Re: [libvirt] [PATCH v2] libvirtd: clarify the TLS conf default vaule setting

Monday, 22 January 2018

On Fri, Jan 19, 2018 at 05:20:10PM -0500, John Ferlan wrote:

[...]

...
 More simply stated:

 Provide more details related to the requirement that setting one
 of the values requires setting all of them. 
Sounds clearer.

[...]

...
 How about this instead:

 # Use of TLS requires that x509 certificates be issued. The default locations
 # for the certificate files is as follows:
 #
 #   /etc/pki/CA/cacert.pem                 - The CA master certificate
 #   /etc/pki/libvirt/servercert.pem        - The server certificate signed with
 #                                            the cacert.pem
 #   /etc/pki/libvirt/private/serverkey.pem - The server private key
 #
 # It is possible to override the default locations by altering the 'key_file',
 # 'cert_file', and 'ca_file' values and uncommenting them below.
 #
 # NB, overriding the default of one location requires uncommenting and
 # possibly additionally overriding the other settings.
 # 
Noticed this change randomly.  The above looks much better to me.  So,
if we go with the above: 

Reviewed-by: Kashyap Chamarthy <kchamart(a)redhat.com&gt;

-- 
/kashyap

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Re: [libvirt] [PATCH v2] libvirtd: clarify the TLS conf default vaule setting