Support key check in EVP interface

A new method is added to EVP_PKEY_METH as: int (*check) (EVP_PKEY_CTX *ctx); and to EVP_PKEY_ASN1_METHOD as: int (*pkey_check) (EVP_PKEY_CTX *ctx); This is used to check the validity of a specific key. The order of calls is: EVP_PKEY_check -> pmeth.check -> ameth.pkey_check. Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/4337)
author: Paul Yang <yang.yang@baishancloud.com> 2017-09-04 22:02:59 +0800
committer: Richard Levitte <levitte@openssl.org> 2017-09-13 20:38:14 +0200
commit: 2aee35d37d5161a2efc4d57953a4a7b234b6ea4c (patch)
tree: 396369a86192ce41ecda126ad46fb0bbc8eae593 /crypto/rsa
parent: c061daaaed5ef05cd8cf0b8159d717be02fd451d (diff)
1 files changed, 9 insertions, 1 deletions
diff --git a/crypto/rsa/rsa_ameth.c b/crypto/rsa/rsa_ameth.c
index 42138ce9eb..97a37ba47d 100644
--- a/crypto/rsa/rsa_ameth.c
+++ b/crypto/rsa/rsa_ameth.c
@@ -984,6 +984,11 @@ static int rsa_cms_encrypt(CMS_RecipientInfo *ri)
 }
 #endif
 
+static int rsa_pkey_check(const EVP_PKEY *pkey)
+{
+    return RSA_check_key_ex(pkey->pkey.rsa, NULL);
+}
+
 const EVP_PKEY_ASN1_METHOD rsa_asn1_meths[2] = {
     {
      EVP_PKEY_RSA,
@@ -1015,7 +1020,8 @@ const EVP_PKEY_ASN1_METHOD rsa_asn1_meths[2] = {
      old_rsa_priv_encode,
      rsa_item_verify,
      rsa_item_sign,
-     rsa_sig_info_set
+     rsa_sig_info_set,
+     rsa_pkey_check
     },
 
     {
@@ -1053,4 +1059,6 @@ const EVP_PKEY_ASN1_METHOD rsa_pss_asn1_meth = {
      0, 0,
      rsa_item_verify,
      rsa_item_sign,
+     0,
+     rsa_pkey_check
 };
author	Paul Yang <yang.yang@baishancloud.com>	2017-09-04 22:02:59 +0800
committer	Richard Levitte <levitte@openssl.org>	2017-09-13 20:38:14 +0200
commit	2aee35d37d5161a2efc4d57953a4a7b234b6ea4c (patch)
tree	396369a86192ce41ecda126ad46fb0bbc8eae593 /crypto/rsa
parent	c061daaaed5ef05cd8cf0b8159d717be02fd451d (diff)