[openssl/openssl] beec4e: Add SSL_get_peer_addr() function to query peer add...
0 views
Skip to first unread message
Gustaf Neumann
Oct 4, 2025, 4:26:37 AMOct 4
to openssl...@openssl.org
Branch: refs/heads/master
Home: https://github.com/openssl/openssl
Commit: beec4e146a9ec755c83d6521a428ea103bdc8607
https://github.com/openssl/openssl/commit/beec4e146a9ec755c83d6521a428ea103bdc8607
Author: Gustaf Neumann <neu...@wu-wien.ac.at>
Date: 2025-10-04 (Sat, 04 Oct 2025)
Changed paths:
M doc/build.info
A doc/man3/SSL_get_peer_addr.pod
M doc/man7/openssl-quic.pod
M include/internal/quic_ssl.h
M include/openssl/ssl.h.in
M ssl/quic/quic_channel.c
M ssl/quic/quic_impl.c
M ssl/quic/quic_port.c
M ssl/ssl_lib.c
M test/quicapitest.c
M util/libssl.num
Log Message:
-----------
Add SSL_get_peer_addr() function to query peer address for QUIC
This change introduces a new public API symbol: SSL_get_peer_addr().
The change is QUIC-only, there are no changes for TLS connections
- API: add peer address query for QUIC connections
* Internal: declare/implement ossl_quic_get_peer_addr(SSL*, BIO_ADDR*)
* Public: declare/implement SSL_get_peer_addr(SSL*, BIO_ADDR*)
Rationale:
- Allow applications to retrieve the remote UDP tuple for QUIC sessions
(e.g., logging, access control, diagnostics)
Provided documentation and test cases for SSL_get_peer_addr().
Set peer via channel API on new-conn.
- In ch_on_new_conn_common(), BIO_ADDR_copy(&ch->cur_peer_addr, peer)
was replaced with ossl_quic_channel_set_peer_addr(ch, peer) so
addressed_mode is enabled at connection bring-up.
Dropped redundant peer detection in create_qc_from_incoming_conn()
The peer address is now propagated in ch_on_new_conn_common() via
ossl_quic_channel_set_peer_addr(), so the channel is already in
"addressed" mode. This also avoids querying the (unconnected) server
UDP BIO, reduces duplication, and simplifies the accept path. All
regression tests pass.
Reviewed-by: Matt Caswell <ma...@openssl.org>
Reviewed-by: Saša Nedvědický <sas...@openssl.org>
Reviewed-by: Tomas Mraz <to...@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28690)
To unsubscribe from these emails, change your notification settings at https://github.com/openssl/openssl/settings/notifications
Home: https://github.com/openssl/openssl
Commit: beec4e146a9ec755c83d6521a428ea103bdc8607
https://github.com/openssl/openssl/commit/beec4e146a9ec755c83d6521a428ea103bdc8607
Author: Gustaf Neumann <neu...@wu-wien.ac.at>
Date: 2025-10-04 (Sat, 04 Oct 2025)
Changed paths:
M doc/build.info
A doc/man3/SSL_get_peer_addr.pod
M doc/man7/openssl-quic.pod
M include/internal/quic_ssl.h
M include/openssl/ssl.h.in
M ssl/quic/quic_channel.c
M ssl/quic/quic_impl.c
M ssl/quic/quic_port.c
M ssl/ssl_lib.c
M test/quicapitest.c
M util/libssl.num
Log Message:
-----------
Add SSL_get_peer_addr() function to query peer address for QUIC
This change introduces a new public API symbol: SSL_get_peer_addr().
The change is QUIC-only, there are no changes for TLS connections
- API: add peer address query for QUIC connections
* Internal: declare/implement ossl_quic_get_peer_addr(SSL*, BIO_ADDR*)
* Public: declare/implement SSL_get_peer_addr(SSL*, BIO_ADDR*)
Rationale:
- Allow applications to retrieve the remote UDP tuple for QUIC sessions
(e.g., logging, access control, diagnostics)
Provided documentation and test cases for SSL_get_peer_addr().
Set peer via channel API on new-conn.
- In ch_on_new_conn_common(), BIO_ADDR_copy(&ch->cur_peer_addr, peer)
was replaced with ossl_quic_channel_set_peer_addr(ch, peer) so
addressed_mode is enabled at connection bring-up.
Dropped redundant peer detection in create_qc_from_incoming_conn()
The peer address is now propagated in ch_on_new_conn_common() via
ossl_quic_channel_set_peer_addr(), so the channel is already in
"addressed" mode. This also avoids querying the (unconnected) server
UDP BIO, reduces duplication, and simplifies the accept path. All
regression tests pass.
Reviewed-by: Matt Caswell <ma...@openssl.org>
Reviewed-by: Saša Nedvědický <sas...@openssl.org>
Reviewed-by: Tomas Mraz <to...@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28690)
To unsubscribe from these emails, change your notification settings at https://github.com/openssl/openssl/settings/notifications
Reply all
Reply to author
Forward
0 new messages