[PATCH] news: document improved certs, host validate details & TDX fix
From: Daniel P. Berrangé <berrange@redhat.com> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com> --- NEWS.rst | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) diff --git a/NEWS.rst b/NEWS.rst index 7c3a6c01e7..a41f53e00d 100644 --- a/NEWS.rst +++ b/NEWS.rst @@ -30,8 +30,25 @@ v11.10.0 (unreleased) Bhyve guests can now be configured to wait for a VNC connection before booting. + * remote: multiple certificate support + + The remote daemon and client can be configured to load multiple x509 + certificate identities. This facilitates a transition to certificates + supporting Post-Quantum Crytographic algorithms. + + * tools: improved virt-host-validate output + + The virt-host-validate tool will now report extra details when certain + checks pass. + * **Bug fixes** + * qemu: fix incorrect reporting of the TDX launch security type + + The TDX launch security type was incorrectly reported on all platforms + if the QEMU binary had it built-in. It is now limited to only platforms + with the TDX kernel feature available for use. + v11.9.0 (2025-11-03) ==================== -- 2.51.1
On Thu, Nov 27, 2025 at 13:59:52 +0000, Daniel P. Berrangé wrote:
From: Daniel P. Berrangé <berrange@redhat.com>
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com> --- NEWS.rst | 17 +++++++++++++++++ 1 file changed, 17 insertions(+)
diff --git a/NEWS.rst b/NEWS.rst index 7c3a6c01e7..a41f53e00d 100644 --- a/NEWS.rst +++ b/NEWS.rst @@ -30,8 +30,25 @@ v11.10.0 (unreleased) Bhyve guests can now be configured to wait for a VNC connection before booting.
+ * remote: multiple certificate support + + The remote daemon and client can be configured to load multiple x509 + certificate identities. This facilitates a transition to certificates + supporting Post-Quantum Crytographic algorithms. + + * tools: improved virt-host-validate output + + The virt-host-validate tool will now report extra details when certain + checks pass. + * **Bug fixes**
+ * qemu: fix incorrect reporting of the TDX launch security type + + The TDX launch security type was incorrectly reported on all platforms + if the QEMU binary had it built-in. It is now limited to only platforms + with the TDX kernel feature available for use. +
Reviewed-by: Jiri Denemark <jdenemar@redhat.com>
participants (2)
-
Daniel P. Berrangé -
Jiri Denemark