Yedidyah Bar David has posted comments on this change. Change subject: packaging: pki: Use own openssl.conf ......................................................................
Patch Set 2: > I divide standard openssl usage and ca related usage. OK, but what is "standard openssl usage"? just allowing to connect to an ssl service (I guess that's one of the most common uses)? verifying signatures? showing stuff (certs, keys, requests, etc)? creating stuff (same stuff)? Some of these things require no conf, some warn with missing conf, some fail. > the standard openssl usage should work always, regardless of configuration, > if it is not working other components will break, such as engine-setup or > host-deploy. > openssl utility must be functioning. I agree that the openssl _binary_ should be functioning. We Require it and rely on it being unaltered. The _conf_ is less dependable imo. I have another question: Do you see some "price" we might pay with this change (on-going maintenance, new bugs etc)? -- To view, visit http://gerrit.ovirt.org/25055 To unsubscribe, visit http://gerrit.ovirt.org/settings Gerrit-MessageType: comment Gerrit-Change-Id: I74f7000c590144ab821c797897d9036df956973e Gerrit-PatchSet: 2 Gerrit-Project: ovirt-engine Gerrit-Branch: master Gerrit-Owner: Yedidyah Bar David <d...@redhat.com> Gerrit-Reviewer: Alon Bar-Lev <alo...@redhat.com> Gerrit-Reviewer: Sandro Bonazzola <sbona...@redhat.com> Gerrit-Reviewer: Simone Tiraboschi <simone.tirabos...@gmail.com> Gerrit-Reviewer: Yedidyah Bar David <d...@redhat.com> Gerrit-Reviewer: automat...@ovirt.org Gerrit-HasComments: No _______________________________________________ Engine-patches mailing list Engine-patches@ovirt.org http://lists.ovirt.org/mailman/listinfo/engine-patches
