On Tue, Aug 11, 2015 at 06:44:34PM +0200, Paolo Bonzini wrote:
>
>
> On 11/08/2015 16:26, Daniel P. Berrange wrote:
> > -object tls-creds,id=tls0,credtype=anon,endpoint=server \
> > -vnc hostname:0,tls-creds=tls0
> >
> > Old syntax for x509 credentials, no client certs:
> >
> > -vnc hostn
On 11/08/2015 16:26, Daniel P. Berrange wrote:
> -object tls-creds,id=tls0,credtype=anon,endpoint=server \
> -vnc hostname:0,tls-creds=tls0
>
> Old syntax for x509 credentials, no client certs:
>
> -vnc hostname:0,tls,x509=/path/to/certs
>
> New syntax:
>
> -object
> tls-creds,id=tls
Switch VNC server over to using the QCryptoTLSSession object
for the TLS session. This removes the direct use of gnutls
from the VNC server code. It also removes most knowledge
about TLS certificate handling from the VNC server code.
This has the nice effect that all the CONFIG_VNC_TLS
conditionals
