mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2025-03-20 07:59:00 +00:00
remote: conditionalize IP socket usage in libvirtd daemon
Prepare for reusing libvirtd source to create other daemons by making the use of IP sockets conditionally defined by the make rules. The main libvirtd daemon will retain IP listen ability, but all the driver specific daemons will be local UNIX sockets only. Apps needing IP connectivity will connect via the libvirtd daemon which will proxy to the driver specfic daemon. Reviewed-by: Christophe de Dinechin <dinechin@redhat.com> Reviewed-by: Andrea Bolognani <abologna@redhat.com> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
This commit is contained in:
Daniel P. Berrangé
parent
5d3475c8dc
commit
2204585167
@ -148,6 +148,7 @@ libvirtd_CFLAGS = \
|
|||||||
-I$(srcdir)/rpc \
|
-I$(srcdir)/rpc \
|
||||||
-DSOCK_PREFIX="\"libvirt\"" \
|
-DSOCK_PREFIX="\"libvirt\"" \
|
||||||
-DDAEMON_NAME="\"libvirtd\"" \
|
-DDAEMON_NAME="\"libvirtd\"" \
|
||||||
|
-DWITH_IP \
|
||||||
$(NULL)
|
$(NULL)
|
||||||
|
|
||||||
libvirtd_LDFLAGS = \
|
libvirtd_LDFLAGS = \
|
||||||
|
|||||||
@ -381,11 +381,13 @@ static int ATTRIBUTE_NONNULL(3)
|
|||||||
daemonSetupNetworking(virNetServerPtr srv,
|
daemonSetupNetworking(virNetServerPtr srv,
|
||||||
virNetServerPtr srvAdm,
|
virNetServerPtr srvAdm,
|
||||||
struct daemonConfig *config,
|
struct daemonConfig *config,
|
||||||
|
#ifdef WITH_IP
|
||||||
|
bool ipsock,
|
||||||
|
bool privileged,
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
const char *sock_path,
|
const char *sock_path,
|
||||||
const char *sock_path_ro,
|
const char *sock_path_ro,
|
||||||
const char *sock_path_adm,
|
const char *sock_path_adm)
|
||||||
bool ipsock,
|
|
||||||
bool privileged)
|
|
||||||
{
|
{
|
||||||
gid_t unix_sock_gid = 0;
|
gid_t unix_sock_gid = 0;
|
||||||
int unix_sock_ro_mask = 0;
|
int unix_sock_ro_mask = 0;
|
||||||
@ -397,15 +399,19 @@ daemonSetupNetworking(virNetServerPtr srv,
|
|||||||
{ .name = DAEMON_NAME ".socket", .family = AF_UNIX, .path = sock_path },
|
{ .name = DAEMON_NAME ".socket", .family = AF_UNIX, .path = sock_path },
|
||||||
{ .name = DAEMON_NAME "-ro.socket", .family = AF_UNIX, .path = sock_path_ro },
|
{ .name = DAEMON_NAME "-ro.socket", .family = AF_UNIX, .path = sock_path_ro },
|
||||||
{ .name = DAEMON_NAME "-admin.socket", .family = AF_UNIX, .path = sock_path_adm },
|
{ .name = DAEMON_NAME "-admin.socket", .family = AF_UNIX, .path = sock_path_adm },
|
||||||
|
#ifdef WITH_IP
|
||||||
{ .name = DAEMON_NAME "-tcp.socket", .family = AF_INET },
|
{ .name = DAEMON_NAME "-tcp.socket", .family = AF_INET },
|
||||||
{ .name = DAEMON_NAME "-tls.socket", .family = AF_INET },
|
{ .name = DAEMON_NAME "-tls.socket", .family = AF_INET },
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
};
|
};
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
if ((actmap[3].port = virSocketAddrResolveService(config->tcp_port)) < 0)
|
if ((actmap[3].port = virSocketAddrResolveService(config->tcp_port)) < 0)
|
||||||
return -1;
|
return -1;
|
||||||
|
|
||||||
if ((actmap[4].port = virSocketAddrResolveService(config->tls_port)) < 0)
