virt-ark / libvirt

Clone
Source Code
GIT

bd6fdcd conf: Introduce TLS options for VxHS block device clients

5 files Authored by Ashish Mittal 6 years ago, Committed by John Ferlan 6 years ago,
raw patch tree parent
5 files changed. 59 lines added. 0 lines removed.
src/qemu/libvirtd_qemu.aug
file modified
+4 -0
src/qemu/qemu.conf
file modified
+34 -0
src/qemu/qemu_conf.c
file modified
+16 -0
src/qemu/qemu_conf.h
file modified
+3 -0
src/qemu/test_libvirtd_qemu.aug.in
file modified
+2 -0 
    conf: Introduce TLS options for VxHS block device clients
    
    Add a new TLS X.509 certificate type - "vxhs". This will handle the
    creation of a TLS certificate capability for properly configured
    VxHS network block device clients.
    
    The following describes the behavior of TLS for VxHS block device:
    
      (1) Two new options have been added in /etc/libvirt/qemu.conf
          to control TLS behavior with VxHS block devices
          "vxhs_tls" and "vxhs_tls_x509_cert_dir".
      (2) Setting "vxhs_tls=1" in /etc/libvirt/qemu.conf will enable
          TLS for VxHS block devices.
      (3) "vxhs_tls_x509_cert_dir" can be set to the full path where the
          TLS CA certificate and the client certificate and keys are saved.
          If this value is missing, the "default_tls_x509_cert_dir" will be
          used instead. If the environment is not configured properly the
          authentication to the VxHS server will fail.
    
    Signed-off-by: Ashish Mittal <Ashish.Mittal@veritas.com>
    Signed-off-by: John Ferlan <jferlan@redhat.com>
file modified
+4 -0
file modified
+34 -0
file modified
+16 -0
file modified
+3 -0
file modified
+2 -0
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.