From 0591829ab2c8844ba40a3bac3b7e0f5479da14fe Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Thu, 23 Jul 2020 17:38:26 +1200
Subject: [PATCH 01/37] Update license disclaimer

OpenSSL 3.0 uses Apache License v2 which removes the SSLeay distribution restrictions.
---
 src/main.cc | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/main.cc b/src/main.cc
index 99bad6ea740..c1e665232f5 100644
--- a/src/main.cc
+++ b/src/main.cc
@@ -671,7 +671,9 @@ mainHandleCommandLineOption(const int optId, const char *optValue)
             printf("%s\n",SQUID_BUILD_INFO);
 #if USE_OPENSSL
         printf("\nThis binary uses %s. ", OpenSSL_version(OPENSSL_VERSION));
+#if OPENSSL_VERSION_MAJOR < 3
         printf("For legal restrictions on distribution see https://www.openssl.org/source/license.html\n\n");
+#endif
 #endif
         printf( "configure options: %s\n", SQUID_CONFIGURE_OPTIONS);
 

From 4dd37f3c48360af5d4bb692cf39bf229456354d6 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Thu, 23 Jul 2020 18:51:20 +1200
Subject: [PATCH 02/37] Declaration of CRYPTO_EX_dup changed again in 3.0

---
 src/ssl/support.cc | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/ssl/support.cc b/src/ssl/support.cc
index 99c4087b688..a164526a749 100644
--- a/src/ssl/support.cc
+++ b/src/ssl/support.cc
@@ -556,7 +556,11 @@ Ssl::VerifyCallbackParameters::At(Security::Connection &sconn)
 }
 
 // "dup" function for SSL_get_ex_new_index("cert_err_check")
-#if SQUID_USE_CONST_CRYPTO_EX_DATA_DUP
+#if OPENSSL_VERSION_MAJOR >= 3
+static int
+ssl_dupAclChecklist(CRYPTO_EX_DATA *, const CRYPTO_EX_DATA *, void **,
+                    int, long, void *)
+#elif SQUID_USE_CONST_CRYPTO_EX_DATA_DUP
 static int
 ssl_dupAclChecklist(CRYPTO_EX_DATA *, const CRYPTO_EX_DATA *, void *,
                     int, long, void *)

From 5564eb40937031e822012c62bdaa5d487c5eb87d Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Sun, 10 Oct 2021 02:35:10 +1300
Subject: [PATCH 03/37] SSL_OP_* macro definitions changed in 3.0

---
 src/security/PeerOptions.cc | 50 ++++++++++++++++++-------------------
 1 file changed, 25 insertions(+), 25 deletions(-)

diff --git a/src/security/PeerOptions.cc b/src/security/PeerOptions.cc
index 95e5a2eddc4..8538f2c15c4 100644
--- a/src/security/PeerOptions.cc
+++ b/src/security/PeerOptions.cc
@@ -297,130 +297,130 @@ static struct ssl_option {
 
 } ssl_options[] = {
 
-#if SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
+#if defined(SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG)
     {
         "NETSCAPE_REUSE_CIPHER_CHANGE_BUG", SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
     },
 #endif
-#if SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG
+#if defined(SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG)
     {
         "SSLREF2_REUSE_CERT_TYPE_BUG", SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG
     },
 #endif
-#if SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER
+#if defined(SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER)
     {
         "MICROSOFT_BIG_SSLV3_BUFFER", SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER
     },
 #endif
-#if SSL_OP_SSLEAY_080_CLIENT_DH_BUG
+#if defined(SSL_OP_SSLEAY_080_CLIENT_DH_BUG)
     {
         "SSLEAY_080_CLIENT_DH_BUG", SSL_OP_SSLEAY_080_CLIENT_DH_BUG
     },
 #endif
-#if SSL_OP_TLS_D5_BUG
+#if defined(SSL_OP_TLS_D5_BUG)
     {
         "TLS_D5_BUG", SSL_OP_TLS_D5_BUG
     },
 #endif
-#if SSL_OP_TLS_BLOCK_PADDING_BUG
+#if defined(SSL_OP_TLS_BLOCK_PADDING_BUG)
     {
         "TLS_BLOCK_PADDING_BUG", SSL_OP_TLS_BLOCK_PADDING_BUG
     },
 #endif
-#if SSL_OP_TLS_ROLLBACK_BUG
+#if defined(SSL_OP_TLS_ROLLBACK_BUG)
     {
         "TLS_ROLLBACK_BUG", SSL_OP_TLS_ROLLBACK_BUG
     },
 #endif
-#if SSL_OP_ALL
+#if defined(SSL_OP_ALL)
     {
         "ALL", (long)SSL_OP_ALL
     },
 #endif
-#if SSL_OP_SINGLE_DH_USE
+#if defined(SSL_OP_SINGLE_DH_USE)
     {
         "SINGLE_DH_USE", SSL_OP_SINGLE_DH_USE
     },
 #endif
-#if SSL_OP_EPHEMERAL_RSA
+#if defined(SSL_OP_EPHEMERAL_RSA)
     {
         "EPHEMERAL_RSA", SSL_OP_EPHEMERAL_RSA
     },
 #endif
-#if SSL_OP_PKCS1_CHECK_1
+#if defined(SSL_OP_PKCS1_CHECK_1)
     {
         "PKCS1_CHECK_1", SSL_OP_PKCS1_CHECK_1
     },
 #endif
-#if SSL_OP_PKCS1_CHECK_2
+#if defined(SSL_OP_PKCS1_CHECK_2)
     {
         "PKCS1_CHECK_2", SSL_OP_PKCS1_CHECK_2
     },
 #endif
-#if SSL_OP_NETSCAPE_CA_DN_BUG
+#if defined(SSL_OP_NETSCAPE_CA_DN_BUG)
     {
         "NETSCAPE_CA_DN_BUG", SSL_OP_NETSCAPE_CA_DN_BUG
     },
 #endif
-#if SSL_OP_NON_EXPORT_FIRST
+#if defined(SSL_OP_NON_EXPORT_FIRST)
     {
         "NON_EXPORT_FIRST", SSL_OP_NON_EXPORT_FIRST
     },
 #endif
-#if SSL_OP_CIPHER_SERVER_PREFERENCE
+#if defined(SSL_OP_CIPHER_SERVER_PREFERENCE)
     {
         "CIPHER_SERVER_PREFERENCE", SSL_OP_CIPHER_SERVER_PREFERENCE
     },
 #endif
-#if SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG
+#if defined(SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG)
     {
         "NETSCAPE_DEMO_CIPHER_CHANGE_BUG", SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG
     },
 #endif
-#if SSL_OP_NO_SSLv3
+#if defined(SSL_OP_NO_SSLv3)
     {
         "NO_SSLv3", SSL_OP_NO_SSLv3
     },
 #endif
-#if SSL_OP_NO_TLSv1
+#if defined(SSL_OP_NO_TLSv1)
     {
         "NO_TLSv1", SSL_OP_NO_TLSv1
     },
 #else
     { "NO_TLSv1", 0 },
 #endif
-#if SSL_OP_NO_TLSv1_1
+#if defined(SSL_OP_NO_TLSv1_1)
     {
         "NO_TLSv1_1", SSL_OP_NO_TLSv1_1
     },
 #else
     { "NO_TLSv1_1", 0 },
 #endif
-#if SSL_OP_NO_TLSv1_2
+#if defined(SSL_OP_NO_TLSv1_2)
     {
         "NO_TLSv1_2", SSL_OP_NO_TLSv1_2
     },
 #else
     { "NO_TLSv1_2", 0 },
 #endif
-#if SSL_OP_NO_TLSv1_3
+#if defined(SSL_OP_NO_TLSv1_3)
     {
         "NO_TLSv1_3", SSL_OP_NO_TLSv1_3
     },
 #else
     { "NO_TLSv1_3", 0 },
 #endif
-#if SSL_OP_NO_COMPRESSION
+#if defined(SSL_OP_NO_COMPRESSION)
     {
         "No_Compression", SSL_OP_NO_COMPRESSION
     },
 #endif
-#if SSL_OP_NO_TICKET
+#if defined(SSL_OP_NO_TICKET)
     {
         "NO_TICKET", SSL_OP_NO_TICKET
     },
 #endif
-#if SSL_OP_SINGLE_ECDH_USE
+#if defined(SSL_OP_SINGLE_ECDH_USE)
     {
         "SINGLE_ECDH_USE", SSL_OP_SINGLE_ECDH_USE
     },
@@ -512,7 +512,7 @@ Security::PeerOptions::parseOptions()
 
     }
 
-#if SSL_OP_NO_SSLv2
+#if defined(SSL_OP_NO_SSLv2)
     // compliance with RFC 6176: Prohibiting Secure Sockets Layer (SSL) Version 2.0
     op = op | SSL_OP_NO_SSLv2;
 #endif

From b787e70640c855f1ae86d0a247e4d84d3e7b0ef8 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Thu, 23 Jul 2020 21:02:36 +1200
Subject: [PATCH 04/37] Refactor Ssl::createSslPrivateKey()

* Use the OpenSSL 1.1+ EVP API for generating RSA keys.

