static char *certificate_file;
static char *cacert_file;
- if (config_string_change("mgmt.ssl.private-key", &private_key_file)) {
+ /* XXX SSL should be configurable separate from the bridges.
+ * XXX should be possible to de-configure SSL. */
+ if (config_string_change("ssl.private-key", &private_key_file)) {
vconn_ssl_set_private_key_file(private_key_file);
}
- if (config_string_change("mgmt.ssl.certificate", &certificate_file)) {
+ if (config_string_change("ssl.certificate", &certificate_file)) {
vconn_ssl_set_certificate_file(certificate_file);
}
- if (config_string_change("mgmt.ssl.ca-cert", &cacert_file)) {
+ if (config_string_change("ssl.ca-cert", &cacert_file)) {
vconn_ssl_set_ca_cert_file(cacert_file,
- cfg_get_bool(0, "mgmt.ssl.bootstrap-ca-cert"));
+ cfg_get_bool(0, "ssl.bootstrap-ca-cert"));
}
}
#endif
.TP
\fBssl:\fIhost\fR[\fB:\fIport\fR]
The specified SSL \fIport\fR (default: 6633) on the given remote
-\fIhost\fR. The \fBmgmt.ssl.private-key\fR, \fBmgmt.ssl.certificate\fR,
-and \fBmgmt.ssl.ca-cert\fR keys must be set appropriately. If the
-\fBmgmt.ssl.bootstrap-ca-cert\fR key is set to "true", then
+\fIhost\fR. The \fBssl.private-key\fR, \fBssl.certificate\fR,
+and \fBssl.ca-cert\fR keys must be set appropriately. If the
+\fBssl.bootstrap-ca-cert\fR key is set to "true", then
\fBvswitchd\fR will attempt to obtain the CA certificate from the
controller.
.
projects / openvswitch / commitdiff