[thirdparty/openssl.git] / doc / man3 / SSL_CTX_set_alpn_select_cb.pod

=pod

=head1 NAME

SSL_CTX_set_alpn_protos, SSL_set_alpn_protos, SSL_CTX_set_alpn_select_cb,
SSL_CTX_set_next_proto_select_cb, SSL_CTX_set_next_protos_advertised_cb,
SSL_select_next_proto, SSL_get0_alpn_selected, SSL_get0_next_proto_negotiated
- handle application layer protocol negotiation (ALPN)

=head1 SYNOPSIS

 #include <openssl/ssl.h>

 int SSL_CTX_set_alpn_protos(SSL_CTX *ctx, const unsigned char *protos,
                             unsigned int protos_len);
 int SSL_set_alpn_protos(SSL *ssl, const unsigned char *protos,
                         unsigned int protos_len);
 void SSL_CTX_set_alpn_select_cb(SSL_CTX *ctx,
                                 int (*cb) (SSL *ssl,
                                            const unsigned char **out,
                                            unsigned char *outlen,
                                            const unsigned char *in,
                                            unsigned int inlen,
                                            void *arg), void *arg);
 void SSL_get0_alpn_selected(const SSL *ssl, const unsigned char **data,
                             unsigned int *len);

 void SSL_CTX_set_next_protos_advertised_cb(SSL_CTX *ctx,
                                            int (*cb)(SSL *ssl,
                                                      const unsigned char **out,
                                                      unsigned int *outlen,
                                                      void *arg),
                                            void *arg);
 void SSL_CTX_set_next_proto_select_cb(SSL_CTX *ctx,
                               int (*cb)(SSL *s,
                                         unsigned char **out,
                                         unsigned char *outlen,
                                         const unsigned char *in,
                                         unsigned int inlen,
                                         void *arg),
                               void *arg);
 int SSL_select_next_proto(unsigned char **out, unsigned char *outlen,
                           const unsigned char *server,
                           unsigned int server_len,
                           const unsigned char *client,
                           unsigned int client_len);
 void SSL_get0_next_proto_negotiated(const SSL *s, const unsigned char **data,
                             unsigned *len);

=head1 DESCRIPTION

SSL_CTX_set_alpn_protos() and SSL_set_alpn_protos() are used by the client to
set the list of protocols available to be negotiated. The B<protos> must be in
protocol-list format, described below. The length of B<protos> is specified in
B<protos_len>.

SSL_CTX_set_alpn_select_cb() sets the application callback B<cb> used by a
server to select which protocol to use for the incoming connection. When B<cb>
is NULL, ALPN is not used. The B<arg> value is a pointer which is passed to
the application callback.

B<cb> is the application defined callback. The B<in>, B<inlen> parameters are a
vector in protocol-list format. The value of the B<out>, B<outlen> vector
should be set to the value of a single protocol selected from the B<in>,
B<inlen> vector. The B<out> buffer may point directly into B<in>, or to a
buffer that outlives the handshake. The B<arg> parameter is the pointer set via
SSL_CTX_set_alpn_select_cb().

SSL_select_next_proto() is a helper function used to select protocols. It
implements the standard protocol selection. It is expected that this function
is called from the application callback B<cb>. The protocol data in B<server>,
B<server_len> and B<client>, B<client_len> must be in the protocol-list format
described below. The first item in the B<server>, B<server_len> list that
matches an item in the B<client>, B<client_len> list is selected, and returned
in B<out>, B<outlen>. The B<out> value will point into either B<server> or
B<client>, so it should be copied immediately. If no match is found, the first
item in B<client>, B<client_len> is returned in B<out>, B<outlen>. This
function can also be used in the NPN callback.

SSL_CTX_set_next_proto_select_cb() sets a callback B<cb> that is called when a
client needs to select a protocol from the server's provided list, and a
user-defined pointer argument B<arg> which will be passed to this callback.
For the callback itself, B<out>
must be set to point to the selected protocol (which may be within B<in>).
The length of the protocol name must be written into B<outlen>. The
server's advertised protocols are provided in B<in> and B<inlen>. The
callback can assume that B<in> is syntactically valid. The client must
select a protocol. It is fatal to the connection if this callback returns
a value other than B<SSL_TLSEXT_ERR_OK>. The B<arg> parameter is the pointer
set via SSL_CTX_set_next_proto_select_cb().

SSL_CTX_set_next_protos_advertised_cb() sets a callback B<cb> that is called
when a TLS server needs a list of supported protocols for Next Protocol
Negotiation. The returned list must be in protocol-list format, described
below.  The list is
returned by setting B<out> to point to it and B<outlen> to its length. This
memory will not be modified, but the B<SSL> does keep a
reference to it. The callback should return B<SSL_TLSEXT_ERR_OK> if it
wishes to advertise. Otherwise, no such extension will be included in the
ServerHello.

