Daniel P. Berrange 1d7b5b4afd crypto: add support for loading encrypted x509 keys ... Make use of the QCryptoSecret object to support loading of encrypted x509 keys. The optional 'passwordid' parameter to the tls-creds-x509 object type, provides the ID of a secret object instance that holds the decryption password for the PEM file. # printf "123456" > mypasswd.txt # $QEMU \ -object secret,id=sec0,filename=mypasswd.txt \ -object tls-creds-x509,passwordid=sec0,id=creds0,\ dir=/home/berrange/.pki/qemu,endpoint=server \ -vnc :1,tls-creds=creds0 This requires QEMU to be linked to GNUTLS >= 3.1.11. If GNUTLS is too old an error will be reported if an attempt is made to pass a decryption password. Reviewed-by: Eric Blake <eblake@redhat.com> Signed-off-by: Daniel P. Berrange <berrange@redhat.com>		2015-12-18 16:25:08 +00:00
..
aes.h	crypto: move built-in AES implementation into crypto/	2015-07-07 12:04:13 +02:00
cipher.h	crypto: introduce generic cipher API & built-in implementation	2015-07-08 13:11:01 +02:00
desrfb.h	crypto: move built-in D3DES implementation into crypto/	2015-07-07 12:04:31 +02:00
hash.h	crypto: introduce new module for computing hash digests	2015-07-07 12:04:07 +02:00
init.h	crypto: introduce new module for computing hash digests	2015-07-07 12:04:07 +02:00
secret.h	crypto: add QCryptoSecret object class for password/key handling	2015-12-18 16:25:08 +00:00
tlscreds.h	crypto: introduce new base module for TLS credentials	2015-09-15 14:47:37 +01:00
tlscredsanon.h	crypto: introduce new module for TLS anonymous credentials	2015-09-15 15:00:20 +01:00
tlscredsx509.h	crypto: add support for loading encrypted x509 keys	2015-12-18 16:25:08 +00:00
tlssession.h	crypto: introduce new module for handling TLS sessions	2015-09-15 15:07:43 +01:00