git.ipfire.org Git - thirdparty/libvirt.git/commit

author	John Ferlan <jferlan@redhat.com>
	Fri, 3 Mar 2017 12:22:16 +0000 (07:22 -0500)
committer	John Ferlan <jferlan@redhat.com>
	Sat, 25 Mar 2017 12:19:49 +0000 (08:19 -0400)
commit	1a6b6d9a5695890c24e56327df7d7c0f0acd1267
tree	207524612b97260b7ddadce9160eae5adb03e8ab	tree
parent	b9c09f805270fe843855be1c68a4c32069d40ec5	commit \| diff

qemu: Set up the migration TLS objects for target

If the migration flags indicate this migration will be using TLS,
then set up the destination during the prepare phase once the target
domain has been started to add the TLS objects to perform the migration.

This will create at least an "-object tls-creds-x509,endpoint=server,..."
for TLS credentials and potentially an "-object secret,..." to handle the
passphrase response to access the TLS credentials. The alias/id used for
the TLS objects will contain "libvirt_migrate".

Once the objects are created, the code will set the "tls-creds" and
"tls-hostname" migration parameters to signify usage of TLS.

During the Finish phase we'll be sure to attempt to clear the
migration parameters and delete those objects (whether or not they
were created). We'll also perform the same reset during recovery
if we've reached FINISH3.

If the migration isn't using TLS, then be sure to check if the
migration parameters exist and clear them if so.

src/qemu/qemu_domain.c		diff \| blob \| blame \| history
src/qemu/qemu_domain.h		diff \| blob \| blame \| history
src/qemu/qemu_migration.c		diff \| blob \| blame \| history
src/qemu/qemu_migration.h		diff \| blob \| blame \| history
src/qemu/qemu_process.c		diff \| blob \| blame \| history