From Fedora Project Wiki

Revision as of 17:53, 24 March 2017 by Szidek (talk | contribs) (Created page with "{{QA/Test_Case |description=Sanity of crypto-policies |actions= We will test if system actually pays attention to crypto policy setting # Setup server using only LEGACY cipher...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Description

Sanity of crypto-policies


How to test

We will test if system actually pays attention to crypto policy setting

  1. Setup server using only LEGACY ciphers 
    dir=$(mktemp -d) && cd $dir && echo CONNECTED >index.html && \
    

    openssl s_server -WWW -cert TODO -key TODO -CAfile TODO -cipher TODO
  2. Switch to LEGACY policy and make sure connection works 
    update-crypto-policies --set LEGACY  curl localhost:4433 |grep CONNECTED
  3. Check OpenSSL software can connect 
    wget -O - localhost:4433 |grep CONNECTED

Expected Results

  1. Step #1 completes without error
  2. command prints CONNECTED
  3. command prints CONNECTED



Retrieved from "https://fedoraproject.org/w/index.php?title=QA:Testcase_CryptoPolicies_Sanity&oldid=488800"