|
if ((actmap[4].port = virSocketAddrResolveService(config->tls_port)) < 0)
|
||||||
return -1;
|
return -1;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
if (virSystemdGetActivation(actmap, ARRAY_CARDINALITY(actmap), &act) < 0)
|
if (virSystemdGetActivation(actmap, ARRAY_CARDINALITY(actmap), &act) < 0)
|
||||||
return -1;
|
return -1;
|
||||||
@ -470,6 +476,7 @@ daemonSetupNetworking(virNetServerPtr srv,
|
|||||||
config->admin_max_client_requests) < 0)
|
config->admin_max_client_requests) < 0)
|
||||||
goto cleanup;
|
goto cleanup;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
if (((ipsock && config->listen_tcp) || act) &&
|
if (((ipsock && config->listen_tcp) || act) &&
|
||||||
virNetServerAddServiceTCP(srv,
|
virNetServerAddServiceTCP(srv,
|
||||||
act,
|
act,
|
||||||
@ -544,6 +551,7 @@ daemonSetupNetworking(virNetServerPtr srv,
|
|||||||
}
|
}
|
||||||
virObjectUnref(ctxt);
|
virObjectUnref(ctxt);
|
||||||
}
|
}
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
if (act &&
|
if (act &&
|
||||||
virSystemdActivationComplete(act) < 0)
|
virSystemdActivationComplete(act) < 0)
|
||||||
@ -892,7 +900,9 @@ daemonUsage(const char *argv0, bool privileged)
|
|||||||
{ "-h | --help", N_("Display program help") },
|
{ "-h | --help", N_("Display program help") },
|
||||||
{ "-v | --verbose", N_("Verbose messages") },
|
{ "-v | --verbose", N_("Verbose messages") },
|
||||||
{ "-d | --daemon", N_("Run as a daemon & write PID file") },
|
{ "-d | --daemon", N_("Run as a daemon & write PID file") },
|
||||||
|
#ifdef WITH_IP
|
||||||
{ "-l | --listen", N_("Listen for TCP/IP connections") },
|
{ "-l | --listen", N_("Listen for TCP/IP connections") },
|
||||||
|
#endif /* !WITH_IP */
|
||||||
{ "-t | --timeout <secs>", N_("Exit after timeout period") },
|
{ "-t | --timeout <secs>", N_("Exit after timeout period") },
|
||||||
{ "-f | --config <file>", N_("Configuration file") },
|
{ "-f | --config <file>", N_("Configuration file") },
|
||||||
{ "-V | --version", N_("Display version information") },
|
{ "-V | --version", N_("Display version information") },
|
||||||
@ -930,6 +940,7 @@ daemonUsage(const char *argv0, bool privileged)
|
|||||||
LOCALSTATEDIR, SOCK_PREFIX);
|
LOCALSTATEDIR, SOCK_PREFIX);
|
||||||
fprintf(stderr, "\n");
|
fprintf(stderr, "\n");
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
fprintf(stderr, " %s\n", _("TLS:"));
|
fprintf(stderr, " %s\n", _("TLS:"));
|
||||||
fprintf(stderr, " %s %s\n",
|
fprintf(stderr, " %s %s\n",
|
||||||
_("CA certificate:"),
|
_("CA certificate:"),
|
||||||
@ -941,6 +952,7 @@ daemonUsage(const char *argv0, bool privileged)
|
|||||||
_("Server private key:"),
|
_("Server private key:"),
|
||||||
privileged ? LIBVIRT_SERVERKEY : "$HOME/.pki/libvirt/serverkey.pem");
|
privileged ? LIBVIRT_SERVERKEY : "$HOME/.pki/libvirt/serverkey.pem");
|
||||||
fprintf(stderr, "\n");
|
fprintf(stderr, "\n");
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
fprintf(stderr, " %s\n",
|
fprintf(stderr, " %s\n",
|
||||||
_("PID file (unless overridden by -p):"));
|
