From e234fd51109ad1383c98dd23974bae777bca0a7d Mon Sep 17 00:00:00 2001 From: Jonathon Jongsma Date: Thu, 19 Jan 2023 15:46:22 -0600 Subject: [PATCH] schema: add configuration for host verification of ssh disks In order to make ssh disks usable, we need to be able to validate a remote host. To do this, add a xml element for ssh disks to allow the user to specify a location for a file that contains known host keys. Implementation to follow. Signed-off-by: Jonathon Jongsma Reviewed-by: Peter Krempa --- docs/formatdomain.rst | 8 ++++++++ src/conf/schemas/domaincommon.rng | 11 +++++++++++ 2 files changed, 19 insertions(+) diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst index 81a315acc4..3469908959 100644 --- a/docs/formatdomain.rst +++ b/docs/formatdomain.rst @@ -3036,6 +3036,14 @@ paravirtualized driver is specified via the ``disk`` element. paused and will be rerun after a successful reconnect. After that time, any delayed requests and all future requests before a successful reconnect will immediately fail. If not set the default QEMU value is 0. + ``knownHosts`` + For storage accessed via the ``ssh`` protocol, this element configures a + path to a file that will be used to verify the remote host. This file + must contain the expected host key for the remote host or the connection + will fail. The location of the file is specified via the ``path`` + attribute. + :since:`Since 9.8.0` + For a "file" or "volume" disk type which represents a cdrom or floppy (the ``device`` attribute), it is possible to define policy what to do with the diff --git a/src/conf/schemas/domaincommon.rng b/src/conf/schemas/domaincommon.rng index 12f61850dd..29d2f5db92 100644 --- a/src/conf/schemas/domaincommon.rng +++ b/src/conf/schemas/domaincommon.rng @@ -2173,6 +2173,14 @@ + + + + + + + + @@ -2188,6 +2196,9 @@ + + +