* Make static since this is only used by the gadgets.cc code.
---
 src/ssl/gadgets.cc | 35 ++++++++++++++++-------------------
 src/ssl/gadgets.h  |  8 +-------
 2 files changed, 17 insertions(+), 26 deletions(-)

diff --git a/src/ssl/gadgets.cc b/src/ssl/gadgets.cc
index 4eff48bf7d2..d9616a04891 100644
--- a/src/ssl/gadgets.cc
+++ b/src/ssl/gadgets.cc
@@ -48,33 +48,26 @@ ThrowErrors(const char * const problem, const int savedErrno, const SourceLocati
                         where);
 }
 
-EVP_PKEY * Ssl::createSslPrivateKey()
+static EVP_PKEY *
+CreateRsaPrivateKey()
 {
-    Security::PrivateKeyPointer pkey(EVP_PKEY_new());
-
-    if (!pkey)
-        return nullptr;
-
-    BIGNUM_Pointer bn(BN_new());
-    if (!bn)
-        return nullptr;
-
-    if (!BN_set_word(bn.get(), RSA_F4))
+    Ssl::EVP_PKEY_CTX_Pointer rsa(EVP_PKEY_CTX_new_id(EVP_PKEY_RSA, nullptr));
+    if (!rsa)
         return nullptr;
 
-    Ssl::RSA_Pointer rsa(RSA_new());
-    if (!rsa)
+    if (EVP_PKEY_keygen_init(rsa.get()) <= 0)
         return nullptr;
 
     int num = 2048; // Maybe use 4096 RSA keys, or better make it configurable?
-    if (!RSA_generate_key_ex(rsa.get(), num, bn.get(), nullptr))
+    if (EVP_PKEY_CTX_set_rsa_keygen_bits(rsa.get(), num) <= 0)
         return nullptr;
 
-    if (!EVP_PKEY_assign_RSA(pkey.get(), (rsa.get())))
+    /* Generate key */
+    EVP_PKEY *pkey = nullptr;
+    if (EVP_PKEY_keygen(rsa.get(), &pkey) <= 0)
         return nullptr;
 
-    rsa.release();
-    return pkey.release();
+    return pkey;
 }
 
 /**
@@ -421,7 +414,11 @@ mimicExtensions(Security::CertPointer & cert, Security::CertPointer const &mimic
     // XXX: Add PublicKeyPointer. In OpenSSL, public and private keys are
     // internally represented by EVP_PKEY pair, but GnuTLS uses distinct types.
     const Security::PrivateKeyPointer certKey(X509_get_pubkey(mimicCert.get()));
-    const auto rsaPkey = EVP_PKEY_get0_RSA(certKey.get()) != nullptr;
+#if OPENSSL_VERSION_MAJOR < 3
+    const auto rsaPkey = bool(EVP_PKEY_get0_RSA(certKey.get()));
+#else
+    const auto rsaPkey = EVP_PKEY_is_a(certKey.get(), "RSA");
+#endif
 
     int added = 0;
     int nid;
@@ -595,7 +592,7 @@ static bool generateFakeSslCertificate(Security::CertPointer & certToStore, Secu
     if (properties.signWithPkey.get())
         pkey.resetAndLock(properties.signWithPkey.get());
     else // if not exist generate one
-        pkey.resetWithoutLocking(Ssl::createSslPrivateKey());
+        pkey.resetWithoutLocking(CreateRsaPrivateKey());
 
     if (!pkey)
         return false;
diff --git a/src/ssl/gadgets.h b/src/ssl/gadgets.h
index df45f5d3d0d..7dab85ab76d 100644
--- a/src/ssl/gadgets.h
+++ b/src/ssl/gadgets.h
@@ -58,7 +58,7 @@ typedef std::unique_ptr<TXT_DB, HardFun<void, TXT_DB*, &TXT_DB_free>> TXT_DB_Poi
 
 typedef std::unique_ptr<X509_NAME, HardFun<void, X509_NAME*, &X509_NAME_free>> X509_NAME_Pointer;
 
-typedef std::unique_ptr<RSA, HardFun<void, RSA*, &RSA_free>> RSA_Pointer;
+typedef std::unique_ptr<EVP_PKEY_CTX, HardFun<void, EVP_PKEY_CTX*, &EVP_PKEY_CTX_free>> EVP_PKEY_CTX_Pointer;
 
 typedef std::unique_ptr<X509_REQ, HardFun<void, X509_REQ*, &X509_REQ_free>> X509_REQ_Pointer;
 
@@ -86,12 +86,6 @@ void ForgetErrors();
 /// Also clears all reported errors.
 std::ostream &ReportAndForgetErrors(std::ostream &);
 
-/**
- \ingroup SslCrtdSslAPI
- * Create 1024 bits rsa key.
- */
-EVP_PKEY * createSslPrivateKey();
-
 /**
  \ingroup SslCrtdSslAPI
  * Write private key and SSL certificate to memory.

From e290d6c046adae5ecf96e2c6617ac4e5df64cfdc Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Wed, 6 Oct 2021 21:55:38 +1300
Subject: [PATCH 05/37] Switch to BN_rand()

BN_pseudo_rand() has been identical since libssl 1.1.0 and is removed in libssl 3.0
---
 src/cf.data.pre    | 2 ++
 src/ssl/gadgets.cc | 2 +-
 src/ssl/support.cc | 5 ++---
 3 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/src/cf.data.pre b/src/cf.data.pre
index 493fb7cbeff..034c8074f02 100644
--- a/src/cf.data.pre
+++ b/src/cf.data.pre
@@ -3061,6 +3061,8 @@ DEFAULT: none
 DOC_START
 	The OpenSSL engine to use. You will need to set this if you
 	would like to use hardware SSL acceleration for example.
+
+	Note: OpenSSL 3.0 and newer do not provide Engine support.
 DOC_END
 
 NAME: sslproxy_session_ttl
diff --git a/src/ssl/gadgets.cc b/src/ssl/gadgets.cc
index d9616a04891..3aec4e58837 100644
--- a/src/ssl/gadgets.cc
+++ b/src/ssl/gadgets.cc
@@ -85,7 +85,7 @@ static bool setSerialNumber(ASN1_INTEGER *ai, BIGNUM const* serial)
         if (!bn)
             return false;
 
-        if (!BN_pseudo_rand(bn.get(), 64, 0, 0))
+        if (!BN_rand(bn.get(), 64, 0, 0))
             return false;
     }
 
diff --git a/src/ssl/support.cc b/src/ssl/support.cc
index a164526a749..59446359129 100644
--- a/src/ssl/support.cc
+++ b/src/ssl/support.cc
@@ -657,8 +657,8 @@ Ssl::Initialize(void)
 
     SQUID_OPENSSL_init_ssl();
 
-#if !defined(OPENSSL_NO_ENGINE)
     if (::Config.SSL.ssl_engine) {
+#if !defined(OPENSSL_NO_ENGINE) && OPENSSL_VERSION_MAJOR < 3
         ENGINE_load_builtin_engines();
         ENGINE *e;
         if (!(e = ENGINE_by_id(::Config.SSL.ssl_engine)))
@@ -668,11 +668,10 @@ Ssl::Initialize(void)
             const auto ssl_error = ERR_get_error();
             fatalf("Failed to initialise SSL engine: %s\n", Security::ErrorString(ssl_error));
         }
-    }
 #else
-    if (::Config.SSL.ssl_engine)
         fatalf("Your OpenSSL has no SSL engine support\n");
 #endif
+    }
 
     const char *defName = ::Config.SSL.certSignHash ? ::Config.SSL.certSignHash : SQUID_SSL_SIGN_HASH_IF_NONE;
     Ssl::DefaultSignHash = EVP_get_digestbyname(defName);

From b98cd0f79ae6b0ceb28abc395a00bf16904a5605 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Thu, 23 Jul 2020 18:08:15 +1200
Subject: [PATCH 06/37] TODO Upgrade API calls verifying loaded DH params file

---
 src/security/ServerOptions.cc | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 5cf0c6e13f0..5a2a1e93fb3 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -364,6 +364,10 @@ Security::ServerOptions::loadDhParams()
         return;
     }
 
+#if OPENSSL_VERSION_MAJOR < 3
+    // DH_check() removed in OpenSSL 3.0.
+    // TODO: use the EVP API instead, which also works in OpenSSL 1.1.
+    // But it is not yet clear exactly how that API works for DH.
     int codes;
     if (DH_check(dhp, &codes) == 0) {
         if (codes) {
@@ -372,6 +376,7 @@ Security::ServerOptions::loadDhParams()
             dhp = nullptr;
         }
     }
+#endif
 
     parsedDhParams.resetWithoutLocking(dhp);
 #endif

From 34d6c44ad0904d69f96a06e48010900bf450d998 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Wed, 6 Oct 2021 21:12:25 +1300
Subject: [PATCH 07/37] Initial DH conversion to EVP_PKEY

3.0 build does not yet complete due to ENGINE and BIGNUM deprecation issues.

