Home Explore Help
Register Sign In
OWEALs
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
2
0
Fork 0
Files Issues 8 Wiki
Browse Source

Put both `DigiCert Global Root CA` and `GlobalSign Root CA` into the Google CA list. Fixes `--enable-dtls --enable-ocsp` ./scripts/ocsp.test`.

David Garske 2 years ago
parent
ebc64db7d0
commit
d8b58b8b05
3 changed files with 25 additions and 0 deletions
Split View Show Diff Stats
  1. 21 0
      certs/external/ca-google-root.pem
  2. 2 0
      scripts/ocsp.test
  3. 2 0
      scripts/resume.test

+ 21 - 0
certs/external/ca-google-root.pem
View File 

@@ -20,3 +20,24 @@ PnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886UAb3LujEV0ls
 
 YSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk
 
 CAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=
 
 -----END CERTIFICATE-----
 
+-----BEGIN CERTIFICATE-----
 
+MIIDdTCCAl2gAwIBAgILBAAAAAABFUtaw5QwDQYJKoZIhvcNAQEFBQAwVzELMAkG
 
+A1UEBhMCQkUxGTAXBgNVBAoTEEdsb2JhbFNpZ24gbnYtc2ExEDAOBgNVBAsTB1Jv
 
+b3QgQ0ExGzAZBgNVBAMTEkdsb2JhbFNpZ24gUm9vdCBDQTAeFw05ODA5MDExMjAw
 
+MDBaFw0yODAxMjgxMjAwMDBaMFcxCzAJBgNVBAYTAkJFMRkwFwYDVQQKExBHbG9i
 
+YWxTaWduIG52LXNhMRAwDgYDVQQLEwdSb290IENBMRswGQYDVQQDExJHbG9iYWxT
 
+aWduIFJvb3QgQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaDuaZ
 
+jc6j40+Kfvvxi4Mla+pIH/EqsLmVEQS98GPR4mdmzxzdzxtIK+6NiY6arymAZavp
 
+xy0Sy6scTHAHoT0KMM0VjU/43dSMUBUc71DuxC73/OlS8pF94G3VNTCOXkNz8kHp
 
+1Wrjsok6Vjk4bwY8iGlbKk3Fp1S4bInMm/k8yuX9ifUSPJJ4ltbcdG6TRGHRjcdG
 
+snUOhugZitVtbNV4FpWi6cgKOOvyJBNPc1STE4U6G7weNLWLBYy5d4ux2x8gkasJ
 
+U26Qzns3dLlwR5EiUWMWea6xrkEmCMgZK9FGqkjWZCrXgzT/LCrBbBlDSgeF59N8
 
+9iFo7+ryUp9/k5DPAgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8E
 
+BTADAQH/MB0GA1UdDgQWBBRge2YaRQ2XyolQL30EzTSo//z9SzANBgkqhkiG9w0B
 
+AQUFAAOCAQEA1nPnfE920I2/7LqivjTFKDK1fPxsnCwrvQmeU79rXqoRSLblCKOz
 
+yj1hTdNGCbM+w6DjY1Ub8rrvrTnhQ7k4o+YviiY776BQVvnGCv04zcQLcFGUl5gE
 
+38NflNUVyRRBnMRddWQVDf9VMOyGj/8N7yy5Y0b2qvzfvGn9LhJIZJrglfCm7ymP
 
+AbEVtQwdpf5pLGkkeB6zpxxxYu7KyJesF12KwvhHhm4qxFYxldBniYUr+WymXUad
 
+DKqC5JlR3XC321Y9YeRq4VzW9v493kHMB65jUr9TU/Qr6cf9tveCX4XSQRjbgbME
 
+HMUfpIBvFSDJ3gyICh3WZlXi/EjJKSZp4A==
 
+-----END CERTIFICATE-----

+ 2 - 0
scripts/ocsp.test
View File 

@@ -35,6 +35,7 @@ if [ "$OUTPUT" = "SNI is: ON" ]; then
 
 
     if [ $RESULT -eq 0 ]; then
 
         # client test against the server
 
+        echo "./examples/client/client -X -C -h $server -p 443 -A "$ca" -g -o -N -v d -S $server"
 
         ./examples/client/client -X -C -h $server -p 443 -A "$ca" -g -o -N -v d -S $server
 
         GL_RESULT=$?
 
         [ $GL_RESULT -ne 0 ] && printf '\n\n%s\n' "Client connection failed"
 
@@ -54,6 +55,7 @@ ${SCRIPT_DIR}/ping.test $server 2
 
 RESULT=$?
 
 if [ $RESULT -eq 0 ]; then
 
     # client test against the server
 
+    echo "./examples/client/client -X -C -h $server -p 443 -A "$ca" -g -o -N"
 
     ./examples/client/client -X -C -h $server -p 443 -A "$ca" -g -o -N
 
     GR_RESULT=$?
 
     [ $GR_RESULT -ne 0 ] && printf '\n\n%s\n' "Client connection failed"

+ 2 - 0
scripts/resume.test
View File 

@@ -69,6 +69,7 @@ do_test() {
 
     esac
 
 
     remove_ready_file
 
+    echo "./examples/server/server -r -R "$ready_file" -p $resume_port"
 
     ./examples/server/server -r -R "$ready_file" -p $resume_port &
 
     server_pid=$!
 
 
@@ -92,6 +93,7 @@ do_test() {
 
     # get created port 0 ephemeral port
 
     resume_port=`cat "$ready_file"`
 
 
+    echo "./examples/client/client $1 -r -p $resume_port"
 
     capture_out=$(./examples/client/client $1 -r -p $resume_port 2>&1)
 
     client_result=$?