Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-18 Thread John Ferlan
On 10/18/2016 07:21 AM, Daniel P. Berrange wrote: > On Tue, Oct 18, 2016 at 06:59:57AM -0400, John Ferlan wrote: >> >> >> On 10/18/2016 02:27 AM, Pavel Hrdina wrote: >> [...] >> "As default behaviour I think it is desirable that we can turn TLS on for every VM at once - I tend to

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-18 Thread Daniel P. Berrange
On Tue, Oct 18, 2016 at 06:59:57AM -0400, John Ferlan wrote: > > > On 10/18/2016 02:27 AM, Pavel Hrdina wrote: > [...] > > >> > >> "As default behaviour I think it is desirable that we can turn TLS on > >> for every VM at once - I tend to view it as a host network integration > >> task, rather

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-18 Thread Pavel Hrdina
On Tue, Oct 18, 2016 at 06:59:57AM -0400, John Ferlan wrote: > > > On 10/18/2016 02:27 AM, Pavel Hrdina wrote: > [...] > > >> > >> "As default behaviour I think it is desirable that we can turn TLS on > >> for every VM at once - I tend to view it as a host network integration > >> task, rather

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-18 Thread John Ferlan
On 10/18/2016 02:27 AM, Pavel Hrdina wrote: [...] >> >> "As default behaviour I think it is desirable that we can turn TLS on >> for every VM at once - I tend to view it as a host network integration >> task, rather than a VM configuration task. Same rationale that we use >> for TLS wth

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-18 Thread Pavel Hrdina
On Mon, Oct 17, 2016 at 11:24:58AM -0400, John Ferlan wrote: > > > On 10/17/2016 10:37 AM, Pavel Hrdina wrote: > > On Mon, Oct 17, 2016 at 09:54:46AM -0400, John Ferlan wrote: > >> > >> > >> On 10/17/2016 04:09 AM, Pavel Hrdina wrote: > >>> On Fri, Oct 14, 2016 at 04:23:04PM -0400, John Ferlan

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-17 Thread John Ferlan
On 10/17/2016 10:37 AM, Pavel Hrdina wrote: > On Mon, Oct 17, 2016 at 09:54:46AM -0400, John Ferlan wrote: >> >> >> On 10/17/2016 04:09 AM, Pavel Hrdina wrote: >>> On Fri, Oct 14, 2016 at 04:23:04PM -0400, John Ferlan wrote: Add an optional "tls='yes|no'" attribute for a TCP chardev for the

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-17 Thread Pavel Hrdina
On Mon, Oct 17, 2016 at 09:54:46AM -0400, John Ferlan wrote: > > > On 10/17/2016 04:09 AM, Pavel Hrdina wrote: > > On Fri, Oct 14, 2016 at 04:23:04PM -0400, John Ferlan wrote: > >> Add an optional "tls='yes|no'" attribute for a TCP chardev for the > >> express purpose to disable setting up TLS

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-17 Thread John Ferlan
On 10/17/2016 04:09 AM, Pavel Hrdina wrote: > On Fri, Oct 14, 2016 at 04:23:04PM -0400, John Ferlan wrote: >> Add an optional "tls='yes|no'" attribute for a TCP chardev for the >> express purpose to disable setting up TLS for the specific chardev in >> the event the qemu.conf settings have

Re: [libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-17 Thread Pavel Hrdina
On Fri, Oct 14, 2016 at 04:23:04PM -0400, John Ferlan wrote: > Add an optional "tls='yes|no'" attribute for a TCP chardev for the > express purpose to disable setting up TLS for the specific chardev in > the event the qemu.conf settings have enabled hypervisor wide TLS for > serial TCP chardevs. >

[libvirt] [PATCH v9 1/5] domain: Add optional 'tls' attribute for TCP chardev

2016-10-14 Thread John Ferlan
Add an optional "tls='yes|no'" attribute for a TCP chardev for the express purpose to disable setting up TLS for the specific chardev in the event the qemu.conf settings have enabled hypervisor wide TLS for serial TCP chardevs. Signed-off-by: John Ferlan ---