mirror of https://github.com/apache/cloudstack.git
0dfdbe064c
When auth strictness is set to true, terminate SSH handshake for clients that do not present valid certificates. This uses the `setNeedClientAuth`, where if the option is set and the client chooses not to provide authentication information about itself, the negotiations will stop and the engine will begin its closure procedure: https://docs.oracle.com/javase/7/docs/api/javax/net/ssl/SSLEngine.html#setNeedClientAuth(boolean) During systemvm reboot, the conf folder is removed and certificate re-setup is not done. This may cause the agent to not connect, this fixes the case by backing up and restoring keystore and other config files when re-patching is done after rebooting of a systemvm (cpvm, ssvm). Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com> |
||
|---|---|---|
| .. | ||
| bindir | ||
| certs | ||
| conf | ||
| conf.dom0 | ||
| css | ||
| distro | ||
| images | ||
| js | ||
| libexec | ||
| patches/debian | ||
| scripts | ||
| test/python | ||
| ui | ||
| vm-script | ||
| pom.xml | ||
| systemvm-descriptor.xml | ||