  788. data/third_party/boringssl/crypto/evp/p_dsa_asn1.c +268 -0
  789. data/third_party/boringssl/crypto/evp/p_ec.c +236 -0
  790. data/third_party/boringssl/crypto/evp/p_ec_asn1.c +257 -0
  791. data/third_party/boringssl/crypto/evp/p_rsa.c +673 -0
  792. data/third_party/boringssl/crypto/evp/p_rsa_asn1.c +200 -0
  793. data/third_party/boringssl/crypto/evp/pbkdf.c +151 -0
  794. data/third_party/boringssl/crypto/evp/print.c +520 -0
  795. data/third_party/boringssl/crypto/evp/sign.c +151 -0
  796. data/third_party/boringssl/crypto/ex_data.c +292 -0
  797. data/third_party/boringssl/crypto/hkdf/hkdf.c +110 -0
  798. data/third_party/boringssl/crypto/hmac/hmac.c +213 -0
  799. data/third_party/boringssl/crypto/internal.h +527 -0
  800. data/third_party/boringssl/crypto/lhash/lhash.c +342 -0
  801. data/third_party/boringssl/crypto/md4/md4.c +234 -0
  802. data/third_party/boringssl/crypto/md5/md5.c +275 -0
  803. data/third_party/boringssl/crypto/mem.c +200 -0
  804. data/third_party/boringssl/crypto/modes/cbc.c +216 -0
  805. data/third_party/boringssl/crypto/modes/cfb.c +230 -0
  806. data/third_party/boringssl/crypto/modes/ctr.c +219 -0
  807. data/third_party/boringssl/crypto/modes/gcm.c +1288 -0
  808. data/third_party/boringssl/crypto/modes/internal.h +358 -0
  809. data/third_party/boringssl/crypto/modes/ofb.c +95 -0
  810. data/third_party/boringssl/crypto/newhope/error_correction.c +131 -0
  811. data/third_party/boringssl/crypto/newhope/internal.h +71 -0
  812. data/third_party/boringssl/crypto/newhope/newhope.c +174 -0
  813. data/third_party/boringssl/crypto/newhope/ntt.c +148 -0
  814. data/third_party/boringssl/crypto/newhope/poly.c +183 -0
  815. data/third_party/boringssl/crypto/newhope/precomp.c +306 -0
  816. data/third_party/boringssl/crypto/newhope/reduce.c +42 -0
  817. data/third_party/boringssl/crypto/obj/obj.c +640 -0
  818. data/third_party/boringssl/crypto/obj/obj_dat.h +5254 -0
  819. data/third_party/boringssl/crypto/obj/obj_xref.c +124 -0
  820. data/third_party/boringssl/crypto/obj/obj_xref.h +96 -0
  821. data/third_party/boringssl/crypto/pem/pem_all.c +262 -0
  822. data/third_party/boringssl/crypto/pem/pem_info.c +381 -0
  823. data/third_party/boringssl/crypto/pem/pem_lib.c +778 -0
  824. data/third_party/boringssl/crypto/pem/pem_oth.c +88 -0
  825. data/third_party/boringssl/crypto/pem/pem_pk8.c +257 -0
  826. data/third_party/boringssl/crypto/pem/pem_pkey.c +227 -0
  827. data/third_party/boringssl/crypto/pem/pem_x509.c +65 -0
  828. data/third_party/boringssl/crypto/pem/pem_xaux.c +67 -0
  829. data/third_party/boringssl/crypto/pkcs8/internal.h +83 -0
  830. data/third_party/boringssl/crypto/pkcs8/p5_pbe.c +151 -0
  831. data/third_party/boringssl/crypto/pkcs8/p5_pbev2.c +441 -0
  832. data/third_party/boringssl/crypto/pkcs8/p8_pkey.c +85 -0
  833. data/third_party/boringssl/crypto/pkcs8/pkcs8.c +1219 -0
  834. data/third_party/boringssl/crypto/poly1305/internal.h +40 -0
  835. data/third_party/boringssl/crypto/poly1305/poly1305.c +324 -0
  836. data/third_party/boringssl/crypto/poly1305/poly1305_arm.c +304 -0
  837. data/third_party/boringssl/crypto/poly1305/poly1305_vec.c +890 -0
  838. data/third_party/boringssl/crypto/rand/deterministic.c +47 -0
  839. data/third_party/boringssl/crypto/rand/internal.h +32 -0
  840. data/third_party/boringssl/crypto/rand/rand.c +244 -0
  841. data/third_party/boringssl/crypto/rand/urandom.c +221 -0
  842. data/third_party/boringssl/crypto/rand/windows.c +53 -0
  843. data/third_party/boringssl/crypto/rc4/rc4.c +98 -0
  844. data/third_party/boringssl/crypto/refcount_c11.c +67 -0
  845. data/third_party/boringssl/crypto/refcount_lock.c +53 -0
  846. data/third_party/boringssl/crypto/rsa/blinding.c +264 -0
  847. data/third_party/boringssl/crypto/rsa/internal.h +148 -0
  848. data/third_party/boringssl/crypto/rsa/padding.c +708 -0
  849. data/third_party/boringssl/crypto/rsa/rsa.c +830 -0
  850. data/third_party/boringssl/crypto/rsa/rsa_asn1.c +446 -0
  851. data/third_party/boringssl/crypto/rsa/rsa_impl.c +1139 -0
  852. data/third_party/boringssl/crypto/sha/sha1.c +337 -0
  853. data/third_party/boringssl/crypto/sha/sha256.c +327 -0
  854. data/third_party/boringssl/crypto/sha/sha512.c +607 -0
  855. data/third_party/boringssl/crypto/stack/stack.c +377 -0
  856. data/third_party/boringssl/crypto/thread.c +110 -0
  857. data/third_party/boringssl/crypto/thread_none.c +59 -0
  858. data/third_party/boringssl/crypto/thread_pthread.c +176 -0
  859. data/third_party/boringssl/crypto/thread_win.c +237 -0
  860. data/third_party/boringssl/crypto/time_support.c +206 -0
  861. data/third_party/boringssl/crypto/x509/a_digest.c +96 -0
  862. data/third_party/boringssl/crypto/x509/a_sign.c +135 -0
  863. data/third_party/boringssl/crypto/x509/a_strex.c +633 -0
  864. data/third_party/boringssl/crypto/x509/a_verify.c +127 -0
  865. data/third_party/boringssl/crypto/x509/algorithm.c +137 -0
  866. data/third_party/boringssl/crypto/x509/asn1_gen.c +818 -0
  867. data/third_party/boringssl/crypto/x509/by_dir.c +453 -0
  868. data/third_party/boringssl/crypto/x509/by_file.c +275 -0
  869. data/third_party/boringssl/crypto/x509/charmap.h +15 -0
  870. data/third_party/boringssl/crypto/x509/i2d_pr.c +83 -0
  871. data/third_party/boringssl/crypto/x509/internal.h +66 -0
  872. data/third_party/boringssl/crypto/x509/pkcs7.c +353 -0
  873. data/third_party/boringssl/crypto/x509/rsa_pss.c +385 -0
  874. data/third_party/boringssl/crypto/x509/t_crl.c +128 -0
  875. data/third_party/boringssl/crypto/x509/t_req.c +246 -0
  876. data/third_party/boringssl/crypto/x509/t_x509.c +506 -0
  877. data/third_party/boringssl/crypto/x509/t_x509a.c +111 -0
  878. data/third_party/boringssl/crypto/x509/vpm_int.h +70 -0
  879. data/third_party/boringssl/crypto/x509/x509.c +157 -0
  880. data/third_party/boringssl/crypto/x509/x509_att.c +381 -0
  881. data/third_party/boringssl/crypto/x509/x509_cmp.c +474 -0
  882. data/third_party/boringssl/crypto/x509/x509_d2.c +106 -0
  883. data/third_party/boringssl/crypto/x509/x509_def.c +98 -0
  884. data/third_party/boringssl/crypto/x509/x509_ext.c +206 -0
  885. data/third_party/boringssl/crypto/x509/x509_lu.c +690 -0
  886. data/third_party/boringssl/crypto/x509/x509_obj.c +197 -0
  887. data/third_party/boringssl/crypto/x509/x509_r2x.c +117 -0
  888. data/third_party/boringssl/crypto/x509/x509_req.c +322 -0
  889. data/third_party/boringssl/crypto/x509/x509_set.c +154 -0
  890. data/third_party/boringssl/crypto/x509/x509_trs.c +326 -0
  891. data/third_party/boringssl/crypto/x509/x509_txt.c +211 -0
  892. data/third_party/boringssl/crypto/x509/x509_v3.c +278 -0
  893. data/third_party/boringssl/crypto/x509/x509_vfy.c +2436 -0
  894. data/third_party/boringssl/crypto/x509/x509_vpm.c +647 -0
  895. data/third_party/boringssl/crypto/x509/x509cset.c +170 -0
  896. data/third_party/boringssl/crypto/x509/x509name.c +386 -0
  897. data/third_party/boringssl/crypto/x509/x509rset.c +81 -0
  898. data/third_party/boringssl/crypto/x509/x509spki.c +137 -0
  899. data/third_party/boringssl/crypto/x509/x509type.c +126 -0
  900. data/third_party/boringssl/crypto/x509/x_algor.c +151 -0
  901. data/third_party/boringssl/crypto/x509/x_all.c +501 -0
  902. data/third_party/boringssl/crypto/x509/x_attrib.c +111 -0
  903. data/third_party/boringssl/crypto/x509/x_crl.c +539 -0
  904. data/third_party/boringssl/crypto/x509/x_exten.c +75 -0
  905. data/third_party/boringssl/crypto/x509/x_info.c +98 -0
  906. data/third_party/boringssl/crypto/x509/x_name.c +534 -0
  907. data/third_party/boringssl/crypto/x509/x_pkey.c +103 -0
  908. data/third_party/boringssl/crypto/x509/x_pubkey.c +368 -0
  909. data/third_party/boringssl/crypto/x509/x_req.c +109 -0
  910. data/third_party/boringssl/crypto/x509/x_sig.c +69 -0
  911. data/third_party/boringssl/crypto/x509/x_spki.c +80 -0
  912. data/third_party/boringssl/crypto/x509/x_val.c +69 -0
  913. data/third_party/boringssl/crypto/x509/x_x509.c +289 -0
  914. data/third_party/boringssl/crypto/x509/x_x509a.c +205 -0
  915. data/third_party/boringssl/crypto/x509v3/ext_dat.h +135 -0
  916. data/third_party/boringssl/crypto/x509v3/pcy_cache.c +284 -0
  917. data/third_party/boringssl/crypto/x509v3/pcy_data.c +130 -0
  918. data/third_party/boringssl/crypto/x509v3/pcy_int.h +217 -0
  919. data/third_party/boringssl/crypto/x509v3/pcy_lib.c +164 -0
  920. data/third_party/boringssl/crypto/x509v3/pcy_map.c +130 -0
  921. data/third_party/boringssl/crypto/x509v3/pcy_node.c +188 -0
  922. data/third_party/boringssl/crypto/x509v3/pcy_tree.c +829 -0
  923. data/third_party/boringssl/crypto/x509v3/v3_akey.c +204 -0
  924. data/third_party/boringssl/crypto/x509v3/v3_akeya.c +72 -0
  925. data/third_party/boringssl/crypto/x509v3/v3_alt.c +614 -0
  926. data/third_party/boringssl/crypto/x509v3/v3_bcons.c +133 -0
  927. data/third_party/boringssl/crypto/x509v3/v3_bitst.c +141 -0
  928. data/third_party/boringssl/crypto/x509v3/v3_conf.c +462 -0
  929. data/third_party/boringssl/crypto/x509v3/v3_cpols.c +496 -0
  930. data/third_party/boringssl/crypto/x509v3/v3_crld.c +561 -0
  931. data/third_party/boringssl/crypto/x509v3/v3_enum.c +100 -0
  932. data/third_party/boringssl/crypto/x509v3/v3_extku.c +148 -0
  933. data/third_party/boringssl/crypto/x509v3/v3_genn.c +250 -0
  934. data/third_party/boringssl/crypto/x509v3/v3_ia5.c +119 -0
  935. data/third_party/boringssl/crypto/x509v3/v3_info.c +212 -0
  936. data/third_party/boringssl/crypto/x509v3/v3_int.c +91 -0
  937. data/third_party/boringssl/crypto/x509v3/v3_lib.c +362 -0
  938. data/third_party/boringssl/crypto/x509v3/v3_ncons.c +482 -0
  939. data/third_party/boringssl/crypto/x509v3/v3_pci.c +317 -0
  940. data/third_party/boringssl/crypto/x509v3/v3_pcia.c +57 -0
  941. data/third_party/boringssl/crypto/x509v3/v3_pcons.c +139 -0
  942. data/third_party/boringssl/crypto/x509v3/v3_pku.c +110 -0
  943. data/third_party/boringssl/crypto/x509v3/v3_pmaps.c +154 -0
  944. data/third_party/boringssl/crypto/x509v3/v3_prn.c +229 -0
  945. data/third_party/boringssl/crypto/x509v3/v3_purp.c +874 -0
  946. data/third_party/boringssl/crypto/x509v3/v3_skey.c +152 -0
  947. data/third_party/boringssl/crypto/x509v3/v3_sxnet.c +274 -0
  948. data/third_party/boringssl/crypto/x509v3/v3_utl.c +1327 -0
  949. data/third_party/boringssl/include/openssl/aead.h +345 -0
  950. data/third_party/boringssl/include/openssl/aes.h +158 -0
  951. data/third_party/boringssl/include/openssl/arm_arch.h +121 -0
  952. data/third_party/boringssl/include/openssl/asn1.h +1038 -0
  953. data/third_party/boringssl/include/openssl/asn1_mac.h +18 -0
  954. data/third_party/boringssl/include/openssl/asn1t.h +896 -0
  955. data/third_party/boringssl/include/openssl/base.h +412 -0
  956. data/third_party/boringssl/include/openssl/base64.h +187 -0
  957. data/third_party/boringssl/include/openssl/bio.h +926 -0
  958. data/third_party/boringssl/include/openssl/blowfish.h +93 -0
  959. data/third_party/boringssl/include/openssl/bn.h +955 -0
  960. data/third_party/boringssl/include/openssl/buf.h +133 -0
  961. data/third_party/boringssl/include/openssl/buffer.h +18 -0
  962. data/third_party/boringssl/include/openssl/bytestring.h +437 -0
  963. data/third_party/boringssl/include/openssl/cast.h +96 -0
  964. data/third_party/boringssl/include/openssl/chacha.h +37 -0
  965. data/third_party/boringssl/include/openssl/cipher.h +588 -0
  966. data/third_party/boringssl/include/openssl/cmac.h +87 -0
  967. data/third_party/boringssl/include/openssl/conf.h +181 -0
  968. data/third_party/boringssl/include/openssl/cpu.h +181 -0
  969. data/third_party/boringssl/include/openssl/crypto.h +94 -0
