Re: [PATCH v2 06/18 for-7.0] migration: fix use of TLS PSK credentials w

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 06/18 for-7.0] migration: fix use of TLS PSK credentials w

From:	Juan Quintela
Subject:	Re: [PATCH v2 06/18 for-7.0] migration: fix use of TLS PSK credentials with a UNIX socket
Date:	Fri, 11 Mar 2022 11:07:40 +0100
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)

Daniel P. Berrangé <berrange@redhat.com> wrote:
> The migration TLS code has a check mandating that a hostname be
> available when starting a TLS session. This is expected when using
> x509 credentials, but is bogus for PSK and anonymous credentials
> as neither involve hostname validation.
>
> The TLS crdentials object gained suitable error reporting in the
> case of TLS with x509 credentials, so there is no longer any need
> for the migration code to do its own (incorrect) validation.
>
> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>

Reviewed-by: Juan Quintela <quintela@redhat.com>

Should be safe for current one (famous last words).

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH v2 11/18] tests: expand the migration precopy helper to support failures, (continued)
- [PATCH v2 08/18] tests: merge code for UNIX and TCP migration pre-copy tests, Daniel P . Berrangé, 2022/03/10
  - Re: [PATCH v2 08/18] tests: merge code for UNIX and TCP migration pre-copy tests, Peter Xu, 2022/03/10
- [PATCH v2 07/18] tests: switch MigrateStart struct to be stack allocated, Daniel P . Berrangé, 2022/03/10
  - Re: [PATCH v2 07/18] tests: switch MigrateStart struct to be stack allocated, Peter Xu, 2022/03/10
- [PATCH v2 14/18] tests: convert XBZRLE migration test to use common helper, Daniel P . Berrangé, 2022/03/10
  - Re: [PATCH v2 14/18] tests: convert XBZRLE migration test to use common helper, Peter Xu, 2022/03/10
- [PATCH v2 16/18] tests: add multifd migration tests of TLS with PSK credentials, Daniel P . Berrangé, 2022/03/10
- [PATCH v2 12/18] tests: add migration tests of TLS with PSK credentials, Daniel P . Berrangé, 2022/03/10
- [PATCH v2 06/18 for-7.0] migration: fix use of TLS PSK credentials with a UNIX socket, Daniel P . Berrangé, 2022/03/10
  - Re: [PATCH v2 06/18 for-7.0] migration: fix use of TLS PSK credentials with a UNIX socket, Juan Quintela <=
- [PATCH v2 15/18] tests: convert multifd migration tests to use common helper, Daniel P . Berrangé, 2022/03/10
  - Re: [PATCH v2 15/18] tests: convert multifd migration tests to use common helper, Peter Xu, 2022/03/10
- [PATCH v2 18/18] tests: ensure migration status isn't reported as failed, Daniel P . Berrangé, 2022/03/10
- [PATCH v2 17/18] tests: add multifd migration tests of TLS with x509 credentials, Daniel P . Berrangé, 2022/03/10
- [PATCH v2 13/18] tests: add migration tests of TLS with x509 credentials, Daniel P . Berrangé, 2022/03/10
- [PATCH v2 04/18] tests: print newline after QMP response in qtest logs, Daniel P . Berrangé, 2022/03/10
  - Re: [PATCH v2 04/18] tests: print newline after QMP response in qtest logs, Peter Xu, 2022/03/10
  - Re: [PATCH v2 04/18] tests: print newline after QMP response in qtest logs, Juan Quintela, 2022/03/11
- Re: [PATCH v2 00/18] tests: introduce testing coverage for TLS with migration, Peter Xu, 2022/03/10
  - Re: [PATCH v2 00/18] tests: introduce testing coverage for TLS with migration, Daniel P . Berrangé, 2022/03/30

Prev by Date: Re: [PATCH v2 04/18] tests: print newline after QMP response in qtest logs
Next by Date: Re: [PATCH V7 10/29] machine: memfd-alloc option
Previous by thread: [PATCH v2 06/18 for-7.0] migration: fix use of TLS PSK credentials with a UNIX socket
Next by thread: [PATCH v2 15/18] tests: convert multifd migration tests to use common helper
Index(es):
- Date
- Thread