Add encrypted file support
[petitboot] / lib / security / gpg.h
index fb418bb23957c5128b82c68d5f95c1197225714e..6efc3d27f96e84b409448ab8ae73f3e366b46587 100644 (file)
@@ -23,6 +23,7 @@
 enum {
        PB_LOCKDOWN_NONE        = 0,
        PB_LOCKDOWN_SIGN        = 1,
+       PB_LOCKDOWN_DECRYPT     = 2,
 };
 
 #if defined(HAVE_LIBGPGME)
@@ -37,6 +38,9 @@ int verify_file_signature(const char *plaintext_filename,
        const char *signature_filename, FILE *authorized_signatures_handle,
        const char *keyring_path);
 
+int decrypt_file(const char * filename,
+       FILE * authorized_signatures_handle, const char * keyring_path);
+
 int gpg_validate_boot_files(struct boot_task *boot_task);
 
 void gpg_validate_boot_files_cleanup(struct boot_task *boot_task);
@@ -59,6 +63,13 @@ int verify_file_signature(const char *plaintext_filename __attribute__((unused))
        return -1;
 }
 
+int decrypt_file(const char * filename __attribute__((unused)),
+       FILE * authorized_signatures_handle __attribute__((unused)),
+       const char * keyring_path __attribute__((unused)))
+{
+       return -1;
+}
+
 int gpg_validate_boot_files(struct boot_task *boot_task __attribute__((unused)))
 {
        return 0;