External/libvirt
1
0
Fork 0
mirror of https://gitlab.com/libvirt/libvirt.git synced 2024-09-30 11:25:47 +00:00
Code Issues Packages Projects Releases Wiki Activity

Use @SYSTEM priority for TLS on Fedora >= 21

Browse Source 
In Fedora >= 21, there is a new crypto priority framework
that sets TLS policies globally for all apps. To activate
this with GNUTLS we must request "@SYSTEM" instead of
the traditional "NORMAL" string. The '@' causes gnutls todo
a lookup in its config file for the 'SYSTEM' keyword entry.

Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
This commit is contained in:
Daniel P. Berrange 2016-06-06 16:02:22 +01:00
parent 6d310c9cff
commit 8dfb796080
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
libvirt.spec.in
View File

@ -206,6 +206,12 @@
%define enable_werror --disable-werror %define enable_werror --disable-werror
%endif %endif
%if 0%{?fedora} >= 21
%define tls_priority "@SYSTEM"
%else
%define tls_priority "NORMAL"
%endif
Summary: Library providing a simple virtualization API Summary: Library providing a simple virtualization API
Name: libvirt Name: libvirt
@ -1152,6 +1158,7 @@ rm -f po/stamp-po
%{arg_packager_version} \ %{arg_packager_version} \
--with-qemu-user=%{qemu_user} \ --with-qemu-user=%{qemu_user} \
--with-qemu-group=%{qemu_group} \ --with-qemu-group=%{qemu_group} \
--with-tls-priority=%{tls_priority} \
%{?arg_loader_nvram} \ %{?arg_loader_nvram} \
%{?enable_werror} \ %{?enable_werror} \
--enable-expensive-tests \ --enable-expensive-tests \