Change in ovirt-hosted-engine-setup[master]: pki: avoid trusting system defined CA certs