  970. data/third_party/boringssl/include/openssl/curve25519.h +183 -0
  971. data/third_party/boringssl/include/openssl/des.h +177 -0
  972. data/third_party/boringssl/include/openssl/dh.h +297 -0
  973. data/third_party/boringssl/include/openssl/digest.h +285 -0
  974. data/third_party/boringssl/include/openssl/dsa.h +436 -0
  975. data/third_party/boringssl/include/openssl/dtls1.h +16 -0
  976. data/third_party/boringssl/include/openssl/ec.h +406 -0
  977. data/third_party/boringssl/include/openssl/ec_key.h +337 -0
  978. data/third_party/boringssl/include/openssl/ecdh.h +102 -0
  979. data/third_party/boringssl/include/openssl/ecdsa.h +217 -0
  980. data/third_party/boringssl/include/openssl/engine.h +109 -0
  981. data/third_party/boringssl/include/openssl/err.h +488 -0
  982. data/third_party/boringssl/include/openssl/evp.h +797 -0
  983. data/third_party/boringssl/include/openssl/ex_data.h +213 -0
  984. data/third_party/boringssl/include/openssl/hkdf.h +64 -0
  985. data/third_party/boringssl/include/openssl/hmac.h +174 -0
  986. data/third_party/boringssl/include/openssl/lhash.h +192 -0
  987. data/third_party/boringssl/include/openssl/lhash_macros.h +132 -0
  988. data/third_party/boringssl/include/openssl/md4.h +106 -0
  989. data/third_party/boringssl/include/openssl/md5.h +107 -0
  990. data/third_party/boringssl/include/openssl/mem.h +150 -0
  991. data/third_party/boringssl/include/openssl/newhope.h +158 -0
  992. data/third_party/boringssl/include/openssl/nid.h +4166 -0
  993. data/third_party/boringssl/include/openssl/obj.h +226 -0
  994. data/third_party/boringssl/include/openssl/obj_mac.h +18 -0
  995. data/third_party/boringssl/include/openssl/objects.h +18 -0
  996. data/third_party/boringssl/include/openssl/opensslconf.h +60 -0
  997. data/third_party/boringssl/include/openssl/opensslv.h +18 -0
  998. data/third_party/boringssl/include/openssl/ossl_typ.h +18 -0
  999. data/third_party/boringssl/include/openssl/pem.h +517 -0
  1000. data/third_party/boringssl/include/openssl/pkcs12.h +18 -0
  1001. data/third_party/boringssl/include/openssl/pkcs7.h +16 -0
  1002. data/third_party/boringssl/include/openssl/pkcs8.h +236 -0
  1003. data/third_party/boringssl/include/openssl/poly1305.h +51 -0
  1004. data/third_party/boringssl/include/openssl/rand.h +122 -0
  1005. data/third_party/boringssl/include/openssl/rc4.h +96 -0
  1006. data/third_party/boringssl/include/openssl/ripemd.h +107 -0
  1007. data/third_party/boringssl/include/openssl/rsa.h +699 -0
  1008. data/third_party/boringssl/include/openssl/safestack.h +16 -0
  1009. data/third_party/boringssl/include/openssl/sha.h +260 -0
  1010. data/third_party/boringssl/include/openssl/srtp.h +18 -0
  1011. data/third_party/boringssl/include/openssl/ssl.h +4826 -0
  1012. data/third_party/boringssl/include/openssl/ssl3.h +434 -0
  1013. data/third_party/boringssl/include/openssl/stack.h +293 -0
  1014. data/third_party/boringssl/include/openssl/stack_macros.h +3902 -0
  1015. data/third_party/boringssl/include/openssl/thread.h +191 -0
  1016. data/third_party/boringssl/include/openssl/time_support.h +91 -0
  1017. data/third_party/boringssl/include/openssl/tls1.h +657 -0
  1018. data/third_party/boringssl/include/openssl/type_check.h +91 -0
  1019. data/third_party/boringssl/include/openssl/x509.h +1299 -0
  1020. data/third_party/boringssl/include/openssl/x509_vfy.h +618 -0
  1021. data/third_party/boringssl/include/openssl/x509v3.h +819 -0
  1022. data/third_party/boringssl/ssl/custom_extensions.c +255 -0
  1023. data/third_party/boringssl/ssl/d1_both.c +845 -0
  1024. data/third_party/boringssl/ssl/d1_lib.c +270 -0
  1025. data/third_party/boringssl/ssl/d1_pkt.c +419 -0
  1026. data/third_party/boringssl/ssl/d1_srtp.c +236 -0
  1027. data/third_party/boringssl/ssl/dtls_method.c +203 -0
  1028. data/third_party/boringssl/ssl/dtls_record.c +309 -0
  1029. data/third_party/boringssl/ssl/handshake_client.c +2002 -0
  1030. data/third_party/boringssl/ssl/handshake_server.c +1932 -0
  1031. data/third_party/boringssl/ssl/internal.h +1551 -0
  1032. data/third_party/boringssl/ssl/s3_both.c +745 -0
  1033. data/third_party/boringssl/ssl/s3_enc.c +412 -0
  1034. data/third_party/boringssl/ssl/s3_lib.c +336 -0
  1035. data/third_party/boringssl/ssl/s3_pkt.c +497 -0
  1036. data/third_party/boringssl/ssl/ssl_aead_ctx.c +329 -0
  1037. data/third_party/boringssl/ssl/ssl_asn1.c +748 -0
  1038. data/third_party/boringssl/ssl/ssl_buffer.c +311 -0
  1039. data/third_party/boringssl/ssl/ssl_cert.c +814 -0
  1040. data/third_party/boringssl/ssl/ssl_cipher.c +2062 -0
  1041. data/third_party/boringssl/ssl/ssl_ecdh.c +610 -0
  1042. data/third_party/boringssl/ssl/ssl_file.c +586 -0
  1043. data/third_party/boringssl/ssl/ssl_lib.c +3063 -0
  1044. data/third_party/boringssl/ssl/ssl_rsa.c +793 -0
  1045. data/third_party/boringssl/ssl/ssl_session.c +985 -0
  1046. data/third_party/boringssl/ssl/ssl_stat.c +509 -0
  1047. data/third_party/boringssl/ssl/t1_enc.c +547 -0
  1048. data/third_party/boringssl/ssl/t1_lib.c +3279 -0
  1049. data/third_party/boringssl/ssl/tls13_both.c +440 -0
  1050. data/third_party/boringssl/ssl/tls13_client.c +682 -0
  1051. data/third_party/boringssl/ssl/tls13_enc.c +391 -0
  1052. data/third_party/boringssl/ssl/tls13_server.c +672 -0
  1053. data/third_party/boringssl/ssl/tls_method.c +245 -0
  1054. data/third_party/boringssl/ssl/tls_record.c +461 -0
  1055. data/third_party/cares/ares_build.h +264 -0
  1056. data/third_party/cares/cares/ares.h +636 -0
  1057. data/third_party/cares/cares/ares__close_sockets.c +61 -0
  1058. data/third_party/cares/cares/ares__get_hostent.c +261 -0
  1059. data/third_party/cares/cares/ares__read_line.c +73 -0
  1060. data/third_party/cares/cares/ares__timeval.c +111 -0
  1061. data/third_party/cares/cares/ares_cancel.c +63 -0
  1062. data/third_party/cares/cares/ares_create_query.c +202 -0
  1063. data/third_party/cares/cares/ares_data.c +221 -0
  1064. data/third_party/cares/cares/ares_data.h +72 -0
  1065. data/third_party/cares/cares/ares_destroy.c +108 -0
  1066. data/third_party/cares/cares/ares_dns.h +103 -0
  1067. data/third_party/cares/cares/ares_expand_name.c +205 -0
  1068. data/third_party/cares/cares/ares_expand_string.c +70 -0
  1069. data/third_party/cares/cares/ares_fds.c +59 -0
  1070. data/third_party/cares/cares/ares_free_hostent.c +41 -0
  1071. data/third_party/cares/cares/ares_free_string.c +25 -0
  1072. data/third_party/cares/cares/ares_getenv.c +30 -0
  1073. data/third_party/cares/cares/ares_getenv.h +26 -0
  1074. data/third_party/cares/cares/ares_gethostbyaddr.c +294 -0
  1075. data/third_party/cares/cares/ares_gethostbyname.c +518 -0
  1076. data/third_party/cares/cares/ares_getnameinfo.c +422 -0
  1077. data/third_party/cares/cares/ares_getopt.c +122 -0
  1078. data/third_party/cares/cares/ares_getopt.h +53 -0
  1079. data/third_party/cares/cares/ares_getsock.c +66 -0
  1080. data/third_party/cares/cares/ares_inet_net_pton.h +25 -0
  1081. data/third_party/cares/cares/ares_init.c +2146 -0
  1082. data/third_party/cares/cares/ares_iphlpapi.h +221 -0
  1083. data/third_party/cares/cares/ares_ipv6.h +78 -0
  1084. data/third_party/cares/cares/ares_library_init.c +167 -0
  1085. data/third_party/cares/cares/ares_library_init.h +42 -0
  1086. data/third_party/cares/cares/ares_llist.c +63 -0
  1087. data/third_party/cares/cares/ares_llist.h +39 -0
  1088. data/third_party/cares/cares/ares_mkquery.c +24 -0
  1089. data/third_party/cares/cares/ares_nowarn.c +260 -0
  1090. data/third_party/cares/cares/ares_nowarn.h +61 -0
  1091. data/third_party/cares/cares/ares_options.c +402 -0
  1092. data/third_party/cares/cares/ares_parse_a_reply.c +264 -0
  1093. data/third_party/cares/cares/ares_parse_aaaa_reply.c +264 -0
  1094. data/third_party/cares/cares/ares_parse_mx_reply.c +170 -0
  1095. data/third_party/cares/cares/ares_parse_naptr_reply.c +188 -0
  1096. data/third_party/cares/cares/ares_parse_ns_reply.c +183 -0
  1097. data/third_party/cares/cares/ares_parse_ptr_reply.c +219 -0
  1098. data/third_party/cares/cares/ares_parse_soa_reply.c +133 -0
  1099. data/third_party/cares/cares/ares_parse_srv_reply.c +179 -0
  1100. data/third_party/cares/cares/ares_parse_txt_reply.c +220 -0
  1101. data/third_party/cares/cares/ares_platform.c +11035 -0
  1102. data/third_party/cares/cares/ares_platform.h +43 -0
  1103. data/third_party/cares/cares/ares_private.h +363 -0
  1104. data/third_party/cares/cares/ares_process.c +1359 -0
  1105. data/third_party/cares/cares/ares_query.c +186 -0
  1106. data/third_party/cares/cares/ares_rules.h +125 -0
  1107. data/third_party/cares/cares/ares_search.c +316 -0
  1108. data/third_party/cares/cares/ares_send.c +131 -0
  1109. data/third_party/cares/cares/ares_setup.h +217 -0
  1110. data/third_party/cares/cares/ares_strcasecmp.c +66 -0
  1111. data/third_party/cares/cares/ares_strcasecmp.h +30 -0
  1112. data/third_party/cares/cares/ares_strdup.c +49 -0
  1113. data/third_party/cares/cares/ares_strdup.h +24 -0
  1114. data/third_party/cares/cares/ares_strerror.c +56 -0
  1115. data/third_party/cares/cares/ares_timeout.c +88 -0
  1116. data/third_party/cares/cares/ares_version.c +11 -0
  1117. data/third_party/cares/cares/ares_version.h +24 -0
  1118. data/third_party/cares/cares/ares_writev.c +79 -0
  1119. data/third_party/cares/cares/bitncmp.c +59 -0
  1120. data/third_party/cares/cares/bitncmp.h +26 -0
  1121. data/third_party/cares/cares/config-win32.h +377 -0
  1122. data/third_party/cares/cares/inet_net_pton.c +450 -0
  1123. data/third_party/cares/cares/inet_ntop.c +208 -0
  1124. data/third_party/cares/cares/setup_once.h +554 -0
  1125. data/third_party/cares/cares/windows_port.c +22 -0
  1126. data/third_party/cares/config_darwin/ares_config.h +523 -0
  1127. data/third_party/cares/config_linux/ares_config.h +524 -0
  1128. data/third_party/nanopb/pb.h +579 -0
  1129. data/third_party/nanopb/pb_common.c +97 -0
  1130. data/third_party/nanopb/pb_common.h +42 -0
  1131. data/third_party/nanopb/pb_decode.c +1347 -0
  1132. data/third_party/nanopb/pb_decode.h +149 -0
  1133. data/third_party/nanopb/pb_encode.c +696 -0
  1134. data/third_party/nanopb/pb_encode.h +154 -0
  1135. data/third_party/zlib/adler32.c +179 -0
  1136. data/third_party/zlib/compress.c +80 -0
  1137. data/third_party/zlib/crc32.c +425 -0
  1138. data/third_party/zlib/crc32.h +441 -0
  1139. data/third_party/zlib/deflate.c +1967 -0
  1140. data/third_party/zlib/deflate.h +346 -0
  1141. data/third_party/zlib/gzclose.c +25 -0
  1142. data/third_party/zlib/gzguts.h +209 -0
  1143. data/third_party/zlib/gzlib.c +634 -0
  1144. data/third_party/zlib/gzread.c +594 -0
  1145. data/third_party/zlib/gzwrite.c +577 -0
  1146. data/third_party/zlib/infback.c +640 -0
  1147. data/third_party/zlib/inffast.c +340 -0
  1148. data/third_party/zlib/inffast.h +11 -0
  1149. data/third_party/zlib/inffixed.h +94 -0
  1150. data/third_party/zlib/inflate.c +1512 -0
  1151. data/third_party/zlib/inflate.h +122 -0
  1152. data/third_party/zlib/inftrees.c +306 -0
  1153. data/third_party/zlib/inftrees.h +62 -0
  1154. data/third_party/zlib/trees.c +1226 -0
  1155. data/third_party/zlib/trees.h +128 -0
  1156. data/third_party/zlib/uncompr.c +59 -0
  1157. data/third_party/zlib/zconf.h +511 -0
  1158. data/third_party/zlib/zlib.h +1768 -0
  1159. data/third_party/zlib/zutil.c +324 -0
  1160. data/third_party/zlib/zutil.h +253 -0
  1161. metadata +1397 -0
data/third_party/boringssl/crypto/cipher/derive_key.c ADDED
@@ -0,0 +1,154 @@
1
+ /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
2
+ * All rights reserved.
