Juliusz Sosinowicz
|
51ba745214
ocsp: don't error out if we can't verify our certificate
|
11 miesięcy temu |
JacobBarthelmeh
|
f1aa43dc48
Merge pull request #6230 from bandi13/zd15855
|
1 rok temu |
Lealem Amedie
|
591089664d
Fixes for sniffer with enable all
|
1 rok temu |
Andras Fekete
|
d57d6d2b78
Fix for variable server startup time
|
1 rok temu |
Andras Fekete
|
fdb0338473
Be more aggressive in killing processes
|
1 rok temu |
kaleb-himes
|
9a193a3e02
Address Issue pointed out in (now deleted) comment on an old merge
|
2 lat temu |
kaleb-himes
|
77dec16b3b
Supplemental fix in addition to #5470
|
2 lat temu |
kaleb-himes
|
8efc8b0819
Fix up other test scripts using the same logic
|
2 lat temu |
Lealem Amedie
|
40d9473e6a
Display SKIP instead of PASS when tests skipped for make check
|
2 lat temu |
kaleb-himes
|
f5bbad185f
Supplement to @julek-wolfssl's fantastic find, just allow for proper expansion
|
2 lat temu |
Juliusz Sosinowicz
|
b664cea735
Typo in testing script
|
2 lat temu |
Daniel Pouzzner
|
6984cf83b2
scripts/ocsp-stapling.test: fix whitespace.
|
2 lat temu |
Daniel Pouzzner
|
368854b243
scripts/: refactor TLS version support tests to use -V, rather than -v (which makes frivolous connection attempts).
|
2 lat temu |
Daniel Pouzzner
|
abfc788389
script cleanup: use #!/bin/bash on all scripts that use "echo -e" (/bin/sh is sometimes a non-Bourne/non-POSIX shell, e.g. dash/ash, with no support for "echo -e"); fix whitespace.
|
2 lat temu |
Elms
|
21db484f50
tests: fix test scripts for paths with spaces
|
3 lat temu |
Elms
|
12eddee104
scripts: fix tests for out of tree `distcheck`
|
3 lat temu |
Sean Parkinson
|
fa86c1aa91
Configuration: enable all, disable TLS 1.3 - turn off TLS 1.3 only options
|
3 lat temu |
John Safranek
|
c482d16029
Merge pull request #3544 from haydenroche5/ocsp_stapling_bug
|
3 lat temu |
Daniel Pouzzner
|
eeefe043ec
scripts/: nix `timeout` wrappers in ocsp-stapling.test and ocsp-stapling2.test, for portability.
|
3 lat temu |
Hayden Roche
|
801aa18b9e
Fix bug where OCSP stapling wasn't happening even when requested by client.
|
3 lat temu |
Daniel Pouzzner
|
139b0431cb
ocsp-stapling*.test: prefix waited servers with "timeout 60" to avoid deadlock failure modes; grep output from "openssl s_client" in "test interop fail case" for expected error message ("self signed certificate in certificate chain").
|
4 lat temu |
Daniel Pouzzner
|
0568ec304f
pass -4 flag to openssl and nc only when IPV6_SUPPORTED.
|
4 lat temu |
Daniel Pouzzner
|
94a3f86dcd
scripts/ocsp-stapling*.test: check if IPv6 is supported by the installed openssl and nc executables, and if not, don't attempt to wrestle the version. with no IPv6 support, and an --enable-ipv6 wolfssl build, skip the test entirely. also, restore a couple -b (bind-all-interfaces) flags to examples/server/server recipes in case that's useful.
|
4 lat temu |
Daniel Pouzzner
|
7a5cbaa9bc
fix scripts/ocsp-stapling*.test to accommodate IPv6 examples/ client/server build.
|
4 lat temu |
Sean Parkinson
|
60b0b0170b
TLS OCSP Stapling: MUST staple option
|
4 lat temu |
Daniel Pouzzner
|
5ed2fe8092
scripts/: more race elimination/mitigation.
|
4 lat temu |
Daniel Pouzzner
|
b669f8eeb9
scripts/: tweak scripts/include.am to run ocsp tests before rather than after testsuite and unit.test; revert POSIXish scripts/*.test to use /bin/sh.
|
4 lat temu |
Daniel Pouzzner
|
51046d45d3
add bwrapping on all other scripts/*.test except those that make Internet connections, and remove test for setuid bit, as some systems are configured to not require setuid/CAP_NET_ADMIN for CLONE_NEWNET.
|
4 lat temu |
Daniel Pouzzner
|
1e9971f64c
scripts/ocsp-stapling*.test: add bwrap attempt at top, to isolate network namespace.
|
4 lat temu |
Daniel Pouzzner
|
8f25456f86
scripts/ocsp-stapling*.test, wolfssl/test.h: refactor scripts/ocsp-stapling*.test for orthogonality and robustness, with retries and early failure detection. also, reduce sleeps in ocsp-stapling-with-ca-as-responder.test to 0.1, matching sleeps in other 2 scripts. finally, in wolfssl/test.h, #ifdef SO_REUSEPORT do that when binding ports, and add optional rendering of errno strings for failed syscalls using err_sys_with_errno() when -DDEBUG_TEST_ERR_SYS_WITH_ERRNO.
|
4 lat temu |