1a090187dSDaniel P. Berrange /* 2a090187dSDaniel P. Berrange * QEMU crypto TLS credential support 3a090187dSDaniel P. Berrange * 4a090187dSDaniel P. Berrange * Copyright (c) 2015 Red Hat, Inc. 5a090187dSDaniel P. Berrange * 6a090187dSDaniel P. Berrange * This library is free software; you can redistribute it and/or 7a090187dSDaniel P. Berrange * modify it under the terms of the GNU Lesser General Public 8a090187dSDaniel P. Berrange * License as published by the Free Software Foundation; either 9a090187dSDaniel P. Berrange * version 2 of the License, or (at your option) any later version. 10a090187dSDaniel P. Berrange * 11a090187dSDaniel P. Berrange * This library is distributed in the hope that it will be useful, 12a090187dSDaniel P. Berrange * but WITHOUT ANY WARRANTY; without even the implied warranty of 13a090187dSDaniel P. Berrange * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 14a090187dSDaniel P. Berrange * Lesser General Public License for more details. 15a090187dSDaniel P. Berrange * 16a090187dSDaniel P. Berrange * You should have received a copy of the GNU Lesser General Public 17a090187dSDaniel P. Berrange * License along with this library; if not, see <http://www.gnu.org/licenses/>. 18a090187dSDaniel P. Berrange * 19a090187dSDaniel P. Berrange */ 20a090187dSDaniel P. Berrange 21*121d0712SMarkus Armbruster #ifndef QCRYPTO_TLSCREDS_H 22*121d0712SMarkus Armbruster #define QCRYPTO_TLSCREDS_H 23a090187dSDaniel P. Berrange 24a090187dSDaniel P. Berrange #include "qom/object.h" 25a090187dSDaniel P. Berrange 26a090187dSDaniel P. Berrange #ifdef CONFIG_GNUTLS 27a090187dSDaniel P. Berrange #include <gnutls/gnutls.h> 28a090187dSDaniel P. Berrange #endif 29a090187dSDaniel P. Berrange 30a090187dSDaniel P. Berrange #define TYPE_QCRYPTO_TLS_CREDS "tls-creds" 31a090187dSDaniel P. Berrange #define QCRYPTO_TLS_CREDS(obj) \ 32a090187dSDaniel P. Berrange OBJECT_CHECK(QCryptoTLSCreds, (obj), TYPE_QCRYPTO_TLS_CREDS) 33a090187dSDaniel P. Berrange 34a090187dSDaniel P. Berrange typedef struct QCryptoTLSCreds QCryptoTLSCreds; 35a090187dSDaniel P. Berrange typedef struct QCryptoTLSCredsClass QCryptoTLSCredsClass; 36a090187dSDaniel P. Berrange 37a090187dSDaniel P. Berrange #define QCRYPTO_TLS_CREDS_DH_PARAMS "dh-params.pem" 38a090187dSDaniel P. Berrange 39a090187dSDaniel P. Berrange 40a090187dSDaniel P. Berrange /** 41a090187dSDaniel P. Berrange * QCryptoTLSCreds: 42a090187dSDaniel P. Berrange * 43a090187dSDaniel P. Berrange * The QCryptoTLSCreds object is an abstract base for different 44a090187dSDaniel P. Berrange * types of TLS handshake credentials. Most commonly the 45a090187dSDaniel P. Berrange * QCryptoTLSCredsX509 subclass will be used to provide x509 46a090187dSDaniel P. Berrange * certificate credentials. 47a090187dSDaniel P. Berrange */ 48a090187dSDaniel P. Berrange 49a090187dSDaniel P. Berrange struct QCryptoTLSCreds { 50a090187dSDaniel P. Berrange Object parent_obj; 51a090187dSDaniel P. Berrange char *dir; 52a090187dSDaniel P. Berrange QCryptoTLSCredsEndpoint endpoint; 53a090187dSDaniel P. Berrange #ifdef CONFIG_GNUTLS 54a090187dSDaniel P. Berrange gnutls_dh_params_t dh_params; 55a090187dSDaniel P. Berrange #endif 56a090187dSDaniel P. Berrange bool verifyPeer; 5713f12430SDaniel P. Berrange char *priority; 58a090187dSDaniel P. Berrange }; 59a090187dSDaniel P. Berrange 60a090187dSDaniel P. Berrange 61a090187dSDaniel P. Berrange struct QCryptoTLSCredsClass { 62a090187dSDaniel P. Berrange ObjectClass parent_class; 63a090187dSDaniel P. Berrange }; 64a090187dSDaniel P. Berrange 65a090187dSDaniel P. Berrange 66*121d0712SMarkus Armbruster #endif /* QCRYPTO_TLSCREDS_H */ 67