[PATCH 12/15] news: Introduce "migrate_tls_force" qemu.conf option
Peter Krempa
pkrempa at redhat.com
Tue Apr 13 07:26:17 UTC 2021
On Tue, Apr 13, 2021 at 15:08:42 +0800, Han Han wrote:
> Signed-off-by: Han Han <hhan at redhat.com>
> ---
> NEWS.rst | 5 +++++
> 1 file changed, 5 insertions(+)
>
> diff --git a/NEWS.rst b/NEWS.rst
> index fed80b6724..6cf790bc25 100644
> --- a/NEWS.rst
> +++ b/NEWS.rst
> @@ -335,6 +335,11 @@ v6.10.0 (2020-12-01)
> option is missing are now '1'. This ensures that only legitimate clients
> access servers, which don't have any additional form of authentication.
>
> + * conf: Introduce "migrate_tls_force" qemu.conf option
The we use 'conf' usually for VM configuration.
> +
> + Add this administrative knob to force use the VIR_MIGRATE_TLS flag with
> + migration, in case of sensitive information leak.
I'd word it as:
The ``migrate_tls_force`` configuration option allows administrators to
always force migration connections to be TLS secured as if
``VIR_MIGRATE_TLS`` flag was used.
> +
> * **New features**
>
> * qemu: Implement OpenSSH authorized key file management APIs
> --
> 2.31.1
>
More information about the libvir-list
mailing list