1. Patchew
  2. Libvirt
  3. View series

[libvirt] [PATCH] news: Mention changes TLS non-shared-storage migration

Peter Krempa posted 1 patch 5 years, 11 months ago
Patches applied successfully (tree, apply log)
git fetch https://github.com/patchew-project/libvirt tags/patchew/764a7483f189e6de841163647c14296e693dbb2e.1525247048.git.pkrempa@redhat.com
Test syntax-check passed
docs/news.xml | 12 ++++++++++++
1 file changed, 12 insertions(+)
[libvirt] [PATCH] news: Mention changes TLS non-shared-storage migration
Posted by Peter Krempa 5 years, 11 months ago 
Signed-off-by: Peter Krempa <pkrempa@redhat.com>
---
 docs/news.xml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/docs/news.xml b/docs/news.xml
index caeda159a8..af57751e0c 100644
--- a/docs/news.xml
+++ b/docs/news.xml
@@ -157,6 +157,18 @@
       </change>
     </section>
     <section title="Bug fixes">
+      <change>
+        <summary>
+          qemu: TLS migration now enforces use of TLS for the NBD connection
+        </summary>
+        <description>
+          When the VIR_MIGRATE_TLS flag was used with the migration API libvirt
+          did not ensure that the NBD connection was using TLS as well. The code
+          now rejects such migration as the TLS transport for NBD is not ready
+          yet, but prevents a false sense of security that TLS would be used.
+          The support TLS for NBD will be added soon.
+        </description>
+      </change>
     </section>
   </release>
   <release version="v4.1.0" date="2018-03-05">
-- 
2.16.2

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH] news: Mention changes TLS non-shared-storage migration
Posted by Jiri Denemark 5 years, 11 months ago 
On Wed, May 02, 2018 at 09:44:08 +0200, Peter Krempa wrote:
> Signed-off-by: Peter Krempa <pkrempa@redhat.com>
> ---
>  docs/news.xml | 12 ++++++++++++
>  1 file changed, 12 insertions(+)
> 
> diff --git a/docs/news.xml b/docs/news.xml
> index caeda159a8..af57751e0c 100644
> --- a/docs/news.xml
> +++ b/docs/news.xml
> @@ -157,6 +157,18 @@
>        </change>
>      </section>
>      <section title="Bug fixes">
> +      <change>
> +        <summary>
> +          qemu: TLS migration now enforces use of TLS for the NBD connection
> +        </summary>
> +        <description>
> +          When the VIR_MIGRATE_TLS flag was used with the migration API libvirt
> +          did not ensure that the NBD connection was using TLS as well. The code
> +          now rejects such migration as the TLS transport for NBD is not ready
> +          yet, but prevents a false sense of security that TLS would be used.
> +          The support TLS for NBD will be added soon.
> +        </description>
> +      </change>
>      </section>
>    </release>
>    <release version="v4.1.0" date="2018-03-05">

Reviewed-by: Jiri Denemark <jdenemar@redhat.com>

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH] news: Mention changes TLS non-shared-storage migration
Posted by Jiri Denemark 5 years, 11 months ago 
On Wed, May 02, 2018 at 10:36:57 +0200, Jiri Denemark wrote:
> On Wed, May 02, 2018 at 09:44:08 +0200, Peter Krempa wrote:
> > Signed-off-by: Peter Krempa <pkrempa@redhat.com>
> > ---
> >  docs/news.xml | 12 ++++++++++++
> >  1 file changed, 12 insertions(+)
> > 
> > diff --git a/docs/news.xml b/docs/news.xml
> > index caeda159a8..af57751e0c 100644
> > --- a/docs/news.xml
> > +++ b/docs/news.xml
> > @@ -157,6 +157,18 @@
> >        </change>
> >      </section>
> >      <section title="Bug fixes">
> > +      <change>
> > +        <summary>
> > +          qemu: TLS migration now enforces use of TLS for the NBD connection
> > +        </summary>
> > +        <description>
> > +          When the VIR_MIGRATE_TLS flag was used with the migration API libvirt
> > +          did not ensure that the NBD connection was using TLS as well. The code
> > +          now rejects such migration as the TLS transport for NBD is not ready
> > +          yet, but prevents a false sense of security that TLS would be used.
> > +          The support TLS for NBD will be added soon.
> > +        </description>
> > +      </change>
> >      </section>
> >    </release>
> >    <release version="v4.1.0" date="2018-03-05">
> 
> Reviewed-by: Jiri Denemark <jdenemar@redhat.com>

Oops, I didn't notice you documented this for an older release. This
should be moved to the v4.3.0 section.

Jirka

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH] news: Mention changes TLS non-shared-storage migration
Posted by Peter Krempa 5 years, 11 months ago 
On Thu, May 03, 2018 at 10:05:49 +0200, Jiri Denemark wrote:
> On Wed, May 02, 2018 at 10:36:57 +0200, Jiri Denemark wrote:
> > On Wed, May 02, 2018 at 09:44:08 +0200, Peter Krempa wrote:
> > > Signed-off-by: Peter Krempa <pkrempa@redhat.com>
> > > ---
> > >  docs/news.xml | 12 ++++++++++++
> > >  1 file changed, 12 insertions(+)
> > > 
> > > diff --git a/docs/news.xml b/docs/news.xml
> > > index caeda159a8..af57751e0c 100644
> > > --- a/docs/news.xml
> > > +++ b/docs/news.xml
> > > @@ -157,6 +157,18 @@
> > >        </change>
> > >      </section>
> > >      <section title="Bug fixes">
> > > +      <change>
> > > +        <summary>
> > > +          qemu: TLS migration now enforces use of TLS for the NBD connection
> > > +        </summary>
> > > +        <description>
> > > +          When the VIR_MIGRATE_TLS flag was used with the migration API libvirt
> > > +          did not ensure that the NBD connection was using TLS as well. The code
> > > +          now rejects such migration as the TLS transport for NBD is not ready
> > > +          yet, but prevents a false sense of security that TLS would be used.
> > > +          The support TLS for NBD will be added soon.
> > > +        </description>
> > > +      </change>
> > >      </section>
> > >    </release>
> > >    <release version="v4.1.0" date="2018-03-05">
> > 
> > Reviewed-by: Jiri Denemark <jdenemar@redhat.com>
> 
> Oops, I didn't notice you documented this for an older release. This
> should be moved to the v4.3.0 section.

Me neither. I noticed that in the release announcement. I was thinking
of a way how to prevent this though.
--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list

Patchew 2.1-devel-0870f84

© 2016 - 2024 Red Hat, Inc.