From Fedora Project Wiki
Description
This test verifies that certificate trust still works as expected, given the default list of certificate authority anchors.
Setup
- Make sure to complete the prerequisites before starting this test.
- This test case connects to bugzilla.redhat.com on port 443
How to test
- Verify that openssl recognizes the system anchors:
openssl s_client -verify 5 -connect bugzilla.redhat.com:443
- You should see:
Verify return code: 0 (ok) - Press Ctrl-C to exit
- Check that gnutls recognizes the system anchors:
gnutls-cli -p 443 bugzilla.redhat.com
- You should see:
Status: The certificate is trusted. - Press Ctrl-C to exit
- Check that curl recognizes the system anchors:
curl --head https://bugzilla.redhat.com:443
- You should see:
HTTP/1.1 200 OK
- Firefox should use the system anchors:
firefox https://bugzilla.redhat.com
- The page should load without an error message.
- Left of the URL should have a good padlock (xxxx)
- Epiphany should use the system anchors:
$ epiphany https://bugzilla.redhat.com
- Right of the URL bar should have a gray padlock
- Java should use the system anchors:
$ java testbz443
- This uses the java test program that you compiled in the prerequisites.
- The output should say
connection worked
Expected Results
While executing each of the above commands, check the output matches what's noted for each command.
Troubleshooting
- No notes at this time