SSL_get0_alpn_selected() returns a pointer to the selected protocol in B<data>
with length B<len>. It is not NUL-terminated. B<data> is set to NULL and B<len>
is set to 0 if no protocol has been selected. B<data> must not be freed.

SSL_get0_next_proto_negotiated() sets B<data> and B<len> to point to the
client's requested protocol for this connection. If the client did not
request any protocol or NPN is not enabled, then B<data> is set to NULL and
B<len> to 0. Note that
the client can request any protocol it chooses. The value returned from
this function need not be a member of the list of supported protocols
provided by the callback.

NPN functionality cannot be used with QUIC SSL objects. Use of ALPN is mandatory
when using QUIC SSL objects. SSL_CTX_set_next_protos_advertised_cb() and
SSL_CTX_set_next_proto_select_cb() have no effect if called on a QUIC SSL
context.

=head1 NOTES

The protocol-lists must be in wire-format, which is defined as a vector of
nonempty, 8-bit length-prefixed, byte strings. The length-prefix byte is not
included in the length. Each string is limited to 255 bytes. A byte-string
length of 0 is invalid. A truncated byte-string is invalid. The length of the
vector is not in the vector itself, but in a separate variable.

Example:

 unsigned char vector[] = {
     6, 's', 'p', 'd', 'y', '/', '1',
     8, 'h', 't', 't', 'p', '/', '1', '.', '1'
 };
 unsigned int length = sizeof(vector);

The ALPN callback is executed after the servername callback; as that servername
callback may update the SSL_CTX, and subsequently, the ALPN callback.

If there is no ALPN proposed in the ClientHello, the ALPN callback is not
invoked.

=head1 RETURN VALUES

SSL_CTX_set_alpn_protos() and SSL_set_alpn_protos() return 0 on success, and
non-0 on failure. WARNING: these functions reverse the return value convention.

SSL_select_next_proto() returns one of the following:

=over 4

=item OPENSSL_NPN_NEGOTIATED

A match was found and is returned in B<out>, B<outlen>.

=item OPENSSL_NPN_NO_OVERLAP

No match was found. The first item in B<client>, B<client_len> is returned in
B<out>, B<outlen>.

=back

The ALPN select callback B<cb>, must return one of the following:

=over 4

=item SSL_TLSEXT_ERR_OK

ALPN protocol selected.

=item SSL_TLSEXT_ERR_ALERT_FATAL

There was no overlap between the client's supplied list and the server
configuration.

=item SSL_TLSEXT_ERR_NOACK

ALPN protocol not selected, e.g., because no ALPN protocols are configured for
this connection.

=back

The callback set using SSL_CTX_set_next_proto_select_cb() should return
B<SSL_TLSEXT_ERR_OK> if successful. Any other value is fatal to the connection.

The callback set using SSL_CTX_set_next_protos_advertised_cb() should return
B<SSL_TLSEXT_ERR_OK> if it wishes to advertise. Otherwise, no such extension
will be included in the ServerHello.

=head1 SEE ALSO

L<ssl(7)>, L<SSL_CTX_set_tlsext_servername_callback(3)>,
L<SSL_CTX_set_tlsext_servername_arg(3)>

=head1 COPYRIGHT

Copyright 2016-2023 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the Apache License 2.0 (the "License").  You may not use
this file except in compliance with the License.  You can obtain a copy
in the file LICENSE in the source distribution or at
L<https://www.openssl.org/source/license.html>.

