libmicrohttpd
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [libmicrohttpd] FAIL: test_tls_options

From: Evgeny Grin
Subject: Re: [libmicrohttpd] FAIL: test_tls_options
Date: Fri, 17 Sep 2021 00:34:32 +0300
User-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.14.0
As SSL3 is considered unsafe, it can be blocked by OS/distribution in TLS lib. 
Recent GnuTLS versions block it by default at compile-time.
The test was fixed by https://git.gnunet.org/libmicrohttpd.git/commit/?id=386b21da1b69be8138e5256b8906a0ea24b07633.
You can use a smaller patch https://gitweb.gentoo.org/repo/gentoo.git/plain/net-libs/libmicrohttpd/files/libmicrohttpd-0.9.73-test-ssl3.patch for your testing. 

--
Evgeny

On 16.09.2021 23:46, Christian Grothoff wrote:

I have the same gnutls version, so maybe it is the curl? I have curl
7.74 and that one passes. Maybe a curl regression?

-Christian

On 9/16/21 5:20 PM, muradm wrote:


Hello,

Building libmicrohttpd-0.9.73 under guix, and getting one test failed:

--8<---------------cut here---------------start------------->8---
$ ./src/testcurl/https/test_tls_options
curl version: libcurl/7.77.0 GnuTLS/3.7.2 zlib/1.2.11 libidn2/2.3.1
nghttp2/1.44.0
The following handshake should fail (and print an error message)...
cURL failed to reject request despite SSL version mismatch!
TLS1.0 vs SSL3 test failed
$ echo $?
1
$
--8<---------------cut here---------------end--------------->8---

Any clue why this can happen?

Thanks in advance,
muradm

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

reply via email to
[Prev in Thread] Current Thread [Next in Thread]