On 09/05/2016 07:48 AM, Michal Privoznik wrote:
> https://bugzilla.redhat.com/show_bug.cgi?id=1372613
>
> Apparently, some management applications use the following code
> pattern when waiting for a block job to finish:
>
> while (1) {
> virDomainGetBlockJobInfo(dom, disk, info, flags);
Modeled after the qemuDomainHostdevPrivatePtr (commit id '27726d8c'),
create a privateData pointer in the _virDomainChardevDef to allow storage
of private data for a hypervisor in order to at least temporarily store
secret data for usage during qemuBuildCommandLine.
NB: Since the
https://bugzilla.redhat.com/show_bug.cgi?id=1300776
Complete the implementation of support for TLS encryption on
chardev TCP transports by adding the hotplug ability of a secret
to generate the passwordid for the TLS object
Likewise, add the ability to hot unplug that secret object as well
Add an optional "disableTLS='yes'" option for a TCP chardev for the
express purpose to not enable setting up TLS for the chardev
Signed-off-by: John Ferlan
---
docs/formatdomain.html.in | 20 +
docs/schemas/domaincommon.rng
Add a new qemu.conf variables to store the UUID for the secret that could
be used to present credentials to access the TLS chardev. Since this will
be a server level and it's possible to use some sort of default, introduce
both the default and chardev logic at the same time making the setting of
v5:
http://www.redhat.com/archives/libvir-list/2016-August/msg00282.html
Patches 1-5 from that series already pushed
Patch 6 from that series is removed
Patch 7 is untouched and is patch 3 in this series
Patches 8-9 modified for new paradigm (patches 4-5 of this series)
Patch 1 [NEW] From patch
Add the secret object prior to the chardev tcp so the 'passwordid=' can
be added if the domain XML has a for the chardev TLS.
Signed-off-by: John Ferlan
---
src/qemu/qemu_command.c| 32 ++-
src/qemu/qemu_command.h|
In a full domain config, libvirt allows overriding the normal PCI
vs. PCI Express rules when a device address is explicitly provided
(so, e.g., you can force a legacy PCI device to plug into a PCIe port,
although libvirt would never do that on its own). However, due to a
bug libvirt doesn't give
Allows libvirt-perl to build with upstream libvirt.
Signed-off-by: John Ferlan
---
Changes| 1 +
Virt.xs| 1 +
lib/Sys/Virt/Secret.pm | 7 +++
3 files changed, 9 insertions(+)
diff --git a/Changes b/Changes
index 650b40c..8eb298a 100644
Allows libvirt-perl to build with upstream libvirt.
Signed-off-by: John Ferlan
---
Changes | 1 +
Virt.xs | 1 +
lib/Sys/Virt/Error.pm | 4
3 files changed, 6 insertions(+)
diff --git a/Changes b/Changes
index 8eb298a..c346ad1 100644
---
Couple of patches to allow build/test to work with upstream top
John Ferlan (2):
Add support for VIR_SECRET_USAGE_TYPE_TLS
Add support for ERR_AGENT_UNSYNCED
Changes| 2 ++
Virt.xs| 2 ++
lib/Sys/Virt/Error.pm | 4
lib/Sys/Virt/Secret.pm | 7 +++
4
On Thu, 2016-09-08 at 14:04 +, guido.rossmuel...@gdata.de wrote:
> Hello everybody,
>
> a colleague of me described last november a problem that we have with libvirt
> and xen
>
> https://www.redhat.com/archives/libvir-list/2015-November/msg00130.html
>
> Jim Fehlig provided for this
On Fri, Sep 09, 2016 at 11:31:07AM +0200, Michal Privoznik wrote:
> On 08.09.2016 16:15, Peter Krempa wrote:
> > On Thu, Sep 08, 2016 at 14:59:07 +0100, Daniel Berrange wrote:
> >> On Thu, Sep 08, 2016 at 03:50:40PM +0200, Michal Privoznik wrote:
> >
> > [...]
> >
> >> This is very different to
On 08.09.2016 16:15, Peter Krempa wrote:
> On Thu, Sep 08, 2016 at 14:59:07 +0100, Daniel Berrange wrote:
>> On Thu, Sep 08, 2016 at 03:50:40PM +0200, Michal Privoznik wrote:
>
> [...]
>
>> This is very different to how we deal with addressing for all other
>> types of device in libvirt, where
On Tue, Sep 06, 2016 at 06:29:38PM -0400, John Ferlan wrote:
>
>
> On 08/05/2016 04:25 AM, Daniel P. Berrange wrote:
> > On Thu, Aug 04, 2016 at 11:21:24AM -0400, John Ferlan wrote:
> >> Define, parse, and format a key secret element for a chardev tcp backend.
> >> This secret will be used in
27-May-16 11:05, Nikolay Shirokovskiy пишет:
There is already a patch [1] on this topic with a different approach - keep
nvram file by default. There is also some discussion there. To sum up keeping
nvram on undefine could be useful in some usecases so there should be an option
to do it. On
ping
On 27.05.2016 11:05, Nikolay Shirokovskiy wrote:
> There is already a patch [1] on this topic with a different approach - keep
> nvram file by default. There is also some discussion there. To sum up keeping
> nvram on undefine could be useful in some usecases so there should be an
>
17 matches
Mail list logo