_("PID file (unless overridden by -p):"));
|
||||||
@ -967,7 +979,9 @@ int main(int argc, char **argv) {
|
|||||||
int timeout = -1; /* -t: Shutdown timeout */
|
int timeout = -1; /* -t: Shutdown timeout */
|
||||||
int verbose = 0;
|
int verbose = 0;
|
||||||
int godaemon = 0;
|
int godaemon = 0;
|
||||||
|
#ifdef WITH_IP
|
||||||
int ipsock = 0;
|
int ipsock = 0;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
struct daemonConfig *config;
|
struct daemonConfig *config;
|
||||||
bool privileged = geteuid() == 0 ? true : false;
|
bool privileged = geteuid() == 0 ? true : false;
|
||||||
bool implicit_conf = false;
|
bool implicit_conf = false;
|
||||||
@ -977,7 +991,9 @@ int main(int argc, char **argv) {
|
|||||||
struct option opts[] = {
|
struct option opts[] = {
|
||||||
{ "verbose", no_argument, &verbose, 'v'},
|
{ "verbose", no_argument, &verbose, 'v'},
|
||||||
{ "daemon", no_argument, &godaemon, 'd'},
|
{ "daemon", no_argument, &godaemon, 'd'},
|
||||||
|
#ifdef WITH_IP
|
||||||
{ "listen", no_argument, &ipsock, 'l'},
|
{ "listen", no_argument, &ipsock, 'l'},
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
{ "config", required_argument, NULL, 'f'},
|
{ "config", required_argument, NULL, 'f'},
|
||||||
{ "timeout", required_argument, NULL, 't'},
|
{ "timeout", required_argument, NULL, 't'},
|
||||||
{ "pid-file", required_argument, NULL, 'p'},
|
{ "pid-file", required_argument, NULL, 'p'},
|
||||||
@ -1000,8 +1016,13 @@ int main(int argc, char **argv) {
|
|||||||
int optidx = 0;
|
int optidx = 0;
|
||||||
int c;
|
int c;
|
||||||
char *tmp;
|
char *tmp;
|
||||||
|
#ifdef WITH_IP
|
||||||
|
const char *optstr = "ldf:p:t:vVh";
|
||||||
|
#else /* ! WITH_IP */
|
||||||
|
const char *optstr = "df:p:t:vVh";
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
c = getopt_long(argc, argv, "ldf:p:t:vVh", opts, &optidx);
|
c = getopt_long(argc, argv, optstr, opts, &optidx);
|
||||||
|
|
||||||
if (c == -1)
|
if (c == -1)
|
||||||
break;
|
break;
|
||||||
@ -1016,9 +1037,12 @@ int main(int argc, char **argv) {
|
|||||||
case 'd':
|
case 'd':
|
||||||
godaemon = 1;
|
godaemon = 1;
|
||||||
break;
|
break;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
case 'l':
|
case 'l':
|
||||||
ipsock = 1;
|
ipsock = 1;
|
||||||
break;
|
break;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
case 't':
|
case 't':
|
||||||
if (virStrToLong_i(optarg, &tmp, 10, &timeout) != 0
|
if (virStrToLong_i(optarg, &tmp, 10, &timeout) != 0
|
||||||
@ -1332,10 +1356,13 @@ int main(int argc, char **argv) {
|
|||||||
|
|
||||||
if (daemonSetupNetworking(srv, srvAdm,
|
if (daemonSetupNetworking(srv, srvAdm,
|
||||||
config,
|
config,
|
||||||
|
#ifdef WITH_IP
|
||||||
|
ipsock,
|
||||||
|
privileged,
|
||||||
|
#endif /* !WITH_IP */
|
||||||
sock_file,
|
sock_file,
|
||||||
sock_file_ro,
|
sock_file_ro,
|
||||||
sock_file_adm,
|
sock_file_adm) < 0) {
|
||||||
ipsock, privileged) < 0) {
|
|
||||||
ret = VIR_DAEMON_ERR_NETWORK;
|
ret = VIR_DAEMON_ERR_NETWORK;
|
||||||
goto cleanup;
|
goto cleanup;
|
||||||
}
|
}
|
||||||
|
|||||||
@ -107,12 +107,14 @@ daemonConfigNew(bool privileged ATTRIBUTE_UNUSED)
