Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix test 17 error on build #1011

Merged
merged 1 commit into from
Jun 26, 2024
Merged

Fix test 17 error on build #1011

merged 1 commit into from
Jun 26, 2024

Conversation

fmarco76
Copy link
Member

With the nss update to >= 3.101 the nss context gets initialised after the CryptoManager instance is retrieved so this step is added before the test.

The original error was in this NSS line: https://github.com/nss-dev/nss/blob/4b0cca5ba45b3713e279f9d528dfa01dd886cea8/lib/nss/nssinit.c#L1002

All the other tests were working because the use of the CryptoManager before performing and operation involving NSS.

Additionally, the ssl option test for get and set has been modified to enable/disable ssl cache since the ssl3 option is policy dependent and do not always work.
Fix #1010

Note about the options: running the test with NSS released on fedora using SSL3 option was not working but using my build (I have included debug options) the test works. Looking at the code SSL3 cannot be enabled if it is not supported by the policy: https://github.com/nss-dev/nss/blob/4b0cca5ba45b3713e279f9d528dfa01dd886cea8/lib/ssl/sslsock.c#L629. Therefore I have just used a different option since the test was just to verify that option can be configured and it was not related to ssl3. We can investigate more if needed.

@fmarco76
Fix test 17 error on build
e7c9050 
With the nss update to >= 3.101 the nss context gets initialised after
the CryptoManager instance is retrieved so this step is added before
the test.

Additional, the ssl option test for get and set has been modified to
enable/disable ssl cache since the ssl3 option is policy dependent and do not
always work.
@fmarco76 fmarco76 requested review from edewata and jmagne June 25, 2024 18:20
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
2 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

edewata
edewata approved these changes Jun 25, 2024
View reviewed changes
Copy link
Contributor

@edewata edewata left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Thanks! This is a test for SSL options so this should be sufficient. I think SSL3 would be a separate issue.

@fmarco76
Copy link
Member Author

@edewata Thanks!

@fmarco76 fmarco76 merged commit 1f26f74 into dogtagpki:master Jun 26, 2024
32 of 34 checks passed
@fmarco76 fmarco76 deleted the SSLTestFail branch June 26, 2024 10:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@edewata edewata edewata approved these changes

@jmagne jmagne Awaiting requested review from jmagne

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Build fails on Fedora
2 participants
@fmarco76 @edewata