This conversion relies on OSSL_*() functions added in 3.0. So the
old DH loading code is left unchanged.
---
 configure.ac                  |  1 +
 src/security/ServerOptions.cc | 30 +++++++++++++++++++++++++++---
 src/security/forward.h        | 24 +++++++++++++++---------
 3 files changed, 43 insertions(+), 12 deletions(-)

diff --git a/configure.ac b/configure.ac
index d3f8f21d852..2d65559ea93 100644
--- a/configure.ac
+++ b/configure.ac
@@ -1283,6 +1283,7 @@ if test "x$with_openssl" = "xyes"; then
     openssl/bio.h \
     openssl/bn.h \
     openssl/crypto.h \
+    openssl/decoder.h \
     openssl/dh.h \
     openssl/err.h \
     openssl/evp.h \
diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 5a2a1e93fb3..4a4f1847cde 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -19,6 +19,9 @@
 #include "compat/openssl.h"
 #include "ssl/support.h"
 
+#if HAVE_OPENSSL_DECODER_H
+#include <openssl/decoder.h>
+#endif
 #if HAVE_OPENSSL_ERR_H
 #include <openssl/err.h>
 #endif
@@ -353,6 +356,7 @@ Security::ServerOptions::loadDhParams()
         return;
 
 #if USE_OPENSSL
+#if OPENSSL_VERSION_MAJOR < 3
     DH *dhp = nullptr;
     if (FILE *in = fopen(dhParamsFile.c_str(), "r")) {
         dhp = PEM_read_DHparams(in, nullptr, nullptr, nullptr);
@@ -364,7 +368,6 @@ Security::ServerOptions::loadDhParams()
         return;
     }
 
-#if OPENSSL_VERSION_MAJOR < 3
     // DH_check() removed in OpenSSL 3.0.
     // TODO: use the EVP API instead, which also works in OpenSSL 1.1.
     // But it is not yet clear exactly how that API works for DH.
@@ -376,10 +379,31 @@ Security::ServerOptions::loadDhParams()
             dhp = nullptr;
         }
     }
-#endif
-
     parsedDhParams.resetWithoutLocking(dhp);
+
+#else // OpenSSL 3.0+
+    EVP_PKEY *pkey = nullptr;
+    if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, "DH", OSSL_KEYMGMT_SELECT_ALL, nullptr, nullptr)) {
+        if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
+            if (OSSL_DECODER_from_fp(dctx, in) == 1) {
+
+                /* pkey is created with the decoded data from the bio */
+                Must(pkey);
+                parsedDhParams.resetWithoutLocking(pkey);
+
+            } else {
+                debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode DH parameters '" << dhParamsFile << "'");
+            }
+            fclose(in);
+        }
+        OSSL_DECODER_CTX_free(dctx);
+
+    } else {
+        debugs(83, DBG_IMPORTANT, "WARNING: no suitable potential decoders found for DH parameters");
+        return;
+    }
 #endif
+#endif // USE_OPENSSL
 }
 
 bool
diff --git a/src/security/forward.h b/src/security/forward.h
index d0d745efb02..461694a6c44 100644
--- a/src/security/forward.h
+++ b/src/security/forward.h
@@ -101,9 +101,24 @@ typedef std::list<Security::CertPointer> CertList;
 typedef std::list<Security::CrlPointer> CertRevokeList;
 
 #if USE_OPENSSL
+CtoCpp1(EVP_PKEY_free, EVP_PKEY *)
+typedef Security::LockingPointer<EVP_PKEY, EVP_PKEY_free_cpp, HardFun<int, EVP_PKEY *, EVP_PKEY_up_ref> > PrivateKeyPointer;
+#elif USE_GNUTLS
+typedef std::shared_ptr<struct gnutls_x509_privkey_int> PrivateKeyPointer;
+#else
+typedef std::shared_ptr<void> PrivateKeyPointer;
+#endif
+
+#if USE_OPENSSL
+#if OPENSSL_VERSION_MAJOR < 3
 CtoCpp1(DH_free, DH *);
 typedef Security::LockingPointer<DH, DH_free_cpp, HardFun<int, DH *, DH_up_ref> > DhePointer;
 #else
+typedef PrivateKeyPointer DhePointer;
+#endif
+#elif USE_GNUTLS
+typedef void *DhePointer;
+#else
 typedef void *DhePointer;
 #endif
 
@@ -186,15 +201,6 @@ class PeerConnector;
 class BlindPeerConnector;
 class PeerOptions;
 
-#if USE_OPENSSL
-CtoCpp1(EVP_PKEY_free, EVP_PKEY *)
-typedef Security::LockingPointer<EVP_PKEY, EVP_PKEY_free_cpp, HardFun<int, EVP_PKEY *, EVP_PKEY_up_ref> > PrivateKeyPointer;
-#elif USE_GNUTLS
-typedef std::shared_ptr<struct gnutls_x509_privkey_int> PrivateKeyPointer;
-#else
-typedef std::shared_ptr<void> PrivateKeyPointer;
-#endif
-
 class ServerOptions;
 
 class ErrorDetail;

From be2c0e814615d4da38020e9abf0cc49098898e07 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Mon, 11 Oct 2021 06:01:10 +1300
Subject: [PATCH 08/37] Update ECDH key settings

---
 src/security/ServerOptions.cc | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 4a4f1847cde..a36d1fbd5e7 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -383,7 +383,12 @@ Security::ServerOptions::loadDhParams()
 
 #else // OpenSSL 3.0+
     EVP_PKEY *pkey = nullptr;
-    if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, "DH", OSSL_KEYMGMT_SELECT_ALL, nullptr, nullptr)) {
+    const char *type = "DH";
+    if (!eecdhCurve.isEmpty())
+        type = "EC";
+    // XXX: use the eecdhCurve name when generating the EVP_KEY object. or at least verify it matches the loaded params.
+
+    if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, type, OSSL_KEYMGMT_SELECT_ALL, nullptr, nullptr)) {
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
             if (OSSL_DECODER_from_fp(dctx, in) == 1) {
 
@@ -483,6 +488,9 @@ Security::ServerOptions::updateContextEecdh(Security::ContextPointer &ctx)
         debugs(83, 9, "Setting Ephemeral ECDH curve to " << eecdhCurve << ".");
 
 #if USE_OPENSSL && OPENSSL_VERSION_NUMBER >= 0x0090800fL && !defined(OPENSSL_NO_ECDH)
+
+    // OpenSSL 3.0+ generates the key in loadDhParams()
+#if OPENSSL_VERSION_MAJOR < 3
         int nid = OBJ_sn2nid(eecdhCurve.c_str());
         if (!nid) {
             debugs(83, DBG_CRITICAL, "ERROR: Unknown EECDH curve '" << eecdhCurve << "'");
@@ -490,6 +498,9 @@ Security::ServerOptions::updateContextEecdh(Security::ContextPointer &ctx)
         }
 
         auto ecdh = EC_KEY_new_by_curve_name(nid);
+#else
+        auto ecdh = parsedDhParams.get();
+#endif
         if (!ecdh) {
             const auto x = ERR_get_error();
             debugs(83, DBG_CRITICAL, "ERROR: Unable to configure Ephemeral ECDH: " << Security::ErrorString(x));
@@ -500,7 +511,11 @@ Security::ServerOptions::updateContextEecdh(Security::ContextPointer &ctx)
             const auto x = ERR_get_error();
             debugs(83, DBG_CRITICAL, "ERROR: Unable to set Ephemeral ECDH: " << Security::ErrorString(x));
         }
+#if OPENSSL_VERSION_MAJOR < 3
         EC_KEY_free(ecdh);
+#else
+        return;
+#endif
 
 #else
         debugs(83, DBG_CRITICAL, "ERROR: EECDH is not available in this build." <<
@@ -509,8 +524,8 @@ Security::ServerOptions::updateContextEecdh(Security::ContextPointer &ctx)
 #endif
     }
 
-    // set DH parameters into the server context
 #if USE_OPENSSL
+    // set DH parameters into the server context
     if (parsedDhParams) {
         SSL_CTX_set_tmp_dh(ctx.get(), parsedDhParams.get());
     }

From 743fa75f3df588851de68737a2ff859e6d779e02 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Fri, 15 Oct 2021 04:34:23 +1300
Subject: [PATCH 09/37] Detect and default-enable OpenSSL 3+

---
 configure.ac | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/configure.ac b/configure.ac
index 2d65559ea93..e52c385fd7b 100644
--- a/configure.ac
+++ b/configure.ac
@@ -1275,7 +1275,14 @@ AC_MSG_NOTICE([GnuTLS library support: ${with_gnutls:=auto} ${LIBGNUTLS_PATH} ${
 dnl User may specify OpenSSL is needed from a non-standard location
 SQUID_OPTIONAL_LIB(openssl,[OpenSSL],[LIBOPENSSL])
 AH_TEMPLATE(USE_OPENSSL,[OpenSSL support is available])
-## OpenSSL is default disable due to licensing issues on some OS
+AS_IF([test "x$with_openssl" != "xno"],[
+  SQUID_STATE_SAVE(squid_openssl3_state)
+  CPPFLAGS="$LIBOPENSSL_CFLAGS $CPPFLAGS"
+  LIBS="$LIBS $LIBOPENSSL_PATH"
+  PKG_CHECK_MODULES([LIBOPENSSL],[openssl >= 3],[with_openssl="yes"],[:])
+  SQUID_STATE_ROLLBACK(squid_openssl3_state)
+])
+## OpenSSL < 3 is default disable due to licensing issues on some OS
 if test "x$with_openssl" = "xyes"; then
   CPPFLAGS="$LIBOPENSSL_CFLAGS $CPPFLAGS"
   AC_CHECK_HEADERS( \

From a9e367d96e236a8d4e6640221b1697b38c5c0ce4 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Fri, 15 Oct 2021 04:49:46 +1300
Subject: [PATCH 10/37] Remove stale TODO and comment

---
 src/security/ServerOptions.cc | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index a36d1fbd5e7..bd6cdb3dcf0 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -368,9 +368,6 @@ Security::ServerOptions::loadDhParams()
         return;
     }
 
-    // DH_check() removed in OpenSSL 3.0.
-    // TODO: use the EVP API instead, which also works in OpenSSL 1.1.
-    // But it is not yet clear exactly how that API works for DH.
     int codes;
     if (DH_check(dhp, &codes) == 0) {
         if (codes) {

From df2d57e70a2e793852b4c3c880c4d8cab09eb6e9 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Fri, 15 Oct 2021 05:00:40 +1300
Subject: [PATCH 11/37] Update release notes for UI changes related to OpenSSL
 3.0

---
 doc/release-notes/release-6.sgml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/doc/release-notes/release-6.sgml b/doc/release-notes/release-6.sgml
index 0e193a9155b..73595d79f0b 100644
--- a/doc/release-notes/release-6.sgml
+++ b/doc/release-notes/release-6.sgml
@@ -63,7 +63,9 @@ This section gives an account of those changes in three categories:
 <sect1>Changes to existing directives<label id="modifieddirectives">
 <p>
 <descrip>
-	<p>There have been no directives changed.
+	<tag>ssl_engine</tag>
+	<p>OpenSSL 3.0.0 removes the Engine feature. This directive is
+	   only supported when Squid is built for older OpenSSL versions.
 
