[v2] crypto: Make QCryptoTLSCreds* structures private

[PATCH v2 6/7] ui/vnc: Use qcrypto_tls_session_check_role()

Posted by Philippe Mathieu-Daudé 4 years ago

Avoid accessing QCryptoTLSCreds internals by using
the qcrypto_tls_session_check_role() helper.

Signed-off-by: Philippe Mathieu-Daudé <philmd@redhat.com>
---
 ui/vnc.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ui/vnc.c b/ui/vnc.c
index b3d4d7b9a5f..ad68f9b639f 100644
--- a/ui/vnc.c
+++ b/ui/vnc.c
@@ -4080,7 +4080,8 @@ void vnc_display_open(const char *id, Error **errp)
         }
         object_ref(OBJECT(vd->tlscreds));
 
-        if (vd->tlscreds->endpoint != QCRYPTO_TLS_CREDS_ENDPOINT_SERVER) {
+        if (!qcrypto_tls_session_check_role(vd->tlscreds,
+                                            QCRYPTO_TLS_CREDS_ENDPOINT_SERVER)) {
             error_setg(errp,
                        "Expecting TLS credentials with a server endpoint");
             goto fail;
-- 
2.31.1

[PATCH v2 1/7] crypto/tlscreds: Introduce qcrypto_tls_creds_check_endpoint() helper
[PATCH v2 2/7] block/nbd: Use qcrypto_tls_creds_check_endpoint()
[PATCH v2 3/7] chardev/socket: Use qcrypto_tls_creds_check_endpoint()
[PATCH v2 4/7] migration/tls: Use qcrypto_tls_creds_check_endpoint()
[PATCH v2 5/7] crypto/tlssession: Introduce qcrypto_tls_creds_check_endpoint() helper
[PATCH v2 6/7] ui/vnc: Use qcrypto_tls_session_check_role()
[PATCH v2 7/7] crypto: Make QCryptoTLSCreds* structures private