[libvirt] [PATCH v4 00/10] Add TLS support for migration

John Ferlan jferlan at redhat.com
Thu Mar 23 23:02:01 UTC 2017 

v3: http://www.redhat.com/archives/libvir-list/2017-March/msg00878.html

Changes from v1

Patch 1: Fix the (false); to (0)
Patch 2: New to adjust the other (false); in qemu_conf.c
Patch 3: Alter the text slightly - also found that the client parameters
         are only required if *tls_x509_verify = 1, so adjust the descriptions
         to reflect that
Patch 4: Alter the vnc_* and chardev_* descriptions to match the migrate_*
Patch 5: Previous patch 3, ACK'd
Patch 6: Previous patch 4, altered comments
Patch 7: Previous patch 5, fixed commit message
Patch 8: Previous patch 6, multiple changes:
         - Reduced verbosity of comments
         - Rework the ResetTLS logic (combined code, fetched tls-creds if
           necessary again)
         - Add the qemuProcessRecoverMigrationIn call to ResetTLS in
           the FINISH3 stage
Patch 9: Previous patch 7, alter based on patch 7 adjustments vis-a-vis ResetTLS
Patch 10: Previous patch 8, alter text of description to include "migrate"

All changes were tested in my nested virt environment... 

A virsh qemu-monitor-command $DOM '{"execute":"query-migrate-parameters"}'
after the migrations were completed (back and forth) returned "" for tls-creds
and tls-hostname for each hostname (incoming and outgoing tests).

John Ferlan (10):
  qemu: Create #define for TLS configuration setup.
  qemu: Replace macro usage of (false); with just (0)
  conf: Introduce migrate_tls_x509_cert_dir
  qemu: Update the TLS client verify descriptions for vnc and chardev
  Add new migration flag VIR_MIGRATE_TLS
  qemu: Add TLS params to _qemuMonitorMigrationParams
  qemu: Add job for qemuDomain{Add|Del}TLSObjects
  qemu: Set up the migration TLS objects for target
  qemu: Set up the migration TLS objects for source
  docs: Add news entry for Migration using TLS

 docs/news.xml                      |   8 +
 include/libvirt/libvirt-domain.h   |   8 +
 src/qemu/libvirtd_qemu.aug         |   5 +
 src/qemu/qemu.conf                 |  63 ++++++-
 src/qemu/qemu_conf.c               |  47 +++--
 src/qemu/qemu_conf.h               |   4 +
 src/qemu/qemu_domain.c             |   7 +-
 src/qemu/qemu_domain.h             |  91 ++++++----
 src/qemu/qemu_driver.c             |   4 +-
 src/qemu/qemu_hotplug.c            |  24 ++-
 src/qemu/qemu_hotplug.h            |   2 +
 src/qemu/qemu_migration.c          | 363 ++++++++++++++++++++++++++++++++++++-
 src/qemu/qemu_migration.h          |  16 +-
 src/qemu/qemu_monitor.c            |  11 +-
 src/qemu/qemu_monitor.h            |   5 +
 src/qemu/qemu_monitor_json.c       |  21 +++
 src/qemu/qemu_process.c            |   3 +
 src/qemu/test_libvirtd_qemu.aug.in |   3 +
 tests/qemumonitorjsontest.c        |  25 ++-
 tools/virsh-domain.c               |   7 +
 20 files changed, 641 insertions(+), 76 deletions(-)

-- 
2.9.3

More information about the libvir-list mailing list