diff options
author | Lei He <helei.sig11@bytedance.com> | 2022-10-08 16:50:29 +0800 |
---|---|---|
committer | Michael S. Tsirkin <mst@redhat.com> | 2022-11-02 06:56:32 -0400 |
commit | 58660863ba5ca4f74fa70671da2899b264dc5f34 (patch) | |
tree | d6907865e91667bf5457f1fba9869b9cd30f507b /include/crypto | |
parent | 3b34ccad6695f3fd3e48555d895d450f750c00e6 (diff) | |
download | qemu-58660863ba5ca4f74fa70671da2899b264dc5f34.zip qemu-58660863ba5ca4f74fa70671da2899b264dc5f34.tar.gz qemu-58660863ba5ca4f74fa70671da2899b264dc5f34.tar.bz2 |
crypto: Support export akcipher to pkcs8
crypto: support export RSA private keys with PKCS#8 standard.
So that users can upload this private key to linux kernel.
Signed-off-by: lei he <helei.sig11@bytedance.com>
Message-Id: <20221008085030.70212-4-helei.sig11@bytedance.com>
Reviewed-by: Michael S. Tsirkin <mst@redhat.com>
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
Reviewed-by: Daniel P. Berrangé <berrange@redhat.com>
Diffstat (limited to 'include/crypto')
-rw-r--r-- | include/crypto/akcipher.h | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/include/crypto/akcipher.h b/include/crypto/akcipher.h index 51f5fa2..214e58c 100644 --- a/include/crypto/akcipher.h +++ b/include/crypto/akcipher.h @@ -153,6 +153,27 @@ int qcrypto_akcipher_max_dgst_len(QCryptoAkCipher *akcipher); */ void qcrypto_akcipher_free(QCryptoAkCipher *akcipher); +/** + * qcrypto_akcipher_export_p8info: + * @opts: the options of the akcipher to be exported. + * @key: the original key of the akcipher to be exported. + * @keylen: length of the 'key' + * @dst: output parameter, if export succeed, *dst is set to the + * PKCS#8 encoded private key, caller MUST free this key with + * g_free after use. + * @dst_len: output parameter, indicates the length of PKCS#8 encoded + * key. + * + * Export the akcipher into DER encoded pkcs#8 private key info, expects + * |key| stores a valid asymmetric PRIVATE key. + * + * Returns: 0 for succeed, otherwise -1 is returned. + */ +int qcrypto_akcipher_export_p8info(const QCryptoAkCipherOptions *opts, + uint8_t *key, size_t keylen, + uint8_t **dst, size_t *dst_len, + Error **errp); + G_DEFINE_AUTOPTR_CLEANUP_FUNC(QCryptoAkCipher, qcrypto_akcipher_free) #endif /* QCRYPTO_AKCIPHER_H */ |