 </descrip>
 
@@ -111,7 +113,9 @@ This section gives an account of those changes in three categories:
 <sect1>Changes to existing options<label id="modifiedoptions">
 <p>
 <descrip>
-	<p>There have been no options changed.
+	<tag>--with-openssl</tag>
+	<p>OpenSSL features are now auto-enabled when OpenSSL 3.0.0
+	   or later is detected during build.
 
 </descrip>
 </p>

From cc0ab6017a451e3480738b0288fed09d36d1e1a2 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Sat, 21 May 2022 22:57:11 +1200
Subject: [PATCH 12/37] Revert auto-enable for now

---
 configure.ac | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

diff --git a/configure.ac b/configure.ac
index e52c385fd7b..2d65559ea93 100644
--- a/configure.ac
+++ b/configure.ac
@@ -1275,14 +1275,7 @@ AC_MSG_NOTICE([GnuTLS library support: ${with_gnutls:=auto} ${LIBGNUTLS_PATH} ${
 dnl User may specify OpenSSL is needed from a non-standard location
 SQUID_OPTIONAL_LIB(openssl,[OpenSSL],[LIBOPENSSL])
 AH_TEMPLATE(USE_OPENSSL,[OpenSSL support is available])
-AS_IF([test "x$with_openssl" != "xno"],[
-  SQUID_STATE_SAVE(squid_openssl3_state)
-  CPPFLAGS="$LIBOPENSSL_CFLAGS $CPPFLAGS"
-  LIBS="$LIBS $LIBOPENSSL_PATH"
-  PKG_CHECK_MODULES([LIBOPENSSL],[openssl >= 3],[with_openssl="yes"],[:])
-  SQUID_STATE_ROLLBACK(squid_openssl3_state)
-])
-## OpenSSL < 3 is default disable due to licensing issues on some OS
+## OpenSSL is default disable due to licensing issues on some OS
 if test "x$with_openssl" = "xyes"; then
   CPPFLAGS="$LIBOPENSSL_CFLAGS $CPPFLAGS"
   AC_CHECK_HEADERS( \

From fe02c2b5be996840086c47662777c8245e514ee2 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Sun, 22 May 2022 03:30:11 +1200
Subject: [PATCH 13/37] Fix DH/EC parameter loading

For EC the curve name is now auto-detected by libssl
from the values loaded.

The use of OSSL_KEYMGMT_SELECT_ALL cause errors
when irrevelant RSA related details are not found.
---
 src/security/ServerOptions.cc | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index bd6cdb3dcf0..49f7addd514 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -383,25 +383,25 @@ Security::ServerOptions::loadDhParams()
     const char *type = "DH";
     if (!eecdhCurve.isEmpty())
         type = "EC";
-    // XXX: use the eecdhCurve name when generating the EVP_KEY object. or at least verify it matches the loaded params.
 
-    if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, type, OSSL_KEYMGMT_SELECT_ALL, nullptr, nullptr)) {
+    if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, type, 0, nullptr, nullptr)) {
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
             if (OSSL_DECODER_from_fp(dctx, in) == 1) {
 
                 /* pkey is created with the decoded data from the bio */
                 Must(pkey);
                 parsedDhParams.resetWithoutLocking(pkey);
+                // TODO: verify that the loaded parameters match the value in eecdhCurve
 
             } else {
-                debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode DH parameters '" << dhParamsFile << "'");
+                debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode " << type << " parameters '" << dhParamsFile << "'");
             }
             fclose(in);
         }
         OSSL_DECODER_CTX_free(dctx);
 
     } else {
-        debugs(83, DBG_IMPORTANT, "WARNING: no suitable potential decoders found for DH parameters");
+        debugs(83, DBG_IMPORTANT, "WARNING: no suitable potential decoders found for " << type << " parameters");
         return;
     }
 #endif

From 6834979097282c82667aa49d788e5ffde86cd1d9 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <yadij@users.noreply.github.com>
Date: Sun, 29 May 2022 03:26:55 +1200
Subject: [PATCH 14/37] Update src/cf.data.pre

Applied to avoid arguments

Co-authored-by: Alex Rousskov <rousskov@measurement-factory.com>
---
 src/cf.data.pre | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/cf.data.pre b/src/cf.data.pre
index 034c8074f02..97b23a31dd4 100644
--- a/src/cf.data.pre
+++ b/src/cf.data.pre
@@ -3062,7 +3062,7 @@ DOC_START
 	The OpenSSL engine to use. You will need to set this if you
 	would like to use hardware SSL acceleration for example.
 
-	Note: OpenSSL 3.0 and newer do not provide Engine support.
+	Not supported in builds with OpenSSL v3 or newer.
 DOC_END
 
 NAME: sslproxy_session_ttl

From add184693ad3830ee04466d28bca013529270857 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Sat, 4 Jun 2022 21:49:16 +1200
Subject: [PATCH 15/37] Reviewer requested performance regression

---
 src/security/PeerOptions.cc | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/security/PeerOptions.cc b/src/security/PeerOptions.cc
index 8538f2c15c4..509d1f2404b 100644
--- a/src/security/PeerOptions.cc
+++ b/src/security/PeerOptions.cc
@@ -293,7 +293,7 @@ Security::PeerOptions::createClientContext(bool setOptions)
 /// set of options we can parse and what they map to
 static struct ssl_option {
     const char *name;
-    long value;
+    uint64_t value;
 
 } ssl_options[] = {
 
@@ -514,7 +514,8 @@ Security::PeerOptions::parseOptions()
 
 #if defined(SSL_OP_NO_SSLv2)
     // compliance with RFC 6176: Prohibiting Secure Sockets Layer (SSL) Version 2.0
-    op = op | SSL_OP_NO_SSLv2;
+    if (SSL_OP_NO_SSLv2)
+        op |= SSL_OP_NO_SSLv2;
 #endif
     parsedOptions = op;
 

From 55d159cc33a9291d64b9a3ad51d26e4c3372c2e2 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Wed, 8 Jun 2022 08:41:51 +1200
Subject: [PATCH 16/37] Reviewer requested type polish

---
 src/security/PeerOptions.cc | 6 +++---
 src/security/forward.h      | 4 ++--
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/src/security/PeerOptions.cc b/src/security/PeerOptions.cc
index 509d1f2404b..1607ce7bc46 100644
--- a/src/security/PeerOptions.cc
+++ b/src/security/PeerOptions.cc
@@ -293,7 +293,7 @@ Security::PeerOptions::createClientContext(bool setOptions)
 /// set of options we can parse and what they map to
 static struct ssl_option {
     const char *name;
-    uint64_t value;
+    Security::ParsedOptions value;
 
 } ssl_options[] = {
 
@@ -455,7 +455,7 @@ Security::PeerOptions::parseOptions()
 
 #if USE_OPENSSL
     ::Parser::Tokenizer tok(str);
-    long op = 0;
+    ParsedOptions op = 0;
 
     while (!tok.atEnd()) {
         enum {
@@ -472,7 +472,7 @@ Security::PeerOptions::parseOptions()
         static const CharacterSet optChars = CharacterSet("TLS-option", "_") + CharacterSet::ALPHA + CharacterSet::DIGIT;
         int64_t hex = 0;
         SBuf option;
-        long value = 0;
+        ParsedOptions value = 0;
 
         // Bug 4429: identify the full option name before determining text or numeric
         if (tok.prefix(option, optChars)) {
diff --git a/src/security/forward.h b/src/security/forward.h
index 461694a6c44..fa5ce33c958 100644
--- a/src/security/forward.h
+++ b/src/security/forward.h
@@ -185,11 +185,11 @@ class KeyData;
 class KeyLog;
 
 #if USE_OPENSSL
-typedef long ParsedOptions;
+typedef uint64_t ParsedOptions;
 #elif USE_GNUTLS
 typedef std::shared_ptr<struct gnutls_priority_st> ParsedOptions;
 #else
-class ParsedOptions {}; // we never parse/use TLS options in this case
+typedef uint64_t ParsedOptions;
 #endif
 
 /// bitmask representing configured http(s)_port `sslflags`

From b993bce01b624b01257e7017dde08aaedacf6971 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <yadij@users.noreply.github.com>
Date: Thu, 9 Jun 2022 04:41:42 +1200
Subject: [PATCH 17/37] Update src/security/ServerOptions.cc

Co-authored-by: Alex Rousskov <rousskov@measurement-factory.com>
---
 src/security/ServerOptions.cc | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 49f7addd514..8ffb8a89f45 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -380,9 +380,7 @@ Security::ServerOptions::loadDhParams()
 
 #else // OpenSSL 3.0+
     EVP_PKEY *pkey = nullptr;
-    const char *type = "DH";
-    if (!eecdhCurve.isEmpty())
-        type = "EC";
+    const auto type = eecdhCurve.isEmpty() ? "DH" : "EC";
 
     if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, type, 0, nullptr, nullptr)) {
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {

From 27bba6668c418a0b775a9b9b30cea7603ef4b40a Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Thu, 9 Jun 2022 15:07:01 +1200
Subject: [PATCH 18/37] log fopen() errors

