Discussion:
[libvirt-users] Libvirt TLS with Short Lived Certificates
Charles Urquiola
2018-09-26 16:06:07 UTC
Permalink
I want to use short lived certificates with libvirtd to provided TLS access
to the daemon. New certificates are generated on a daily basis and
delivered to the host. Does libvirtd re-read TLS certificates with a
reload of the service, systemctl reload libvirtd, or with a SIGHUP or is a
full restart of the daemon required?

--charlie
Martin Kletzander
2018-10-01 12:27:07 UTC
Permalink
Post by Charles Urquiola
I want to use short lived certificates with libvirtd to provided TLS access
to the daemon. New certificates are generated on a daily basis and
delivered to the host. Does libvirtd re-read TLS certificates with a
reload of the service, systemctl reload libvirtd, or with a SIGHUP or is a
full restart of the daemon required?
If I'm reading the code correctly it needs a full restart. That's something
that could be changed so that it is done on reload as well. Care to submit a
proposal? O:-)
Post by Charles Urquiola
--charlie
_______________________________________________
libvirt-users mailing list
https://www.redhat.com/mailman/listinfo/libvirt-users
Loading...