RepoMirrors
/
haproxy
mirror of http://git.haproxy.org/git/haproxy.git/
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
haproxy/reg-tests/ssl
History
William Lallemand 61b6a4da6c REGTESTS: ssl: skip generate-certificates test w/ wolfSSL 
WolfSSL does not seem to work correctly with the generate-certificates
features. This patch disables it temporarly.

    ssl-max-ver TLSv1.2 seems to be a problem in the reg-test and
    wolfSSL but without it it's not able to generate correctly the cert:

    ***  h1    debug|00000004:clear-lst.accept(0007)=0028 from [127.0.0.1:35956] ALPN=<none>
    ***  h1    debug|00000004:clear-lst.clireq[0028:ffffffff]: GET / HTTP/1.1
    ***  h1    debug|00000004:clear-lst.clihdr[0028:ffffffff]: x-sni: unknown-sni.com
    ***  h1    debug|00000004:clear-lst.clihdr[0028:ffffffff]: host: 127.0.0.1
    ***  h1    debug|fd[0x29] OpenSSL error[0x13d] : need the private key
    ***  h1    debug|<134>Sep 20 15:42:58 haproxy[165743]: unix:1 [20/Sep/2023:15:42:58.042] ssl-lst/1: SSL handshake failure (need the private key)
    **** dT    1.072
    ***  h1    debug|fd[0x2a] OpenSSL error[0x13d] : need the private key
    ***  h1    debug|<134>Sep 20 15:42:59 haproxy[165743]: unix:1 [20/Sep/2023:15:42:59.044] ssl-lst/1: SSL handshake failure (need the private key)
    **** dT    2.075
    ***  h1    debug|fd[0x29] OpenSSL error[0x13d] : need the private key
    ***  h1    debug|<134>Sep 20 15:43:00 haproxy[165743]: unix:1 [20/Sep/2023:15:43:00.046] ssl-lst/1: SSL handshake failure (need the private key)
    **** dT    3.079
    ***  h1    debug|fd[0x29] OpenSSL error[0x13d] : need the private key
    ***  h1    debug|<134>Sep 20 15:43:01 haproxy[165743]: unix:1 [20/Sep/2023:15:43:01.050] ssl-lst/1: SSL handshake failure (need the private key)
    **** dT    3.080
    ***  h1    debug|00000004:default_backend.clicls[0028:0023]
    ***  h1    debug|00000004:default_backend.closed[0028:0023]
    ***  h1    debug|<134>Sep 20 15:43:01 haproxy[165743]: 127.0.0.1:35956 [20/Sep/2023:15:42:58.042] clear-lst default_backend/s1 0/0/-1/-1/+3009 503 +217 - - SC-- 3/1/0/0/3 0/0 "GET / HTTP/1.1" 0/-/-/-/0 -/-/-
    **** c3    rxhdr|HTTP/1.1 503 Service Unavailable\r
    **** c3    rxhdr|content-length: 107\r
    **** c3    rxhdr|cache-control: no-cache\r
    **** c3    rxhdr|content-type: text/html\r
    **** c3    rxhdr|\r
 		2023-09-20 16:02:16 +02:00
..
generate_certificates
ocsp_update REGTESTS: ssl: Fix ocsp update crt-lists 2023-03-02 15:37:23 +01:00
README
add_ssl_crt-list.vtc
bug-2265.crt BUG/MINOR: ssl/cli: can't find ".crt" files when replacing a certificate 2023-08-28 18:20:39 +02:00
ca-auth.crt
cert1-example.com.pem.ecdsa
cert1-example.com.pem.rsa
cert2-example.com.pem.ecdsa
cert2-example.com.pem.rsa
client.ecdsa.pem
client1.pem
client2_expired.pem
client3_revoked.pem
common.4096.dh
common.crt
common.key
common.pem
crl-auth.pem
del_ssl_crt-list.vtc
dynamic_server_ssl.vtc
ecdsa.crt
ecdsa.key
ecdsa.pem
filters.crt-list
interCA1_crl.pem
interCA1_crl_empty.pem
interCA2_crl.pem
interCA2_crl_empty.pem
localhost.crt-list
log_forward_ssl.vtc REGTESTS: ssl/log: test the log-forward with SSL 2022-09-13 17:03:30 +02:00
new_del_ssl_cafile.vtc MINOR: ssl/cli: implement "add ssl ca-file" 2022-08-19 19:58:53 +02:00
new_del_ssl_crlfile.vtc
ocsp_auto_update.vtc MINOR: ssl: Use ocsp update task for "update ssl ocsp-response" command 2023-03-14 11:07:32 +01:00
rootCA_crl.pem
set_cafile_client.pem
set_cafile_interCA1.crt
set_cafile_interCA2.crt
set_cafile_rootCA.crt
set_cafile_server.pem
set_default_cert.crt-list
set_default_cert.pem
set_ssl_bug_2265.vtc BUG/MINOR: ssl/cli: can't find ".crt" files when replacing a certificate 2023-08-28 18:20:39 +02:00
set_ssl_cafile.vtc MINOR: ssl/cli: implement "add ssl ca-file" 2022-08-19 19:58:53 +02:00
set_ssl_cert.vtc
set_ssl_cert_bundle.vtc
set_ssl_cert_noext.vtc
set_ssl_crlfile.vtc
set_ssl_server_cert.vtc
show_ocsp_server.pem
show_ocsp_server.pem.issuer
show_ocsp_server.pem.ocsp
show_ocsp_server.pem.ocsp.revoked
show_ssl_ocspresponse.vtc REGTESTS: ssl: skip OCSP test w/ WolfSSL 2023-09-20 15:23:32 +02:00
simple.crt-list
ssl_alpn.vtc MEDIUM: config: set useful ALPN defaults for HTTPS and QUIC 2023-04-19 09:52:20 +02:00
ssl_client_auth.vtc REGTESTS: ssl: simplify X509_V code check in ssl_client_auth.vtc 2023-05-03 15:54:49 +02:00
ssl_client_samples.vtc BUILD: ssl: ssl_c_r_dn fetches uses functiosn only available since 1.1.1 2023-05-15 12:07:52 +02:00
ssl_crt-list_filters.vtc
ssl_curve_name.vtc MEDIUM: ssl: new sample fetch method to get curve name 2023-07-17 15:45:41 +02:00
ssl_curves.vtc MINOR: ssl: add support for 'curves' keyword on server lines 2023-09-07 23:29:10 +02:00
ssl_default_server.vtc
ssl_dh.vtc REGTESTS: ssl: skip ssl_dh test with AWS-LC 2023-09-04 18:21:01 +02:00
ssl_errors.vtc REGTESTS: Fix ssl_errors.vtc script to wait for connections close 2023-02-21 11:44:55 +01:00
ssl_frontend_samples.vtc
ssl_generate_certificate.vtc REGTESTS: ssl: skip generate-certificates test w/ wolfSSL 2023-09-20 16:02:16 +02:00
ssl_reuse.vtc REGTESTS: ssl: enable the ssl_reuse.vtc test for WolfSSL 2022-12-20 15:28:37 +01:00
ssl_server_samples.vtc
ssl_simple_crt-list.vtc
wrong_ctx_storage.vtc

README 

File list:
 - common.pem: PEM file which may be used by most of the VTC files.