* Re: [Question] VNC CA certificate update live
[not found] <-9hr4cg-d4yk46-3dd17uwyp2nz-55r6nkouccbe-md34fa5rys74-ydxc1l9fwp3o-h74zi8-5f2vsfpu8ul36vw8shpq5qlmcu1zwg-ifrvh5nktjt6z00lli1hyz8oze8hzn-oteilg-yts4god4aig3.1609160379148@email.android.com>
@ 2021-01-04 12:18 ` Daniel P. Berrangé
0 siblings, 0 replies; only message in thread
From: Daniel P. Berrangé @ 2021-01-04 12:18 UTC (permalink / raw)
To: zihao chang; +Cc: qemu-devel@nongnu.org
On Mon, Dec 28, 2020 at 08:59:39PM +0800, zihao chang wrote:
> Hi all:
> The VNC of QEMU suppots TLS encryption. The client & server can use
> arbitrary certificates from CA certificates the running VM loaded(user can
> use new certificates immediately), but if the CA certificate is changed to
> a new one,the running VM still use the old CA.
> Is it reasonable to provide an API(e.g.QMP) to replace the CA certificate
> for running VM live?Any security problem?
It makes sense as a concept. Just needs someone to write the code to
deal with it.
Regards,
Daniel
--
|: https://berrange.com -o- https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org -o- https://fstop138.berrange.com :|
|: https://entangle-photo.org -o- https://www.instagram.com/dberrange :|
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2021-01-04 12:19 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <-9hr4cg-d4yk46-3dd17uwyp2nz-55r6nkouccbe-md34fa5rys74-ydxc1l9fwp3o-h74zi8-5f2vsfpu8ul36vw8shpq5qlmcu1zwg-ifrvh5nktjt6z00lli1hyz8oze8hzn-oteilg-yts4god4aig3.1609160379148@email.android.com>
2021-01-04 12:18 ` [Question] VNC CA certificate update live Daniel P. Berrangé
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.