---
 src/security/ServerOptions.cc | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 8ffb8a89f45..a3e43c003d5 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -10,6 +10,7 @@
 #include "anyp/PortCfg.h"
 #include "base/Packable.h"
 #include "cache_cf.h"
+#include "error/SysErrorDetail.h"
 #include "fatal.h"
 #include "globals.h"
 #include "security/ServerOptions.h"
@@ -358,9 +359,14 @@ Security::ServerOptions::loadDhParams()
 #if USE_OPENSSL
 #if OPENSSL_VERSION_MAJOR < 3
     DH *dhp = nullptr;
+    errno = 0;
     if (FILE *in = fopen(dhParamsFile.c_str(), "r")) {
         dhp = PEM_read_DHparams(in, nullptr, nullptr, nullptr);
         fclose(in);
+    } else {
+        const auto xerrno = errno;
+        debugs(83, DBG_IMPORTANT, "WARNING: Failed to open '" << dhParamsFile << "'" << ReportSysError(xerrno));
+        return;
     }
 
     if (!dhp) {
@@ -383,6 +389,7 @@ Security::ServerOptions::loadDhParams()
     const auto type = eecdhCurve.isEmpty() ? "DH" : "EC";
 
     if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, type, 0, nullptr, nullptr)) {
+        errno = 0;
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
             if (OSSL_DECODER_from_fp(dctx, in) == 1) {
 
@@ -395,6 +402,9 @@ Security::ServerOptions::loadDhParams()
                 debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode " << type << " parameters '" << dhParamsFile << "'");
             }
             fclose(in);
+        } else {
+            const auto xerrno = errno;
+            debugs(83, DBG_IMPORTANT, "WARNING: Failed to open '" << dhParamsFile << "'" << ReportSysError(xerrno));
         }
         OSSL_DECODER_CTX_free(dctx);
 

From 929cfba5986a57beb42970349d9ca56bbe49d81c Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Sat, 11 Jun 2022 01:09:26 +1200
Subject: [PATCH 19/37] Reviewer requested updates

---
 src/security/ServerOptions.cc | 27 +++++++++++++++++++--------
 1 file changed, 19 insertions(+), 8 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index a3e43c003d5..d501fe14e5b 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -385,31 +385,42 @@ Security::ServerOptions::loadDhParams()
     parsedDhParams.resetWithoutLocking(dhp);
 
 #else // OpenSSL 3.0+
-    EVP_PKEY *pkey = nullptr;
     const auto type = eecdhCurve.isEmpty() ? "DH" : "EC";
 
-    if (auto *dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, "PEM", nullptr, type, 0, nullptr, nullptr)) {
+    Ssl::ForgetErrors();
+    EVP_PKEY *rawPkey = nullptr;
+    if (auto *rawCtx = OSSL_DECODER_CTX_new_for_pkey(&rawPkey, "PEM", nullptr, type, 0, nullptr, nullptr)) {
+        std::unique_ptr<OSSL_DECODER_CTX, void(*)(OSSL_DECODER_CTX*)> dctx(rawCtx, [](OSSL_DECODER_CTX* ptr){OSSL_DECODER_CTX_free(ptr);});
+
+        assert(rawPkey);
+        Security::DhePointer pkey;
+        pkey.resetWithoutLocking(rawPkey);
+
+        if (OSSL_DECODER_CTX_get_num_decoders(dctx.get()) == 0) {
+            debugs(83, DBG_IMPORTANT, "WARNING: no suitable decoders found for " << type << " parameters" << Ssl::ReportAndForgetErrors);
+            return;
+        }
+
         errno = 0;
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
-            if (OSSL_DECODER_from_fp(dctx, in) == 1) {
+            if (OSSL_DECODER_from_fp(dctx.get(), in) == 1) {
 
                 /* pkey is created with the decoded data from the bio */
-                Must(pkey);
-                parsedDhParams.resetWithoutLocking(pkey);
+                assert(pkey);
+                parsedDhParams = pkey;
                 // TODO: verify that the loaded parameters match the value in eecdhCurve
 
             } else {
-                debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode " << type << " parameters '" << dhParamsFile << "'");
+                debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode " << type << " parameters '" << dhParamsFile << "'" << Ssl::ReportAndForgetErrors);
             }
             fclose(in);
         } else {
             const auto xerrno = errno;
             debugs(83, DBG_IMPORTANT, "WARNING: Failed to open '" << dhParamsFile << "'" << ReportSysError(xerrno));
         }
-        OSSL_DECODER_CTX_free(dctx);
 
     } else {
-        debugs(83, DBG_IMPORTANT, "WARNING: no suitable potential decoders found for " << type << " parameters");
+        debugs(83, DBG_IMPORTANT, "WARNING: unable to create decode context for " << type << " parameters" << Ssl::ReportAndForgetErrors);
         return;
     }
 #endif

From fd264d05d152a9fea1fe5e68c72ea1c50becee38 Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Sun, 12 Jun 2022 11:26:18 -0400
Subject: [PATCH 20/37] fixup: The branch code was asserting when decoding
 tls-dh

The related OpenSSL API is poorly documented and RAII-unfriendly. The
fixed code is based on OpenSSL code analysis (including a few
OSSL_DECODER_CTX_new_for_pkey() callers) and Squid tests. The current
version is one of the simplest ones I can think of that would still
allow a straightforward conversion to exceptions later.

If I misjudged the OpenSSL intent, then this code may eventually assert,
and we will need to make it more complex (and robust).
---
 src/security/ServerOptions.cc | 17 +++++++++--------
 1 file changed, 9 insertions(+), 8 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index d501fe14e5b..24e81cbc348 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -392,9 +392,12 @@ Security::ServerOptions::loadDhParams()
     if (auto *rawCtx = OSSL_DECODER_CTX_new_for_pkey(&rawPkey, "PEM", nullptr, type, 0, nullptr, nullptr)) {
         std::unique_ptr<OSSL_DECODER_CTX, void(*)(OSSL_DECODER_CTX*)> dctx(rawCtx, [](OSSL_DECODER_CTX* ptr){OSSL_DECODER_CTX_free(ptr);});
 
-        assert(rawPkey);
-        Security::DhePointer pkey;
-        pkey.resetWithoutLocking(rawPkey);
+        // OpenSSL documentation is vague on this, but OpenSSL code and our
+        // tests suggest that rawPkey remains nil here while rawCtx keeps
+        // rawPkey _address_ for use by the decoder (see OSSL_DECODER_from_fp()
+        // below). Thus, we must not move *rawPkey into a smart pointer until
+        // decoding is over. For cleanup code simplicity, we assert nil rawPkey.
+        assert(!rawPkey);
 
         if (OSSL_DECODER_CTX_get_num_decoders(dctx.get()) == 0) {
             debugs(83, DBG_IMPORTANT, "WARNING: no suitable decoders found for " << type << " parameters" << Ssl::ReportAndForgetErrors);
@@ -404,13 +407,11 @@ Security::ServerOptions::loadDhParams()
         errno = 0;
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
             if (OSSL_DECODER_from_fp(dctx.get(), in) == 1) {
-
-                /* pkey is created with the decoded data from the bio */
-                assert(pkey);
-                parsedDhParams = pkey;
+                assert(rawPkey);
+                parsedDhParams.resetWithoutLocking(rawPkey);
                 // TODO: verify that the loaded parameters match the value in eecdhCurve
-
             } else {
+                EVP_PKEY_free(rawPkey); // probably still nil, but just in case
                 debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode " << type << " parameters '" << dhParamsFile << "'" << Ssl::ReportAndForgetErrors);
             }
             fclose(in);

From 434a2386186c4e369bf476e2f36465021fa362b3 Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Sun, 12 Jun 2022 11:38:06 -0400
Subject: [PATCH 21/37] fixup: Do not reset errno before syscalls

We do not want to reset errno before fopen() because fopen() code resets
errno on failures.

OpenSSL approach to error handling requires an errno reset in callers,
but that reset is already handled by Ssl::ForgetErrors(), _and_ that
OpenSSL-specific requirement does not extend to system calls and such.
---
 src/security/ServerOptions.cc | 2 --
 1 file changed, 2 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 24e81cbc348..18bab599458 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -359,7 +359,6 @@ Security::ServerOptions::loadDhParams()
 #if USE_OPENSSL
 #if OPENSSL_VERSION_MAJOR < 3
     DH *dhp = nullptr;
-    errno = 0;
     if (FILE *in = fopen(dhParamsFile.c_str(), "r")) {
         dhp = PEM_read_DHparams(in, nullptr, nullptr, nullptr);
         fclose(in);
@@ -404,7 +403,6 @@ Security::ServerOptions::loadDhParams()
             return;
         }
 
-        errno = 0;
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
             if (OSSL_DECODER_from_fp(dctx.get(), in) == 1) {
                 assert(rawPkey);

From 9e9547d978bab7fa5a63c30a6d94c75fdba36d2c Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Sun, 12 Jun 2022 12:33:49 -0400
Subject: [PATCH 22/37] fixup: Avoid rawCtx pointer by adjusting dctx
 declaration
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The unusual (for the current Squid code) {braces} inside the
if-statement condition are required for the code to compile:

    ServerOptions.cc:393:34: error: expected initializer before ‘(’
    393 |     if (const DecoderContext dctx(...)) {
        |                                  ^

I suspect that, without them, (the beginning of) the condition is
interpreted as a function declaration.

