backports: add signature verification code

Uh, this was awful. Because the crypto/ things are completely impossible to backport, I've actually implemented this by using mbedtls and embedding the relevant functions it has... The mbedtls code is taken from mbedtls version 2.6.0 and only minimally modified (mostly to remove <string.h> and similar). Signed-off-by: Johannes Berg <johannes.berg@intel.com>
author: Johannes Berg <johannes.berg@intel.com> 2017-10-12 14:10:08 +0200
committer: Johannes Berg <johannes.berg@intel.com> 2017-10-13 10:57:59 +0200
commit: 988e2af4b7a0c1bc70188674cfde2bf8b2838bd7 (patch)
tree: 6cc10692587c0a92cb02d89e19573723051808f0 /backport/backport-include/keys/system_keyring.h
parent: f82274f97829d7f9e11a9793546ba88b084e1199 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/backport/backport-include/keys/system_keyring.h b/backport/backport-include/keys/system_keyring.h
new file mode 100644
index 00000000..00d2bfff
--- /dev/null
+++ b/backport/backport-include/keys/system_keyring.h
@@ -0,0 +1,10 @@
+#ifndef __BP_SYSTEM_KEYRING_H
+#define __BP_SYSTEM_KEYRING_H
+#ifndef CPTCFG_BPAUTO_BUILD_SYSTEM_DATA_VERIFICATION
+#include_next <keys/system_keyring.h>
+#else
+#include <linux/key.h>
+
+#define is_hash_blacklisted(...)	0
+#endif /* CPTCFG_BPAUTO_BUILD_SYSTEM_DATA_VERIFICATION */
+#endif /* __BP_SYSTEM_KEYRING_H */
author	Johannes Berg <johannes.berg@intel.com>	2017-10-12 14:10:08 +0200
committer	Johannes Berg <johannes.berg@intel.com>	2017-10-13 10:57:59 +0200
commit	988e2af4b7a0c1bc70188674cfde2bf8b2838bd7 (patch)
tree	6cc10692587c0a92cb02d89e19573723051808f0 /backport/backport-include/keys/system_keyring.h
parent	f82274f97829d7f9e11a9793546ba88b084e1199 (diff)