3
+ *
4
+ * This package is an SSL implementation written
5
+ * by Eric Young (eay@cryptsoft.com).
6
+ * The implementation was written so as to conform with Netscapes SSL.
7
+ *
8
+ * This library is free for commercial and non-commercial use as long as
9
+ * the following conditions are aheared to. The following conditions
10
+ * apply to all code found in this distribution, be it the RC4, RSA,
11
+ * lhash, DES, etc., code; not just the SSL code. The SSL documentation
12
+ * included with this distribution is covered by the same copyright terms
13
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
14
+ *
15
+ * Copyright remains Eric Young's, and as such any Copyright notices in
16
+ * the code are not to be removed.
17
+ * If this package is used in a product, Eric Young should be given attribution
18
+ * as the author of the parts of the library used.
19
+ * This can be in the form of a textual message at program startup or
20
+ * in documentation (online or textual) provided with the package.
21
+ *
22
+ * Redistribution and use in source and binary forms, with or without
23
+ * modification, are permitted provided that the following conditions
24
+ * are met:
25
+ * 1. Redistributions of source code must retain the copyright
26
+ * notice, this list of conditions and the following disclaimer.
27
+ * 2. Redistributions in binary form must reproduce the above copyright
28
+ * notice, this list of conditions and the following disclaimer in the
29
+ * documentation and/or other materials provided with the distribution.
30
+ * 3. All advertising materials mentioning features or use of this software
31
+ * must display the following acknowledgement:
32
+ * "This product includes cryptographic software written by
33
+ * Eric Young (eay@cryptsoft.com)"
34
+ * The word 'cryptographic' can be left out if the rouines from the library
35
+ * being used are not cryptographic related :-).
36
+ * 4. If you include any Windows specific code (or a derivative thereof) from
37
+ * the apps directory (application code) you must include an acknowledgement:
38
+ * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
39
+ *
40
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
41
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
43
+ * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
44
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
45
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
46
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
48
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
49
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50
+ * SUCH DAMAGE.
51
+ *
52
+ * The licence and distribution terms for any publically available version or
53
+ * derivative of this code cannot be changed. i.e. this code cannot simply be
54
+ * copied and put under another distribution licence
55
+ * [including the GNU Public Licence.] */
56
+
57
+ #include <openssl/cipher.h>
58
+
59
+ #include <assert.h>
60
+
61
+ #include <openssl/digest.h>
62
+ #include <openssl/mem.h>
63
+
64
+ #include "internal.h"
65
+
66
+
67
+ #define PKCS5_SALT_LEN 8
68
+
69
+ int EVP_BytesToKey(const EVP_CIPHER *type, const EVP_MD *md,
70
+ const uint8_t *salt, const uint8_t *data, size_t data_len,
71
+ unsigned count, uint8_t *key, uint8_t *iv) {
72
+ EVP_MD_CTX c;
73
+ uint8_t md_buf[EVP_MAX_MD_SIZE];
74
+ unsigned niv, nkey, addmd = 0;
75
+ unsigned mds = 0, i;
76
+ int rv = 0;
77
+
78
+ nkey = type->key_len;
79
+ niv = type->iv_len;
80
+
81
+ assert(nkey <= EVP_MAX_KEY_LENGTH);
82
+ assert(niv <= EVP_MAX_IV_LENGTH);
83
+
84
+ if (data == NULL) {
85
+ return nkey;
86
+ }
87
+
88
+ EVP_MD_CTX_init(&c);
89
+ for (;;) {
90
+ if (!EVP_DigestInit_ex(&c, md, NULL)) {
91
+ return 0;
92
+ }
93
+ if (addmd++) {
94
+ if (!EVP_DigestUpdate(&c, md_buf, mds)) {
95
+ goto err;
96
+ }
97
+ }
98
+ if (!EVP_DigestUpdate(&c, data, data_len)) {
99
+ goto err;
100
+ }
101
+ if (salt != NULL) {
102
+ if (!EVP_DigestUpdate(&c, salt, PKCS5_SALT_LEN)) {
103
+ goto err;
104
+ }
105
+ }
106
+ if (!EVP_DigestFinal_ex(&c, md_buf, &mds)) {
107
+ goto err;
108
+ }
109
+
110
+ for (i = 1; i < count; i++) {
111
+ if (!EVP_DigestInit_ex(&c, md, NULL) ||
112
+ !EVP_DigestUpdate(&c, md_buf, mds) ||
113
+ !EVP_DigestFinal_ex(&c, md_buf, &mds)) {
114
+ goto err;
115
+ }
116
+ }
117
+
118
+ i = 0;
119
+ if (nkey) {
120
+ for (;;) {
121
+ if (nkey == 0 || i == mds) {
122
+ break;
123
+ }
124
+ if (key != NULL) {
125
+ *(key++) = md_buf[i];
126
+ }
127
+ nkey--;
128
+ i++;
129
+ }
130
+ }
131
+
132
+ if (niv && i != mds) {
133
+ for (;;) {
134
+ if (niv == 0 || i == mds) {
135
+ break;
136
+ }
137
+ if (iv != NULL) {
138
+ *(iv++) = md_buf[i];
139
+ }
140
+ niv--;
141
+ i++;
142
+ }
143
+ }
144
+ if (nkey == 0 && niv == 0) {
145
+ break;
146
+ }
147
+ }
148
+ rv = type->key_len;
149
+
150
+ err:
151
+ EVP_MD_CTX_cleanup(&c);
152
+ OPENSSL_cleanse(md_buf, EVP_MAX_MD_SIZE);
153
+ return rv;
154
+ }
data/third_party/boringssl/crypto/cipher/e_aes.c ADDED
@@ -0,0 +1,1717 @@
1
+ /* ====================================================================
2
+ * Copyright (c) 2001-2011 The OpenSSL Project. All rights reserved.
3
+ *
4
+ * Redistribution and use in source and binary forms, with or without
5
+ * modification, are permitted provided that the following conditions
6
+ * are met:
7
+ *
8
+ * 1. Redistributions of source code must retain the above copyright
9
+ * notice, this list of conditions and the following disclaimer.
10
+ *
11
+ * 2. Redistributions in binary form must reproduce the above copyright
12
+ * notice, this list of conditions and the following disclaimer in
13
+ * the documentation and/or other materials provided with the
14
+ * distribution.
15
+ *
16
+ * 3. All advertising materials mentioning features or use of this
17
+ * software must display the following acknowledgment:
18
+ * "This product includes software developed by the OpenSSL Project
19
+ * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
20
+ *
21
+ * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
22
+ * endorse or promote products derived from this software without
23
+ * prior written permission. For written permission, please contact
24
+ * openssl-core@openssl.org.
25
+ *
26
+ * 5. Products derived from this software may not be called "OpenSSL"
27
+ * nor may "OpenSSL" appear in their names without prior written
28
+ * permission of the OpenSSL Project.
29
+ *
30
+ * 6. Redistributions of any form whatsoever must retain the following
31
+ * acknowledgment:
32
+ * "This product includes software developed by the OpenSSL Project
33
+ * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
34
+ *
35
+ * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
36
+ * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
37
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
38
+ * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
39
+ * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
40
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
41
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
42
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
43
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
44
+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
45
+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
46
+ * OF THE POSSIBILITY OF SUCH DAMAGE.
47
+ * ==================================================================== */
48
+
49
+ #include <string.h>
50
+
51
+ #include <openssl/aead.h>
52
+ #include <openssl/aes.h>
53
+ #include <openssl/cipher.h>
54
+ #include <openssl/cpu.h>
55
+ #include <openssl/err.h>
56
+ #include <openssl/mem.h>
57
+ #include <openssl/nid.h>
58
+ #include <openssl/rand.h>
59
+ #include <openssl/sha.h>
60
+
61
+ #include "internal.h"
62
+ #include "../internal.h"
63
+ #include "../modes/internal.h"
64
+
65
+ #if defined(OPENSSL_ARM) || defined(OPENSSL_AARCH64)
66
+ #include <openssl/arm_arch.h>
67
+ #endif
68
+
69
+
70
+ OPENSSL_MSVC_PRAGMA(warning(disable: 4702)) /* Unreachable code. */
71
+
72
+ typedef struct {
73
+ union {
74
+ double align;
75
+ AES_KEY ks;
76
+ } ks;
77
+ block128_f block;
78
+ union {
79
+ cbc128_f cbc;
80
+ ctr128_f ctr;
81
+ } stream;
82
+ } EVP_AES_KEY;
83
+
84
+ typedef struct {
85
+ union {
86
+ double align;
87
+ AES_KEY ks;
88
+ } ks; /* AES key schedule to use */
89
+ int key_set; /* Set if key initialised */
90
+ int iv_set; /* Set if an iv is set */
91
+ GCM128_CONTEXT gcm;
92
+ uint8_t *iv; /* Temporary IV store */
93
+ int ivlen; /* IV length */
94
+ int taglen;
95
+ int iv_gen; /* It is OK to generate IVs */
96
+ ctr128_f ctr;
97
+ } EVP_AES_GCM_CTX;
98
+
99
+ #if !defined(OPENSSL_NO_ASM) && \
100
+ (defined(OPENSSL_X86_64) || defined(OPENSSL_X86))
101
+ #define VPAES
102
+ static char vpaes_capable(void) {
103
+ return (OPENSSL_ia32cap_P[1] & (1 << (41 - 32))) != 0;
104
+ }
105
+
106
+ #if defined(OPENSSL_X86_64)
107
+ #define BSAES
108
+ static char bsaes_capable(void) {
109
+ return vpaes_capable();
110
+ }
111
+ #endif
112
+
113
+ #elif !defined(OPENSSL_NO_ASM) && \
114
+ (defined(OPENSSL_ARM) || defined(OPENSSL_AARCH64))
115
+
116
+ #if defined(OPENSSL_ARM) && __ARM_MAX_ARCH__ >= 7
117
+ #define BSAES
118
+ static char bsaes_capable(void) {
119
+ return CRYPTO_is_NEON_capable();
120
+ }
121
+ #endif
122
+
123
+ #define HWAES
124
+ static int hwaes_capable(void) {
125
+ return CRYPTO_is_ARMv8_AES_capable();
126
+ }
127
+
128
+ #elif !defined(OPENSSL_NO_ASM) && defined(OPENSSL_PPC64LE)
129
+
130
+ #define HWAES
131
+ static int hwaes_capable(void) {
132
+ return CRYPTO_is_PPC64LE_vcrypto_capable();
133
+ }
134
+
135
+ #endif /* OPENSSL_PPC64LE */
136
+
137
+
138
+ #if defined(BSAES)
139
+ /* On platforms where BSAES gets defined (just above), then these functions are
140
+ * provided by asm. */
141
+ void bsaes_cbc_encrypt(const uint8_t *in, uint8_t *out, size_t length,
142
+ const AES_KEY *key, uint8_t ivec[16], int enc);
143
+ void bsaes_ctr32_encrypt_blocks(const uint8_t *in, uint8_t *out, size_t len,
144
+ const AES_KEY *key, const uint8_t ivec[16]);
145
+ #else
146
+ static char bsaes_capable(void) {
147
+ return 0;
148
+ }
149
+
150
+ /* On other platforms, bsaes_capable() will always return false and so the
151
+ * following will never be called. */
152
+ static void bsaes_cbc_encrypt(const uint8_t *in, uint8_t *out, size_t length,
153
+ const AES_KEY *key, uint8_t ivec[16], int enc) {
154
+ abort();
155
+ }
156
+
157
+ static void bsaes_ctr32_encrypt_blocks(const uint8_t *in, uint8_t *out,
158
+ size_t len, const AES_KEY *key,
159
+ const uint8_t ivec[16]) {
