Re: [Qemu-devel] [PATCH v4 3/7] crypto: introduce new module for TLS x50

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH v4 3/7] crypto: introduce new module for TLS x50

From:	Eric Blake
Subject:	Re: [Qemu-devel] [PATCH v4 3/7] crypto: introduce new module for TLS x509 credentials
Date:	Wed, 26 Aug 2015 09:07:45 -0600
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.1.0

On 08/24/2015 08:14 AM, Daniel P. Berrange wrote:
> Introduce a QCryptoTLSCredsX509 class which is used to
> manage x509 certificate TLS credentials. This will be
> the preferred credential type offering strong security
> characteristics
> 
> Example CLI configuration:
> 
>  $QEMU -object tls-creds-x509,id=tls0,endpoint=server,\
>                dir=/path/to/creds/dir,verify-peer=yes
> 
> The 'id' value in the -object args will be used to associate the
> credentials with the network services. For eample, when the VNC

s/eample/example/

> server is later converted it would use
> 
>  $QEMU -object tls-creds-x509,id=tls0,.... \
>        -vnc 127.0.0.1:1,tls-creds=tls0
> 
> Signed-off-by: Daniel P. Berrange <address@hidden>
> ---

> +/* #define QCRYPTO_DEBUG */
> +
> +#ifdef QCRYPTO_DEBUG
> +#define DPRINTF(fmt, ...) do { fprintf(stderr, fmt, ## __VA_ARGS__); } while 
> (0)
> +#else
> +#define DPRINTF(fmt, ...) do { } while (0)
> +#endif

/me I said I wouldn't point it out further... Must Resist...

Otherwise looks okay.

-- 
Eric Blake   eblake redhat com    +1-919-301-3266
Libvirt virtualization library http://libvirt.org

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH v4 0/7] Extract TLS handling code from VNC server, Daniel P. Berrange, 2015/08/24
- [Qemu-devel] [PATCH v4 2/7] crypto: introduce new module for TLS anonymous credentials, Daniel P. Berrange, 2015/08/24
  - Re: [Qemu-devel] [PATCH v4 2/7] crypto: introduce new module for TLS anonymous credentials, Eric Blake, 2015/08/24
    - Re: [Qemu-devel] [PATCH v4 2/7] crypto: introduce new module for TLS anonymous credentials, Daniel P. Berrange, 2015/08/26
- [Qemu-devel] [PATCH v4 1/7] crypto: introduce new base module for TLS credentials, Daniel P. Berrange, 2015/08/24
  - Re: [Qemu-devel] [PATCH v4 1/7] crypto: introduce new base module for TLS credentials, Eric Blake, 2015/08/24
    - Re: [Qemu-devel] [PATCH v4 1/7] crypto: introduce new base module for TLS credentials, Daniel P. Berrange, 2015/08/26
- [Qemu-devel] [PATCH v4 3/7] crypto: introduce new module for TLS x509 credentials, Daniel P. Berrange, 2015/08/24
  - Re: [Qemu-devel] [PATCH v4 3/7] crypto: introduce new module for TLS x509 credentials, Eric Blake <=
- [Qemu-devel] [PATCH v4 7/7] ui: convert VNC server to use QCryptoTLSSession, Daniel P. Berrange, 2015/08/24
- [Qemu-devel] [PATCH v4 6/7] ui: fix return type for VNC I/O functions to be ssize_t, Daniel P. Berrange, 2015/08/24
- [Qemu-devel] [PATCH v4 5/7] crypto: introduce new module for handling TLS sessions, Daniel P. Berrange, 2015/08/24
- [Qemu-devel] [PATCH v4 4/7] crypto: add sanity checking of TLS x509 credentials, Daniel P. Berrange, 2015/08/24

Prev by Date: [Qemu-devel] [PATCH] configure: qemu-ga: report MSI install support in summary
Next by Date: Re: [Qemu-devel] [PATCH v2] i386: keep cpu_model field in MachineState uptodate
Previous by thread: [Qemu-devel] [PATCH v4 3/7] crypto: introduce new module for TLS x509 credentials
Next by thread: [Qemu-devel] [PATCH v4 7/7] ui: convert VNC server to use QCryptoTLSSession
Index(es):
- Date
- Thread