[Libguestfs] [PATCH] ESX: Always validate SSL certificate

Monday, 7 June 2010

Since fetching storage from ESX was split into separate HEAD and GET requests,
the SSL certificate has only been validated on the HEAD request. It should be
validated on both.
---
 lib/Sys/VirtV2V/Transfer/ESX.pm |    2 ++
 1 files changed, 2 insertions(+), 0 deletions(-)

diff --git a/lib/Sys/VirtV2V/Transfer/ESX.pm b/lib/Sys/VirtV2V/Transfer/ESX.pm
index f638149..5d6b586 100644
--- a/lib/Sys/VirtV2V/Transfer/ESX.pm
+++ b/lib/Sys/VirtV2V/Transfer/ESX.pm
@@ -143,6 +143,8 @@ sub get_volume
         my $died = $r->header('X-Died');
         die($died) if (defined($died));
 
+        $self->verify_certificate($r) unless ($self->{_v2v_noverify});
+
         # It reports success even if we didn't receive the whole file
         die(user_message(__x("Didn't receive full volume. Received {received}
".
                              "of {total} bytes.",
-- 
1.7.0.1


    

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

[Libguestfs] [PATCH] ESX: Always validate SSL certificate