[Libguestfs] [libguestfs PATCH 0/3] LUKS decryption with Clevis+Tang | CVE-2022-2211
Laszlo Ersek
lersek at redhat.com
Tue Jun 28 11:54:15 UTC 2022
Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1809453
Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=2100862
Please refer to the parent cover letter
<https://listman.redhat.com/archives/libguestfs/2022-June/029274.html>
regarding the relationship between the CVE fix and the larger series.
Thanks,
Laszlo
Laszlo Ersek (3):
docs/guestfs-security: document CVE-2022-2211
introduce the "clevis_luks_unlock" API
guestfish, guestmount: enable networking for "--key ID:clevis"
appliance/packagelist.in | 4 ++
common | 2 +-
daemon/Makefile.am | 1 +
daemon/clevis-luks.c | 58 ++++++++++++++++++++
docs/guestfs-security.pod | 28 ++++++++++
fish/fish.c | 3 +
fuse/guestmount.c | 4 ++
generator/actions_core.ml | 38 +++++++++++++
generator/proc_nr.ml | 1 +
lib/MAX_PROC_NR | 2 +-
lib/guestfs.pod | 19 +++++--
11 files changed, 154 insertions(+), 6 deletions(-)
create mode 100644 daemon/clevis-luks.c
--
2.19.1.3.g30247aa5d201
More information about the Libguestfs
mailing list