1 QA output created by 233
3 == preparing TLS creds ==
4 Generating a self signed certificate...
5 Generating a self signed certificate...
6 Generating a signed certificate...
7 Generating a signed certificate...
8 Generating a signed certificate...
9 Generating a signed certificate...
10 Generating a random key for user 'psk1'
11 Generating a random key for user 'psk2'
14 Formatting 'TEST_DIR/t.IMGFMT', fmt=IMGFMT size=67108864
15 wrote 1048576/1048576 bytes at offset 1048576
16 1 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
18 == check TLS client to plain server fails ==
19 qemu-img: Could not open 'driver=nbd,host=127.0.0.1,port=PORT,tls-creds=tls0': Denied by server for option 5 (starttls)
20 server reported: TLS not configured
21 qemu-nbd: Denied by server for option 5 (starttls)
23 == check plain client to TLS server fails ==
24 qemu-img: Could not open 'nbd://localhost:PORT': TLS negotiation required before option 7 (go)
25 Did you forget a valid tls-creds?
26 server reported: Option 0x7 not permitted before TLS
27 qemu-nbd: TLS negotiation required before option 3 (list)
30 image: nbd://127.0.0.1:PORT
32 virtual size: 64 MiB (67108864 bytes)
33 disk size: unavailable
34 image: nbd://127.0.0.1:PORT
36 virtual size: 64 MiB (67108864 bytes)
37 disk size: unavailable
43 == check TLS fail over TCP with mismatched hostname ==
44 qemu-img: Could not open 'driver=nbd,host=localhost,port=PORT,tls-creds=tls0': Certificate does not match the hostname localhost
45 qemu-nbd: Certificate does not match the hostname localhost
47 == check TLS works over TCP with mismatched hostname and override ==
48 image: nbd://localhost:PORT
50 virtual size: 64 MiB (67108864 bytes)
51 disk size: unavailable
57 == check TLS with different CA fails ==
58 qemu-img: Could not open 'driver=nbd,host=127.0.0.1,port=PORT,tls-creds=tls0': The certificate hasn't got a known issuer
59 qemu-nbd: The certificate hasn't got a known issuer
61 == perform I/O over TLS ==
62 read 1048576/1048576 bytes at offset 1048576
63 1 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
64 wrote 1048576/1048576 bytes at offset 1048576
65 1 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
66 read 1048576/1048576 bytes at offset 1048576
67 1 MiB, X ops; XX:XX:XX.X (XXX YYY/sec and XXX ops/sec)
69 == check TLS with authorization ==
70 qemu-img: Could not open 'driver=nbd,host=127.0.0.1,port=PORT,tls-creds=tls0': Failed to read option reply: Cannot read from TLS channel: Software caused connection abort
71 qemu-img: Could not open 'driver=nbd,host=127.0.0.1,port=PORT,tls-creds=tls0': Failed to read option reply: Cannot read from TLS channel: Software caused connection abort
73 == check TLS fail over UNIX with no hostname ==
74 qemu-img: Could not open 'driver=nbd,path=SOCK_DIR/qemu-nbd.sock,tls-creds=tls0': No hostname for certificate validation
75 qemu-nbd: No hostname for certificate validation
77 == check TLS works over UNIX with hostname override ==
78 image: nbd+unix://?socket=SOCK_DIR/qemu-nbd.sock
80 virtual size: 64 MiB (67108864 bytes)
81 disk size: unavailable
87 == check TLS works over UNIX with PSK ==
88 image: nbd+unix://?socket=SOCK_DIR/qemu-nbd.sock
90 virtual size: 64 MiB (67108864 bytes)
91 disk size: unavailable
97 == check TLS fails over UNIX with mismatch PSK ==
98 qemu-img: Could not open 'driver=nbd,path=SOCK_DIR/qemu-nbd.sock,tls-creds=tls0': TLS handshake failed: The TLS connection was non-properly terminated.
99 qemu-nbd: TLS handshake failed: The TLS connection was non-properly terminated.
101 == final server log ==
102 qemu-nbd: option negotiation failed: Failed to read opts magic: Cannot read from TLS channel: Software caused connection abort
103 qemu-nbd: option negotiation failed: Failed to read opts magic: Cannot read from TLS channel: Software caused connection abort
104 qemu-nbd: option negotiation failed: Verify failed: No certificate was found.
105 qemu-nbd: option negotiation failed: Verify failed: No certificate was found.
106 qemu-nbd: option negotiation failed: TLS x509 authz check for DISTINGUISHED-NAME is denied
107 qemu-nbd: option negotiation failed: TLS x509 authz check for DISTINGUISHED-NAME is denied
108 qemu-nbd: option negotiation failed: Failed to read opts magic: Cannot read from TLS channel: Software caused connection abort
109 qemu-nbd: option negotiation failed: Failed to read opts magic: Cannot read from TLS channel: Software caused connection abort
110 qemu-nbd: option negotiation failed: TLS handshake failed: An illegal parameter has been received.
111 qemu-nbd: option negotiation failed: TLS handshake failed: An illegal parameter has been received.