160
+ abort();
161
+ }
162
+ #endif
163
+
164
+ #if defined(VPAES)
165
+ /* On platforms where VPAES gets defined (just above), then these functions are
166
+ * provided by asm. */
167
+ int vpaes_set_encrypt_key(const uint8_t *userKey, int bits, AES_KEY *key);
168
+ int vpaes_set_decrypt_key(const uint8_t *userKey, int bits, AES_KEY *key);
169
+
170
+ void vpaes_encrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key);
171
+ void vpaes_decrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key);
172
+
173
+ void vpaes_cbc_encrypt(const uint8_t *in, uint8_t *out, size_t length,
174
+ const AES_KEY *key, uint8_t *ivec, int enc);
175
+ #else
176
+ static char vpaes_capable(void) {
177
+ return 0;
178
+ }
179
+
180
+ /* On other platforms, vpaes_capable() will always return false and so the
181
+ * following will never be called. */
182
+ static int vpaes_set_encrypt_key(const uint8_t *userKey, int bits,
183
+ AES_KEY *key) {
184
+ abort();
185
+ }
186
+ static int vpaes_set_decrypt_key(const uint8_t *userKey, int bits,
187
+ AES_KEY *key) {
188
+ abort();
189
+ }
190
+ static void vpaes_encrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key) {
191
+ abort();
192
+ }
193
+ static void vpaes_decrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key) {
194
+ abort();
195
+ }
196
+ static void vpaes_cbc_encrypt(const uint8_t *in, uint8_t *out, size_t length,
197
+ const AES_KEY *key, uint8_t *ivec, int enc) {
198
+ abort();
199
+ }
200
+ #endif
201
+
202
+ #if defined(HWAES)
203
+ int aes_hw_set_encrypt_key(const uint8_t *user_key, const int bits,
204
+ AES_KEY *key);
205
+ int aes_hw_set_decrypt_key(const uint8_t *user_key, const int bits,
206
+ AES_KEY *key);
207
+ void aes_hw_encrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key);
208
+ void aes_hw_decrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key);
209
+ void aes_hw_cbc_encrypt(const uint8_t *in, uint8_t *out, size_t length,
210
+ const AES_KEY *key, uint8_t *ivec, const int enc);
211
+ void aes_hw_ctr32_encrypt_blocks(const uint8_t *in, uint8_t *out, size_t len,
212
+ const AES_KEY *key, const uint8_t ivec[16]);
213
+ #else
214
+ /* If HWAES isn't defined then we provide dummy functions for each of the hwaes
215
+ * functions. */
216
+ static int hwaes_capable(void) {
217
+ return 0;
218
+ }
219
+
220
+ static int aes_hw_set_encrypt_key(const uint8_t *user_key, int bits,
221
+ AES_KEY *key) {
222
+ abort();
223
+ }
224
+
225
+ static int aes_hw_set_decrypt_key(const uint8_t *user_key, int bits,
226
+ AES_KEY *key) {
227
+ abort();
228
+ }
229
+
230
+ static void aes_hw_encrypt(const uint8_t *in, uint8_t *out,
231
+ const AES_KEY *key) {
232
+ abort();
233
+ }
234
+
235
+ static void aes_hw_decrypt(const uint8_t *in, uint8_t *out,
236
+ const AES_KEY *key) {
237
+ abort();
238
+ }
239
+
240
+ static void aes_hw_cbc_encrypt(const uint8_t *in, uint8_t *out, size_t length,
241
+ const AES_KEY *key, uint8_t *ivec, int enc) {
242
+ abort();
243
+ }
244
+
245
+ static void aes_hw_ctr32_encrypt_blocks(const uint8_t *in, uint8_t *out,
246
+ size_t len, const AES_KEY *key,
247
+ const uint8_t ivec[16]) {
248
+ abort();
249
+ }
250
+ #endif
251
+
252
+ #if !defined(OPENSSL_NO_ASM) && \
253
+ (defined(OPENSSL_X86_64) || defined(OPENSSL_X86))
254
+ int aesni_set_encrypt_key(const uint8_t *userKey, int bits, AES_KEY *key);
255
+ int aesni_set_decrypt_key(const uint8_t *userKey, int bits, AES_KEY *key);
256
+
257
+ void aesni_encrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key);
258
+ void aesni_decrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key);
259
+
260
+ void aesni_ecb_encrypt(const uint8_t *in, uint8_t *out, size_t length,
261
+ const AES_KEY *key, int enc);
262
+ void aesni_cbc_encrypt(const uint8_t *in, uint8_t *out, size_t length,
263
+ const AES_KEY *key, uint8_t *ivec, int enc);
264
+
265
+ #else
266
+
267
+ /* On other platforms, aesni_capable() will always return false and so the
268
+ * following will never be called. */
269
+ static void aesni_encrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key) {
270
+ abort();
271
+ }
272
+ static int aesni_set_encrypt_key(const uint8_t *userKey, int bits,
273
+ AES_KEY *key) {
274
+ abort();
275
+ }
276
+ static void aesni_ctr32_encrypt_blocks(const uint8_t *in, uint8_t *out,
277
+ size_t blocks, const void *key,
278
+ const uint8_t *ivec) {
279
+ abort();
280
+ }
281
+
282
+ #endif
283
+
284
+ static int aes_init_key(EVP_CIPHER_CTX *ctx, const uint8_t *key,
285
+ const uint8_t *iv, int enc) {
286
+ int ret, mode;
287
+ EVP_AES_KEY *dat = (EVP_AES_KEY *)ctx->cipher_data;
288
+
289
+ mode = ctx->cipher->flags & EVP_CIPH_MODE_MASK;
290
+ if ((mode == EVP_CIPH_ECB_MODE || mode == EVP_CIPH_CBC_MODE) && !enc) {
291
+ if (hwaes_capable()) {
292
+ ret = aes_hw_set_decrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
293
+ dat->block = (block128_f)aes_hw_decrypt;
294
+ dat->stream.cbc = NULL;
295
+ if (mode == EVP_CIPH_CBC_MODE) {
296
+ dat->stream.cbc = (cbc128_f)aes_hw_cbc_encrypt;
297
+ }
298
+ } else if (bsaes_capable() && mode == EVP_CIPH_CBC_MODE) {
299
+ ret = AES_set_decrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
300
+ dat->block = (block128_f)AES_decrypt;
301
+ dat->stream.cbc = (cbc128_f)bsaes_cbc_encrypt;
302
+ } else if (vpaes_capable()) {
303
+ ret = vpaes_set_decrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
304
+ dat->block = (block128_f)vpaes_decrypt;
305
+ dat->stream.cbc =
306
+ mode == EVP_CIPH_CBC_MODE ? (cbc128_f)vpaes_cbc_encrypt : NULL;
307
+ } else {
308
+ ret = AES_set_decrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
309
+ dat->block = (block128_f)AES_decrypt;
310
+ dat->stream.cbc =
311
+ mode == EVP_CIPH_CBC_MODE ? (cbc128_f)AES_cbc_encrypt : NULL;
312
+ }
313
+ } else if (hwaes_capable()) {
314
+ ret = aes_hw_set_encrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
315
+ dat->block = (block128_f)aes_hw_encrypt;
316
+ dat->stream.cbc = NULL;
317
+ if (mode == EVP_CIPH_CBC_MODE) {
318
+ dat->stream.cbc = (cbc128_f)aes_hw_cbc_encrypt;
319
+ } else if (mode == EVP_CIPH_CTR_MODE) {
320
+ dat->stream.ctr = (ctr128_f)aes_hw_ctr32_encrypt_blocks;
321
+ }
322
+ } else if (bsaes_capable() && mode == EVP_CIPH_CTR_MODE) {
323
+ ret = AES_set_encrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
324
+ dat->block = (block128_f)AES_encrypt;
325
+ dat->stream.ctr = (ctr128_f)bsaes_ctr32_encrypt_blocks;
326
+ } else if (vpaes_capable()) {
327
+ ret = vpaes_set_encrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
328
+ dat->block = (block128_f)vpaes_encrypt;
329
+ dat->stream.cbc =
330
+ mode == EVP_CIPH_CBC_MODE ? (cbc128_f)vpaes_cbc_encrypt : NULL;
331
+ } else {
332
+ ret = AES_set_encrypt_key(key, ctx->key_len * 8, &dat->ks.ks);
333
+ dat->block = (block128_f)AES_encrypt;
334
+ dat->stream.cbc =
335
+ mode == EVP_CIPH_CBC_MODE ? (cbc128_f)AES_cbc_encrypt : NULL;
336
+ }
337
+
338
+ if (ret < 0) {
339
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_AES_KEY_SETUP_FAILED);
340
+ return 0;
341
+ }
342
+
343
+ return 1;
344
+ }
345
+
346
+ static int aes_cbc_cipher(EVP_CIPHER_CTX *ctx, uint8_t *out, const uint8_t *in,
347
+ size_t len) {
348
+ EVP_AES_KEY *dat = (EVP_AES_KEY *)ctx->cipher_data;
349
+
350
+ if (dat->stream.cbc) {
351
+ (*dat->stream.cbc)(in, out, len, &dat->ks, ctx->iv, ctx->encrypt);
352
+ } else if (ctx->encrypt) {
353
+ CRYPTO_cbc128_encrypt(in, out, len, &dat->ks, ctx->iv, dat->block);
354
+ } else {
355
+ CRYPTO_cbc128_decrypt(in, out, len, &dat->ks, ctx->iv, dat->block);
356
+ }
357
+
358
+ return 1;
359
+ }
360
+
361
+ static int aes_ecb_cipher(EVP_CIPHER_CTX *ctx, uint8_t *out, const uint8_t *in,
362
+ size_t len) {
363
+ size_t bl = ctx->cipher->block_size;
364
+ EVP_AES_KEY *dat = (EVP_AES_KEY *)ctx->cipher_data;
365
+
366
+ if (len < bl) {
367
+ return 1;
368
+ }
369
+
370
+ len -= bl;
371
+ for (size_t i = 0; i <= len; i += bl) {
372
+ (*dat->block)(in + i, out + i, &dat->ks);
373
+ }
374
+
375
+ return 1;
376
+ }
377
+
378
+ static int aes_ctr_cipher(EVP_CIPHER_CTX *ctx, uint8_t *out, const uint8_t *in,
379
+ size_t len) {
380
+ EVP_AES_KEY *dat = (EVP_AES_KEY *)ctx->cipher_data;
381
+
382
+ if (dat->stream.ctr) {
383
+ CRYPTO_ctr128_encrypt_ctr32(in, out, len, &dat->ks, ctx->iv, ctx->buf,
384
+ &ctx->num, dat->stream.ctr);
385
+ } else {
386
+ CRYPTO_ctr128_encrypt(in, out, len, &dat->ks, ctx->iv, ctx->buf, &ctx->num,
387
+ dat->block);
388
+ }
389
+ return 1;
390
+ }
391
+
392
+ static int aes_ofb_cipher(EVP_CIPHER_CTX *ctx, uint8_t *out, const uint8_t *in,
393
+ size_t len) {
394
+ EVP_AES_KEY *dat = (EVP_AES_KEY *)ctx->cipher_data;
395
+
396
+ CRYPTO_ofb128_encrypt(in, out, len, &dat->ks, ctx->iv, &ctx->num, dat->block);
397
+ return 1;
398
+ }
399
+
400
+ static char aesni_capable(void);
401
+
402
+ static ctr128_f aes_ctr_set_key(AES_KEY *aes_key, GCM128_CONTEXT *gcm_ctx,
403
+ block128_f *out_block, const uint8_t *key,
404
+ size_t key_len) {
405
+ if (aesni_capable()) {
406
+ aesni_set_encrypt_key(key, key_len * 8, aes_key);
407
+ if (gcm_ctx != NULL) {
408
+ CRYPTO_gcm128_init(gcm_ctx, aes_key, (block128_f)aesni_encrypt);
409
+ }
410
+ if (out_block) {
411
+ *out_block = (block128_f) aesni_encrypt;
412
+ }
413
+ return (ctr128_f)aesni_ctr32_encrypt_blocks;
414
+ }
415
+
416
+ if (hwaes_capable()) {
417
+ aes_hw_set_encrypt_key(key, key_len * 8, aes_key);
418
+ if (gcm_ctx != NULL) {
419
+ CRYPTO_gcm128_init(gcm_ctx, aes_key, (block128_f)aes_hw_encrypt);
420
+ }
421
+ if (out_block) {
422
+ *out_block = (block128_f) aes_hw_encrypt;
423
+ }
424
+ return (ctr128_f)aes_hw_ctr32_encrypt_blocks;
425
+ }
426
+
427
+ if (bsaes_capable()) {
428
+ AES_set_encrypt_key(key, key_len * 8, aes_key);
429
+ if (gcm_ctx != NULL) {
430
+ CRYPTO_gcm128_init(gcm_ctx, aes_key, (block128_f)AES_encrypt);
431
+ }
432
+ if (out_block) {
433
+ *out_block = (block128_f) AES_encrypt;
434
+ }
435
+ return (ctr128_f)bsaes_ctr32_encrypt_blocks;
436
+ }
437
+
438
+ if (vpaes_capable()) {
439
+ vpaes_set_encrypt_key(key, key_len * 8, aes_key);
440
+ if (out_block) {
441
+ *out_block = (block128_f) vpaes_encrypt;
442
+ }
443
+ if (gcm_ctx != NULL) {
444
+ CRYPTO_gcm128_init(gcm_ctx, aes_key, (block128_f)vpaes_encrypt);
445
+ }
446
+ return NULL;
447
+ }
448
+
449
+ AES_set_encrypt_key(key, key_len * 8, aes_key);
450
+ if (gcm_ctx != NULL) {
451
+ CRYPTO_gcm128_init(gcm_ctx, aes_key, (block128_f)AES_encrypt);
452
+ }
453
+ if (out_block) {
454
+ *out_block = (block128_f) AES_encrypt;
455
+ }
456
+ return NULL;
457
+ }
458
+
459
+ static int aes_gcm_init_key(EVP_CIPHER_CTX *ctx, const uint8_t *key,
