| commit | 85bcbc789eb65b54548a507b747ffffe6175b404 | |
| author | Daniel P. Berrange <berrange@redhat.com> | |
| Fri, 13 Mar 2015 17:39:26 +0000 (13 17:39 +0000) | ||
| committer | Daniel P. Berrange <berrange@redhat.com> | |
| Tue, 15 Sep 2015 14:05:06 +0000 (15 15:05 +0100) | ||
| tree | ccdf189d6bef5fcd14ee3712037944e6d5df7e6c | treesnapshot (tar.gz zip) |
| parent | e00adf6c3edf8dbbe7eb60c94e24fe2158e8342f | commitdiff |
crypto: introduce new module for TLS x509 credentials
Introduce a QCryptoTLSCredsX509 class which is used to
manage x509 certificate TLS credentials. This will be
the preferred credential type offering strong security
characteristics
Example CLI configuration:
$QEMU -object tls-creds-x509,id=tls0,endpoint=server,\
dir=/path/to/creds/dir,verify-peer=yes
The 'id' value in the -object args will be used to associate the
credentials with the network services. For example, when the VNC
server is later converted it would use
$QEMU -object tls-creds-x509,id=tls0,.... \
-vnc 127.0.0.1:1,tls-creds=tls0
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
Reviewed-by: Eric Blake <eblake@redhat.com>
Introduce a QCryptoTLSCredsX509 class which is used to
manage x509 certificate TLS credentials. This will be
the preferred credential type offering strong security
characteristics
Example CLI configuration:
$QEMU -object tls-creds-x509,id=tls0,endpoint=server,\
dir=/path/to/creds/dir,verify-peer=yes
The 'id' value in the -object args will be used to associate the
credentials with the network services. For example, when the VNC
server is later converted it would use
$QEMU -object tls-creds-x509,id=tls0,.... \
-vnc 127.0.0.1:1,tls-creds=tls0
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
Reviewed-by: Eric Blake <eblake@redhat.com>
| crypto/Makefile.objs | diffblobblamehistory | |
| crypto/tlscredsx509.c | [new file with mode: 0644] | blob |
| include/crypto/tlscredsx509.h | [new file with mode: 0644] | blob |
| qemu-options.hx | diffblobblamehistory | |
| trace-events | diffblobblamehistory |