[Libguestfs] [libguestfs PATCH 0/3] LUKS decryption with Clevis+Tang | CVE-2022-2211

Tuesday, 28 June 2022

Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1809453
Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=2100862

Please refer to the parent cover letter
<https://listman.redhat.com/archives/libguestfs/2022-June/029274.html>
regarding the relationship between the CVE fix and the larger series.

Thanks,
Laszlo

Laszlo Ersek (3):
  docs/guestfs-security: document CVE-2022-2211
  introduce the "clevis_luks_unlock" API
  guestfish, guestmount: enable networking for "--key ID:clevis"

 appliance/packagelist.in  |  4 ++
 common                    |  2 +-
 daemon/Makefile.am        |  1 +
 daemon/clevis-luks.c      | 58 ++++++++++++++++++++
 docs/guestfs-security.pod | 28 ++++++++++
 fish/fish.c               |  3 +
 fuse/guestmount.c         |  4 ++
 generator/actions_core.ml | 38 +++++++++++++
 generator/proc_nr.ml      |  1 +
 lib/MAX_PROC_NR           |  2 +-
 lib/guestfs.pod           | 19 +++++--
 11 files changed, 154 insertions(+), 6 deletions(-)
 create mode 100644 daemon/clevis-luks.c

-- 
2.19.1.3.g30247aa5d201

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

[Libguestfs] [libguestfs PATCH 0/3] LUKS decryption with Clevis+Tang | CVE-2022-2211