Bug 1448867

Summary: engine-setup: Re-enable SSL for OVN north db connections
Product: [oVirt] ovirt-engine Reporter: Marcin Mirecki <mmirecki>
Component: BLL.NetworkAssignee: Marcin Mirecki <mmirecki>
Status: CLOSED CURRENTRELEASE QA Contact: Mor <mkalfon>
Severity: high Docs Contact:
Priority: low    
Version: 4.2.0CC: bugs, danken, mkalfon
Target Milestone: ovirt-4.2.0Flags: rule-engine: ovirt-4.2+
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
undefined
 Story Points: ---
Clone Of: Environment:
Last Closed: 2017-12-20 11:18:06 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Network RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1446538    
Bug Blocks:    

Description Marcin Mirecki 2017-05-08 13:11:19 UTC 
SSL is currently disabled for OVN north db connections becasuse of:
https://bugzilla.redhat.com/1446538

Patch: https://gerrit.ovirt.org/#/c/76503
should be reverted when the bug is fixed
Comment 1 Marcin Mirecki 2017-05-12 11:34:51 UTC 
An additional item that must be done during the revert:

install the pyOpenSSL package

It looks like the python-openvswitch is missing the dependency.
Comment 2 Mor 2017-08-03 13:18:10 UTC 
Verified:
ovirt-provider-ovn-1.1-2.20170710074946.git5abef7f.el7.centos.noarch
pyOpenSSL-0.13.1-3.el7.x86_64

/var/log/ovirt-provider-ovn.log:
2017-08-03 16:05:08,584   Starting new HTTPS connection (1): network-ge-2.scl.lab.tlv.redhat.com
2017-08-03 16:05:08,695   "POST /ovirt-engine/sso/oauth/token HTTP/1.1" 200 234
2017-08-03 16:05:08,698   Response code: 200
 
# ovn-nbctl get-connection
pssl:6641

# ovn-nbctl get-ssl
Private key: /etc/pki/ovirt-engine/keys/ovn-ndb.key.nopass
Certificate: /etc/pki/ovirt-engine/certs/ovn-ndb.cer
CA Certificate: /etc/pki/ovirt-engine/ca.pem
Bootstrap: false
Comment 3 Sandro Bonazzola 2017-12-20 11:18:06 UTC 
This bugzilla is included in oVirt 4.2.0 release, published on Dec 20th 2017.

Since the problem described in this bug report should be
resolved in oVirt 4.2.0 release, published on Dec 20th 2017, it has been closed with a resolution of CURRENT RELEASE.

If the solution does not work for you, please open a new bug report.