Internal change
PiperOrigin-RevId: 386283667
diff --git a/quic/core/crypto/tls_connection.cc b/quic/core/crypto/tls_connection.cc
index 3a1e652..beb81fc 100644
--- a/quic/core/crypto/tls_connection.cc
+++ b/quic/core/crypto/tls_connection.cc
@@ -100,6 +100,11 @@
const int early_data_enabled = *ssl_config_.early_data_enabled ? 1 : 0;
SSL_set_early_data_enabled(ssl(), early_data_enabled);
}
+ if (ssl_config_.signing_algorithm_prefs.has_value()) {
+ SSL_set_signing_algorithm_prefs(
+ ssl(), ssl_config_.signing_algorithm_prefs->data(),
+ ssl_config_.signing_algorithm_prefs->size());
+ }
}
// static
diff --git a/quic/core/quic_types.h b/quic/core/quic_types.h
index 253ffcb..1b8fc47 100644
--- a/quic/core/quic_types.h
+++ b/quic/core/quic_types.h
@@ -838,6 +838,9 @@
struct QUIC_NO_EXPORT QuicSSLConfig {
// Whether TLS early data should be enabled. If not set, default to enabled.
absl::optional<bool> early_data_enabled;
+ // If set, used to configure the SSL object with
+ // SSL_set_signing_algorithm_prefs.
+ absl::optional<absl::InlinedVector<uint16_t, 4>> signing_algorithm_prefs;
};
} // namespace quic