This can be further simplified/improved by creating a C++-friendly
OSSL_DECODER_CTX_new_for_pkey() wrapper (that would return a smart ptr).
---
 src/security/ServerOptions.cc | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 18bab599458..00d79fc4a2a 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -388,8 +388,8 @@ Security::ServerOptions::loadDhParams()
 
     Ssl::ForgetErrors();
     EVP_PKEY *rawPkey = nullptr;
-    if (auto *rawCtx = OSSL_DECODER_CTX_new_for_pkey(&rawPkey, "PEM", nullptr, type, 0, nullptr, nullptr)) {
-        std::unique_ptr<OSSL_DECODER_CTX, void(*)(OSSL_DECODER_CTX*)> dctx(rawCtx, [](OSSL_DECODER_CTX* ptr){OSSL_DECODER_CTX_free(ptr);});
+    using DecoderContext = std::unique_ptr<OSSL_DECODER_CTX, HardFun<void, OSSL_DECODER_CTX*, &OSSL_DECODER_CTX_free> >;
+    if (const DecoderContext dctx{OSSL_DECODER_CTX_new_for_pkey(&rawPkey, "PEM", nullptr, type, 0, nullptr, nullptr)}) {
 
         // OpenSSL documentation is vague on this, but OpenSSL code and our
         // tests suggest that rawPkey remains nil here while rawCtx keeps

From 5d2e6169da021f18de90d59f173a44afe11108e3 Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Sun, 12 Jun 2022 13:17:44 -0400
Subject: [PATCH 23/37] Restored key parameters validation parity with OpenSSL
 v1 builds

We are still not validating that the ECDH curve name matches the one in
the key parameters file and that, as OpenSSL puts it, "the private and
public components have the correct mathematical relationship".
---
 src/security/ServerOptions.cc | 24 ++++++++++++++++++++++--
 1 file changed, 22 insertions(+), 2 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 00d79fc4a2a..debf290d66e 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -356,6 +356,10 @@ Security::ServerOptions::loadDhParams()
     if (dhParamsFile.isEmpty())
         return;
 
+    // TODO: After loading and validating parameters, also validate that "the
+    // public and private components have the correct mathematical
+    // relationship". See EVP_PKEY_check().
+
 #if USE_OPENSSL
 #if OPENSSL_VERSION_MAJOR < 3
     DH *dhp = nullptr;
@@ -406,8 +410,24 @@ Security::ServerOptions::loadDhParams()
         if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
             if (OSSL_DECODER_from_fp(dctx.get(), in) == 1) {
                 assert(rawPkey);
-                parsedDhParams.resetWithoutLocking(rawPkey);
-                // TODO: verify that the loaded parameters match the value in eecdhCurve
+                const Security::DhePointer pkey(rawPkey);
+
+                if (const Ssl::EVP_PKEY_CTX_Pointer pkeyCtx{EVP_PKEY_CTX_new_from_pkey(nullptr, pkey.get(), nullptr)}) {
+                    switch (EVP_PKEY_param_check(pkeyCtx.get())) {
+                    case 1: // success
+                        parsedDhParams = pkey;
+                        break;
+                    case -2:
+                        debugs(83, DBG_PARSE_NOTE(2), "WARNING: OpenSSL does not support " << type << " parameters check: " << dhParamsFile << Ssl::ReportAndForgetErrors);
+                        break;
+                    default:
+                        debugs(83, DBG_IMPORTANT, "ERROR: Failed to verify " << type << " parameters in " << dhParamsFile << Ssl::ReportAndForgetErrors);
+                        break;
+                    }
+                } else {
+                    // TODO: Reduce error reporting code duplication.
+                    debugs(83, DBG_IMPORTANT, "ERROR: Cannot check " << type << " parameters in " << dhParamsFile << Ssl::ReportAndForgetErrors);
+                }
             } else {
                 EVP_PKEY_free(rawPkey); // probably still nil, but just in case
                 debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode " << type << " parameters '" << dhParamsFile << "'" << Ssl::ReportAndForgetErrors);

From ee3948cfe3c8716f6130623d9c379a88df582362 Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Sun, 12 Jun 2022 17:39:08 -0400
Subject: [PATCH 24/37] fixup: Restored tls-dh=curve:... support parity with
 OpenSSL v1

The branch attempted to use parameters (as in tls-dh=curve:parameters)
to set the curve, but that attempt looked odd and did not work:

* We were supplying the same parsedDhParams object to the same TLS
  context twice, via SSL_CTX_set_tmp_ecdh() and SSL_CTX_set_tmp_dh().

* The SSL_CTX_set_tmp_ecdh() call mysteriously failed in my curve tests:
  error:0A000122:SSL routines::missing parameters

Also, OpenSSL v3 docs consider SSL_CTX_set_tmp_ecdh() macro deprecated!

This commit contains a simpler solution that preserves OpenSSL v1 code
flow while avoiding deprecated calls. It should not be misinterpreted as
an endorsement of the existing (unchanged) code; I would not be
surprised if we lack full ECDH parameters support.

I also restored the "set DH parameters into the server context" comment
location. While GnuTLS does not set them (yet?), the configuration
applies to all supported TLS libraries and the comment position
highlights the problem with (missing) GnuTLS code. At any rate, moving
that comment is not related to what this branch is about AFAICT.
---
 src/security/ServerOptions.cc | 19 ++++++++++---------
 1 file changed, 10 insertions(+), 9 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index debf290d66e..1f6c865dfa1 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -524,18 +524,16 @@ Security::ServerOptions::updateContextEecdh(Security::ContextPointer &ctx)
 
 #if USE_OPENSSL && OPENSSL_VERSION_NUMBER >= 0x0090800fL && !defined(OPENSSL_NO_ECDH)
 
-    // OpenSSL 3.0+ generates the key in loadDhParams()
-#if OPENSSL_VERSION_MAJOR < 3
+        Ssl::ForgetErrors();
+
         int nid = OBJ_sn2nid(eecdhCurve.c_str());
         if (!nid) {
             debugs(83, DBG_CRITICAL, "ERROR: Unknown EECDH curve '" << eecdhCurve << "'");
             return;
         }
 
+#if OPENSSL_VERSION_MAJOR < 3
         auto ecdh = EC_KEY_new_by_curve_name(nid);
-#else
-        auto ecdh = parsedDhParams.get();
-#endif
         if (!ecdh) {
             const auto x = ERR_get_error();
             debugs(83, DBG_CRITICAL, "ERROR: Unable to configure Ephemeral ECDH: " << Security::ErrorString(x));
@@ -546,12 +544,15 @@ Security::ServerOptions::updateContextEecdh(Security::ContextPointer &ctx)
             const auto x = ERR_get_error();
             debugs(83, DBG_CRITICAL, "ERROR: Unable to set Ephemeral ECDH: " << Security::ErrorString(x));
         }
-#if OPENSSL_VERSION_MAJOR < 3
         EC_KEY_free(ecdh);
+
 #else
-        return;
+        // TODO: Support multiple group names via SSL_CTX_set1_groups_list().
+        if (!SSL_CTX_set1_groups(ctx.get(), &nid, 1)) {
+            debugs(83, DBG_CRITICAL, "ERROR: Unable to set Ephemeral ECDH: " << Ssl::ReportAndForgetErrors);
+            return;
+        }
 #endif
-
 #else
         debugs(83, DBG_CRITICAL, "ERROR: EECDH is not available in this build." <<
                " Please link against OpenSSL>=0.9.8 and ensure OPENSSL_NO_ECDH is not set.");
@@ -559,8 +560,8 @@ Security::ServerOptions::updateContextEecdh(Security::ContextPointer &ctx)
 #endif
     }
 
-#if USE_OPENSSL
     // set DH parameters into the server context
+#if USE_OPENSSL
     if (parsedDhParams) {
         SSL_CTX_set_tmp_dh(ctx.get(), parsedDhParams.get());
     }

From dee21be48a73fa1155511df262a64d2bc5d31167 Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Sun, 12 Jun 2022 17:52:19 -0400
Subject: [PATCH 25/37] fixup: Minor polishing and diff reduction for recently
 changed code

---
 src/security/ServerOptions.cc | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index 1f6c865dfa1..ddd7fcc08ee 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -385,6 +385,7 @@ Security::ServerOptions::loadDhParams()
             dhp = nullptr;
         }
     }
+
     parsedDhParams.resetWithoutLocking(dhp);
 
 #else // OpenSSL 3.0+
@@ -403,12 +404,12 @@ Security::ServerOptions::loadDhParams()
         assert(!rawPkey);
 
         if (OSSL_DECODER_CTX_get_num_decoders(dctx.get()) == 0) {
-            debugs(83, DBG_IMPORTANT, "WARNING: no suitable decoders found for " << type << " parameters" << Ssl::ReportAndForgetErrors);
+            debugs(83, DBG_IMPORTANT, "WARNING: No suitable decoders found for " << type << " parameters" << Ssl::ReportAndForgetErrors);
             return;
         }
 
-        if (auto *in = fopen(dhParamsFile.c_str(), "r")) {
-            if (OSSL_DECODER_from_fp(dctx.get(), in) == 1) {
+        if (const auto in = fopen(dhParamsFile.c_str(), "r")) {
+            if (OSSL_DECODER_from_fp(dctx.get(), in)) {
                 assert(rawPkey);
                 const Security::DhePointer pkey(rawPkey);
 
@@ -429,8 +430,8 @@ Security::ServerOptions::loadDhParams()
                     debugs(83, DBG_IMPORTANT, "ERROR: Cannot check " << type << " parameters in " << dhParamsFile << Ssl::ReportAndForgetErrors);
                 }
             } else {
-                EVP_PKEY_free(rawPkey); // probably still nil, but just in case
                 debugs(83, DBG_IMPORTANT, "WARNING: Failed to decode " << type << " parameters '" << dhParamsFile << "'" << Ssl::ReportAndForgetErrors);
+                EVP_PKEY_free(rawPkey); // probably still nil, but just in case
             }
             fclose(in);
         } else {
@@ -439,7 +440,7 @@ Security::ServerOptions::loadDhParams()
         }
 