|
|||||||
if (VIR_ALLOC(data) < 0)
|
if (VIR_ALLOC(data) < 0)
|
||||||
return NULL;
|
return NULL;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
data->listen_tls = 1;
|
data->listen_tls = 1;
|
||||||
data->listen_tcp = 0;
|
data->listen_tcp = 0;
|
||||||
|
|
||||||
if (VIR_STRDUP(data->tls_port, LIBVIRTD_TLS_PORT) < 0 ||
|
if (VIR_STRDUP(data->tls_port, LIBVIRTD_TLS_PORT) < 0 ||
|
||||||
VIR_STRDUP(data->tcp_port, LIBVIRTD_TCP_PORT) < 0)
|
VIR_STRDUP(data->tcp_port, LIBVIRTD_TCP_PORT) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
#endif /* !WITH_IP */
|
||||||
|
|
||||||
/* Only default to PolicyKit if running as root */
|
/* Only default to PolicyKit if running as root */
|
||||||
#if WITH_POLKIT
|
#if WITH_POLKIT
|
||||||
@ -133,12 +135,14 @@ daemonConfigNew(bool privileged ATTRIBUTE_UNUSED)
|
|||||||
VIR_STRDUP(data->unix_sock_admin_perms, "0700") < 0)
|
VIR_STRDUP(data->unix_sock_admin_perms, "0700") < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
|
||||||
#if WITH_SASL
|
#ifdef WITH_IP
|
||||||
|
# if WITH_SASL
|
||||||
data->auth_tcp = REMOTE_AUTH_SASL;
|
data->auth_tcp = REMOTE_AUTH_SASL;
|
||||||
#else
|
# else
|
||||||
data->auth_tcp = REMOTE_AUTH_NONE;
|
data->auth_tcp = REMOTE_AUTH_NONE;
|
||||||
#endif
|
# endif
|
||||||
data->auth_tls = REMOTE_AUTH_NONE;
|
data->auth_tls = REMOTE_AUTH_NONE;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
data->min_workers = 5;
|
data->min_workers = 5;
|
||||||
data->max_workers = 20;
|
data->max_workers = 20;
|
||||||
@ -182,9 +186,12 @@ daemonConfigFree(struct daemonConfig *data)
|
|||||||
if (!data)
|
if (!data)
|
||||||
return;
|
return;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
VIR_FREE(data->listen_addr);
|
VIR_FREE(data->listen_addr);
|
||||||
VIR_FREE(data->tls_port);
|
VIR_FREE(data->tls_port);
|
||||||
VIR_FREE(data->tcp_port);
|
VIR_FREE(data->tcp_port);
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
tmp = data->access_drivers;
|
tmp = data->access_drivers;
|
||||||
while (tmp && *tmp) {
|
while (tmp && *tmp) {
|
||||||
VIR_FREE(*tmp);
|
VIR_FREE(*tmp);
|
||||||
@ -198,6 +205,14 @@ daemonConfigFree(struct daemonConfig *data)
|
|||||||
VIR_FREE(data->unix_sock_group);
|
VIR_FREE(data->unix_sock_group);
|
||||||
VIR_FREE(data->unix_sock_dir);
|
VIR_FREE(data->unix_sock_dir);
|
||||||
|
|
||||||
|
tmp = data->sasl_allowed_username_list;
|
||||||
|
while (tmp && *tmp) {
|
||||||
|
VIR_FREE(*tmp);
|
||||||
|
tmp++;
|
||||||
|
}
|
||||||
|
VIR_FREE(data->sasl_allowed_username_list);
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
tmp = data->tls_allowed_dn_list;
|
tmp = data->tls_allowed_dn_list;
|
||||||
while (tmp && *tmp) {
|
while (tmp && *tmp) {
|
||||||
VIR_FREE(*tmp);
|
VIR_FREE(*tmp);
|
||||||
@ -205,18 +220,13 @@ daemonConfigFree(struct daemonConfig *data)
|
|||||||
}
|
}
|
||||||
VIR_FREE(data->tls_allowed_dn_list);
|
VIR_FREE(data->tls_allowed_dn_list);
|
||||||
|
|
||||||
tmp = data->sasl_allowed_username_list;
|
|
||||||
while (tmp && *tmp) {
|
|
||||||
VIR_FREE(*tmp);
|
|
||||||
tmp++;
|
|
||||||
}
|
|
||||||
VIR_FREE(data->sasl_allowed_username_list);
