On Tue, Mar 24, 2020 at 11:29 AM Milan Zamazal <mzamazal@redhat.com> wrote:
Hi, I've experienced a problem with host deploy and oVirt master last week in an environment with TLS disabled. When I install/reinstall a 4.4 host, it removes the following options from /etc/libvirt/libvirtd.conf:
ca_file="/etc/pki/vdsm/certs/cacert.pem" cert_file="/etc/pki/vdsm/certs/vdsmcert.pem" key_file="/etc/pki/vdsm/keys/vdsmkey.pem"
As a result, libvirt refuses to start, complaining about missing certificates and keys in their default locations.
Does anybody who uses a non-TLS environment experience the same problem? Can it be related to the fact that we require libvirtd-tls service from the split libvirtd services now?
(Yes, I know TLS should always be used, but that is a shared development environment where TLS is disabled for whatever reason.)
TLS-less setup is not supported and likely to break. I would not spend too much time on trying to fix it.