     } else {
-        debugs(83, DBG_IMPORTANT, "WARNING: unable to create decode context for " << type << " parameters" << Ssl::ReportAndForgetErrors);
+        debugs(83, DBG_IMPORTANT, "WARNING: Unable to create decode context for " << type << " parameters" << Ssl::ReportAndForgetErrors);
         return;
     }
 #endif

From ed96b5655feb650e082fd50de334123f2e2ef483 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <yadij@users.noreply.github.com>
Date: Fri, 17 Jun 2022 08:43:35 +1200
Subject: [PATCH 26/37] Try to support ENGINE's

---
 src/ssl/support.cc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ssl/support.cc b/src/ssl/support.cc
index 59446359129..e4284713025 100644
--- a/src/ssl/support.cc
+++ b/src/ssl/support.cc
@@ -658,7 +658,7 @@ Ssl::Initialize(void)
     SQUID_OPENSSL_init_ssl();
 
     if (::Config.SSL.ssl_engine) {
-#if !defined(OPENSSL_NO_ENGINE) && OPENSSL_VERSION_MAJOR < 3
+#if !defined(OPENSSL_NO_ENGINE)
         ENGINE_load_builtin_engines();
         ENGINE *e;
         if (!(e = ENGINE_by_id(::Config.SSL.ssl_engine)))

From 743ea80a14ceaca0acb1761124da9959458c2e0c Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Sat, 18 Jun 2022 05:44:46 +1200
Subject: [PATCH 27/37] Restore TODO that has not been resolved yet

---
 src/security/ServerOptions.cc | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/security/ServerOptions.cc b/src/security/ServerOptions.cc
index ddd7fcc08ee..b2f55d6028a 100644
--- a/src/security/ServerOptions.cc
+++ b/src/security/ServerOptions.cc
@@ -412,6 +412,7 @@ Security::ServerOptions::loadDhParams()
             if (OSSL_DECODER_from_fp(dctx.get(), in)) {
                 assert(rawPkey);
                 const Security::DhePointer pkey(rawPkey);
+                // TODO: verify that the loaded parameters match the curve named in eecdhCurve
 
                 if (const Ssl::EVP_PKEY_CTX_Pointer pkeyCtx{EVP_PKEY_CTX_new_from_pkey(nullptr, pkey.get(), nullptr)}) {
                     switch (EVP_PKEY_param_check(pkeyCtx.get())) {

From 955b86f3375bfb7a48d25ab8c975635f9c34a794 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Wed, 22 Jun 2022 21:17:01 +1200
Subject: [PATCH 28/37] Revert ParsedOptions type in default case

---
 src/security/forward.h | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/security/forward.h b/src/security/forward.h
index fa5ce33c958..f35574181c4 100644
--- a/src/security/forward.h
+++ b/src/security/forward.h
@@ -189,7 +189,7 @@ typedef uint64_t ParsedOptions;
 #elif USE_GNUTLS
 typedef std::shared_ptr<struct gnutls_priority_st> ParsedOptions;
 #else
-typedef uint64_t ParsedOptions;
+class ParsedOptions {}; // we never parse/use TLS options in this case
 #endif
 
 /// bitmask representing configured http(s)_port `sslflags`

From aef550c5938ae378a033c8608bc3dfd5c64927d3 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Wed, 22 Jun 2022 22:10:08 +1200
Subject: [PATCH 29/37] Distinguish unknown vs unsupported OpenSSL options

---
 src/security/PeerOptions.cc | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/src/security/PeerOptions.cc b/src/security/PeerOptions.cc
index 1607ce7bc46..257ad28d27e 100644
--- a/src/security/PeerOptions.cc
+++ b/src/security/PeerOptions.cc
@@ -473,6 +473,7 @@ Security::PeerOptions::parseOptions()
         int64_t hex = 0;
         SBuf option;
         ParsedOptions value = 0;
+        bool found = false;
 
         // Bug 4429: identify the full option name before determining text or numeric
         if (tok.prefix(option, optChars)) {
@@ -481,14 +482,16 @@ Security::PeerOptions::parseOptions()
             for (struct ssl_option *opttmp = ssl_options; opttmp->name; ++opttmp) {
                 if (option.cmp(opttmp->name) == 0) {
                     value = opttmp->value;
+                    found = true;
                     break;
                 }
             }
 
             // Special case.. hex specification
             ::Parser::Tokenizer tmp(option);
-            if (!value && tmp.int64(hex, 16, false) && tmp.atEnd()) {
+            if (!found && tmp.int64(hex, 16, false) && tmp.atEnd()) {
                 value = hex;
+                found = true;
             }
         }
 
@@ -502,7 +505,7 @@ Security::PeerOptions::parseOptions()
                 break;
             }
         } else {
-            debugs(83, DBG_PARSE_NOTE(1), "ERROR: Unknown TLS option " << option);
+            debugs(83, DBG_PARSE_NOTE(DBG_IMPORTANT), "ERROR: " << (found?"Unsupported":"Unknown") << " TLS option " << option);
         }
 
         static const CharacterSet delims("TLS-option-delim",":,");

From 53e34046abd5ae66bdbd79e749582cdc75d17700 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Wed, 22 Jun 2022 22:12:30 +1200
Subject: [PATCH 30/37] Revert a2f0e1b

---
 src/ssl/support.cc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ssl/support.cc b/src/ssl/support.cc
index e4284713025..59446359129 100644
--- a/src/ssl/support.cc
+++ b/src/ssl/support.cc
@@ -658,7 +658,7 @@ Ssl::Initialize(void)
     SQUID_OPENSSL_init_ssl();
 
     if (::Config.SSL.ssl_engine) {
-#if !defined(OPENSSL_NO_ENGINE)
+#if !defined(OPENSSL_NO_ENGINE) && OPENSSL_VERSION_MAJOR < 3
         ENGINE_load_builtin_engines();
         ENGINE *e;
         if (!(e = ENGINE_by_id(::Config.SSL.ssl_engine)))

From 754c2d1dc92dcc2d9153c38678b77a17148cf573 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <yadij@users.noreply.github.com>
Date: Mon, 4 Jul 2022 18:31:52 +1200
Subject: [PATCH 31/37] Update src/ssl/gadgets.cc

Co-authored-by: Alex Rousskov <rousskov@measurement-factory.com>
---
 src/ssl/gadgets.cc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ssl/gadgets.cc b/src/ssl/gadgets.cc
index 3aec4e58837..7132ed47f9a 100644
--- a/src/ssl/gadgets.cc
+++ b/src/ssl/gadgets.cc
@@ -417,7 +417,7 @@ mimicExtensions(Security::CertPointer & cert, Security::CertPointer const &mimic
 #if OPENSSL_VERSION_MAJOR < 3
     const auto rsaPkey = bool(EVP_PKEY_get0_RSA(certKey.get()));
 #else
-    const auto rsaPkey = EVP_PKEY_is_a(certKey.get(), "RSA");
+    const auto rsaPkey = EVP_PKEY_is_a(certKey.get(), "RSA") == 1;
 #endif
 
     int added = 0;

From 599d44adfa8249103acc435e68385cb3e9dd5c78 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <yadij@users.noreply.github.com>
Date: Mon, 4 Jul 2022 18:33:35 +1200
Subject: [PATCH 32/37] Update src/ssl/gadgets.cc

Co-authored-by: Alex Rousskov <rousskov@measurement-factory.com>
---
 src/ssl/gadgets.cc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ssl/gadgets.cc b/src/ssl/gadgets.cc
index 7132ed47f9a..432d9cf1373 100644
--- a/src/ssl/gadgets.cc
+++ b/src/ssl/gadgets.cc
@@ -415,7 +415,7 @@ mimicExtensions(Security::CertPointer & cert, Security::CertPointer const &mimic
     // internally represented by EVP_PKEY pair, but GnuTLS uses distinct types.
     const Security::PrivateKeyPointer certKey(X509_get_pubkey(mimicCert.get()));
 #if OPENSSL_VERSION_MAJOR < 3
-    const auto rsaPkey = bool(EVP_PKEY_get0_RSA(certKey.get()));
+    const auto rsaPkey = EVP_PKEY_get0_RSA(certKey.get()) != nullptr;
 #else
     const auto rsaPkey = EVP_PKEY_is_a(certKey.get(), "RSA") == 1;
 #endif

From 6781d415b9c5dbb0d8e86ccfee8055ed9f813421 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <yadij@users.noreply.github.com>
Date: Mon, 4 Jul 2022 18:59:48 +1200
Subject: [PATCH 33/37] Update release-6.sgml

---
 doc/release-notes/release-6.sgml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/release-notes/release-6.sgml b/doc/release-notes/release-6.sgml
index 73595d79f0b..1b24e3b52da 100644
--- a/doc/release-notes/release-6.sgml
+++ b/doc/release-notes/release-6.sgml
@@ -64,7 +64,7 @@ This section gives an account of those changes in three categories:
 <p>
 <descrip>
 	<tag>ssl_engine</tag>
-	<p>OpenSSL 3.0.0 removes the Engine feature. This directive is
+	<p>OpenSSL 3.0.0 deprecates the Engine feature. This directive is
 	   only supported when Squid is built for older OpenSSL versions.
 
