mbox

[PULL,v1,0/5] Support for securely passing secrets to QEMU

Message ID 1450457600-19865-1-git-send-email-berrange@redhat.com
State New
Headers show

Pull-request

git://github.com/berrange/qemu tags/pull-qcrypto-secrets-base-2015-12-18-1

Message

Daniel P. Berrangé Dec. 18, 2015, 4:53 p.m. UTC 
The following changes since commit 18f49881cf8359e89396aac12f5d3cf3f8a632ba:

  configure: Fix shell syntax to placate OpenBSD's pdksh (2015-12-18 13:32:49 +0000)

are available in the git repository at:

  git://github.com/berrange/qemu tags/pull-qcrypto-secrets-base-2015-12-18-1

for you to fetch changes up to 1d7b5b4afdcd76e24ec3678d5418b29d4ff06ad9:

  crypto: add support for loading encrypted x509 keys (2015-12-18 16:25:08 +0000)

----------------------------------------------------------------
Merge QCryptoSecret object support

----------------------------------------------------------------
Daniel P. Berrange (5):
      util: add base64 decoding function
      qemu-char: convert to use error checked base64 decode
      qga: convert to use error checked base64 decode
      crypto: add QCryptoSecret object class for password/key handling
      crypto: add support for loading encrypted x509 keys

 crypto/Makefile.objs          |   1 +
 crypto/secret.c               | 513 ++++++++++++++++++++++++++++++++++++++++++
 crypto/tlscredsx509.c         |  48 ++++
 include/crypto/secret.h       | 148 ++++++++++++
 include/crypto/tlscredsx509.h |   1 +
 include/qemu/base64.h         |  58 +++++
 qapi-schema.json              |   2 -
 qapi/crypto.json              |  14 ++
 qemu-char.c                   |   8 +-
 qemu-options.hx               |  85 ++++++-
 qga/commands-posix.c          |  11 +-
 qga/commands-win32.c          |  11 +-
 qga/commands.c                |  13 +-
 qmp-commands.hx               |   2 -
 tests/.gitignore              |   2 +
 tests/Makefile                |   5 +
 tests/test-base64.c           | 109 +++++++++
 tests/test-crypto-secret.c    | 452 +++++++++++++++++++++++++++++++++++++
 util/Makefile.objs            |   1 +
 util/base64.c                 |  60 +++++
 20 files changed, 1533 insertions(+), 11 deletions(-)
 create mode 100644 crypto/secret.c
 create mode 100644 include/crypto/secret.h
 create mode 100644 include/qemu/base64.h
 create mode 100644 tests/test-base64.c
 create mode 100644 tests/test-crypto-secret.c
 create mode 100644 util/base64.c

Comments

Peter Maydell Dec. 18, 2015, 5:42 p.m. UTC | #1 
On 18 December 2015 at 16:53, Daniel P. Berrange <berrange@redhat.com> wrote:
> The following changes since commit 18f49881cf8359e89396aac12f5d3cf3f8a632ba:
>
>   configure: Fix shell syntax to placate OpenBSD's pdksh (2015-12-18 13:32:49 +0000)
>
> are available in the git repository at:
>
>   git://github.com/berrange/qemu tags/pull-qcrypto-secrets-base-2015-12-18-1
>
> for you to fetch changes up to 1d7b5b4afdcd76e24ec3678d5418b29d4ff06ad9:
>
>   crypto: add support for loading encrypted x509 keys (2015-12-18 16:25:08 +0000)
>
> ----------------------------------------------------------------
> Merge QCryptoSecret object support
>
> ----------------------------------------------------------------
> Daniel P. Berrange (5):
>       util: add base64 decoding function
>       qemu-char: convert to use error checked base64 decode
>       qga: convert to use error checked base64 decode
>       crypto: add QCryptoSecret object class for password/key handling
>       crypto: add support for loading encrypted x509 keys

Applied, thanks.

-- PMM