460
+ const uint8_t *iv, int enc) {
461
+ EVP_AES_GCM_CTX *gctx = ctx->cipher_data;
462
+ if (!iv && !key) {
463
+ return 1;
464
+ }
465
+ if (key) {
466
+ gctx->ctr =
467
+ aes_ctr_set_key(&gctx->ks.ks, &gctx->gcm, NULL, key, ctx->key_len);
468
+ /* If we have an iv can set it directly, otherwise use saved IV. */
469
+ if (iv == NULL && gctx->iv_set) {
470
+ iv = gctx->iv;
471
+ }
472
+ if (iv) {
473
+ CRYPTO_gcm128_setiv(&gctx->gcm, &gctx->ks.ks, iv, gctx->ivlen);
474
+ gctx->iv_set = 1;
475
+ }
476
+ gctx->key_set = 1;
477
+ } else {
478
+ /* If key set use IV, otherwise copy */
479
+ if (gctx->key_set) {
480
+ CRYPTO_gcm128_setiv(&gctx->gcm, &gctx->ks.ks, iv, gctx->ivlen);
481
+ } else {
482
+ memcpy(gctx->iv, iv, gctx->ivlen);
483
+ }
484
+ gctx->iv_set = 1;
485
+ gctx->iv_gen = 0;
486
+ }
487
+ return 1;
488
+ }
489
+
490
+ static void aes_gcm_cleanup(EVP_CIPHER_CTX *c) {
491
+ EVP_AES_GCM_CTX *gctx = c->cipher_data;
492
+ OPENSSL_cleanse(&gctx->gcm, sizeof(gctx->gcm));
493
+ if (gctx->iv != c->iv) {
494
+ OPENSSL_free(gctx->iv);
495
+ }
496
+ }
497
+
498
+ /* increment counter (64-bit int) by 1 */
499
+ static void ctr64_inc(uint8_t *counter) {
500
+ int n = 8;
501
+ uint8_t c;
502
+
503
+ do {
504
+ --n;
505
+ c = counter[n];
506
+ ++c;
507
+ counter[n] = c;
508
+ if (c) {
509
+ return;
510
+ }
511
+ } while (n);
512
+ }
513
+
514
+ static int aes_gcm_ctrl(EVP_CIPHER_CTX *c, int type, int arg, void *ptr) {
515
+ EVP_AES_GCM_CTX *gctx = c->cipher_data;
516
+ switch (type) {
517
+ case EVP_CTRL_INIT:
518
+ gctx->key_set = 0;
519
+ gctx->iv_set = 0;
520
+ gctx->ivlen = c->cipher->iv_len;
521
+ gctx->iv = c->iv;
522
+ gctx->taglen = -1;
523
+ gctx->iv_gen = 0;
524
+ return 1;
525
+
526
+ case EVP_CTRL_GCM_SET_IVLEN:
527
+ if (arg <= 0) {
528
+ return 0;
529
+ }
530
+
531
+ /* Allocate memory for IV if needed */
532
+ if (arg > EVP_MAX_IV_LENGTH && arg > gctx->ivlen) {
533
+ if (gctx->iv != c->iv) {
534
+ OPENSSL_free(gctx->iv);
535
+ }
536
+ gctx->iv = OPENSSL_malloc(arg);
537
+ if (!gctx->iv) {
538
+ return 0;
539
+ }
540
+ }
541
+ gctx->ivlen = arg;
542
+ return 1;
543
+
544
+ case EVP_CTRL_GCM_SET_TAG:
545
+ if (arg <= 0 || arg > 16 || c->encrypt) {
546
+ return 0;
547
+ }
548
+ memcpy(c->buf, ptr, arg);
549
+ gctx->taglen = arg;
550
+ return 1;
551
+
552
+ case EVP_CTRL_GCM_GET_TAG:
553
+ if (arg <= 0 || arg > 16 || !c->encrypt || gctx->taglen < 0) {
554
+ return 0;
555
+ }
556
+ memcpy(ptr, c->buf, arg);
557
+ return 1;
558
+
559
+ case EVP_CTRL_GCM_SET_IV_FIXED:
560
+ /* Special case: -1 length restores whole IV */
561
+ if (arg == -1) {
562
+ memcpy(gctx->iv, ptr, gctx->ivlen);
563
+ gctx->iv_gen = 1;
564
+ return 1;
565
+ }
566
+ /* Fixed field must be at least 4 bytes and invocation field
567
+ * at least 8. */
568
+ if (arg < 4 || (gctx->ivlen - arg) < 8) {
569
+ return 0;
570
+ }
571
+ if (arg) {
572
+ memcpy(gctx->iv, ptr, arg);
573
+ }
574
+ if (c->encrypt && !RAND_bytes(gctx->iv + arg, gctx->ivlen - arg)) {
575
+ return 0;
576
+ }
577
+ gctx->iv_gen = 1;
578
+ return 1;
579
+
580
+ case EVP_CTRL_GCM_IV_GEN:
581
+ if (gctx->iv_gen == 0 || gctx->key_set == 0) {
582
+ return 0;
583
+ }
584
+ CRYPTO_gcm128_setiv(&gctx->gcm, &gctx->ks.ks, gctx->iv, gctx->ivlen);
585
+ if (arg <= 0 || arg > gctx->ivlen) {
586
+ arg = gctx->ivlen;
587
+ }
588
+ memcpy(ptr, gctx->iv + gctx->ivlen - arg, arg);
589
+ /* Invocation field will be at least 8 bytes in size and
590
+ * so no need to check wrap around or increment more than
591
+ * last 8 bytes. */
592
+ ctr64_inc(gctx->iv + gctx->ivlen - 8);
593
+ gctx->iv_set = 1;
594
+ return 1;
595
+
596
+ case EVP_CTRL_GCM_SET_IV_INV:
597
+ if (gctx->iv_gen == 0 || gctx->key_set == 0 || c->encrypt) {
598
+ return 0;
599
+ }
600
+ memcpy(gctx->iv + gctx->ivlen - arg, ptr, arg);
601
+ CRYPTO_gcm128_setiv(&gctx->gcm, &gctx->ks.ks, gctx->iv, gctx->ivlen);
602
+ gctx->iv_set = 1;
603
+ return 1;
604
+
605
+ case EVP_CTRL_COPY: {
606
+ EVP_CIPHER_CTX *out = ptr;
607
+ EVP_AES_GCM_CTX *gctx_out = out->cipher_data;
608
+ if (gctx->iv == c->iv) {
609
+ gctx_out->iv = out->iv;
610
+ } else {
611
+ gctx_out->iv = OPENSSL_malloc(gctx->ivlen);
612
+ if (!gctx_out->iv) {
613
+ return 0;
614
+ }
615
+ memcpy(gctx_out->iv, gctx->iv, gctx->ivlen);
616
+ }
617
+ return 1;
618
+ }
619
+
620
+ default:
621
+ return -1;
622
+ }
623
+ }
624
+
625
+ static int aes_gcm_cipher(EVP_CIPHER_CTX *ctx, uint8_t *out, const uint8_t *in,
626
+ size_t len) {
627
+ EVP_AES_GCM_CTX *gctx = ctx->cipher_data;
628
+
629
+ /* If not set up, return error */
630
+ if (!gctx->key_set) {
631
+ return -1;
632
+ }
633
+ if (!gctx->iv_set) {
634
+ return -1;
635
+ }
636
+
637
+ if (in) {
638
+ if (out == NULL) {
639
+ if (!CRYPTO_gcm128_aad(&gctx->gcm, in, len)) {
640
+ return -1;
641
+ }
642
+ } else if (ctx->encrypt) {
643
+ if (gctx->ctr) {
644
+ if (!CRYPTO_gcm128_encrypt_ctr32(&gctx->gcm, &gctx->ks.ks, in, out, len,
645
+ gctx->ctr)) {
646
+ return -1;
647
+ }
648
+ } else {
649
+ if (!CRYPTO_gcm128_encrypt(&gctx->gcm, &gctx->ks.ks, in, out, len)) {
650
+ return -1;
651
+ }
652
+ }
653
+ } else {
654
+ if (gctx->ctr) {
655
+ if (!CRYPTO_gcm128_decrypt_ctr32(&gctx->gcm, &gctx->ks.ks, in, out, len,
656
+ gctx->ctr)) {
657
+ return -1;
658
+ }
659
+ } else {
660
+ if (!CRYPTO_gcm128_decrypt(&gctx->gcm, &gctx->ks.ks, in, out, len)) {
661
+ return -1;
662
+ }
663
+ }
664
+ }
665
+ return len;
666
+ } else {
667
+ if (!ctx->encrypt) {
668
+ if (gctx->taglen < 0 ||
669
+ !CRYPTO_gcm128_finish(&gctx->gcm, ctx->buf, gctx->taglen)) {
670
+ return -1;
671
+ }
672
+ gctx->iv_set = 0;
673
+ return 0;
674
+ }
675
+ CRYPTO_gcm128_tag(&gctx->gcm, ctx->buf, 16);
676
+ gctx->taglen = 16;
677
+ /* Don't reuse the IV */
678
+ gctx->iv_set = 0;
679
+ return 0;
680
+ }
681
+ }
682
+
683
+ static const EVP_CIPHER aes_128_cbc = {
684
+ NID_aes_128_cbc, 16 /* block_size */, 16 /* key_size */,
685
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CBC_MODE,
686
+ NULL /* app_data */, aes_init_key, aes_cbc_cipher,
687
+ NULL /* cleanup */, NULL /* ctrl */};
688
+
689
+ static const EVP_CIPHER aes_128_ctr = {
690
+ NID_aes_128_ctr, 1 /* block_size */, 16 /* key_size */,
691
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CTR_MODE,
692
+ NULL /* app_data */, aes_init_key, aes_ctr_cipher,
693
+ NULL /* cleanup */, NULL /* ctrl */};
694
+
695
+ static const EVP_CIPHER aes_128_ecb = {
696
+ NID_aes_128_ecb, 16 /* block_size */, 16 /* key_size */,
697
+ 0 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_ECB_MODE,
698
+ NULL /* app_data */, aes_init_key, aes_ecb_cipher,
699
+ NULL /* cleanup */, NULL /* ctrl */};
700
+
701
+ static const EVP_CIPHER aes_128_ofb = {
702
+ NID_aes_128_ofb128, 1 /* block_size */, 16 /* key_size */,
703
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_OFB_MODE,
704
+ NULL /* app_data */, aes_init_key, aes_ofb_cipher,
705
+ NULL /* cleanup */, NULL /* ctrl */};
706
+
707
+ static const EVP_CIPHER aes_128_gcm = {
708
+ NID_aes_128_gcm, 1 /* block_size */, 16 /* key_size */, 12 /* iv_len */,
709
+ sizeof(EVP_AES_GCM_CTX),
710
+ EVP_CIPH_GCM_MODE | EVP_CIPH_CUSTOM_IV | EVP_CIPH_FLAG_CUSTOM_CIPHER |
711
+ EVP_CIPH_ALWAYS_CALL_INIT | EVP_CIPH_CTRL_INIT |
712
+ EVP_CIPH_FLAG_AEAD_CIPHER,
713
+ NULL /* app_data */, aes_gcm_init_key, aes_gcm_cipher, aes_gcm_cleanup,
714
+ aes_gcm_ctrl};
715
+
716
+
717
+ static const EVP_CIPHER aes_192_cbc = {
718
+ NID_aes_192_cbc, 16 /* block_size */, 24 /* key_size */,
719
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CBC_MODE,
720
+ NULL /* app_data */, aes_init_key, aes_cbc_cipher,
721
+ NULL /* cleanup */, NULL /* ctrl */};
722
+
723
+ static const EVP_CIPHER aes_192_ctr = {
724
+ NID_aes_192_ctr, 1 /* block_size */, 24 /* key_size */,
725
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CTR_MODE,
726
+ NULL /* app_data */, aes_init_key, aes_ctr_cipher,
727
+ NULL /* cleanup */, NULL /* ctrl */};
728
+
729
+ static const EVP_CIPHER aes_192_ecb = {
730
+ NID_aes_192_ecb, 16 /* block_size */, 24 /* key_size */,
731
+ 0 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_ECB_MODE,
732
+ NULL /* app_data */, aes_init_key, aes_ecb_cipher,
733
+ NULL /* cleanup */, NULL /* ctrl */};
734
+
735
+ static const EVP_CIPHER aes_192_gcm = {
736
+ NID_aes_192_gcm, 1 /* block_size */, 24 /* key_size */, 12 /* iv_len */,
737
+ sizeof(EVP_AES_GCM_CTX),
738
+ EVP_CIPH_GCM_MODE | EVP_CIPH_CUSTOM_IV | EVP_CIPH_FLAG_CUSTOM_CIPHER |
739
+ EVP_CIPH_ALWAYS_CALL_INIT | EVP_CIPH_CTRL_INIT |
740
+ EVP_CIPH_FLAG_AEAD_CIPHER,
741
+ NULL /* app_data */, aes_gcm_init_key, aes_gcm_cipher, aes_gcm_cleanup,
742
+ aes_gcm_ctrl};
743
+
744
+
745
+ static const EVP_CIPHER aes_256_cbc = {
746
+ NID_aes_256_cbc, 16 /* block_size */, 32 /* key_size */,
747
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CBC_MODE,
748
+ NULL /* app_data */, aes_init_key, aes_cbc_cipher,
749
+ NULL /* cleanup */, NULL /* ctrl */};
750
+
751
+ static const EVP_CIPHER aes_256_ctr = {
752
+ NID_aes_256_ctr, 1 /* block_size */, 32 /* key_size */,
753
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CTR_MODE,
754
+ NULL /* app_data */, aes_init_key, aes_ctr_cipher,
755
+ NULL /* cleanup */, NULL /* ctrl */};
756
+
757
+ static const EVP_CIPHER aes_256_ecb = {
758
+ NID_aes_256_ecb, 16 /* block_size */, 32 /* key_size */,
759
+ 0 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_ECB_MODE,
760
+ NULL /* app_data */, aes_init_key, aes_ecb_cipher,
761
+ NULL /* cleanup */, NULL /* ctrl */};
762
+
763
+ static const EVP_CIPHER aes_256_ofb = {
764
+ NID_aes_256_ofb128, 1 /* block_size */, 32 /* key_size */,
765
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_OFB_MODE,
766
+ NULL /* app_data */, aes_init_key, aes_ofb_cipher,
767
+ NULL /* cleanup */, NULL /* ctrl */};
768
+
769
+ static const EVP_CIPHER aes_256_gcm = {
770
+ NID_aes_256_gcm, 1 /* block_size */, 32 /* key_size */, 12 /* iv_len */,
771
+ sizeof(EVP_AES_GCM_CTX),
772
+ EVP_CIPH_GCM_MODE | EVP_CIPH_CUSTOM_IV | EVP_CIPH_FLAG_CUSTOM_CIPHER |
773
+ EVP_CIPH_ALWAYS_CALL_INIT | EVP_CIPH_CTRL_INIT |
774
+ EVP_CIPH_FLAG_AEAD_CIPHER,
775
+ NULL /* app_data */, aes_gcm_init_key, aes_gcm_cipher, aes_gcm_cleanup,
776
+ aes_gcm_ctrl};
777
+
778
+ #if !defined(OPENSSL_NO_ASM) && \
779
+ (defined(OPENSSL_X86_64) || defined(OPENSSL_X86))
780
+
781
+ /* AES-NI section. */
782
+
783
+ static char aesni_capable(void) {
784
+ return (OPENSSL_ia32cap_P[1] & (1 << (57 - 32))) != 0;
785
+ }
786
+
787
+ static int aesni_init_key(EVP_CIPHER_CTX *ctx, const uint8_t *key,
788
+ const uint8_t *iv, int enc) {
