> From: "Russell Bryant" <russ...@ovn.org> > To: "Lance Richardson" <lrich...@redhat.com> > Cc: "ovs dev" <d...@openvswitch.org> > Sent: Wednesday, March 22, 2017 4:02:28 PM > Subject: Re: [ovs-dev] [RFC] sandbox: use ssl for ovn-controller to sb db > connection > > On Wed, Mar 22, 2017 at 1:19 PM, Lance Richardson <lrich...@redhat.com> > wrote: > > When SSL support is available, use SSL for the ovn-controller > > to southbound database connection. When configured without > > SSL, unix socket connections are used. > > > > Signed-off-by: Lance Richardson <lrich...@redhat.com> > > --- > > tutorial/automake.mk | 3 ++- > > tutorial/ovs-sandbox | 42 ++++++++++++++++++++++++++++++++++++------ > > 2 files changed, 38 insertions(+), 7 deletions(-) > > I imagine you're using this to help with development and manual > testing of the ovsdb-server ACL work for OVN? I can see how it'd be > helpful for that so I'm OK with it. >
Right, that's my main interest in this at the moment. > I guess we're fairly confident that SSL is at least part of the > solution (either with generic ovsdb ACLs or a trusted daemon), so I > think we could merge this now. > OK. Even ignoring the ovsdb ACL work, it is probably reasonable to use SSL in the sandbox environment since (I believe) many OVN users will want to use SSL in production environments. > I haven't tested it myself yet. I'll give it a shot if you decide to > post the non-RFC version. > OK, I will re-post shortly. Thanks! Lance _______________________________________________ dev mailing list d...@openvswitch.org https://mail.openvswitch.org/mailman/listinfo/ovs-dev
