From nobody Wed May 14 07:20:06 2025
Delivered-To: importer@patchew.org
Received-SPF: pass (zoho.com: domain of redhat.com designates 209.132.183.28
 as permitted sender) client-ip=209.132.183.28;
 envelope-from=libvir-list-bounces@redhat.com; helo=mx1.redhat.com;
Authentication-Results: mx.zohomail.com;
	spf=pass (zoho.com: domain of redhat.com designates 209.132.183.28 as
 permitted sender)  smtp.mailfrom=libvir-list-bounces@redhat.com;
	dmarc=pass(p=none dis=none)  header.from=redhat.com
Return-Path: <libvir-list-bounces@redhat.com>
Received: from mx1.redhat.com (mx1.redhat.com [209.132.183.28]) by
 mx.zohomail.com
	with SMTPS id 1527684171861649.9306468077642;
 Wed, 30 May 2018 05:42:51 -0700 (PDT)
Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.phx2.redhat.com
 [10.5.11.11])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mx1.redhat.com (Postfix) with ESMTPS id 521103153668;
	Wed, 30 May 2018 12:42:50 +0000 (UTC)
Received: from colo-mx.corp.redhat.com
 (colo-mx01.intmail.prod.int.phx2.redhat.com [10.5.11.20])
	by smtp.corp.redhat.com (Postfix) with ESMTPS id 00FE65C7C8;
	Wed, 30 May 2018 12:42:49 +0000 (UTC)
Received: from lists01.pubmisc.prod.ext.phx2.redhat.com
 (lists01.pubmisc.prod.ext.phx2.redhat.com [10.5.19.33])
	by colo-mx.corp.redhat.com (Postfix) with ESMTP id 76E7F18033F1;
	Wed, 30 May 2018 12:42:49 +0000 (UTC)
Received: from smtp.corp.redhat.com (int-mx06.intmail.prod.int.rdu2.redhat.com
	[10.11.54.6])
	by lists01.pubmisc.prod.ext.phx2.redhat.com (8.13.8/8.13.8) with ESMTP
	id w4UCfuWc027534 for <libvir-list@listman.util.phx.redhat.com>;
	Wed, 30 May 2018 08:41:57 -0400
Received: by smtp.corp.redhat.com (Postfix)
	id 666A3217B40A; Wed, 30 May 2018 12:41:57 +0000 (UTC)
Received: from angien.brq.redhat.com (unknown [10.43.2.136])
	by smtp.corp.redhat.com (Postfix) with ESMTP id 0B2B9217B409
	for <libvir-list@redhat.com>; Wed, 30 May 2018 12:41:56 +0000 (UTC)
From: Peter Krempa <pkrempa@redhat.com>
To: libvir-list@redhat.com
Date: Wed, 30 May 2018 14:41:12 +0200
Message-Id: 
 <07ad650581506ba8f2afd4bfa81e0e07ccf0ede9.1527683836.git.pkrempa@redhat.com>
In-Reply-To: <cover.1527683835.git.pkrempa@redhat.com>
References: <cover.1527683835.git.pkrempa@redhat.com>
In-Reply-To: <cover.1527683835.git.pkrempa@redhat.com>
References: <cover.1527683835.git.pkrempa@redhat.com>
X-Scanned-By: MIMEDefang 2.78 on 10.11.54.6
X-loop: libvir-list@redhat.com
Subject: [libvirt] [PATCH 16/38] qemu: domain: Regenerate alias for the TLS
	x509 credential object
X-BeenThere: libvir-list@redhat.com
X-Mailman-Version: 2.1.12
Precedence: junk
List-Id: Development discussions about the libvirt library & tools
	<libvir-list.redhat.com>
List-Unsubscribe: <https://www.redhat.com/mailman/options/libvir-list>,
	<mailto:libvir-list-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/libvir-list>
List-Post: <mailto:libvir-list@redhat.com>
List-Help: <mailto:libvir-list-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/libvir-list>,
	<mailto:libvir-list-request@redhat.com?subject=subscribe>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Sender: libvir-list-bounces@redhat.com
Errors-To: libvir-list-bounces@redhat.com
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.11
X-Greylist: Sender IP whitelisted,
 not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.49]);
 Wed, 30 May 2018 12:42:50 +0000 (UTC)
X-ZohoMail: RSF_0  Z_629925259 SPT_0
Content-Type: text/plain; charset="utf-8"

When restarting libvirt would previously lose the alias of the x509
certificate object. Upon unplug we would then not delete the
corresponding objects.

Restore the alias if we know it shoudl be there.

Luckily for disks we don't support encrypted TLS nevironment, so there's
no need to regenerate the 'seceret' alias for decrypting.

