[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCHv4] Improve documentation for TLS
|
From: |
Eric Blake |
|
Subject: |
Re: [Qemu-devel] [PATCHv4] Improve documentation for TLS |
|
Date: |
Thu, 7 Apr 2016 14:35:32 -0600 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.7.1 |
On 04/07/2016 02:07 PM, Alex Bligh wrote:
> * Call out TLS into a separate section
>
> * Add details of the TLS protocol itself
>
> * Emphasise that actual TLS session initiation (i.e. the TLS handshake) can
> be initiated from either side (as required by the TLS standard I believe
> and as actually works in practice)
>
> * Clarify what is a requirement on servers, and what is a requirement on
> clients, separately, specifying their behaviour in a single place
> in the document.
>
> * Document the four possible modes of operation of a server.
>
> Signed-off-by: Alex Bligh <address@hidden>
> @@ -391,7 +679,10 @@ of the newstyle negotiation.
> - `NBD_OPT_LIST` (3)
>
> Return a number of `NBD_REP_SERVER` replies, one for each export,
> - followed by `NBD_REP_ACK`.
> + followed by `NBD_REP_ACK`. The server SHOULD omit entries from this
> + list if TLS has not been negotiated and either the server is
> + operating in SELECTIVETLS mode and the entry concerned is a TLS-only
> + export.
grammar tweak:
s/ and either /, /
--
Eric Blake eblake redhat com +1-919-301-3266
Libvirt virtualization library http://libvirt.org
signature.asc
Description: OpenPGP digital signature