[libvirt] Fwd: libvirt secret support password or encryption keys?

Zhimou Peng zhpeng at redhat.com
Wed Jun 20 02:32:55 UTC 2012 

Hi Eric,

I'm not understand this before. Thanks!

zhpeng
BR

----- Original Message -----
From: "Eric Blake" <eblake at redhat.com>
To: "Zhimou Peng" <zhpeng at redhat.com>
Cc: libvir-list at redhat.com, "s3-bug-review" <s3-bug-review at redhat.com>
Sent: Wednesday, June 20, 2012 6:22:08 AM
Subject: Re: [libvirt] Fwd: libvirt secret support password or encryption keys?

On 06/19/2012 03:38 AM, Zhimou Peng wrote:
> FWD
> 
> Hi, all
> PLS help, i'm reviewing man doc of libvirt secrets
> 
> # man virsh
> ...
> SECRET COMMMANDS
>        The following commands manipulate "secrets" (e.g. passwords, passphrases       -----> secret-set-value only support base64 "passphrases"

secret-set-value supports _all_ types of secrets, since a secret is
_any_ base64-encoded text.  Whether you use that secret information as a
password, a passphrase, and encryption key, or something else is up to
how you have connected that secret to the rest of your virtual machine
management.

>        and encryption keys).  Libvirt can store secrets independently from their              
>        use, and other objects (e.g. volumes or domains) can refer to the secrets           
>        for encryption or possibly other uses.  Secrets are identified using an
>        UUID.  See <http://libvirt.org/formatsecret.html> for documentation of
>        the XML format used to represent properties of secrets.
> ...
> 
> So, I want to know that if libvirt support other 2 kinds of "secrets". And if so, How to use password and encrytion keys ? If libvirt not support that, i will file a bug of this man doc.

I'm not sure where you are getting confused; would it help if the man
page for 'secret-set-value' used the term 'secret' instead of
'passphrase', since 'secret' is the generic term for any base64-encoded
data that must be kept secret?  You are welcome to submit a patch
yourself; the man page source is in tools/virsh.pod.

-- 
Eric Blake   eblake at redhat.com    +1-919-301-3266
Libvirt virtualization library http://libvirt.org

More information about the libvir-list mailing list