1
0
mirror of https://gitlab.com/libvirt/libvirt.git synced 2025-01-25 10:03:49 +03:00
libvirt/docs/schemas/secret.rng
John Ferlan 13350a17e4 conf: Add new secret type "tls"
Add a new secret usage type known as "tls" - it will handle adding the
secret objects for various TLS objects that need to provide some sort
of passphrase in order to access the credentials.

The format is:

   <secret ephemeral='no' private='no'>
     <description>Sample TLS secret</description>
     <usage type='tls'>
       <name>mumblyfratz</name>
     </usage>
</secret>

Once defined and a passphrase set, future patches will allow the UUID
to be set in the qemu.conf file and thus used as a secret for various
TLS options such as a chardev serial TCP connection, a NBD client/server
connection, and migration.

Signed-off-by: John Ferlan <jferlan@redhat.com>
2016-09-09 08:20:05 -04:00

85 lines
1.9 KiB
XML

<?xml version="1.0"?>
<!-- A Relax NG schema for the libvirt secret properties XML format -->
<grammar xmlns="http://relaxng.org/ns/structure/1.0">
<start>
<ref name='secret'/>
</start>
<include href='basictypes.rng'/>
<define name='secret'>
<element name='secret'>
<optional>
<attribute name='ephemeral'>
<ref name="virYesNo"/>
</attribute>
</optional>
<optional>
<attribute name='private'>
<ref name="virYesNo"/>
</attribute>
</optional>
<interleave>
<optional>
<element name='uuid'>
<ref name='UUID'/>
</element>
</optional>
<optional>
<element name='description'>
<text/>
</element>
</optional>
<optional>
<element name='usage'>
<choice>
<ref name='usagevolume'/>
<ref name='usageceph'/>
<ref name='usageiscsi'/>
<ref name='usagetls'/>
<!-- More choices later -->
</choice>
</element>
</optional>
</interleave>
</element>
</define>
<define name='usagevolume'>
<attribute name='type'>
<value>volume</value>
</attribute>
<element name='volume'>
<ref name='absFilePath'/>
</element>
</define>
<define name='usageceph'>
<attribute name='type'>
<value>ceph</value>
</attribute>
<element name='name'>
<ref name='genericName'/>
</element>
</define>
<define name='usageiscsi'>
<attribute name='type'>
<value>iscsi</value>
</attribute>
<element name='target'>
<ref name='genericName'/>
</element>
</define>
<define name='usagetls'>
<attribute name='type'>
<value>tls</value>
</attribute>
<element name='name'>
<ref name='genericName'/>
</element>
</define>
</grammar>