Signed-off-by: Peter Krempa <pkrempa@redhat.com>
Reviewed-by: J=EF=BF=BDn Tomko <jtomko@redhat.com>
---
 src/qemu/qemu_domain.c                                   |  7 +++++++
 tests/qemustatusxml2xmldata/disk-secinfo-upgrade-in.xml  | 10 ++++++++++
 tests/qemustatusxml2xmldata/disk-secinfo-upgrade-out.xml | 15 ++++++++++++=
+++
 3 files changed, 32 insertions(+)

diff --git a/src/qemu/qemu_domain.c b/src/qemu/qemu_domain.c
index a98424cc62..99656fcd6d 100644
--- a/src/qemu/qemu_domain.c
+++ b/src/qemu/qemu_domain.c
@@ -5965,6 +5965,13 @@ qemuDomainDeviceDiskDefPostParse(virDomainDiskDefPtr=
 disk,
                                                         parseFlags) < 0)
         return -1;

+    /* regenerate TLS alias for old status XMLs */
+    if (parseFlags & VIR_DOMAIN_DEF_PARSE_STATUS &&
+        disk->src->haveTLS =3D=3D VIR_TRISTATE_BOOL_YES &&
+        !disk->src->tlsAlias &&
+        !(disk->src->tlsAlias =3D qemuAliasTLSObjFromSrcAlias(disk->info.a=
lias)))
+        return -1;
+
     return 0;
 }

diff --git a/tests/qemustatusxml2xmldata/disk-secinfo-upgrade-in.xml b/test=
s/qemustatusxml2xmldata/disk-secinfo-upgrade-in.xml
index d364fc7644..ce55a70637 100644
--- a/tests/qemustatusxml2xmldata/disk-secinfo-upgrade-in.xml
+++ b/tests/qemustatusxml2xmldata/disk-secinfo-upgrade-in.xml
@@ -387,6 +387,16 @@
         <alias name=3D'virtio-disk5'/>
         <address type=3D'pci' domain=3D'0x0000' bus=3D'0x00' slot=3D'0x0f'=
 function=3D'0x0'/>
       </disk>
+      <disk type=3D'network' device=3D'disk'>
+        <driver name=3D'qemu' type=3D'raw'/>
+        <source protocol=3D'vxhs' name=3D'rbdpool/rbdimg' tls=3D'yes' tlsF=
romConfig=3D'0'>
+          <host name=3D'example.org'/>
+        </source>
+        <backingStore/>
+        <target dev=3D'vdg' bus=3D'virtio'/>
+        <alias name=3D'virtio-disk6'/>
+        <address type=3D'pci' domain=3D'0x0000' bus=3D'0x00' slot=3D'0x10'=
 function=3D'0x0'/>
+      </disk>
       <controller type=3D'usb' index=3D'0' model=3D'ich9-ehci1'>
         <alias name=3D'usb'/>
         <address type=3D'pci' domain=3D'0x0000' bus=3D'0x00' slot=3D'0x06'=
 function=3D'0x7'/>
diff --git a/tests/qemustatusxml2xmldata/disk-secinfo-upgrade-out.xml b/tes=
ts/qemustatusxml2xmldata/disk-secinfo-upgrade-out.xml
index a554bca99c..e7d2abbb81 100644
--- a/tests/qemustatusxml2xmldata/disk-secinfo-upgrade-out.xml
+++ b/tests/qemustatusxml2xmldata/disk-secinfo-upgrade-out.xml
@@ -403,6 +403,21 @@
         <alias name=3D'virtio-disk5'/>
         <address type=3D'pci' domain=3D'0x0000' bus=3D'0x00' slot=3D'0x0f'=
 function=3D'0x0'/>
       </disk>
+      <disk type=3D'network' device=3D'disk'>
+        <driver name=3D'qemu' type=3D'raw'/>
+        <source protocol=3D'vxhs' name=3D'rbdpool/rbdimg' tls=3D'yes' tlsF=
romConfig=3D'0'>
+          <host name=3D'example.org' port=3D'9999'/>
+          <privateData>
+            <objects>
+              <tlsX509 alias=3D'objvirtio-disk6_tls0'/>
+            </objects>
+          </privateData>
+        </source>
+        <backingStore/>
+        <target dev=3D'vdg' bus=3D'virtio'/>
+        <alias name=3D'virtio-disk6'/>
+        <address type=3D'pci' domain=3D'0x0000' bus=3D'0x00' slot=3D'0x10'=
 function=3D'0x0'/>
+      </disk>
       <controller type=3D'usb' index=3D'0' model=3D'ich9-ehci1'>
         <alias name=3D'usb'/>
         <address type=3D'pci' domain=3D'0x0000' bus=3D'0x00' slot=3D'0x06'=
 function=3D'0x7'/>
--=20
2.16.2

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list