789
+ int ret, mode;
790
+ EVP_AES_KEY *dat = (EVP_AES_KEY *)ctx->cipher_data;
791
+
792
+ mode = ctx->cipher->flags & EVP_CIPH_MODE_MASK;
793
+ if ((mode == EVP_CIPH_ECB_MODE || mode == EVP_CIPH_CBC_MODE) && !enc) {
794
+ ret = aesni_set_decrypt_key(key, ctx->key_len * 8, ctx->cipher_data);
795
+ dat->block = (block128_f)aesni_decrypt;
796
+ dat->stream.cbc =
797
+ mode == EVP_CIPH_CBC_MODE ? (cbc128_f)aesni_cbc_encrypt : NULL;
798
+ } else {
799
+ ret = aesni_set_encrypt_key(key, ctx->key_len * 8, ctx->cipher_data);
800
+ dat->block = (block128_f)aesni_encrypt;
801
+ if (mode == EVP_CIPH_CBC_MODE) {
802
+ dat->stream.cbc = (cbc128_f)aesni_cbc_encrypt;
803
+ } else if (mode == EVP_CIPH_CTR_MODE) {
804
+ dat->stream.ctr = (ctr128_f)aesni_ctr32_encrypt_blocks;
805
+ } else {
806
+ dat->stream.cbc = NULL;
807
+ }
808
+ }
809
+
810
+ if (ret < 0) {
811
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_AES_KEY_SETUP_FAILED);
812
+ return 0;
813
+ }
814
+
815
+ return 1;
816
+ }
817
+
818
+ static int aesni_cbc_cipher(EVP_CIPHER_CTX *ctx, uint8_t *out,
819
+ const uint8_t *in, size_t len) {
820
+ aesni_cbc_encrypt(in, out, len, ctx->cipher_data, ctx->iv, ctx->encrypt);
821
+
822
+ return 1;
823
+ }
824
+
825
+ static int aesni_ecb_cipher(EVP_CIPHER_CTX *ctx, uint8_t *out,
826
+ const uint8_t *in, size_t len) {
827
+ size_t bl = ctx->cipher->block_size;
828
+
829
+ if (len < bl) {
830
+ return 1;
831
+ }
832
+
833
+ aesni_ecb_encrypt(in, out, len, ctx->cipher_data, ctx->encrypt);
834
+
835
+ return 1;
836
+ }
837
+
838
+ static int aesni_gcm_init_key(EVP_CIPHER_CTX *ctx, const uint8_t *key,
839
+ const uint8_t *iv, int enc) {
840
+ EVP_AES_GCM_CTX *gctx = ctx->cipher_data;
841
+ if (!iv && !key) {
842
+ return 1;
843
+ }
844
+ if (key) {
845
+ aesni_set_encrypt_key(key, ctx->key_len * 8, &gctx->ks.ks);
846
+ CRYPTO_gcm128_init(&gctx->gcm, &gctx->ks, (block128_f)aesni_encrypt);
847
+ gctx->ctr = (ctr128_f)aesni_ctr32_encrypt_blocks;
848
+ /* If we have an iv can set it directly, otherwise use
849
+ * saved IV. */
850
+ if (iv == NULL && gctx->iv_set) {
851
+ iv = gctx->iv;
852
+ }
853
+ if (iv) {
854
+ CRYPTO_gcm128_setiv(&gctx->gcm, &gctx->ks.ks, iv, gctx->ivlen);
855
+ gctx->iv_set = 1;
856
+ }
857
+ gctx->key_set = 1;
858
+ } else {
859
+ /* If key set use IV, otherwise copy */
860
+ if (gctx->key_set) {
861
+ CRYPTO_gcm128_setiv(&gctx->gcm, &gctx->ks.ks, iv, gctx->ivlen);
862
+ } else {
863
+ memcpy(gctx->iv, iv, gctx->ivlen);
864
+ }
865
+ gctx->iv_set = 1;
866
+ gctx->iv_gen = 0;
867
+ }
868
+ return 1;
869
+ }
870
+
871
+ static const EVP_CIPHER aesni_128_cbc = {
872
+ NID_aes_128_cbc, 16 /* block_size */, 16 /* key_size */,
873
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CBC_MODE,
874
+ NULL /* app_data */, aesni_init_key, aesni_cbc_cipher,
875
+ NULL /* cleanup */, NULL /* ctrl */};
876
+
877
+ static const EVP_CIPHER aesni_128_ctr = {
878
+ NID_aes_128_ctr, 1 /* block_size */, 16 /* key_size */,
879
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CTR_MODE,
880
+ NULL /* app_data */, aesni_init_key, aes_ctr_cipher,
881
+ NULL /* cleanup */, NULL /* ctrl */};
882
+
883
+ static const EVP_CIPHER aesni_128_ecb = {
884
+ NID_aes_128_ecb, 16 /* block_size */, 16 /* key_size */,
885
+ 0 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_ECB_MODE,
886
+ NULL /* app_data */, aesni_init_key, aesni_ecb_cipher,
887
+ NULL /* cleanup */, NULL /* ctrl */};
888
+
889
+ static const EVP_CIPHER aesni_128_ofb = {
890
+ NID_aes_128_ofb128, 1 /* block_size */, 16 /* key_size */,
891
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_OFB_MODE,
892
+ NULL /* app_data */, aesni_init_key, aes_ofb_cipher,
893
+ NULL /* cleanup */, NULL /* ctrl */};
894
+
895
+ static const EVP_CIPHER aesni_128_gcm = {
896
+ NID_aes_128_gcm, 1 /* block_size */, 16 /* key_size */, 12 /* iv_len */,
897
+ sizeof(EVP_AES_GCM_CTX),
898
+ EVP_CIPH_GCM_MODE | EVP_CIPH_CUSTOM_IV | EVP_CIPH_FLAG_CUSTOM_CIPHER |
899
+ EVP_CIPH_ALWAYS_CALL_INIT | EVP_CIPH_CTRL_INIT |
900
+ EVP_CIPH_FLAG_AEAD_CIPHER,
901
+ NULL /* app_data */, aesni_gcm_init_key, aes_gcm_cipher, aes_gcm_cleanup,
902
+ aes_gcm_ctrl};
903
+
904
+
905
+ static const EVP_CIPHER aesni_192_cbc = {
906
+ NID_aes_192_cbc, 16 /* block_size */, 24 /* key_size */,
907
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CBC_MODE,
908
+ NULL /* app_data */, aesni_init_key, aesni_cbc_cipher,
909
+ NULL /* cleanup */, NULL /* ctrl */};
910
+
911
+ static const EVP_CIPHER aesni_192_ctr = {
912
+ NID_aes_192_ctr, 1 /* block_size */, 24 /* key_size */,
913
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CTR_MODE,
914
+ NULL /* app_data */, aesni_init_key, aes_ctr_cipher,
915
+ NULL /* cleanup */, NULL /* ctrl */};
916
+
917
+ static const EVP_CIPHER aesni_192_ecb = {
918
+ NID_aes_192_ecb, 16 /* block_size */, 24 /* key_size */,
919
+ 0 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_ECB_MODE,
920
+ NULL /* app_data */, aesni_init_key, aesni_ecb_cipher,
921
+ NULL /* cleanup */, NULL /* ctrl */};
922
+
923
+ static const EVP_CIPHER aesni_192_gcm = {
924
+ NID_aes_192_gcm, 1 /* block_size */, 24 /* key_size */, 12 /* iv_len */,
925
+ sizeof(EVP_AES_GCM_CTX),
926
+ EVP_CIPH_GCM_MODE | EVP_CIPH_CUSTOM_IV | EVP_CIPH_FLAG_CUSTOM_CIPHER |
927
+ EVP_CIPH_ALWAYS_CALL_INIT | EVP_CIPH_CTRL_INIT |
928
+ EVP_CIPH_FLAG_AEAD_CIPHER,
929
+ NULL /* app_data */, aesni_gcm_init_key, aes_gcm_cipher, aes_gcm_cleanup,
930
+ aes_gcm_ctrl};
931
+
932
+
933
+ static const EVP_CIPHER aesni_256_cbc = {
934
+ NID_aes_256_cbc, 16 /* block_size */, 32 /* key_size */,
935
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CBC_MODE,
936
+ NULL /* app_data */, aesni_init_key, aesni_cbc_cipher,
937
+ NULL /* cleanup */, NULL /* ctrl */};
938
+
939
+ static const EVP_CIPHER aesni_256_ctr = {
940
+ NID_aes_256_ctr, 1 /* block_size */, 32 /* key_size */,
941
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_CTR_MODE,
942
+ NULL /* app_data */, aesni_init_key, aes_ctr_cipher,
943
+ NULL /* cleanup */, NULL /* ctrl */};
944
+
945
+ static const EVP_CIPHER aesni_256_ecb = {
946
+ NID_aes_256_ecb, 16 /* block_size */, 32 /* key_size */,
947
+ 0 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_ECB_MODE,
948
+ NULL /* app_data */, aesni_init_key, aesni_ecb_cipher,
949
+ NULL /* cleanup */, NULL /* ctrl */};
950
+
951
+ static const EVP_CIPHER aesni_256_ofb = {
952
+ NID_aes_256_ofb128, 1 /* block_size */, 32 /* key_size */,
953
+ 16 /* iv_len */, sizeof(EVP_AES_KEY), EVP_CIPH_OFB_MODE,
954
+ NULL /* app_data */, aesni_init_key, aes_ofb_cipher,
955
+ NULL /* cleanup */, NULL /* ctrl */};
956
+
957
+ static const EVP_CIPHER aesni_256_gcm = {
958
+ NID_aes_256_gcm, 1 /* block_size */, 32 /* key_size */, 12 /* iv_len */,
959
+ sizeof(EVP_AES_GCM_CTX),
960
+ EVP_CIPH_GCM_MODE | EVP_CIPH_CUSTOM_IV | EVP_CIPH_FLAG_CUSTOM_CIPHER |
961
+ EVP_CIPH_ALWAYS_CALL_INIT | EVP_CIPH_CTRL_INIT | EVP_CIPH_CUSTOM_COPY |
962
+ EVP_CIPH_FLAG_AEAD_CIPHER,
963
+ NULL /* app_data */, aesni_gcm_init_key, aes_gcm_cipher, aes_gcm_cleanup,
964
+ aes_gcm_ctrl};
965
+
966
+ #define EVP_CIPHER_FUNCTION(keybits, mode) \
967
+ const EVP_CIPHER *EVP_aes_##keybits##_##mode(void) { \
968
+ if (aesni_capable()) { \
969
+ return &aesni_##keybits##_##mode; \
970
+ } else { \
971
+ return &aes_##keybits##_##mode; \
972
+ } \
973
+ }
974
+
975
+ #else /* ^^^ OPENSSL_X86_64 || OPENSSL_X86 */
976
+
977
+ static char aesni_capable(void) {
978
+ return 0;
979
+ }
980
+
981
+ #define EVP_CIPHER_FUNCTION(keybits, mode) \
982
+ const EVP_CIPHER *EVP_aes_##keybits##_##mode(void) { \
983
+ return &aes_##keybits##_##mode; \
984
+ }
985
+
986
+ #endif
987
+
988
+ EVP_CIPHER_FUNCTION(128, cbc)
989
+ EVP_CIPHER_FUNCTION(128, ctr)
990
+ EVP_CIPHER_FUNCTION(128, ecb)
991
+ EVP_CIPHER_FUNCTION(128, ofb)
992
+ EVP_CIPHER_FUNCTION(128, gcm)
993
+
994
+ EVP_CIPHER_FUNCTION(192, cbc)
995
+ EVP_CIPHER_FUNCTION(192, ctr)
996
+ EVP_CIPHER_FUNCTION(192, ecb)
997
+ EVP_CIPHER_FUNCTION(192, gcm)
998
+
999
+ EVP_CIPHER_FUNCTION(256, cbc)
1000
+ EVP_CIPHER_FUNCTION(256, ctr)
1001
+ EVP_CIPHER_FUNCTION(256, ecb)
1002
+ EVP_CIPHER_FUNCTION(256, ofb)
1003
+ EVP_CIPHER_FUNCTION(256, gcm)
1004
+
1005
+
1006
+ #define EVP_AEAD_AES_GCM_TAG_LEN 16
1007
+
1008
+ struct aead_aes_gcm_ctx {
1009
+ union {
1010
+ double align;
1011
+ AES_KEY ks;
1012
+ } ks;
1013
+ GCM128_CONTEXT gcm;
1014
+ ctr128_f ctr;
1015
+ uint8_t tag_len;
1016
+ };
1017
+
1018
+ static int aead_aes_gcm_init(EVP_AEAD_CTX *ctx, const uint8_t *key,
1019
+ size_t key_len, size_t tag_len) {
1020
+ struct aead_aes_gcm_ctx *gcm_ctx;
1021
+ const size_t key_bits = key_len * 8;
1022
+
1023
+ if (key_bits != 128 && key_bits != 256) {
1024
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_KEY_LENGTH);
1025
+ return 0; /* EVP_AEAD_CTX_init should catch this. */
1026
+ }
1027
+
1028
+ if (tag_len == EVP_AEAD_DEFAULT_TAG_LENGTH) {
1029
+ tag_len = EVP_AEAD_AES_GCM_TAG_LEN;
1030
+ }
1031
+
1032
+ if (tag_len > EVP_AEAD_AES_GCM_TAG_LEN) {
1033
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TAG_TOO_LARGE);
1034
+ return 0;
1035
+ }
1036
+
1037
+ gcm_ctx = OPENSSL_malloc(sizeof(struct aead_aes_gcm_ctx));
1038
+ if (gcm_ctx == NULL) {
1039
+ return 0;
1040
+ }
1041
+
1042
+ gcm_ctx->ctr =
1043
+ aes_ctr_set_key(&gcm_ctx->ks.ks, &gcm_ctx->gcm, NULL, key, key_len);
1044
+ gcm_ctx->tag_len = tag_len;
1045
+ ctx->aead_state = gcm_ctx;
1046
+
1047
+ return 1;
1048
+ }
1049
+
1050
+ static void aead_aes_gcm_cleanup(EVP_AEAD_CTX *ctx) {
1051
+ struct aead_aes_gcm_ctx *gcm_ctx = ctx->aead_state;
1052
+ OPENSSL_cleanse(gcm_ctx, sizeof(struct aead_aes_gcm_ctx));
1053
+ OPENSSL_free(gcm_ctx);
1054
+ }
1055
+
1056
+ static int aead_aes_gcm_seal(const EVP_AEAD_CTX *ctx, uint8_t *out,
1057
+ size_t *out_len, size_t max_out_len,
1058
+ const uint8_t *nonce, size_t nonce_len,
1059
+ const uint8_t *in, size_t in_len,
1060
+ const uint8_t *ad, size_t ad_len) {
1061
+ const struct aead_aes_gcm_ctx *gcm_ctx = ctx->aead_state;
1062
+ GCM128_CONTEXT gcm;
1063
+
1064
+ if (in_len + gcm_ctx->tag_len < in_len) {
1065
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TOO_LARGE);
1066
+ return 0;
1067
+ }
1068
+
1069
+ if (max_out_len < in_len + gcm_ctx->tag_len) {
1070
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BUFFER_TOO_SMALL);
1071
+ return 0;
1072
+ }
1073
+
1074
+ const AES_KEY *key = &gcm_ctx->ks.ks;
1075
+
1076
+ memcpy(&gcm, &gcm_ctx->gcm, sizeof(gcm));
1077
+ CRYPTO_gcm128_setiv(&gcm, key, nonce, nonce_len);
1078
+
1079
+ if (ad_len > 0 && !CRYPTO_gcm128_aad(&gcm, ad, ad_len)) {
1080
+ return 0;
