f8cfccb99e
To securely support live migration between computenodes we should enable tls, with cert auth, instead of TCP with no auth support. Implements: blueprint libvirt-tls Change-Id: I22ea6233933c840b853fdcc8e03400b2bf577271
25 lines
799 B
Django/Jinja
25 lines
799 B
Django/Jinja
[libvirt]
|
|
{% if libvirt_tls | bool %}
|
|
connection_uri = "qemu+tls://{{ migration_hostname }}/system"
|
|
live_migration_uri = "qemu+tls://%s/system"
|
|
{% else %}
|
|
connection_uri = "qemu+tcp://{{ migration_interface_address }}/system"
|
|
{% endif %}
|
|
{% if enable_ceph | bool and nova_backend == "rbd" %}
|
|
images_type = rbd
|
|
images_rbd_pool = {{ ceph_nova_pool_name }}
|
|
images_rbd_ceph_conf = /etc/ceph/ceph.conf
|
|
rbd_user = nova
|
|
disk_cachemodes="network=writeback"
|
|
{% if nova_hw_disk_discard != '' %}
|
|
hw_disk_discard = {{ nova_hw_disk_discard }}
|
|
{% endif %}
|
|
{% endif %}
|
|
{% if nova_backend == "rbd" and external_ceph_cephx_enabled | bool %}
|
|
rbd_secret_uuid = {{ rbd_secret_uuid }}
|
|
{% endif %}
|
|
virt_type = {{ nova_compute_virt_type }}
|
|
{% if nova_libvirt_cpu_mode %}
|
|
cpu_mode = {{ nova_libvirt_cpu_mode }}
|
|
{% endif %}
|