Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 1185612 - override SSL protocol to TLSv1
override SSL protocol to TLSv1
Status: CLOSED ERRATA
Product: Red Hat Enterprise Virtualization Manager
Classification: Red Hat
Component: ovirt-engine (Show other bugs)
3.5.0
Unspecified Unspecified
unspecified Severity medium
: ---
: 3.5.0-1
Assigned To: Oved Ourfali
Jiri Belka
infra
: ZStream
Depends On: 1185430
Blocks:
  Show dependency treegraph
 
Reported: 2015-01-25 04:15 EST by rhev-integ
Modified: 2016-02-10 14:05 EST (History)
13 users (show)

See Also:
Fixed In Version: org.ovirt.engine-root-3.5.0-31
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 1185430
Environment:
Last Closed: 2015-02-16 09:50:58 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: Infra
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
oVirt gerrit 37245 master MERGED core: override SSL protocol to TLSv1 Never
oVirt gerrit 37246 ovirt-engine-3.5 MERGED core: override SSL protocol to TLSv1 Never
Red Hat Product Errata RHBA-2015:0230 normal SHIPPED_LIVE Red Hat Enterprise Virtualization Manager 3.5.0-1 ASYNC 2015-02-16 14:50:27 EST

  None (edit)
Comment 1 Eyal Edri 2015-01-27 03:20:18 EST 
patch was merged, moving to modified.
Comment 3 Jiri Belka 2015-02-03 09:13:16 EST 
ok rhevm-3.5.0-0.31.el6ev.noarch

checked with wireshark...

[root@jb-rhevm35 tmp]# sed -n '1018,+4p' /usr/share/ovirt-engine/dbscripts/upgrade/pre_upgrade/0000_config.sql 
-- Override existing configuration to TLSv1 if it is SSLv3
select fn_db_update_default_config_value('VdsmSSLProtocol','SSLv3','TLSv1','general', false);
select fn_db_update_default_config_value('ExternalCommunicationProtocol','SSLv3','TLSv1','general', false);


[root@jb-rhevm35 tmp]# rpm -q rhevm-dbscripts
rhevm-dbscripts-3.5.0-0.31.el6ev.noarch

engine=# select option_value from vdc_options where option_name ilike 'VdsmSSL%' or option_name ilike 'ExternalCommu%';
 option_value 
--------------
 TLSv1
 TLSv1
(2 rows)
Comment 5 errata-xmlrpc 2015-02-16 09:50:58 EST 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-0230.html
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.