Description of problem: I suppose this line is obsole, we don't do SSLv3 at all IIUC: # grep '^ENGINE.*PROTOCOLS=' /usr/share/ovirt-engine/services/ovirt-engine/ovirt-engine.conf ENGINE_HTTPS_PROTOCOLS=SSLv3,TLSv1,TLSv1.1,TLSv1.2 Version-Release number of selected component (if applicable): ovirt-engine-backend-4.1.8.1-0.1.el7.noarch How reproducible: 100% Steps to Reproduce: 1. grep '^ENGINE.*PROTOCOLS=' /usr/share/ovirt-engine/services/ovirt-engine/ovirt-engine.conf 2. 3. Actual results: SSLv3 mentioned in the output Expected results: SSLv3 should not be there Additional info:
We have already disabled all protocols except TLSv1.1 and TLSv1.2 on Apache as a part of BZ1388456, so SSLv3 and TLSv1 defined in ENGINE_HTTPS_PROTOCOLS cannot be used anyway, but yeah, we should clean this up
Adding CodeChange as this affects only development environment
This bugzilla is included in oVirt 4.2.1 release, published on Feb 12th 2018. Since the problem described in this bug report should be resolved in oVirt 4.2.1 release, it has been closed with a resolution of CURRENT RELEASE. If the solution does not work for you, please open a new bug report.