On Tue, Apr 13, 2021 at 15:08:42 +0800, Han Han wrote:
Signed-off-by: Han Han <hhan@redhat.com> --- NEWS.rst | 5 +++++ 1 file changed, 5 insertions(+)
diff --git a/NEWS.rst b/NEWS.rst index fed80b6724..6cf790bc25 100644 --- a/NEWS.rst +++ b/NEWS.rst @@ -335,6 +335,11 @@ v6.10.0 (2020-12-01) option is missing are now '1'. This ensures that only legitimate clients access servers, which don't have any additional form of authentication.
+ * conf: Introduce "migrate_tls_force" qemu.conf option
The we use 'conf' usually for VM configuration.
+ + Add this administrative knob to force use the VIR_MIGRATE_TLS flag with + migration, in case of sensitive information leak.
I'd word it as: The ``migrate_tls_force`` configuration option allows administrators to always force migration connections to be TLS secured as if ``VIR_MIGRATE_TLS`` flag was used.
+ * **New features**
* qemu: Implement OpenSSH authorized key file management APIs -- 2.31.1