On Tue, Apr 13, 2021 at 15:08:42 +0800, Han Han wrote: > Signed-off-by: Han Han <hhan@xxxxxxxxxx> > --- > NEWS.rst | 5 +++++ > 1 file changed, 5 insertions(+) > > diff --git a/NEWS.rst b/NEWS.rst > index fed80b6724..6cf790bc25 100644 > --- a/NEWS.rst > +++ b/NEWS.rst > @@ -335,6 +335,11 @@ v6.10.0 (2020-12-01) > option is missing are now '1'. This ensures that only legitimate clients > access servers, which don't have any additional form of authentication. > > + * conf: Introduce "migrate_tls_force" qemu.conf option The we use 'conf' usually for VM configuration. > + > + Add this administrative knob to force use the VIR_MIGRATE_TLS flag with > + migration, in case of sensitive information leak. I'd word it as: The ``migrate_tls_force`` configuration option allows administrators to always force migration connections to be TLS secured as if ``VIR_MIGRATE_TLS`` flag was used. > + > * **New features** > > * qemu: Implement OpenSSH authorized key file management APIs > -- > 2.31.1 >