 </descrip>

From cb99ce7707f0b9b9a8bbaf094cb35c277d33e9a9 Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Mon, 4 Jul 2022 17:49:18 -0400
Subject: [PATCH 34/37] fixup: Avoid returning raw pointers from object
 creators

We have changed Ssl::createSslPrivateKey() API for other reasons, so we
should polish it to return a smart pointer. Ideally, it should also be
polished to never return nil, but that may require caller adjustments.
---
 src/ssl/gadgets.cc | 11 +++--------
 1 file changed, 3 insertions(+), 8 deletions(-)

diff --git a/src/ssl/gadgets.cc b/src/ssl/gadgets.cc
index 432d9cf1373..fab53b00cfa 100644
--- a/src/ssl/gadgets.cc
+++ b/src/ssl/gadgets.cc
@@ -48,7 +48,7 @@ ThrowErrors(const char * const problem, const int savedErrno, const SourceLocati
                         where);
 }
 
-static EVP_PKEY *
+static Security::PrivateKeyPointer
 CreateRsaPrivateKey()
 {
     Ssl::EVP_PKEY_CTX_Pointer rsa(EVP_PKEY_CTX_new_id(EVP_PKEY_RSA, nullptr));
@@ -67,7 +67,7 @@ CreateRsaPrivateKey()
     if (EVP_PKEY_keygen(rsa.get(), &pkey) <= 0)
         return nullptr;
 
-    return pkey;
+    return Security::PrivateKeyPointer(pkey);
 }
 
 /**
@@ -587,13 +587,8 @@ static bool buildCertificate(Security::CertPointer & cert, Ssl::CertificatePrope
 
 static bool generateFakeSslCertificate(Security::CertPointer & certToStore, Security::PrivateKeyPointer & pkeyToStore, Ssl::CertificateProperties const &properties,  Ssl::BIGNUM_Pointer const &serial)
 {
-    Security::PrivateKeyPointer pkey;
     // Use signing certificates private key as generated certificate private key
-    if (properties.signWithPkey.get())
-        pkey.resetAndLock(properties.signWithPkey.get());
-    else // if not exist generate one
-        pkey.resetWithoutLocking(CreateRsaPrivateKey());
-
+    const auto pkey = properties.signWithPkey ? properties.signWithPkey : CreateRsaPrivateKey();
     if (!pkey)
         return false;
 

From 7badc4cfd9d0c5e2ca3e8a340c34dbddc5fa72f9 Mon Sep 17 00:00:00 2001
From: Alex Rousskov <rousskov@measurement-factory.com>
Date: Tue, 5 Jul 2022 09:45:10 -0400
Subject: [PATCH 35/37] Warn admins using ssl_engine about that feature
 deprecation

Also avoid setting up a "Your OpenSSL has no SSL engine support" trap
for admins that want to use ssl_engine, get that FATAL message, and
naturally try to upgrade to OpenSSL v3 to gain that support (only to
find out that Squid itself does not support ssl_engine with OpenSSL v3).

Here are abridged cache.log messages for all three possible problematic
ssl_engine configurations:

OpenSSL v1- (default OpenSSL configuration):

    WARNING: Support for ssl_engine is deprecated in Squids built with
    OpenSSL v1 (like this Squid). It is removed in Squids built with
    OpenSSL v3+.

OpenSSL v1- (OpenSSL configured without Engines support):

    WARNING: Support for ssl_engine is deprecated in Squids built with
    OpenSSL v1 (like this Squid). It is removed in Squids built with
    OpenSSL v3+.

    FATAL: Cannot use ssl_engine in Squid built with OpenSSL
    configured to disable SSL engine support

OpenSSL v3+ (any OpenSSL configuration):

    FATAL: Cannot use ssl_engine in Squid built with OpenSSL v3+
---
 src/ssl/support.cc | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/src/ssl/support.cc b/src/ssl/support.cc
index 59446359129..8e6dda270ef 100644
--- a/src/ssl/support.cc
+++ b/src/ssl/support.cc
@@ -658,7 +658,11 @@ Ssl::Initialize(void)
     SQUID_OPENSSL_init_ssl();
 
     if (::Config.SSL.ssl_engine) {
-#if !defined(OPENSSL_NO_ENGINE) && OPENSSL_VERSION_MAJOR < 3
+#if OPENSSL_VERSION_MAJOR < 3
+    debugs(83, DBG_PARSE_NOTE(DBG_IMPORTANT), "WARNING: Support for ssl_engine is deprecated " <<
+           "in Squids built with OpenSSL v1 (like this Squid). " <<
+           "It is removed in Squids built with OpenSSL v3+.");
+#if !defined(OPENSSL_NO_ENGINE)
         ENGINE_load_builtin_engines();
         ENGINE *e;
         if (!(e = ENGINE_by_id(::Config.SSL.ssl_engine)))
@@ -668,8 +672,12 @@ Ssl::Initialize(void)
             const auto ssl_error = ERR_get_error();
             fatalf("Failed to initialise SSL engine: %s\n", Security::ErrorString(ssl_error));
         }
-#else
-        fatalf("Your OpenSSL has no SSL engine support\n");
+#else /* OPENSSL_NO_ENGINE */
+        throw TextException("Cannot use ssl_engine in Squid built with OpenSSL configured to disable SSL engine support", Here());
+#endif
+
+#else /* OPENSSL_VERSION_MAJOR */
+        throw TextException("Cannot use ssl_engine in Squid built with OpenSSL v3+", Here());
 #endif
     }
 

From 940efa19de8565406bab013f4bae7d5c14868077 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <yadij@users.noreply.github.com>
Date: Sat, 16 Jul 2022 23:19:34 +1200
Subject: [PATCH 36/37] Update doc/release-notes/release-6.sgml

Co-authored-by: Alex Rousskov <rousskov@measurement-factory.com>
---
 doc/release-notes/release-6.sgml | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/doc/release-notes/release-6.sgml b/doc/release-notes/release-6.sgml
index 1b24e3b52da..8faa0159f06 100644
--- a/doc/release-notes/release-6.sgml
+++ b/doc/release-notes/release-6.sgml
@@ -113,9 +113,7 @@ This section gives an account of those changes in three categories:
 <sect1>Changes to existing options<label id="modifiedoptions">
 <p>
 <descrip>
-	<tag>--with-openssl</tag>
-	<p>OpenSSL features are now auto-enabled when OpenSSL 3.0.0
-	   or later is detected during build.
+	<p>There have been no options changed.
 
 </descrip>
 </p>

From d4a42e7ecfe4f517704031f6e7827ccb21512d08 Mon Sep 17 00:00:00 2001
From: Amos Jeffries <amosjeffries@squid-cache.org>
Date: Sat, 16 Jul 2022 23:23:55 +1200
Subject: [PATCH 37/37] Switch touched typedef to using syntax

---
 src/security/forward.h | 14 +++++++-------
 src/ssl/gadgets.h      |  2 +-
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/src/security/forward.h b/src/security/forward.h
index f35574181c4..997c38ec473 100644
--- a/src/security/forward.h
+++ b/src/security/forward.h
@@ -102,11 +102,11 @@ typedef std::list<Security::CrlPointer> CertRevokeList;
 
 #if USE_OPENSSL
 CtoCpp1(EVP_PKEY_free, EVP_PKEY *)
-typedef Security::LockingPointer<EVP_PKEY, EVP_PKEY_free_cpp, HardFun<int, EVP_PKEY *, EVP_PKEY_up_ref> > PrivateKeyPointer;
+using PrivateKeyPointer = Security::LockingPointer<EVP_PKEY, EVP_PKEY_free_cpp, HardFun<int, EVP_PKEY *, EVP_PKEY_up_ref>>;
 #elif USE_GNUTLS
-typedef std::shared_ptr<struct gnutls_x509_privkey_int> PrivateKeyPointer;
+using PrivateKeyPointer = std::shared_ptr<struct gnutls_x509_privkey_int>;
 #else
-typedef std::shared_ptr<void> PrivateKeyPointer;
+using PrivateKeyPointer = std::shared_ptr<void>;
 #endif
 
 #if USE_OPENSSL
@@ -114,12 +114,12 @@ typedef std::shared_ptr<void> PrivateKeyPointer;
 CtoCpp1(DH_free, DH *);
 typedef Security::LockingPointer<DH, DH_free_cpp, HardFun<int, DH *, DH_up_ref> > DhePointer;
 #else
-typedef PrivateKeyPointer DhePointer;
+using DhePointer = PrivateKeyPointer;
 #endif
 #elif USE_GNUTLS
-typedef void *DhePointer;
+using DhePointer = void *;
 #else
-typedef void *DhePointer;
+using DhePointer = void *;
 #endif
 
 class EncryptorAnswer;
@@ -185,7 +185,7 @@ class KeyData;
 class KeyLog;
 
 #if USE_OPENSSL
-typedef uint64_t ParsedOptions;
+using ParsedOptions = uint64_t;
 #elif USE_GNUTLS
 typedef std::shared_ptr<struct gnutls_priority_st> ParsedOptions;
 #else
diff --git a/src/ssl/gadgets.h b/src/ssl/gadgets.h
index 7dab85ab76d..5be795744de 100644
--- a/src/ssl/gadgets.h
+++ b/src/ssl/gadgets.h
@@ -58,7 +58,7 @@ typedef std::unique_ptr<TXT_DB, HardFun<void, TXT_DB*, &TXT_DB_free>> TXT_DB_Poi
 
 typedef std::unique_ptr<X509_NAME, HardFun<void, X509_NAME*, &X509_NAME_free>> X509_NAME_Pointer;
 
-typedef std::unique_ptr<EVP_PKEY_CTX, HardFun<void, EVP_PKEY_CTX*, &EVP_PKEY_CTX_free>> EVP_PKEY_CTX_Pointer;
+using EVP_PKEY_CTX_Pointer = std::unique_ptr<EVP_PKEY_CTX, HardFun<void, EVP_PKEY_CTX*, &EVP_PKEY_CTX_free>>;
 
 typedef std::unique_ptr<X509_REQ, HardFun<void, X509_REQ*, &X509_REQ_free>> X509_REQ_Pointer;