|
|
||||||
VIR_FREE(data->tls_priority);
|
VIR_FREE(data->tls_priority);
|
||||||
|
|
||||||
VIR_FREE(data->key_file);
|
VIR_FREE(data->key_file);
|
||||||
VIR_FREE(data->ca_file);
|
VIR_FREE(data->ca_file);
|
||||||
VIR_FREE(data->cert_file);
|
VIR_FREE(data->cert_file);
|
||||||
VIR_FREE(data->crl_file);
|
VIR_FREE(data->crl_file);
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
VIR_FREE(data->host_uuid);
|
VIR_FREE(data->host_uuid);
|
||||||
VIR_FREE(data->host_uuid_source);
|
VIR_FREE(data->host_uuid_source);
|
||||||
@ -231,6 +241,7 @@ daemonConfigLoadOptions(struct daemonConfig *data,
|
|||||||
const char *filename,
|
const char *filename,
|
||||||
virConfPtr conf)
|
virConfPtr conf)
|
||||||
{
|
{
|
||||||
|
#ifdef WITH_IP
|
||||||
if (virConfGetValueBool(conf, "listen_tcp", &data->listen_tcp) < 0)
|
if (virConfGetValueBool(conf, "listen_tcp", &data->listen_tcp) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
if (virConfGetValueBool(conf, "listen_tls", &data->listen_tls) < 0)
|
if (virConfGetValueBool(conf, "listen_tls", &data->listen_tls) < 0)
|
||||||
@ -241,6 +252,7 @@ daemonConfigLoadOptions(struct daemonConfig *data,
|
|||||||
goto error;
|
goto error;
|
||||||
if (virConfGetValueString(conf, "listen_addr", &data->listen_addr) < 0)
|
if (virConfGetValueString(conf, "listen_addr", &data->listen_addr) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
#endif /* !WITH_IP */
|
||||||
|
|
||||||
if (remoteConfigGetAuth(conf, filename, "auth_unix_rw", &data->auth_unix_rw) < 0)
|
if (remoteConfigGetAuth(conf, filename, "auth_unix_rw", &data->auth_unix_rw) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
@ -256,10 +268,13 @@ daemonConfigLoadOptions(struct daemonConfig *data,
|
|||||||
#endif
|
#endif
|
||||||
if (remoteConfigGetAuth(conf, filename, "auth_unix_ro", &data->auth_unix_ro) < 0)
|
if (remoteConfigGetAuth(conf, filename, "auth_unix_ro", &data->auth_unix_ro) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
if (remoteConfigGetAuth(conf, filename, "auth_tcp", &data->auth_tcp) < 0)
|
if (remoteConfigGetAuth(conf, filename, "auth_tcp", &data->auth_tcp) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
if (remoteConfigGetAuth(conf, filename, "auth_tls", &data->auth_tls) < 0)
|
if (remoteConfigGetAuth(conf, filename, "auth_tls", &data->auth_tls) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
if (virConfGetValueStringList(conf, "access_drivers", false,
|
if (virConfGetValueStringList(conf, "access_drivers", false,
|
||||||
&data->access_drivers) < 0)
|
&data->access_drivers) < 0)
|
||||||
@ -277,6 +292,7 @@ daemonConfigLoadOptions(struct daemonConfig *data,
|
|||||||
if (virConfGetValueString(conf, "unix_sock_dir", &data->unix_sock_dir) < 0)
|
if (virConfGetValueString(conf, "unix_sock_dir", &data->unix_sock_dir) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
if (virConfGetValueBool(conf, "tls_no_sanity_certificate", &data->tls_no_sanity_certificate) < 0)
|
if (virConfGetValueBool(conf, "tls_no_sanity_certificate", &data->tls_no_sanity_certificate) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
