Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1170260

Summary: [providers] remove httpclient and rework ssl flows
Product: [Retired] oVirt Reporter: Alon Bar-Lev <alonbl>
Component: ovirt-engine-coreAssignee: Yair Zaslavsky <yzaslavs>
Status: CLOSED CURRENTRELEASE QA Contact: Pavel Stehlik <pstehlik>
Severity: medium Docs Contact:
Priority: unspecified    
Version: unspecifiedCC: bugs, ecohen, gklein, iheim, lsurette, oourfali, rbalakri, yeylon
Target Milestone: ---   
Target Release: 3.5.1   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: infra
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-01-21 16:03:24 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Infra RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1129174    

Description Alon Bar-Lev 2014-12-03 16:02:36 UTC 
1. use URLConnection instead depreciated httpclient.
2. trust only top level certificate within chain.
3. complete chain using java system trust store.
4. present more verbose information about certificate being trusted.
5. do not attempt to communicate unless certificate is approved.
Comment 1 Alon Bar-Lev 2014-12-17 11:47:19 UTC 
shouldn't this be on qa?
Comment 2 Oved Ourfali 2014-12-17 11:54:47 UTC 
(In reply to Alon Bar-Lev from comment #1)
> shouldn't this be on qa?

only once we build oVirt 3.5.1
Comment 3 Sandro Bonazzola 2015-01-21 16:03:24 UTC 
oVirt 3.5.1 has been released. If problems still persist, please make note of it in this bug report.