Skip to content

Commit

Permalink
Update default settings in libvirtd.conf jinja template
Browse files Browse the repository at this point in the history 
Existing defaults are setup for tcp, and set ca_file to an empty string.
'If you set this to an empty string, then no trusted CA certificate is loaded.'

libvirt may complain 'unsupported configuration: No server certificate path
set to match server key', as such tls should also be explicitly set to 0.

Change-Id: I49c64808cb236dab1d9fa2e699d0a2f2fc54cc99
  • Loading branch information
@jamesmmccarthy
jamesmmccarthy committed Aug 10, 2017
1 parent cbf9309 commit 2442773
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions ansible/roles/nova/templates/libvirtd.conf.j2
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
listen_tcp = 1
listen_tls = 0
auth_tcp = "none"
ca_file = ""
log_level = 3
Expand Down

2 comments on commit 2442773

@gpaterno
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This problem is also present on 4.0.2 when building the underlying containers these days with latest patch. Please backport this to 4.0.x branch. Thanks

@xNaaro
Copy link
Contributor

@xNaaro xNaaro commented on 2442773 Oct 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is backported to stable/ocata branch. https://github.com/openstack/kolla-ansible/blob/stable/ocata/ansible/roles/nova/templates/libvirtd.conf.j2

Comments in github are not readed, openstack uses launchpad and gerrit for this kind of things. Was lucky someone sent this comment to the IRC by luck

Please sign in to comment.