if (virConfGetValueBool(conf, "tls_no_verify_certificate", &data->tls_no_verify_certificate) < 0)
|
if (virConfGetValueBool(conf, "tls_no_verify_certificate", &data->tls_no_verify_certificate) < 0)
|
||||||
@ -295,14 +311,14 @@ daemonConfigLoadOptions(struct daemonConfig *data,
|
|||||||
&data->tls_allowed_dn_list) < 0)
|
&data->tls_allowed_dn_list) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
|
||||||
|
if (virConfGetValueString(conf, "tls_priority", &data->tls_priority) < 0)
|
||||||
|
goto error;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
if (virConfGetValueStringList(conf, "sasl_allowed_username_list", false,
|
if (virConfGetValueStringList(conf, "sasl_allowed_username_list", false,
|
||||||
&data->sasl_allowed_username_list) < 0)
|
&data->sasl_allowed_username_list) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
|
|
||||||
if (virConfGetValueString(conf, "tls_priority", &data->tls_priority) < 0)
|
|
||||||
goto error;
|
|
||||||
|
|
||||||
if (virConfGetValueUInt(conf, "min_workers", &data->min_workers) < 0)
|
if (virConfGetValueUInt(conf, "min_workers", &data->min_workers) < 0)
|
||||||
goto error;
|
goto error;
|
||||||
if (virConfGetValueUInt(conf, "max_workers", &data->max_workers) < 0)
|
if (virConfGetValueUInt(conf, "max_workers", &data->max_workers) < 0)
|
||||||
|
|||||||
@ -27,11 +27,13 @@ struct daemonConfig {
|
|||||||
char *host_uuid;
|
char *host_uuid;
|
||||||
char *host_uuid_source;
|
char *host_uuid_source;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
bool listen_tls;
|
bool listen_tls;
|
||||||
bool listen_tcp;
|
bool listen_tcp;
|
||||||
char *listen_addr;
|
char *listen_addr;
|
||||||
char *tls_port;
|
char *tls_port;
|
||||||
char *tcp_port;
|
char *tcp_port;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
char *unix_sock_admin_perms;
|
char *unix_sock_admin_perms;
|
||||||
char *unix_sock_ro_perms;
|
char *unix_sock_ro_perms;
|
||||||
@ -41,21 +43,27 @@ struct daemonConfig {
|
|||||||
|
|
||||||
int auth_unix_rw;
|
int auth_unix_rw;
|
||||||
int auth_unix_ro;
|
int auth_unix_ro;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
int auth_tcp;
|
int auth_tcp;
|
||||||
int auth_tls;
|
int auth_tls;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
char **access_drivers;
|
char **access_drivers;
|
||||||
|
|
||||||
|
#ifdef WITH_IP
|
||||||
bool tls_no_verify_certificate;
|
bool tls_no_verify_certificate;
|
||||||
bool tls_no_sanity_certificate;
|
bool tls_no_sanity_certificate;
|
||||||
char **tls_allowed_dn_list;
|
char **tls_allowed_dn_list;
|
||||||
char **sasl_allowed_username_list;
|
|
||||||
char *tls_priority;
|
char *tls_priority;
|
||||||
|
|
||||||
char *key_file;
|
char *key_file;
|
||||||
char *cert_file;
|
char *cert_file;
|
||||||
char *ca_file;
|
char *ca_file;
|
||||||
char *crl_file;
|
char *crl_file;
|
||||||
|
#endif /* ! WITH_IP */
|
||||||
|
|
||||||
|
char **sasl_allowed_username_list;
|
||||||
|
|
||||||
unsigned int min_workers;
|
unsigned int min_workers;
|
||||||
unsigned int max_workers;
|
unsigned int max_workers;
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user