From nobody Mon Feb 9 03:46:53 2026 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of redhat.com designates 170.10.129.124 as permitted sender) client-ip=170.10.129.124; envelope-from=libvir-list-bounces@redhat.com; helo=us-smtp-delivery-124.mimecast.com; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.129.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass(p=none dis=none) header.from=redhat.com ARC-Seal: i=1; a=rsa-sha256; t=1650630227; cv=none; d=zohomail.com; s=zohoarc; b=LGcL7IA/GK+a+uGWGOsuktyg4nB0M94n2Oko/nV4UpoOdsFshou6eKaTlwT1biQ9/3//TX2D9fxDl7NTKnEWYSITUMX7aN2IAlWje6v56+ISutDTbVg7TFTx+2c2XCKF305KygPuCH16hKNWyQ4C24Lji+7aQ+D7sJbJcjpl+DI= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1650630227; h=Content-Type:Content-Transfer-Encoding:Date:From:In-Reply-To:List-Subscribe:List-Post:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:References:Sender:Subject:To; bh=8l0OT+Xy/2uoYRiVgrM5u6gj/5mj2Sv/DsuHuTTuGgM=; b=c77owuLCiWIssVSqQaixC5HwQ263MBjz2il0gPkAWTra9WrrHsBKxQDvMJqV5egUAkVuJuGCO2SpCfciSNru2+8irD6kuDtEZRWWKvcVCrk/zs9yPwNv2clMTR+VolRaxGkOKV0Wb9sf8JDiOhm4Rm/7l3tPGtsD/6LDC4Y4GTk= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.129.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass header.from= (p=none dis=none) Return-Path: Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124]) by mx.zohomail.com with SMTPS id 1650630227670746.9588840495728; Fri, 22 Apr 2022 05:23:47 -0700 (PDT) Received: from mimecast-mx02.redhat.com (mimecast-mx02.redhat.com [66.187.233.88]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id us-mta-15-7tpskncPNSSjJtoUFVqqfg-1; Fri, 22 Apr 2022 08:23:42 -0400 Received: from smtp.corp.redhat.com (int-mx09.intmail.prod.int.rdu2.redhat.com [10.11.54.9]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx02.redhat.com (Postfix) with ESMTPS id 3147283395E; Fri, 22 Apr 2022 12:23:38 +0000 (UTC) Received: from mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com [10.30.29.100]) by smtp.corp.redhat.com (Postfix) with ESMTP id 191B354CE44; Fri, 22 Apr 2022 12:23:38 +0000 (UTC) Received: from mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (localhost [IPv6:::1]) by mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (Postfix) with ESMTP id F059C194036E; Fri, 22 Apr 2022 12:23:35 +0000 (UTC) Received: from smtp.corp.redhat.com (int-mx10.intmail.prod.int.rdu2.redhat.com [10.11.54.10]) by mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (Postfix) with ESMTP id E7599194035F for ; Fri, 22 Apr 2022 12:23:34 +0000 (UTC) Received: by smtp.corp.redhat.com (Postfix) id B911E416361; Fri, 22 Apr 2022 12:23:34 +0000 (UTC) Received: from speedmetal.lan (unknown [10.40.208.36]) by smtp.corp.redhat.com (Postfix) with ESMTP id 3395D416171 for ; Fri, 22 Apr 2022 12:23:34 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1650630226; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post; bh=8l0OT+Xy/2uoYRiVgrM5u6gj/5mj2Sv/DsuHuTTuGgM=; b=NveISr0dAZ41i7MoBuAlwRxq9CHRbmq2Jrt0OcEYhK7JSDUVrvzou0sbndT7+DKCDCanOT u6uNgWeayOqIYz2EgNoxxj7VxY8XU26DIjxcgW15E7wNRORodJMlUjY1hTD7WWZJ2KWDRR g9D0ffDLgEe/FzlOO0aNdPl87JioJJ0= X-MC-Unique: 7tpskncPNSSjJtoUFVqqfg-1 X-Original-To: libvir-list@listman.corp.redhat.com From: Peter Krempa To: libvir-list@redhat.com Subject: [PATCH 02/15] Correct links to TLS certificate setup page Date: Fri, 22 Apr 2022 14:23:18 +0200 Message-Id: <49708a910a2ef44d2691dbe17320444403c23da0.1650629879.git.pkrempa@redhat.com> In-Reply-To: References: MIME-Version: 1.0 X-Scanned-By: MIMEDefang 2.85 on 10.11.54.10 X-BeenThere: libvir-list@redhat.