Bug 790692

Summary: [RFE] unify storage for ssl certificates across grid components
Product: Red Hat Enterprise MRG Reporter: Martin Kudlej <mkudlej>
Component: qpid-cppAssignee: messaging-bugs <messaging-bugs>
Status: NEW --- QA Contact: MRG Quality Engineering <mrgqe-bugs>
Severity: unspecified Docs Contact:
Priority: low    
Version: 2.1CC: iboverma, jross
Target Milestone: ---Keywords: FutureFeature, Reopened
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-02-21 16:17:52 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Martin Kudlej 2012-02-15 08:15:43 UTC 
Description of problem:
Qpid now uses NSS certificate database.
Aviary now uses OpenSSL certificates(PEM format).
Condor uses OpenSSL certificates(PEM X.509 format)

I think it will be fine to choose one of certificate storage and unify the way how users use certificates.

Another possibility is to write documentation how to easily switch between these 2 certificate containers.

Another goal: use chosen type of certificate storage in all MRG components.
Comment 1 Pete MacKinnon 2012-02-21 16:17:52 UTC 
Since Condor has historically used OpenSSL there are no plans to support libnss within Condor or Aviary.
Comment 2 Martin Kudlej 2012-03-06 14:39:17 UTC 
Grid developers won't change certificate container. I would know the opinion of Messaging part. -> Change component
Comment 4 Justin Ross 2012-04-20 16:14:12 UTC 
We are not considering changing our ssl library at this time.