1081
+ }
1082
+
1083
+ if (gcm_ctx->ctr) {
1084
+ if (!CRYPTO_gcm128_encrypt_ctr32(&gcm, key, in, out, in_len,
1085
+ gcm_ctx->ctr)) {
1086
+ return 0;
1087
+ }
1088
+ } else {
1089
+ if (!CRYPTO_gcm128_encrypt(&gcm, key, in, out, in_len)) {
1090
+ return 0;
1091
+ }
1092
+ }
1093
+
1094
+ CRYPTO_gcm128_tag(&gcm, out + in_len, gcm_ctx->tag_len);
1095
+ *out_len = in_len + gcm_ctx->tag_len;
1096
+ return 1;
1097
+ }
1098
+
1099
+ static int aead_aes_gcm_open(const EVP_AEAD_CTX *ctx, uint8_t *out,
1100
+ size_t *out_len, size_t max_out_len,
1101
+ const uint8_t *nonce, size_t nonce_len,
1102
+ const uint8_t *in, size_t in_len,
1103
+ const uint8_t *ad, size_t ad_len) {
1104
+ const struct aead_aes_gcm_ctx *gcm_ctx = ctx->aead_state;
1105
+ uint8_t tag[EVP_AEAD_AES_GCM_TAG_LEN];
1106
+ size_t plaintext_len;
1107
+ GCM128_CONTEXT gcm;
1108
+
1109
+ if (in_len < gcm_ctx->tag_len) {
1110
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_DECRYPT);
1111
+ return 0;
1112
+ }
1113
+
1114
+ plaintext_len = in_len - gcm_ctx->tag_len;
1115
+
1116
+ if (max_out_len < plaintext_len) {
1117
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BUFFER_TOO_SMALL);
1118
+ return 0;
1119
+ }
1120
+
1121
+ const AES_KEY *key = &gcm_ctx->ks.ks;
1122
+
1123
+ memcpy(&gcm, &gcm_ctx->gcm, sizeof(gcm));
1124
+ CRYPTO_gcm128_setiv(&gcm, key, nonce, nonce_len);
1125
+
1126
+ if (!CRYPTO_gcm128_aad(&gcm, ad, ad_len)) {
1127
+ return 0;
1128
+ }
1129
+
1130
+ if (gcm_ctx->ctr) {
1131
+ if (!CRYPTO_gcm128_decrypt_ctr32(&gcm, key, in, out,
1132
+ in_len - gcm_ctx->tag_len, gcm_ctx->ctr)) {
1133
+ return 0;
1134
+ }
1135
+ } else {
1136
+ if (!CRYPTO_gcm128_decrypt(&gcm, key, in, out, in_len - gcm_ctx->tag_len)) {
1137
+ return 0;
1138
+ }
1139
+ }
1140
+
1141
+ CRYPTO_gcm128_tag(&gcm, tag, gcm_ctx->tag_len);
1142
+ if (CRYPTO_memcmp(tag, in + plaintext_len, gcm_ctx->tag_len) != 0) {
1143
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_DECRYPT);
1144
+ return 0;
1145
+ }
1146
+
1147
+ *out_len = plaintext_len;
1148
+ return 1;
1149
+ }
1150
+
1151
+ static const EVP_AEAD aead_aes_128_gcm = {
1152
+ 16, /* key len */
1153
+ 12, /* nonce len */
1154
+ EVP_AEAD_AES_GCM_TAG_LEN, /* overhead */
1155
+ EVP_AEAD_AES_GCM_TAG_LEN, /* max tag length */
1156
+ aead_aes_gcm_init,
1157
+ NULL, /* init_with_direction */
1158
+ aead_aes_gcm_cleanup,
1159
+ aead_aes_gcm_seal,
1160
+ aead_aes_gcm_open,
1161
+ NULL, /* get_iv */
1162
+ };
1163
+
1164
+ static const EVP_AEAD aead_aes_256_gcm = {
1165
+ 32, /* key len */
1166
+ 12, /* nonce len */
1167
+ EVP_AEAD_AES_GCM_TAG_LEN, /* overhead */
1168
+ EVP_AEAD_AES_GCM_TAG_LEN, /* max tag length */
1169
+ aead_aes_gcm_init,
1170
+ NULL, /* init_with_direction */
1171
+ aead_aes_gcm_cleanup,
1172
+ aead_aes_gcm_seal,
1173
+ aead_aes_gcm_open,
1174
+ NULL, /* get_iv */
1175
+ };
1176
+
1177
+ const EVP_AEAD *EVP_aead_aes_128_gcm(void) { return &aead_aes_128_gcm; }
1178
+
1179
+ const EVP_AEAD *EVP_aead_aes_256_gcm(void) { return &aead_aes_256_gcm; }
1180
+
1181
+
1182
+ /* AES Key Wrap is specified in
1183
+ * http://csrc.nist.gov/groups/ST/toolkit/documents/kms/key-wrap.pdf
1184
+ * or https://tools.ietf.org/html/rfc3394 */
1185
+
1186
+ struct aead_aes_key_wrap_ctx {
1187
+ uint8_t key[32];
1188
+ unsigned key_bits;
1189
+ };
1190
+
1191
+ static int aead_aes_key_wrap_init(EVP_AEAD_CTX *ctx, const uint8_t *key,
1192
+ size_t key_len, size_t tag_len) {
1193
+ struct aead_aes_key_wrap_ctx *kw_ctx;
1194
+ const size_t key_bits = key_len * 8;
1195
+
1196
+ if (key_bits != 128 && key_bits != 256) {
1197
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_KEY_LENGTH);
1198
+ return 0; /* EVP_AEAD_CTX_init should catch this. */
1199
+ }
1200
+
1201
+ if (tag_len == EVP_AEAD_DEFAULT_TAG_LENGTH) {
1202
+ tag_len = 8;
1203
+ }
1204
+
1205
+ if (tag_len != 8) {
1206
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_TAG_SIZE);
1207
+ return 0;
1208
+ }
1209
+
1210
+ kw_ctx = OPENSSL_malloc(sizeof(struct aead_aes_key_wrap_ctx));
1211
+ if (kw_ctx == NULL) {
1212
+ OPENSSL_PUT_ERROR(CIPHER, ERR_R_MALLOC_FAILURE);
1213
+ return 0;
1214
+ }
1215
+
1216
+ memcpy(kw_ctx->key, key, key_len);
1217
+ kw_ctx->key_bits = key_bits;
1218
+
1219
+ ctx->aead_state = kw_ctx;
1220
+ return 1;
1221
+ }
1222
+
1223
+ static void aead_aes_key_wrap_cleanup(EVP_AEAD_CTX *ctx) {
1224
+ struct aead_aes_key_wrap_ctx *kw_ctx = ctx->aead_state;
1225
+ OPENSSL_cleanse(kw_ctx, sizeof(struct aead_aes_key_wrap_ctx));
1226
+ OPENSSL_free(kw_ctx);
1227
+ }
1228
+
1229
+ /* kDefaultAESKeyWrapNonce is the default nonce value given in 2.2.3.1. */
1230
+ static const uint8_t kDefaultAESKeyWrapNonce[8] = {0xa6, 0xa6, 0xa6, 0xa6,
1231
+ 0xa6, 0xa6, 0xa6, 0xa6};
1232
+
1233
+
1234
+ static int aead_aes_key_wrap_seal(const EVP_AEAD_CTX *ctx, uint8_t *out,
1235
+ size_t *out_len, size_t max_out_len,
1236
+ const uint8_t *nonce, size_t nonce_len,
1237
+ const uint8_t *in, size_t in_len,
1238
+ const uint8_t *ad, size_t ad_len) {
1239
+ const struct aead_aes_key_wrap_ctx *kw_ctx = ctx->aead_state;
1240
+ union {
1241
+ double align;
1242
+ AES_KEY ks;
1243
+ } ks;
1244
+ /* Variables in this function match up with the variables in the second half
1245
+ * of section 2.2.1. */
1246
+ unsigned i, j, n;
1247
+ uint8_t A[AES_BLOCK_SIZE];
1248
+
1249
+ if (ad_len != 0) {
1250
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_AD_SIZE);
1251
+ return 0;
1252
+ }
1253
+
1254
+ if (nonce_len == 0) {
1255
+ nonce = kDefaultAESKeyWrapNonce;
1256
+ nonce_len = sizeof(kDefaultAESKeyWrapNonce);
1257
+ }
1258
+
1259
+ if (nonce_len != 8) {
1260
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_NONCE_SIZE);
1261
+ return 0;
1262
+ }
1263
+
1264
+ if (in_len % 8 != 0) {
1265
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_INPUT_SIZE);
1266
+ return 0;
1267
+ }
1268
+
1269
+ /* The code below only handles a 32-bit |t| thus 6*|n| must be less than
1270
+ * 2^32, where |n| is |in_len| / 8. So in_len < 4/3 * 2^32 and we
1271
+ * conservatively cap it to 2^32-16 to stop 32-bit platforms complaining that
1272
+ * a comparison is always true. */
1273
+ if (in_len > 0xfffffff0) {
1274
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TOO_LARGE);
1275
+ return 0;
1276
+ }
1277
+
1278
+ n = in_len / 8;
1279
+
1280
+ if (n < 2) {
1281
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_INPUT_SIZE);
1282
+ return 0;
1283
+ }
1284
+
1285
+ if (in_len + 8 < in_len) {
1286
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TOO_LARGE);
1287
+ return 0;
1288
+ }
1289
+
1290
+ if (max_out_len < in_len + 8) {
1291
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BUFFER_TOO_SMALL);
1292
+ return 0;
1293
+ }
1294
+
1295
+ if (AES_set_encrypt_key(kw_ctx->key, kw_ctx->key_bits, &ks.ks) < 0) {
1296
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_AES_KEY_SETUP_FAILED);
1297
+ return 0;
1298
+ }
1299
+
1300
+ memmove(out + 8, in, in_len);
1301
+ memcpy(A, nonce, 8);
1302
+
1303
+ for (j = 0; j < 6; j++) {
1304
+ for (i = 1; i <= n; i++) {
1305
+ uint32_t t;
1306
+
1307
+ memcpy(A + 8, out + 8 * i, 8);
1308
+ AES_encrypt(A, A, &ks.ks);
1309
+ t = n * j + i;
1310
+ A[7] ^= t & 0xff;
1311
+ A[6] ^= (t >> 8) & 0xff;
1312
+ A[5] ^= (t >> 16) & 0xff;
1313
+ A[4] ^= (t >> 24) & 0xff;
1314
+ memcpy(out + 8 * i, A + 8, 8);
1315
+ }
1316
+ }
1317
+
1318
+ memcpy(out, A, 8);
1319
+ *out_len = in_len + 8;
1320
+ return 1;
1321
+ }
1322
+
1323
+ static int aead_aes_key_wrap_open(const EVP_AEAD_CTX *ctx, uint8_t *out,
1324
+ size_t *out_len, size_t max_out_len,
1325
+ const uint8_t *nonce, size_t nonce_len,
1326
+ const uint8_t *in, size_t in_len,
1327
+ const uint8_t *ad, size_t ad_len) {
1328
+ const struct aead_aes_key_wrap_ctx *kw_ctx = ctx->aead_state;
1329
+ union {
1330
+ double align;
1331
+ AES_KEY ks;
1332
+ } ks;
1333
+ /* Variables in this function match up with the variables in the second half
1334
+ * of section 2.2.1. */
1335
+ unsigned i, j, n;
1336
+ uint8_t A[AES_BLOCK_SIZE];
1337
+
1338
+ if (ad_len != 0) {
1339
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_AD_SIZE);
1340
+ return 0;
1341
+ }
1342
+
1343
+ if (nonce_len == 0) {
1344
+ nonce = kDefaultAESKeyWrapNonce;
1345
+ nonce_len = sizeof(kDefaultAESKeyWrapNonce);
1346
+ }
1347
+
1348
+ if (nonce_len != 8) {
1349
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_NONCE_SIZE);
1350
+ return 0;
1351
+ }
1352
+
1353
+ if (in_len % 8 != 0) {
1354
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_INPUT_SIZE);
1355
+ return 0;
1356
+ }
1357
+
1358
+ /* The code below only handles a 32-bit |t| thus 6*|n| must be less than
1359
+ * 2^32, where |n| is |in_len| / 8. So in_len < 4/3 * 2^32 and we
1360
+ * conservatively cap it to 2^32-8 to stop 32-bit platforms complaining that
1361
+ * a comparison is always true. */
1362
+ if (in_len > 0xfffffff8) {
1363
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TOO_LARGE);
1364
+ return 0;
1365
+ }
1366
+
1367
+ if (in_len < 24) {
1368
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_DECRYPT);
1369
+ return 0;
1370
+ }
1371
+
1372
+ n = (in_len / 8) - 1;
1373
+
1374
+ if (max_out_len < in_len - 8) {
1375
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BUFFER_TOO_SMALL);
1376
+ return 0;
1377
+ }
1378
+
1379
+ if (AES_set_decrypt_key(kw_ctx->key, kw_ctx->key_bits, &ks.ks) < 0) {
1380
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_AES_KEY_SETUP_FAILED);
1381
+ return 0;
1382
+ }
1383
+
1384
+ memcpy(A, in, 8);
1385
+ memmove(out, in + 8, in_len - 8);
1386
+
1387
+ for (j = 5; j < 6; j--) {
1388
+ for (i = n; i > 0; i--) {
1389
+ uint32_t t;
1390
+
1391
+ t = n * j + i;
1392
+ A[7] ^= t & 0xff;
1393
+ A[6] ^= (t >> 8) & 0xff;
1394
+ A[5] ^= (t >> 16) & 0xff;
1395
+ A[4] ^= (t >> 24) & 0xff;
1396
+ memcpy(A + 8, out + 8 * (i - 1), 8);
1397
+ AES_decrypt(A, A, &ks.ks);
1398
+ memcpy(out + 8 * (i - 1), A + 8, 8);
1399
+ }
1400
+ }
1401
+
1402
+ if (CRYPTO_memcmp(A, nonce, 8) != 0) {
1403
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_DECRYPT);
1404
+ return 0;
1405
+ }
1406
+
1407
+ *out_len = in_len - 8;
1408
+ return 1;
1409
+ }
1410
+
1411
+ static const EVP_AEAD aead_aes_128_key_wrap = {
1412
+ 16, /* key len */
1413
+ 8, /* nonce len */
1414
+ 8, /* overhead */
1415
+ 8, /* max tag length */
1416
+ aead_aes_key_wrap_init,
1417
+ NULL, /* init_with_direction */
1418
+ aead_aes_key_wrap_cleanup,
1419
+ aead_aes_key_wrap_seal,
1420
+ aead_aes_key_wrap_open,
1421
+ NULL, /* get_iv */
1422
+ };
1423
+
1424
+ static const EVP_AEAD aead_aes_256_key_wrap = {
1425
+ 32, /* key len */
1426
+ 8, /* nonce len */
