mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-10-06 22:35:46 +00:00
2552fec248
For a luks device, allow the configuration of a specific cipher to be used for encrypting the volume. Signed-off-by: John Ferlan <jferlan@redhat.com>
98 lines
3.1 KiB
C
98 lines
3.1 KiB
C
/*
|
|
* virstorageencryption.h: volume encryption information
|
|
*
|
|
* Copyright (C) 2009-2011, 2014 Red Hat, Inc.
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library. If not, see
|
|
* <http://www.gnu.org/licenses/>.
|
|
*
|
|
* Red Hat Author: Miloslav Trmač <mitr@redhat.com>
|
|
*/
|
|
|
|
#ifndef __VIR_STORAGE_ENCRYPTION_H__
|
|
# define __VIR_STORAGE_ENCRYPTION_H__
|
|
|
|
# include "internal.h"
|
|
# include "virbuffer.h"
|
|
# include "virsecret.h"
|
|
# include "virutil.h"
|
|
|
|
# include <libxml/tree.h>
|
|
|
|
typedef enum {
|
|
VIR_STORAGE_ENCRYPTION_SECRET_TYPE_PASSPHRASE = 0,
|
|
|
|
VIR_STORAGE_ENCRYPTION_SECRET_TYPE_LAST
|
|
} virStorageEncryptionSecretType;
|
|
VIR_ENUM_DECL(virStorageEncryptionSecret)
|
|
|
|
typedef struct _virStorageEncryptionSecret virStorageEncryptionSecret;
|
|
typedef virStorageEncryptionSecret *virStorageEncryptionSecretPtr;
|
|
struct _virStorageEncryptionSecret {
|
|
int type; /* virStorageEncryptionSecretType */
|
|
virSecretLookupTypeDef seclookupdef;
|
|
};
|
|
|
|
/* It's possible to dictate the cipher and if necessary iv */
|
|
typedef struct _virStorageEncryptionInfoDef virStorageEncryptionInfoDef;
|
|
typedef virStorageEncryptionInfoDef *virStorageEncryptionInfoDefPtr;
|
|
struct _virStorageEncryptionInfoDef {
|
|
unsigned int cipher_size;
|
|
char *cipher_name;
|
|
char *cipher_mode;
|
|
char *cipher_hash;
|
|
char *ivgen_name;
|
|
char *ivgen_hash;
|
|
};
|
|
|
|
typedef enum {
|
|
/* "default" is only valid for volume creation */
|
|
VIR_STORAGE_ENCRYPTION_FORMAT_DEFAULT = 0,
|
|
VIR_STORAGE_ENCRYPTION_FORMAT_QCOW, /* Both qcow and qcow2 */
|
|
VIR_STORAGE_ENCRYPTION_FORMAT_LUKS,
|
|
|
|
VIR_STORAGE_ENCRYPTION_FORMAT_LAST,
|
|
} virStorageEncryptionFormatType;
|
|
VIR_ENUM_DECL(virStorageEncryptionFormat)
|
|
|
|
typedef struct _virStorageEncryption virStorageEncryption;
|
|
typedef virStorageEncryption *virStorageEncryptionPtr;
|
|
struct _virStorageEncryption {
|
|
int format; /* virStorageEncryptionFormatType */
|
|
|
|
size_t nsecrets;
|
|
virStorageEncryptionSecretPtr *secrets;
|
|
|
|
virStorageEncryptionInfoDef encinfo;
|
|
};
|
|
|
|
virStorageEncryptionPtr virStorageEncryptionCopy(const virStorageEncryption *src)
|
|
ATTRIBUTE_NONNULL(1);
|
|
|
|
void virStorageEncryptionFree(virStorageEncryptionPtr enc);
|
|
|
|
virStorageEncryptionPtr virStorageEncryptionParseNode(xmlDocPtr xml,
|
|
xmlNodePtr root);
|
|
int virStorageEncryptionFormat(virBufferPtr buf,
|
|
virStorageEncryptionPtr enc);
|
|
|
|
/* A helper for VIR_STORAGE_ENCRYPTION_FORMAT_QCOW */
|
|
enum {
|
|
VIR_STORAGE_QCOW_PASSPHRASE_SIZE = 16
|
|
};
|
|
|
|
int virStorageGenerateQcowPassphrase(unsigned char *dest);
|
|
|
|
#endif /* __VIR_STORAGE_ENCRYPTION_H__ */
|