Replace SSLPrivateKey::Hash with a TLS-1.3-compatible scheme.
This finally switches from the old hash parameter bits to
SSL_SIGN_*. I haven't added RSA-PSS yet in this change, that will happen
in a follow-up. It also keeps the prehash bits for now, though that
too may need to change, going by how Android's RSA-PSS API looks
like.
Bug: 630151
Cq-Include-Trybots: master.tryserver.chromium.android:android_cronet_tester;master.tryserver.chromium.mac:ios-simulator-cronet
Change-Id: I93e06673611b41ae9970017aff235b94b0528f00
Reviewed-on: https://chromium-review.googlesource.com/752345
Commit-Queue: David Benjamin <[email protected]>
Reviewed-by: Elly Fong-Jones <[email protected]>
Reviewed-by: Maksim Ivanov <[email protected]>
Reviewed-by: Steven Valdez <[email protected]>
Cr-Commit-Position: refs/heads/master@{#514606}diff --git a/net/socket/ssl_client_socket_impl.h b/net/socket/ssl_client_socket_impl.h
index 458012e..96604807 100644
--- a/net/socket/ssl_client_socket_impl.h
+++ b/net/socket/ssl_client_socket_impl.h
@@ -200,12 +200,12 @@
bool IsRenegotiationAllowed() const;
// Callbacks for operations with the private key.
- ssl_private_key_result_t PrivateKeySignDigestCallback(uint8_t* out,
- size_t* out_len,
- size_t max_out,
- const EVP_MD* md,
- const uint8_t* in,
- size_t in_len);
+ ssl_private_key_result_t PrivateKeySignCallback(uint8_t* out,
+ size_t* out_len,
+ size_t max_out,
+ uint16_t algorithm,
+ const uint8_t* in,
+ size_t in_len);
ssl_private_key_result_t PrivateKeyCompleteCallback(uint8_t* out,
size_t* out_len,
size_t max_out);