1427
+ 8, /* overhead */
1428
+ 8, /* max tag length */
1429
+ aead_aes_key_wrap_init,
1430
+ NULL, /* init_with_direction */
1431
+ aead_aes_key_wrap_cleanup,
1432
+ aead_aes_key_wrap_seal,
1433
+ aead_aes_key_wrap_open,
1434
+ NULL, /* get_iv */
1435
+ };
1436
+
1437
+ const EVP_AEAD *EVP_aead_aes_128_key_wrap(void) { return &aead_aes_128_key_wrap; }
1438
+
1439
+ const EVP_AEAD *EVP_aead_aes_256_key_wrap(void) { return &aead_aes_256_key_wrap; }
1440
+
1441
+
1442
+ #define EVP_AEAD_AES_CTR_HMAC_SHA256_TAG_LEN SHA256_DIGEST_LENGTH
1443
+ #define EVP_AEAD_AES_CTR_HMAC_SHA256_NONCE_LEN 12
1444
+
1445
+ struct aead_aes_ctr_hmac_sha256_ctx {
1446
+ union {
1447
+ double align;
1448
+ AES_KEY ks;
1449
+ } ks;
1450
+ ctr128_f ctr;
1451
+ block128_f block;
1452
+ SHA256_CTX inner_init_state;
1453
+ SHA256_CTX outer_init_state;
1454
+ uint8_t tag_len;
1455
+ };
1456
+
1457
+ static void hmac_init(SHA256_CTX *out_inner, SHA256_CTX *out_outer,
1458
+ const uint8_t hmac_key[32]) {
1459
+ static const size_t hmac_key_len = 32;
1460
+ uint8_t block[SHA256_CBLOCK];
1461
+ memcpy(block, hmac_key, hmac_key_len);
1462
+ memset(block + hmac_key_len, 0x36, sizeof(block) - hmac_key_len);
1463
+
1464
+ unsigned i;
1465
+ for (i = 0; i < hmac_key_len; i++) {
1466
+ block[i] ^= 0x36;
1467
+ }
1468
+
1469
+ SHA256_Init(out_inner);
1470
+ SHA256_Update(out_inner, block, sizeof(block));
1471
+
1472
+ memset(block + hmac_key_len, 0x5c, sizeof(block) - hmac_key_len);
1473
+ for (i = 0; i < hmac_key_len; i++) {
1474
+ block[i] ^= (0x36 ^ 0x5c);
1475
+ }
1476
+
1477
+ SHA256_Init(out_outer);
1478
+ SHA256_Update(out_outer, block, sizeof(block));
1479
+ }
1480
+
1481
+ static int aead_aes_ctr_hmac_sha256_init(EVP_AEAD_CTX *ctx, const uint8_t *key,
1482
+ size_t key_len, size_t tag_len) {
1483
+ struct aead_aes_ctr_hmac_sha256_ctx *aes_ctx;
1484
+ static const size_t hmac_key_len = 32;
1485
+
1486
+ if (key_len < hmac_key_len) {
1487
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_KEY_LENGTH);
1488
+ return 0; /* EVP_AEAD_CTX_init should catch this. */
1489
+ }
1490
+
1491
+ const size_t aes_key_len = key_len - hmac_key_len;
1492
+ if (aes_key_len != 16 && aes_key_len != 32) {
1493
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_KEY_LENGTH);
1494
+ return 0; /* EVP_AEAD_CTX_init should catch this. */
1495
+ }
1496
+
1497
+ if (tag_len == EVP_AEAD_DEFAULT_TAG_LENGTH) {
1498
+ tag_len = EVP_AEAD_AES_CTR_HMAC_SHA256_TAG_LEN;
1499
+ }
1500
+
1501
+ if (tag_len > EVP_AEAD_AES_CTR_HMAC_SHA256_TAG_LEN) {
1502
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TAG_TOO_LARGE);
1503
+ return 0;
1504
+ }
1505
+
1506
+ aes_ctx = OPENSSL_malloc(sizeof(struct aead_aes_ctr_hmac_sha256_ctx));
1507
+ if (aes_ctx == NULL) {
1508
+ OPENSSL_PUT_ERROR(CIPHER, ERR_R_MALLOC_FAILURE);
1509
+ return 0;
1510
+ }
1511
+
1512
+ aes_ctx->ctr =
1513
+ aes_ctr_set_key(&aes_ctx->ks.ks, NULL, &aes_ctx->block, key, aes_key_len);
1514
+ aes_ctx->tag_len = tag_len;
1515
+ hmac_init(&aes_ctx->inner_init_state, &aes_ctx->outer_init_state,
1516
+ key + aes_key_len);
1517
+
1518
+ ctx->aead_state = aes_ctx;
1519
+
1520
+ return 1;
1521
+ }
1522
+
1523
+ static void aead_aes_ctr_hmac_sha256_cleanup(EVP_AEAD_CTX *ctx) {
1524
+ struct aead_aes_ctr_hmac_sha256_ctx *aes_ctx = ctx->aead_state;
1525
+ OPENSSL_cleanse(aes_ctx, sizeof(struct aead_aes_ctr_hmac_sha256_ctx));
1526
+ OPENSSL_free(aes_ctx);
1527
+ }
1528
+
1529
+ static void hmac_update_uint64(SHA256_CTX *sha256, uint64_t value) {
1530
+ unsigned i;
1531
+ uint8_t bytes[8];
1532
+
1533
+ for (i = 0; i < sizeof(bytes); i++) {
1534
+ bytes[i] = value & 0xff;
1535
+ value >>= 8;
1536
+ }
1537
+ SHA256_Update(sha256, bytes, sizeof(bytes));
1538
+ }
1539
+
1540
+ static void hmac_calculate(uint8_t out[SHA256_DIGEST_LENGTH],
1541
+ const SHA256_CTX *inner_init_state,
1542
+ const SHA256_CTX *outer_init_state,
1543
+ const uint8_t *ad, size_t ad_len,
1544
+ const uint8_t *nonce, const uint8_t *ciphertext,
1545
+ size_t ciphertext_len) {
1546
+ SHA256_CTX sha256;
1547
+ memcpy(&sha256, inner_init_state, sizeof(sha256));
1548
+ hmac_update_uint64(&sha256, ad_len);
1549
+ hmac_update_uint64(&sha256, ciphertext_len);
1550
+ SHA256_Update(&sha256, nonce, EVP_AEAD_AES_CTR_HMAC_SHA256_NONCE_LEN);
1551
+ SHA256_Update(&sha256, ad, ad_len);
1552
+
1553
+ /* Pad with zeros to the end of the SHA-256 block. */
1554
+ const unsigned num_padding =
1555
+ (SHA256_CBLOCK - ((sizeof(uint64_t)*2 +
1556
+ EVP_AEAD_AES_CTR_HMAC_SHA256_NONCE_LEN + ad_len) %
1557
+ SHA256_CBLOCK)) %
1558
+ SHA256_CBLOCK;
1559
+ uint8_t padding[SHA256_CBLOCK];
1560
+ memset(padding, 0, num_padding);
1561
+ SHA256_Update(&sha256, padding, num_padding);
1562
+
1563
+ SHA256_Update(&sha256, ciphertext, ciphertext_len);
1564
+
1565
+ uint8_t inner_digest[SHA256_DIGEST_LENGTH];
1566
+ SHA256_Final(inner_digest, &sha256);
1567
+
1568
+ memcpy(&sha256, outer_init_state, sizeof(sha256));
1569
+ SHA256_Update(&sha256, inner_digest, sizeof(inner_digest));
1570
+ SHA256_Final(out, &sha256);
1571
+ }
1572
+
1573
+ static void aead_aes_ctr_hmac_sha256_crypt(
1574
+ const struct aead_aes_ctr_hmac_sha256_ctx *aes_ctx, uint8_t *out,
1575
+ const uint8_t *in, size_t len, const uint8_t *nonce) {
1576
+ /* Since the AEAD operation is one-shot, keeping a buffer of unused keystream
1577
+ * bytes is pointless. However, |CRYPTO_ctr128_encrypt| requires it. */
1578
+ uint8_t partial_block_buffer[AES_BLOCK_SIZE];
1579
+ unsigned partial_block_offset = 0;
1580
+ memset(partial_block_buffer, 0, sizeof(partial_block_buffer));
1581
+
1582
+ uint8_t counter[AES_BLOCK_SIZE];
1583
+ memcpy(counter, nonce, EVP_AEAD_AES_CTR_HMAC_SHA256_NONCE_LEN);
1584
+ memset(counter + EVP_AEAD_AES_CTR_HMAC_SHA256_NONCE_LEN, 0, 4);
1585
+
1586
+ if (aes_ctx->ctr) {
1587
+ CRYPTO_ctr128_encrypt_ctr32(in, out, len, &aes_ctx->ks.ks, counter,
1588
+ partial_block_buffer, &partial_block_offset,
1589
+ aes_ctx->ctr);
1590
+ } else {
1591
+ CRYPTO_ctr128_encrypt(in, out, len, &aes_ctx->ks.ks, counter,
1592
+ partial_block_buffer, &partial_block_offset,
1593
+ aes_ctx->block);
1594
+ }
1595
+ }
1596
+
1597
+ static int aead_aes_ctr_hmac_sha256_seal(const EVP_AEAD_CTX *ctx, uint8_t *out,
1598
+ size_t *out_len, size_t max_out_len,
1599
+ const uint8_t *nonce, size_t nonce_len,
1600
+ const uint8_t *in, size_t in_len,
1601
+ const uint8_t *ad, size_t ad_len) {
1602
+ const struct aead_aes_ctr_hmac_sha256_ctx *aes_ctx = ctx->aead_state;
1603
+ const uint64_t in_len_64 = in_len;
1604
+
1605
+ if (in_len + aes_ctx->tag_len < in_len ||
1606
+ /* This input is so large it would overflow the 32-bit block counter. */
1607
+ in_len_64 >= (UINT64_C(1) << 32) * AES_BLOCK_SIZE) {
1608
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TOO_LARGE);
1609
+ return 0;
1610
+ }
1611
+
1612
+ if (max_out_len < in_len + aes_ctx->tag_len) {
1613
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BUFFER_TOO_SMALL);
1614
+ return 0;
1615
+ }
1616
+
1617
+ if (nonce_len != EVP_AEAD_AES_CTR_HMAC_SHA256_NONCE_LEN) {
1618
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_NONCE_SIZE);
1619
+ return 0;
1620
+ }
1621
+
1622
+ aead_aes_ctr_hmac_sha256_crypt(aes_ctx, out, in, in_len, nonce);
1623
+
1624
+ uint8_t hmac_result[SHA256_DIGEST_LENGTH];
1625
+ hmac_calculate(hmac_result, &aes_ctx->inner_init_state,
1626
+ &aes_ctx->outer_init_state, ad, ad_len, nonce, out, in_len);
1627
+ memcpy(out + in_len, hmac_result, aes_ctx->tag_len);
1628
+ *out_len = in_len + aes_ctx->tag_len;
1629
+
1630
+ return 1;
1631
+ }
1632
+
1633
+ static int aead_aes_ctr_hmac_sha256_open(const EVP_AEAD_CTX *ctx, uint8_t *out,
1634
+ size_t *out_len, size_t max_out_len,
1635
+ const uint8_t *nonce, size_t nonce_len,
1636
+ const uint8_t *in, size_t in_len,
1637
+ const uint8_t *ad, size_t ad_len) {
1638
+ const struct aead_aes_ctr_hmac_sha256_ctx *aes_ctx = ctx->aead_state;
1639
+ size_t plaintext_len;
1640
+
1641
+ if (in_len < aes_ctx->tag_len) {
1642
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_DECRYPT);
1643
+ return 0;
1644
+ }
1645
+
1646
+ plaintext_len = in_len - aes_ctx->tag_len;
1647
+
1648
+ if (max_out_len < plaintext_len) {
1649
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BUFFER_TOO_SMALL);
1650
+ return 0;
1651
+ }
1652
+
1653
+ if (nonce_len != EVP_AEAD_AES_CTR_HMAC_SHA256_NONCE_LEN) {
1654
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_NONCE_SIZE);
1655
+ return 0;
1656
+ }
1657
+
1658
+ uint8_t hmac_result[SHA256_DIGEST_LENGTH];
1659
+ hmac_calculate(hmac_result, &aes_ctx->inner_init_state,
1660
+ &aes_ctx->outer_init_state, ad, ad_len, nonce, in,
1661
+ plaintext_len);
1662
+ if (CRYPTO_memcmp(hmac_result, in + plaintext_len, aes_ctx->tag_len) != 0) {
1663
+ OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_BAD_DECRYPT);
1664
+ return 0;
1665
+ }
1666
+
1667
+ aead_aes_ctr_hmac_sha256_crypt(aes_ctx, out, in, plaintext_len, nonce);
1668
+
1669
+ *out_len = plaintext_len;
1670
+ return 1;
1671
+ }
1672
+
1673
+ static const EVP_AEAD aead_aes_128_ctr_hmac_sha256 = {
1674
+ 16 /* AES key */ + 32 /* HMAC key */,
1675
+ 12, /* nonce length */
1676
+ EVP_AEAD_AES_CTR_HMAC_SHA256_TAG_LEN, /* overhead */
1677
+ EVP_AEAD_AES_CTR_HMAC_SHA256_TAG_LEN, /* max tag length */
1678
+
1679
+ aead_aes_ctr_hmac_sha256_init,
1680
+ NULL /* init_with_direction */,
1681
+ aead_aes_ctr_hmac_sha256_cleanup,
1682
+ aead_aes_ctr_hmac_sha256_seal,
1683
+ aead_aes_ctr_hmac_sha256_open,
1684
+ NULL /* get_iv */,
1685
+ };
1686
+
1687
+ static const EVP_AEAD aead_aes_256_ctr_hmac_sha256 = {
1688
+ 32 /* AES key */ + 32 /* HMAC key */,
1689
+ 12, /* nonce length */
1690
+ EVP_AEAD_AES_CTR_HMAC_SHA256_TAG_LEN, /* overhead */
1691
+ EVP_AEAD_AES_CTR_HMAC_SHA256_TAG_LEN, /* max tag length */
1692
+
1693
+ aead_aes_ctr_hmac_sha256_init,
1694
+ NULL /* init_with_direction */,
1695
+ aead_aes_ctr_hmac_sha256_cleanup,
1696
+ aead_aes_ctr_hmac_sha256_seal,
1697
+ aead_aes_ctr_hmac_sha256_open,
1698
+ NULL /* get_iv */,
1699
+ };
1700
+
1701
+ const EVP_AEAD *EVP_aead_aes_128_ctr_hmac_sha256(void) {
1702
+ return &aead_aes_128_ctr_hmac_sha256;
1703
+ }
1704
+
1705
+ const EVP_AEAD *EVP_aead_aes_256_ctr_hmac_sha256(void) {
1706
+ return &aead_aes_256_ctr_hmac_sha256;
1707
+ }
1708
+
1709
+ int EVP_has_aes_hardware(void) {
1710
+ #if defined(OPENSSL_X86) || defined(OPENSSL_X86_64)
1711
+ return aesni_capable() && crypto_gcm_clmul_enabled();
1712
+ #elif defined(OPENSSL_ARM) || defined(OPENSSL_AARCH64)
1713
+ return hwaes_capable() && CRYPTO_is_ARMv8_PMULL_capable();
1714
+ #else
1715
+ return 0;
1716
+ #endif
1717
+ }