Widen SSL_PRIVATE_KEY_METHOD types to include the curve name. This makes custom private keys and EVP_PKEYs symmetric again. There is no longer a requirement that the caller pre-filter the configured signing prefs. Also switch EVP_PKEY_RSA to NID_rsaEncryption. These are identical, but if some key types are to be NIDs, we should make them all NIDs. Change-Id: I82ea41c27a3c57f4c4401ffe1ccad406783e4c64 Reviewed-on: https://boringssl-review.googlesource.com/8785 Reviewed-by: David Benjamin <davidben@google.com>

commit: 0c0b7e1e1f35c23ecaed10fb262403f1b3cf5882 [log] [tgz]
author: David Benjamin <davidben@google.com> Thu Jul 14 13:47:55 2016 -0400
committer: David Benjamin <davidben@google.com> Fri Jul 15 18:17:32 2016 +0000
tree: 3828c8d92630b11d94e6f35498b368afc997e8c8
parent: ca3d545d7f34d67c8fb05265a0f1cf7f88076776 [diff] [blame]
diff --git a/ssl/internal.h b/ssl/internal.h
index be7bde2..06148f1 100644
--- a/ssl/internal.h
+++ b/ssl/internal.h

@@ -468,6 +468,10 @@
  * configured and zero otherwise. */
 int ssl_has_private_key(const SSL *ssl);
 
+/* ssl_is_ecdsa_key_type returns one if |type| is an ECDSA key type and zero
+ * otherwise. */
+int ssl_is_ecdsa_key_type(int type);
+
 /* ssl_private_key_* call the corresponding function on the
  * |SSL_PRIVATE_KEY_METHOD| for |ssl|, if configured. Otherwise, they implement
  * the operation with |EVP_PKEY|. */
commit	0c0b7e1e1f35c23ecaed10fb262403f1b3cf5882	[log] [tgz]
author	David Benjamin <davidben@google.com>	Thu Jul 14 13:47:55 2016 -0400
committer	David Benjamin <davidben@google.com>	Fri Jul 15 18:17:32 2016 +0000
tree	3828c8d92630b11d94e6f35498b368afc997e8c8
parent	ca3d545d7f34d67c8fb05265a0f1cf7f88076776 [diff] [blame]