libceph: Create a new key type "ceph".

This allows us to use existence of the key type as a feature test, from userspace. Signed-off-by: Tommi Virtanen <tommi.virtanen@dreamhost.com> Signed-off-by: Sage Weil <sage@newdream.net>
author: Tommi Virtanen <tommi.virtanen@dreamhost.com> 2011-03-28 17:59:38 -0400
committer: Sage Weil <sage@newdream.net> 2011-03-29 15:11:24 -0400
commit: 4b2a58abd1e17c0ee53c8dded879e015917cca67 (patch)
tree: 585a02b8e3e36f7e6069d43000355e75aba097d3 /net/ceph/crypto.c
parent: e2c3d29b4295c3eec18294bc34f0c99a7b9ae413 (diff)
1 files changed, 62 insertions, 0 deletions
diff --git a/net/ceph/crypto.c b/net/ceph/crypto.c
index 75f0893fa11f..5a8009c9e0cd 100644
--- a/net/ceph/crypto.c
+++ b/net/ceph/crypto.c
@@ -5,7 +5,9 @@
 #include <linux/scatterlist.h>
 #include <linux/slab.h>
 #include <crypto/hash.h>
+#include <linux/key-type.h>
+#include <keys/ceph-type.h>
 #include <linux/ceph/decode.h>
 #include "crypto.h"
@@ -421,3 +423,63 @@ int ceph_encrypt2(struct ceph_crypto_key *secret, void *dst, size_t *dst_len,
                return -EINVAL;
        }
 }
+int ceph_key_instantiate(struct key *key, const void *data, size_t datalen)
+{
+        struct ceph_crypto_key *ckey;
+        int ret;
+        void *p;
+        ret = -EINVAL;
+        if (datalen <= 0 || datalen > 32767 || !data)
+                goto err;
+        ret = key_payload_reserve(key, datalen);
+        if (ret < 0)
+                goto err;
+        ret = -ENOMEM;
+        ckey = kmalloc(sizeof(*ckey), GFP_KERNEL);
+        if (!ckey)
+                goto err;
+        /* TODO ceph_crypto_key_decode should really take const input */
+        p = (void*)data;
+        ret = ceph_crypto_key_decode(ckey, &p, (char*)data+datalen);
+        if (ret < 0)
+                goto err_ckey;
+        key->payload.data = ckey;
+        return 0;
+err_ckey:
+        kfree(ckey);
+err:
+        return ret;
+}
+int ceph_key_match(const struct key *key, const void *description)
+{
+        return strcmp(key->description, description) == 0;
+}
+void ceph_key_destroy(struct key *key) {
+        struct ceph_crypto_key *ckey = key->payload.data;
+        ceph_crypto_key_destroy(ckey);
+}
+struct key_type key_type_ceph = {
+        .name           = "ceph",
+        .instantiate    = ceph_key_instantiate,
+        .match          = ceph_key_match,
+        .destroy        = ceph_key_destroy,
+};
+int ceph_crypto_init(void) {
+        return register_key_type(&key_type_ceph);
+}
+void ceph_crypto_shutdown(void) {
+        unregister_key_type(&key_type_ceph);
+}
author	Tommi Virtanen <tommi.virtanen@dreamhost.com>	2011-03-28 17:59:38 -0400
committer	Sage Weil <sage@newdream.net>	2011-03-29 15:11:24 -0400
commit	4b2a58abd1e17c0ee53c8dded879e015917cca67 (patch)
tree	585a02b8e3e36f7e6069d43000355e75aba097d3 /net/ceph/crypto.c
parent	e2c3d29b4295c3eec18294bc34f0c99a7b9ae413 (diff)

diff --git a/net/ceph/crypto.c b/net/ceph/crypto.c index 75f0893fa11f..5a8009c9e0cd 100644 --- a/net/ceph/crypto.c +++ b/net/ceph/crypto.c
@@ -5,7 +5,9 @@
5	#include <linux/scatterlist.h>	5	#include <linux/scatterlist.h>
6	#include <linux/slab.h>	6	#include <linux/slab.h>
7	#include <crypto/hash.h>	7	#include <crypto/hash.h>
		8	#include <linux/key-type.h>
8		9
		10	#include <keys/ceph-type.h>
9	#include <linux/ceph/decode.h>	11	#include <linux/ceph/decode.h>
10	#include "crypto.h"	12	#include "crypto.h"
11		13
@@ -421,3 +423,63 @@ int ceph_encrypt2(struct ceph_crypto_key secret, void dst, size_t *dst_len,
421	return -EINVAL;	423	return -EINVAL;
422	}	424	}
423	}	425	}
		426
		427	int ceph_key_instantiate(struct key key, const void data, size_t datalen)
		428	{
		429	struct ceph_crypto_key *ckey;
		430	int ret;
		431	void *p;
		432
		433	ret = -EINVAL;
		434	if (datalen <= 0 \|\| datalen > 32767 \|\| !data)
		435	goto err;
		436
		437	ret = key_payload_reserve(key, datalen);
		438	if (ret < 0)
		439	goto err;
		440
		441	ret = -ENOMEM;
		442	ckey = kmalloc(sizeof(*ckey), GFP_KERNEL);
		443	if (!ckey)
		444	goto err;
		445
		446	/* TODO ceph_crypto_key_decode should really take const input */
		447	p = (void*)data;
		448	ret = ceph_crypto_key_decode(ckey, &p, (char*)data+datalen);
		449	if (ret < 0)
		450	goto err_ckey;
		451
		452	key->payload.data = ckey;
		453	return 0;
		454
		455	err_ckey:
		456	kfree(ckey);
		457	err:
		458	return ret;
		459	}
		460
		461	int ceph_key_match(const struct key key, const void description)
		462	{
		463	return strcmp(key->description, description) == 0;
		464	}
		465
		466	void ceph_key_destroy(struct key *key) {
		467	struct ceph_crypto_key *ckey = key->payload.data;
		468
		469	ceph_crypto_key_destroy(ckey);
		470	}
		471
		472	struct key_type key_type_ceph = {
		473	.name = "ceph",
		474	.instantiate = ceph_key_instantiate,
		475	.match = ceph_key_match,
		476	.destroy = ceph_key_destroy,
		477	};
		478
		479	int ceph_crypto_init(void) {
		480	return register_key_type(&key_type_ceph);
		481	}
		482
		483	void ceph_crypto_shutdown(void) {
		484	unregister_key_type(&key_type_ceph);
		485	}