Test report for Trustmanager patch #4405

Setup

This test was done on the CERN certification testbed on vtb-generic-79. It was a SLC4-32bit machine.

Since some glite components are required for trustmanager, and it's not a node type itself, the CREAMCE repo was used to install dependencies. The packages certified were glite-security-trustmanager-2.5.5-3_GL31Special and glite-security-util-java-2.9.1-1.. In addition to this, I installed the following packages to support the tests: tomcat5 glite-version fetch-crl and glite-yaim-core. The following config yaim functions were run: config_crl config_secure_tomcat. Because the jpackage repo was broken, the java dependencies were installed by hand.

Bugs

bug #69372: Wrong error message when namespaces loading fails in checkupdate in util-java fulltrustanchor

Fix already verified in earlier version

bug #69449: hostname checking in util-java fails if the host cert doesn't end with CN=hostname

Fix already verified in earlier version

bug #69554: Memory leak in util-java if CA loading throws exception

Fix already verified in earlier version

bug #69788: Util-java legacy signing_policy file parser doesn't give informative error messages when parsing fails

Fix already verified in earlier version

bug #69795: Util-java legacy signign policy parsing parses wrong sometimes

Confirmed that there were errors with namespace parsing and that they were fixed. No regression test written, due to difficulty

bug 70039: Util-java ignores CRL extensions

Bug not verified and fix not certified because of the difficulty of testing

Certification test

The certification tests were run according to the trustmanager test plans. All tests succeeded, but two tests had to have output checking changed (different output on SLC4 and SL5). The test certificates were created on a SL5 machine, since the SLC4 openssl can not create them.

Output file of the tests is attached.

-- KalleHapponen - 13-Oct-2010