1*a090187dSDaniel P. Berrange /* 2*a090187dSDaniel P. Berrange * QEMU crypto TLS credential support 3*a090187dSDaniel P. Berrange * 4*a090187dSDaniel P. Berrange * Copyright (c) 2015 Red Hat, Inc. 5*a090187dSDaniel P. Berrange * 6*a090187dSDaniel P. Berrange * This library is free software; you can redistribute it and/or 7*a090187dSDaniel P. Berrange * modify it under the terms of the GNU Lesser General Public 8*a090187dSDaniel P. Berrange * License as published by the Free Software Foundation; either 9*a090187dSDaniel P. Berrange * version 2 of the License, or (at your option) any later version. 10*a090187dSDaniel P. Berrange * 11*a090187dSDaniel P. Berrange * This library is distributed in the hope that it will be useful, 12*a090187dSDaniel P. Berrange * but WITHOUT ANY WARRANTY; without even the implied warranty of 13*a090187dSDaniel P. Berrange * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 14*a090187dSDaniel P. Berrange * Lesser General Public License for more details. 15*a090187dSDaniel P. Berrange * 16*a090187dSDaniel P. Berrange * You should have received a copy of the GNU Lesser General Public 17*a090187dSDaniel P. Berrange * License along with this library; if not, see <http://www.gnu.org/licenses/>. 18*a090187dSDaniel P. Berrange * 19*a090187dSDaniel P. Berrange */ 20*a090187dSDaniel P. Berrange 21*a090187dSDaniel P. Berrange #ifndef QCRYPTO_TLSCRED_H__ 22*a090187dSDaniel P. Berrange #define QCRYPTO_TLSCRED_H__ 23*a090187dSDaniel P. Berrange 24*a090187dSDaniel P. Berrange #include "qemu-common.h" 25*a090187dSDaniel P. Berrange #include "qapi/error.h" 26*a090187dSDaniel P. Berrange #include "qom/object.h" 27*a090187dSDaniel P. Berrange 28*a090187dSDaniel P. Berrange #ifdef CONFIG_GNUTLS 29*a090187dSDaniel P. Berrange #include <gnutls/gnutls.h> 30*a090187dSDaniel P. Berrange #endif 31*a090187dSDaniel P. Berrange 32*a090187dSDaniel P. Berrange #define TYPE_QCRYPTO_TLS_CREDS "tls-creds" 33*a090187dSDaniel P. Berrange #define QCRYPTO_TLS_CREDS(obj) \ 34*a090187dSDaniel P. Berrange OBJECT_CHECK(QCryptoTLSCreds, (obj), TYPE_QCRYPTO_TLS_CREDS) 35*a090187dSDaniel P. Berrange 36*a090187dSDaniel P. Berrange typedef struct QCryptoTLSCreds QCryptoTLSCreds; 37*a090187dSDaniel P. Berrange typedef struct QCryptoTLSCredsClass QCryptoTLSCredsClass; 38*a090187dSDaniel P. Berrange 39*a090187dSDaniel P. Berrange #define QCRYPTO_TLS_CREDS_DH_PARAMS "dh-params.pem" 40*a090187dSDaniel P. Berrange 41*a090187dSDaniel P. Berrange 42*a090187dSDaniel P. Berrange /** 43*a090187dSDaniel P. Berrange * QCryptoTLSCreds: 44*a090187dSDaniel P. Berrange * 45*a090187dSDaniel P. Berrange * The QCryptoTLSCreds object is an abstract base for different 46*a090187dSDaniel P. Berrange * types of TLS handshake credentials. Most commonly the 47*a090187dSDaniel P. Berrange * QCryptoTLSCredsX509 subclass will be used to provide x509 48*a090187dSDaniel P. Berrange * certificate credentials. 49*a090187dSDaniel P. Berrange */ 50*a090187dSDaniel P. Berrange 51*a090187dSDaniel P. Berrange struct QCryptoTLSCreds { 52*a090187dSDaniel P. Berrange Object parent_obj; 53*a090187dSDaniel P. Berrange char *dir; 54*a090187dSDaniel P. Berrange QCryptoTLSCredsEndpoint endpoint; 55*a090187dSDaniel P. Berrange #ifdef CONFIG_GNUTLS 56*a090187dSDaniel P. Berrange gnutls_dh_params_t dh_params; 57*a090187dSDaniel P. Berrange #endif 58*a090187dSDaniel P. Berrange bool verifyPeer; 59*a090187dSDaniel P. Berrange }; 60*a090187dSDaniel P. Berrange 61*a090187dSDaniel P. Berrange 62*a090187dSDaniel P. Berrange struct QCryptoTLSCredsClass { 63*a090187dSDaniel P. Berrange ObjectClass parent_class; 64*a090187dSDaniel P. Berrange }; 65*a090187dSDaniel P. Berrange 66*a090187dSDaniel P. Berrange 67*a090187dSDaniel P. Berrange #endif /* QCRYPTO_TLSCRED_H__ */ 68*a090187dSDaniel P. Berrange 69