Red Hat Bugzilla – Bug 1459442
Store allowed TLS versions in the ovsdb database and have support in ovn-nbctl/ovn-sbctl etc. [branch]
Last modified: 2017-06-07 08:57:15 EDT
This bug is to track the backport to openvswitch/ovs branch-2.7
+++ This bug was initially created as a clone of Bug #1459441 +++
Description of problem:
ovn-nbctl/ovn-sbctl etc. can be used to store most ssl options, e.g. "--private-key" and "--certificate", in the ovsdb database. But it is not possible to store the option "--ssl-protocols" in the ovsdb database.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Use ovn-nbctl and ovn-sbctl to store the allowed TLS version TLSv1.2 in the data base
All TLS version are accepted by OVN Southbound DB and OVN Northbound DB, since configuration is not yet possible.
Only TLSv1.2 is accepted by OVN Southbound DB and OVN Northbound DB
--- Additional comment from Red Hat Bugzilla Rules Engine on 2017-06-07 03:37:56 EDT ---
Since this bug report was entered in Red Hat Bugzilla, the release flag has been set to ? to ensure that it is properly evaluated for this release.
We don't need separate BZs for upstream/downstream work, closing as a
duplicate of BZ 1459441.
*** This bug has been marked as a duplicate of bug 1459441 ***