Merge remote-tracking branch 'remotes/ericb/tags/pull-nbd-2019-03-08' into staging

typedef struct NBDServerData {

    QIONetListener *listener;

    QCryptoTLSCreds *tlscreds;

    char *tlsauthz;

} NBDServerData;

static NBDServerData *nbd_server;

                       gpointer opaque)

{

    qio_channel_set_name(QIO_CHANNEL(cioc), "nbd-server");

    nbd_client_new(cioc, nbd_server->tlscreds, NULL,

    nbd_client_new(cioc, nbd_server->tlscreds, nbd_server->tlsauthz,

                   nbd_blockdev_client_closed);

}

    if (server->tlscreds) {

        object_unref(OBJECT(server->tlscreds));

    }

    g_free(server->tlsauthz);

    g_free(server);

}

void nbd_server_start(SocketAddress *addr, const char *tls_creds,

                      Error **errp)

                      const char *tls_authz, Error **errp)

{

    if (nbd_server) {

        error_setg(errp, "NBD server already running");

        }

    }

    nbd_server->tlsauthz = g_strdup(tls_authz);

    qio_net_listener_set_client_func(nbd_server->listener,

                                     nbd_accept,

                                     NULL,

void qmp_nbd_server_start(SocketAddressLegacy *addr,

                          bool has_tls_creds, const char *tls_creds,

                          bool has_tls_authz, const char *tls_authz,

                          Error **errp)

{

    SocketAddress *addr_flat = socket_address_flatten(addr);

    nbd_server_start(addr_flat, tls_creds, errp);

    nbd_server_start(addr_flat, tls_creds, tls_authz, errp);

    qapi_free_SocketAddress(addr_flat);

}

        goto exit;

    }

    nbd_server_start(addr, NULL, &local_err);

    nbd_server_start(addr, NULL, NULL, &local_err);

    qapi_free_SocketAddress(addr);

    if (local_err != NULL) {

        goto exit;

void nbd_client_new(QIOChannelSocket *sioc,

                    QCryptoTLSCreds *tlscreds,

                    const char *tlsaclname,

                    const char *tlsauthz,

                    void (*close_fn)(NBDClient *, bool));

void nbd_client_get(NBDClient *client);

void nbd_client_put(NBDClient *client);

void nbd_server_start(SocketAddress *addr, const char *tls_creds,

                      Error **errp);

                      const char *tls_authz, Error **errp);

/* nbd_read

 * Reads @size bytes from @ioc. Returns 0 on success.

    NBDExport *exp;

    QCryptoTLSCreds *tlscreds;

    char *tlsaclname;

    char *tlsauthz;

    QIOChannelSocket *sioc; /* The underlying data channel */

    QIOChannel *ioc; /* The current I/O channel which may differ (eg TLS) */

    tioc = qio_channel_tls_new_server(ioc,

                                      client->tlscreds,

                                      client->tlsaclname,

                                      client->tlsauthz,

                                      errp);

    if (!tioc) {

        return NULL;

        if (client->tlscreds) {

            object_unref(OBJECT(client->tlscreds));

        }

        g_free(client->tlsaclname);

        g_free(client->tlsauthz);

        if (client->exp) {

            QTAILQ_REMOVE(&client->exp->clients, client, next);

            nbd_export_put(client->exp);

 */

void nbd_client_new(QIOChannelSocket *sioc,

                    QCryptoTLSCreds *tlscreds,

                    const char *tlsaclname,

                    const char *tlsauthz,

                    void (*close_fn)(NBDClient *, bool))

{

    NBDClient *client;

    if (tlscreds) {

        object_ref(OBJECT(client->tlscreds));

    }

    client->tlsaclname = g_strdup(tlsaclname);

    client->tlsauthz = g_strdup(tlsauthz);

    client->sioc = sioc;

    object_ref(OBJECT(client->sioc));

    client->ioc = QIO_CHANNEL(sioc);

# QEMU instance could refer to them as "nbd:HOST:PORT:exportname=NAME".

#

# @addr: Address on which to listen.

# @tls-creds: (optional) ID of the TLS credentials object. Since 2.6

# @tls-creds: ID of the TLS credentials object (since 2.6).

# @tls-authz: ID of the QAuthZ authorization object used to validate

#             the client's x509 distinguished name. This object is

#             is only resolved at time of use, so can be deleted and

#             recreated on the fly while the NBD server is active.

#             If missing, it will default to denying access (since 4.0).

#

# Returns: error if the server is already running.

#

##

{ 'command': 'nbd-server-start',

  'data': { 'addr': 'SocketAddressLegacy',

            '*tls-creds': 'str'} }

            '*tls-creds': 'str',

            '*tls-authz': 'str'} }

##

# @nbd-server-add: