QA:Testcase Certificate Trust:System Trust

From FedoraProject

Revision as of 07:33, 21 March 2013 by Stefw (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Contents

Description

This test verifies that certificate trust still works as expected, given the default list of certificate authority anchors.

Setup

  1. Make sure to complete the prerequisites before starting this test.
  2. This test case connects to bugzilla.redhat.com on port 443

How to test

  1. Verify that openssl recognizes the system anchors:
    openssl s_client -verify 5 -connect bugzilla.redhat.com:443
    You should see: Verify return code: 0 (ok)
    Press Ctrl-C to exit
  2. Check that gnutls recognizes the system anchors:
    gnutls-cli -p 443 bugzilla.redhat.com
    You should see: Status: The certificate is trusted.
    Press Ctrl-C to exit
  3. Check that curl recognizes the system anchors:
    curl --head https://bugzilla.redhat.com:443
    You should see: HTTP/1.1 200 OK
  4. Firefox should use the system anchors:
    firefox https://bugzilla.redhat.com
    The page should load without an error message.
    Left of the URL should have a good padlock (xxxx)
  5. Epiphany should use the system anchors:
    $ epiphany https://bugzilla.redhat.com
    Right of the URL bar should have a gray padlock
  6. Java should use the system anchors:
    $ java testbz443
    This uses the java test program that you compiled in the prerequisites.
    The output should say connection worked

Expected Results

While executing each of the above commands, check the output matches what's noted for each command.



Troubleshooting

  • No notes at this time