Bug 1687301
Summary: | For verifying ovirt-imageio-proxy cert, engine uses internal truststore instead of https one | ||||||
---|---|---|---|---|---|---|---|
Product: | [oVirt] ovirt-engine | Reporter: | Yedidyah Bar David <didi> | ||||
Component: | BLL.Storage | Assignee: | Yedidyah Bar David <didi> | ||||
Status: | CLOSED CURRENTRELEASE | QA Contact: | Yosi Ben Shimon <ybenshim> | ||||
Severity: | unspecified | Docs Contact: | |||||
Priority: | unspecified | ||||||
Version: | 4.3.1 | CC: | aefrat, bugs, damion.brown, emarcus, rmcswain, tnisan | ||||
Target Milestone: | ovirt-4.3.2 | Flags: | emarcus:
needinfo-
pm-rhel: ovirt-4.3+ |
||||
Target Release: | --- | ||||||
Hardware: | Unspecified | ||||||
OS: | Unspecified | ||||||
Whiteboard: | |||||||
Fixed In Version: | ovirt-engine-4.3.2.1 | Doc Type: | Bug Fix | ||||
Doc Text: |
In this release, the Red Hat Enterprise Virtualization Manager verifies third party Certificate Authority certificates by checking the public https trust store, instead of the internal one, when verifying an ovirt-imageio-proxy certificate.
|
Story Points: | --- | ||||
Clone Of: | Environment: | ||||||
Last Closed: | 2019-04-16 13:56:27 UTC | Type: | Bug | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | Storage | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Yedidyah Bar David
2019-03-11 08:50:19 UTC
Created attachment 1553528 [details]
Login CA error
Tested according to the steps above using: ovirt-engine-4.3.3.2-0.1.el7.noarch ovirt-imageio-proxy-1.5.1-0.el7ev.noarch Actual result: Both engine and imageio-proxy used the 3rd-party certificate. Upload image succeeded without any exceptions or errors. Moving to VERIFIED This bugzilla is included in oVirt 4.3.2 release, published on March 19th 2019. Since the problem described in this bug report should be resolved in oVirt 4.3.2 release, it has been closed with a resolution of CURRENT RELEASE. If the solution does not work for you, please open a new bug report. I've got a customer hitting this in RHV 4.2.8. Other than upgrading to 4.3 (which they are unable to do at this time) is there any workaround for this on lower versions of RHV? The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days |