Support Ed25519 in TLS. This only works at TLS 1.2 and above as, before TLS 1.2, there is no way to advertise support for Ed25519 or negotiate the correct signature algorithm. Add tests for this accordingly. For now, this is disabled by default on the verifying side but may be enabled per SSL_CTX. Notably, projects like Chromium which use an external verifier may need changes elsewhere before they can enable it. (On the signing side, we can assume that if the caller gave us an Ed25519 certificate, they mean for us to use it.) BUG=187 Change-Id: Id25b0a677dcbe205ddd26d8dbba11c04bb520756 Reviewed-on: https://boringssl-review.googlesource.com/14450 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>

commit: 69522117a6a16a568512821d18394c30aa4e6de6 [log] [tgz]
author: David Benjamin <davidben@google.com> Tue Mar 28 15:38:29 2017 -0500
committer: Adam Langley <agl@google.com> Thu Apr 06 15:30:17 2017 +0000
tree: 6111e4244bff90a1df35dab3d445f9df26dc85c6
parent: 0aef1686dea574045984bb2adf9bc0e3d905ad75 [diff] [blame]
diff --git a/ssl/test/runner/common.go b/ssl/test/runner/common.go
index e11e8c7..e9c1334 100644
--- a/ssl/test/runner/common.go
+++ b/ssl/test/runner/common.go

@@ -1326,6 +1326,11 @@
 	// RenegotiationCertificate, if not nil, is the certificate to use on
 	// renegotiation handshakes.
 	RenegotiationCertificate *Certificate
+
+	// UseLegacySigningAlgorithm, if non-zero, is the signature algorithm
+	// to use when signing in TLS 1.1 and earlier where algorithms are not
+	// negotiated.
+	UseLegacySigningAlgorithm signatureAlgorithm
 }
 
 func (c *Config) serverInit() {
commit	69522117a6a16a568512821d18394c30aa4e6de6	[log] [tgz]
author	David Benjamin <davidben@google.com>	Tue Mar 28 15:38:29 2017 -0500
committer	Adam Langley <agl@google.com>	Thu Apr 06 15:30:17 2017 +0000
tree	6111e4244bff90a1df35dab3d445f9df26dc85c6
parent	0aef1686dea574045984bb2adf9bc0e3d905ad75 [diff] [blame]