80d0c00d54
The NBD protocol previously runs in clear text, offering no security protection for the data transferred, unless it is tunnelled over some external transport like SSH. Such tunnelling is inefficient and inconvenient to manage. Support for TLS to the NBD clients & servers provided by QEMU was added. This adds support to configure ndb related qemu.conf parameters. Since libvirt >= 4.5 is required ::nova::compute::libvirt::version checks the OS version to map the libvirt version we can expect and only configured the nbd parameter then. Change-Id: Ifa5cf08d5104a62c9c094e3585de33e19e265110 Related-Bug: 1793093
12 lines
478 B
YAML
12 lines
478 B
YAML
---
|
|
features:
|
|
- |
|
|
Add support for native TLS encryption on NBD for disk migration
|
|
|
|
The NBD protocol previously runs in clear text, offering no security
|
|
protection for the data transferred, unless it is tunnelled over some
|
|
external transport like SSH. Such tunnelling is inefficient and
|
|
inconvenient to manage. Support for TLS to the NBD clients & servers
|
|
provided by QEMU was added. This adds support to configure ndb related
|
|
qemu.conf parameters.
|