libvirtd: clarify the TLS conf default value setting

Provide more details related to the requirement that setting one of the values requires setting all of them. Signed-off-by: N Chen Hanxiao <chenhanxiao@gmail.com> Reviewed-by: N John Ferlan <jferlan@redhat.com>

libvirtd: clarify the TLS conf default value setting
Provide more details related to the requirement that setting one of the values requires setting all of them. Signed-off-by: N Chen Hanxiao <chenhanxiao@gmail.com> Reviewed-by: N John Ferlan <jferlan@redhat.com>
9d34af1a · Chen Hanxiao · John Ferlan · 1b0c42ff · 9d34af1a
显示空白变更内容
内联并排

Showing with 14 addition and 0 deletion

daemon/libvirtd.conf daemon/libvirtd.conf +14 -0

未找到文件。
--- a/daemon/libvirtd.conf
+++ b/daemon/libvirtd.conf
@@ -182,6 +182,20 @@
 # TLS x509 certificate configuration
 #

+# Use of TLS requires that x509 certificates be issued. The default locations
+# for the certificate files is as follows:
+#
+#   /etc/pki/CA/cacert.pem                 - The CA master certificate
+#   /etc/pki/libvirt/servercert.pem        - The server certificate signed with
+#                                            the cacert.pem
+#   /etc/pki/libvirt/private/serverkey.pem - The server private key
+#
+# It is possible to override the default locations by altering the 'key_file',
+# 'cert_file', and 'ca_file' values and uncommenting them below.
+#
+# NB, overriding the default of one location requires uncommenting and
+# possibly additionally overriding the other settings.
+#

 # Override the default server key file path
 #