3 files changed, 54 insertions, 1 deletions
diff --git a/crypto/asymmetric_keys/Makefile b/crypto/asymmetric_keys/Makefile
index 5ed46eecb299..8dcdf0cdb261 100644
--- a/crypto/asymmetric_keys/Makefile
+++ b/crypto/asymmetric_keys/Makefile
@@ -4,6 +4,6 @@
 obj-$(CONFIG_ASYMMETRIC_KEY_TYPE) += asymmetric_keys.o
-asymmetric_keys-y := asymmetric_type.o
+asymmetric_keys-y := asymmetric_type.o signature.o
 obj-$(CONFIG_ASYMMETRIC_PUBLIC_KEY_SUBTYPE) += public_key.o
diff --git a/crypto/asymmetric_keys/signature.c b/crypto/asymmetric_keys/signature.c
new file mode 100644
index 000000000000..50b3f880b4ff
--- /dev/null
+++ b/crypto/asymmetric_keys/signature.c
@@ -0,0 +1,49 @@
+/* Signature verification with an asymmetric key
+ *
+ * See Documentation/security/asymmetric-keys.txt
+ *
+ * Copyright (C) 2012 Red Hat, Inc. All Rights Reserved.
+ * Written by David Howells (dhowells@redhat.com)
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU General Public Licence
+ * as published by the Free Software Foundation; either version
+ * 2 of the Licence, or (at your option) any later version.
+ */
+#include <keys/asymmetric-subtype.h>
+#include <linux/module.h>
+#include <linux/err.h>
+#include <crypto/public_key.h>
+#include "asymmetric_keys.h"
+/**
+ * verify_signature - Initiate the use of an asymmetric key to verify a signature
+ * @key: The asymmetric key to verify against
+ * @sig: The signature to check
+ *
+ * Returns 0 if successful or else an error.
+ */
+int verify_signature(const struct key *key,
+                     const struct public_key_signature *sig)
+{
+        const struct asymmetric_key_subtype *subtype;
+        int ret;
+        pr_devel("==>%s()\n", __func__);
+        if (key->type != &key_type_asymmetric)
+                return -EINVAL;
+        subtype = asymmetric_key_subtype(key);
+        if (!subtype ||
+            !key->payload.data)
+                return -EINVAL;
+        if (!subtype->verify_signature)
+                return -ENOTSUPP;
+        ret = subtype->verify_signature(key, sig);
+        pr_devel("<==%s() = %d\n", __func__, ret);
+        return ret;
+}
+EXPORT_SYMBOL_GPL(verify_signature);
diff --git a/include/crypto/public_key.h b/include/crypto/public_key.h
index 4b8b6c16eac6..f5b0224c9967 100644
--- a/include/crypto/public_key.h
+++ b/include/crypto/public_key.h
@@ -101,4 +101,8 @@ struct public_key_signature {
        };
 };
+struct key;
+extern int verify_signature(const struct key *key,
+                            const struct public_key_signature *sig);
 #endif /* _LINUX_PUBLIC_KEY_H */

diff --git a/crypto/asymmetric_keys/Makefile b/crypto/asymmetric_keys/Makefile index 5ed46eecb299..8dcdf0cdb261 100644 --- a/crypto/asymmetric_keys/Makefile +++ b/crypto/asymmetric_keys/Makefile
@@ -4,6 +4,6 @@
4		4
5	obj-$(CONFIG_ASYMMETRIC_KEY_TYPE) += asymmetric_keys.o	5	obj-$(CONFIG_ASYMMETRIC_KEY_TYPE) += asymmetric_keys.o
6		6
7	asymmetric_keys-y := asymmetric_type.o	7	asymmetric_keys-y := asymmetric_type.o signature.o
8		8
9	obj-$(CONFIG_ASYMMETRIC_PUBLIC_KEY_SUBTYPE) += public_key.o	9	obj-$(CONFIG_ASYMMETRIC_PUBLIC_KEY_SUBTYPE) += public_key.o


diff --git a/crypto/asymmetric_keys/signature.c b/crypto/asymmetric_keys/signature.c new file mode 100644 index 000000000000..50b3f880b4ff --- /dev/null +++ b/crypto/asymmetric_keys/signature.c
@@ -0,0 +1,49 @@
		1	/* Signature verification with an asymmetric key
		2	*
		3	* See Documentation/security/asymmetric-keys.txt
		4	*
		5	* Copyright (C) 2012 Red Hat, Inc. All Rights Reserved.
		6	* Written by David Howells (dhowells@redhat.com)
		7	*
		8	* This program is free software; you can redistribute it and/or
		9	* modify it under the terms of the GNU General Public Licence
		10	* as published by the Free Software Foundation; either version
		11	* 2 of the Licence, or (at your option) any later version.
		12	*/
		13
		14	#include <keys/asymmetric-subtype.h>
		15	#include <linux/module.h>
		16	#include <linux/err.h>
		17	#include <crypto/public_key.h>
		18	#include "asymmetric_keys.h"
		19
		20	/**
		21	* verify_signature - Initiate the use of an asymmetric key to verify a signature
		22	* @key: The asymmetric key to verify against
		23	* @sig: The signature to check
		24	*
		25	* Returns 0 if successful or else an error.
		26	*/
		27	int verify_signature(const struct key *key,
		28	const struct public_key_signature *sig)
		29	{
		30	const struct asymmetric_key_subtype *subtype;
		31	int ret;
		32
		33	pr_devel("==>%s()\n", __func__);
		34
		35	if (key->type != &key_type_asymmetric)
		36	return -EINVAL;
		37	subtype = asymmetric_key_subtype(key);
		38	if (!subtype \|\|
		39	!key->payload.data)
		40	return -EINVAL;
		41	if (!subtype->verify_signature)
		42	return -ENOTSUPP;
		43
		44	ret = subtype->verify_signature(key, sig);
		45
		46	pr_devel("<==%s() = %d\n", __func__, ret);
		47	return ret;
		48	}
		49	EXPORT_SYMBOL_GPL(verify_signature);


diff --git a/include/crypto/public_key.h b/include/crypto/public_key.h index 4b8b6c16eac6..f5b0224c9967 100644 --- a/include/crypto/public_key.h +++ b/include/crypto/public_key.h
@@ -101,4 +101,8 @@ struct public_key_signature {
101	};	101	};
102	};	102	};
103		103
		104	struct key;
		105	extern int verify_signature(const struct key *key,
		106	const struct public_key_signature *sig);
		107
104	#endif /* _LINUX_PUBLIC_KEY_H */	108	#endif /* _LINUX_PUBLIC_KEY_H */