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Development discussions about the libvirt library & tools List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: libvir-list-bounces@redhat.com Sender: "libvir-list" X-Scanned-By: MIMEDefang 2.85 on 10.11.54.9 Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=libvir-list-bounces@redhat.com X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Content-Transfer-Encoding: quoted-printable X-ZohoMail-DKIM: pass (identity @redhat.com) X-ZM-MESSAGEID: 1650630227897100004 Content-Type: text/plain; charset="utf-8" When the setup of TLS certs was originally split out of 'docs/remote.html' ( df99aa311a33e87d4 ) links refering to it were not fixed. Adjust them to point to the correct document. Signed-off-by: Peter Krempa --- docs/drvesx.rst | 5 ++--- tools/virt-pki-validate.in | 10 +++++----- 2 files changed, 7 insertions(+), 8 deletions(-) diff --git a/docs/drvesx.rst b/docs/drvesx.rst index 9ef6b74161..81625d6f10 100644 --- a/docs/drvesx.rst +++ b/docs/drvesx.rst @@ -231,9 +231,8 @@ There are also other causes for connection problems tha= n those related to error: Cannot access CA certificate '/etc/pki/CA/cacert.pem': No suc= h file or directory Don't let this error message confuse you. Setting up certificates as - described on the `remote transport - mechanism `__ page does not help, as t= his is - not a certificate related problem. + described on the `tls certificates `__ page does n= ot + help, as this is not a certificate related problem. To fix this problem you need to update your libvirt to 0.7.0 or newer. = You may also see this error when you use a libvirt version that contains th= e ESX diff --git a/tools/virt-pki-validate.in b/tools/virt-pki-validate.in index 2f7404bd94..7100eafb63 100644 --- a/tools/virt-pki-validate.in +++ b/tools/virt-pki-validate.in @@ -2,7 +2,7 @@ # # This shell script checks the TLS certificates and options needed # for the secure client/server support of libvirt as documented at -# https://libvirt.org/remote.html#Remote_certificates +# https://libvirt.org/kbase/tlscerts.html # # Copyright (C) 2009-2013 Red Hat, Inc. # @@ -166,7 +166,7 @@ if [ ! -f "$CA/cacert.pem" ] then echo the CA certificate $CA/cacert.pem is missing while it echo should be installed on both client and servers - echo "see https://libvirt.org/remote.html#Remote_TLS_CA" + echo "see https://libvirt.org/kbase/tlscerts.html#setting-up-a-certifi= cate-authority-ca" echo on how to install it exit 1 fi @@ -186,7 +186,7 @@ if [ "$ORG" =3D "" ] then echo the CA certificate $CA/cacert.pem does not define the organization echo it should probably regenerated - echo "see https://libvirt.org/remote.html#Remote_TLS_CA" + echo "see https://libvirt.org/kbase/tlscerts.html#setting-up-a-certifi= cate-authority-ca" echo on how to regenerate it exit 1 fi @@ -234,7 +234,7 @@ then else echo Did not find "$LIBVIRT/clientcert.pem" client certificate echo The machine cannot act as a client - echo "see https://libvirt.org/remote.html#Remote_TLS_client_certificat= es" + echo "see https://libvirt.org/kbase/tlscerts.html#issuing-client-certi= ficates" echo on how to regenerate it CLIENT=3D0 fi @@ -287,7 +287,7 @@ then else echo Did not find $LIBVIRT/servercert.pem server certificate echo The machine cannot act as a server - echo "see https://libvirt.org/remote.html#Remote_TLS_server_certificat= es" + echo "see https://libvirt.org/kbase/tlscerts.html#issuing-server-certi= ficates" echo on how to regenerate it SERVER=3D0 fi --=20 2.35.1