=cut
Commit	Line	Data
817cd0d5 TS	1	=pod
	2
	3	=head1 NAME
	4
0351baae	5	SSL_CTX_set_alpn_protos, SSL_set_alpn_protos, SSL_CTX_set_alpn_select_cb,
87b81496 RS	6	SSL_CTX_set_next_proto_select_cb, SSL_CTX_set_next_protos_advertised_cb,
	7	SSL_select_next_proto, SSL_get0_alpn_selected, SSL_get0_next_proto_negotiated
	8	- handle application layer protocol negotiation (ALPN)
817cd0d5 TS	9
	10	=head1 SYNOPSIS
	11
	12	#include <openssl/ssl.h>
	13
	14	int SSL_CTX_set_alpn_protos(SSL_CTX ctx, const unsigned char protos,
	15	unsigned int protos_len);
	16	int SSL_set_alpn_protos(SSL ssl, const unsigned char protos,
	17	unsigned int protos_len);
	18	void SSL_CTX_set_alpn_select_cb(SSL_CTX *ctx,
	19	int (cb) (SSL ssl,
	20	const unsigned char **out,
	21	unsigned char *outlen,
	22	const unsigned char *in,
	23	unsigned int inlen,
	24	void arg), void arg);
87b81496 RS	25	void SSL_get0_alpn_selected(const SSL ssl, const unsigned char *data,
	26	unsigned int *len);
	27
	28	void SSL_CTX_set_next_protos_advertised_cb(SSL_CTX *ctx,
	29	int (cb)(SSL ssl,
	30	const unsigned char **out,
	31	unsigned int *outlen,
	32	void *arg),
	33	void *arg);
	34	void SSL_CTX_set_next_proto_select_cb(SSL_CTX *ctx,
	35	int (cb)(SSL s,
	36	unsigned char **out,
	37	unsigned char *outlen,
	38	const unsigned char *in,
	39	unsigned int inlen,
	40	void *arg),
	41	void *arg);
817cd0d5 TS	42	int SSL_select_next_proto(unsigned char *out, unsigned char outlen,
	43	const unsigned char *server,
	44	unsigned int server_len,
	45	const unsigned char *client,
f64f17c3	46	unsigned int client_len);
87b81496 RS	47	void SSL_get0_next_proto_negotiated(const SSL s, const unsigned char *data,
87b81496 RS	48	unsigned *len);
817cd0d5 TS	49
	50	=head1 DESCRIPTION
	51
	52	SSL_CTX_set_alpn_protos() and SSL_set_alpn_protos() are used by the client to
	53	set the list of protocols available to be negotiated. The B<protos> must be in
	54	protocol-list format, described below. The length of B<protos> is specified in
	55	B<protos_len>.
	56
	57	SSL_CTX_set_alpn_select_cb() sets the application callback B<cb> used by a
	58	server to select which protocol to use for the incoming connection. When B<cb>
0351baae	59	is NULL, ALPN is not used. The B<arg> value is a pointer which is passed to
817cd0d5 TS	60	the application callback.
	61
	62	B<cb> is the application defined callback. The B<in>, B<inlen> parameters are a
	63	vector in protocol-list format. The value of the B<out>, B<outlen> vector
0351baae	64	should be set to the value of a single protocol selected from the B<in>,
ce2cdac2 EK	65	B<inlen> vector. The B<out> buffer may point directly into B<in>, or to a
ce2cdac2 EK	66	buffer that outlives the handshake. The B<arg> parameter is the pointer set via
817cd0d5 TS	67	SSL_CTX_set_alpn_select_cb().
	68
	69	SSL_select_next_proto() is a helper function used to select protocols. It
	70	implements the standard protocol selection. It is expected that this function
	71	is called from the application callback B<cb>. The protocol data in B<server>,
0351baae	72	B<server_len> and B<client>, B<client_len> must be in the protocol-list format
817cd0d5 TS	73	described below. The first item in the B<server>, B<server_len> list that
	74	matches an item in the B<client>, B<client_len> list is selected, and returned
	75	in B<out>, B<outlen>. The B<out> value will point into either B<server> or
	76	B<client>, so it should be copied immediately. If no match is found, the first
	77	item in B<client>, B<client_len> is returned in B<out>, B<outlen>. This
	78	function can also be used in the NPN callback.
	79
87b81496 RS	80	SSL_CTX_set_next_proto_select_cb() sets a callback B<cb> that is called when a
	81	client needs to select a protocol from the server's provided list, and a
	82	user-defined pointer argument B<arg> which will be passed to this callback.
	83	For the callback itself, B<out>
	84	must be set to point to the selected protocol (which may be within B<in>).
	85	The length of the protocol name must be written into B<outlen>. The
	86	server's advertised protocols are provided in B<in> and B<inlen>. The
	87	callback can assume that B<in> is syntactically valid. The client must
	88	select a protocol. It is fatal to the connection if this callback returns
	89	a value other than B<SSL_TLSEXT_ERR_OK>. The B<arg> parameter is the pointer
	90	set via SSL_CTX_set_next_proto_select_cb().
	91
	92	SSL_CTX_set_next_protos_advertised_cb() sets a callback B<cb> that is called
	93	when a TLS server needs a list of supported protocols for Next Protocol
	94	Negotiation. The returned list must be in protocol-list format, described
	95	below. The list is
	96	returned by setting B<out> to point to it and B<outlen> to its length. This
	97	memory will not be modified, but the B<SSL> does keep a
	98	reference to it. The callback should return B<SSL_TLSEXT_ERR_OK> if it
	99	wishes to advertise. Otherwise, no such extension will be included in the
	100	ServerHello.
	101
817cd0d5 TS	102	SSL_get0_alpn_selected() returns a pointer to the selected protocol in B<data>
817cd0d5 TS	103	with length B<len>. It is not NUL-terminated. B<data> is set to NULL and B<len>
0351baae	104	is set to 0 if no protocol has been selected. B<data> must not be freed.
817cd0d5	105
87b81496 RS	106	SSL_get0_next_proto_negotiated() sets B<data> and B<len> to point to the
	107	client's requested protocol for this connection. If the client did not
	108	request any protocol or NPN is not enabled, then B<data> is set to NULL and
	109	B<len> to 0. Note that
	110	the client can request any protocol it chooses. The value returned from
	111	this function need not be a member of the list of supported protocols
	112	provided by the callback.
	113
68dbff4c	114	NPN functionality cannot be used with QUIC SSL objects. Use of ALPN is mandatory
d6e7ebba HL	115	when using QUIC SSL objects. SSL_CTX_set_next_protos_advertised_cb() and
	116	SSL_CTX_set_next_proto_select_cb() have no effect if called on a QUIC SSL
	117	context.
68dbff4c	118
817cd0d5 TS	119	=head1 NOTES
	120
	121	The protocol-lists must be in wire-format, which is defined as a vector of
490c8711	122	nonempty, 8-bit length-prefixed, byte strings. The length-prefix byte is not
817cd0d5 TS	123	included in the length. Each string is limited to 255 bytes. A byte-string
	124	length of 0 is invalid. A truncated byte-string is invalid. The length of the
	125	vector is not in the vector itself, but in a separate variable.
	126
	127	Example:
	128
	129	unsigned char vector[] = {
	130	6, 's', 'p', 'd', 'y', '/', '1',
	131	8, 'h', 't', 't', 'p', '/', '1', '.', '1'
	132	};
	133	unsigned int length = sizeof(vector);
	134
	135	The ALPN callback is executed after the servername callback; as that servername
	136	callback may update the SSL_CTX, and subsequently, the ALPN callback.
	137
	138	If there is no ALPN proposed in the ClientHello, the ALPN callback is not
	139	invoked.
	140
	141	=head1 RETURN VALUES
	142
	143	SSL_CTX_set_alpn_protos() and SSL_set_alpn_protos() return 0 on success, and
	144	non-0 on failure. WARNING: these functions reverse the return value convention.
	145
	146	SSL_select_next_proto() returns one of the following:
	147
	148	=over 4
	149
	150	=item OPENSSL_NPN_NEGOTIATED
	151
	152	A match was found and is returned in B<out>, B<outlen>.
	153
	154	=item OPENSSL_NPN_NO_OVERLAP
	155
	156	No match was found. The first item in B<client>, B<client_len> is returned in
	157	B<out>, B<outlen>.
	158
	159	=back
	160
	161	The ALPN select callback B<cb>, must return one of the following:
	162
	163	=over 4
	164
	165	=item SSL_TLSEXT_ERR_OK
	166
	167	ALPN protocol selected.
	168
8313a787 BK	169	=item SSL_TLSEXT_ERR_ALERT_FATAL
	170
	171	There was no overlap between the client's supplied list and the server
	172	configuration.
	173
817cd0d5 TS	174	=item SSL_TLSEXT_ERR_NOACK
817cd0d5 TS	175
8313a787 BK	176	ALPN protocol not selected, e.g., because no ALPN protocols are configured for
8313a787 BK	177	this connection.
817cd0d5 TS	178
	179	=back
	180
87b81496 RS	181	The callback set using SSL_CTX_set_next_proto_select_cb() should return
	182	B<SSL_TLSEXT_ERR_OK> if successful. Any other value is fatal to the connection.
	183
	184	The callback set using SSL_CTX_set_next_protos_advertised_cb() should return
	185	B<SSL_TLSEXT_ERR_OK> if it wishes to advertise. Otherwise, no such extension
	186	will be included in the ServerHello.
	187
817cd0d5 TS	188	=head1 SEE ALSO
817cd0d5 TS	189
b97fdb57	190	L<ssl(7)>, L<SSL_CTX_set_tlsext_servername_callback(3)>,
817cd0d5 TS	191	L<SSL_CTX_set_tlsext_servername_arg(3)>
817cd0d5 TS	192
e2f92610 RS	193	=head1 COPYRIGHT
e2f92610 RS	194
da1c088f	195	Copyright 2016-2023 The OpenSSL Project Authors. All Rights Reserved.
e2f92610	196
4746f25a	197	Licensed under the Apache License 2.0 (the "License"). You may not use
e2f92610 RS	198	this file except in compliance with the License. You can obtain a copy
	199	in the file LICENSE in the source distribution or at
	200	L<https://www.openssl.org/source/license.html>.
	201
	202	=cut