Skip to content

fix failing revocation & ssl tests #38827

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Jul 8, 2020
Merged

fix failing revocation & ssl tests #38827

merged 5 commits into from
Jul 8, 2020

Conversation

@wfurt
Copy link
Member

@wfurt wfurt commented Jul 6, 2020
edited
Loading

fix tests broken by #38182.
This adds fork for Ssl server leaving revocation tests as before.
It adds keySize parameter to avoid failures on Debian 10 (requiring stronger crypto)

fixes #38805
fixes #38744

@ghost
Copy link

ghost commented Jul 6, 2020

Tagging subscribers to this area: @dotnet/ncl
Notify danmosemsft if you want to be subscribed.

@wfurt
Copy link
Member Author

wfurt commented Jul 7, 2020

/azp run runtime-libraries outerloop

@azure-pipelines
Copy link

azure-pipelines bot commented Jul 7, 2020

Azure Pipelines successfully started running 1 pipeline(s).

@wfurt wfurt requested review from ManickaP and bartonjs July 7, 2020 05:07
@wfurt wfurt self-assigned this Jul 7, 2020
@wfurt wfurt added the test-bug Problem in test source code (most likely) label Jul 7, 2020
@wfurt wfurt marked this pull request as ready for review July 7, 2020 05:09
@wfurt
Copy link
Member Author

wfurt commented Jul 7, 2020

/azp run runtime-libraries outerloop

@azure-pipelines
Copy link

azure-pipelines bot commented Jul 7, 2020

Azure Pipelines successfully started running 1 pipeline(s).

bartonjs
bartonjs reviewed Jul 7, 2020
View reviewed changes
...libraries/Common/tests/System/Security/Cryptography/X509Certificates/CertificateAuthority.cs Outdated
eeKey,
altName);
endEntityCert = endEntityIsServer ?
intermediateAuthority.CreateServerEndEntity(
Copy link
Member

@bartonjs bartonjs Jul 7, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Really this feels like it should just take an OidCollection or Oid or string, rather than using a bit in the PkiOptions.

Copy link
Member Author

@wfurt wfurt Jul 7, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was thinking about adding bool to BuildPrivatePki() but OidCollection seems like better option. I think more variations are yet to come.

@wfurt
Copy link
Member Author

wfurt commented Jul 7, 2020

I added collection and moved altName to SslStream helper. I think that will give us more flexibility to also add IPs if we need to.

@wfurt
Copy link
Member Author

wfurt commented Jul 7, 2020

/azp run runtime-libraries outerloop

@azure-pipelines
Copy link

azure-pipelines bot commented Jul 7, 2020

Azure Pipelines successfully started running 1 pipeline(s).

@bartonjs
Copy link
Member

bartonjs commented Jul 7, 2020

Yay for code reuse. Thanks, @wfurt.

@wfurt wfurt merged commit c8f1f2b into dotnet:master Jul 8, 2020
@wfurt wfurt deleted the sslTests branch July 8, 2020 03:14
@karelz karelz added this to the 5.0.0 milestone Aug 18, 2020
@ghost ghost locked as resolved and limited conversation to collaborators Dec 8, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@bartonjs bartonjs bartonjs approved these changes

@ManickaP ManickaP Awaiting requested review from ManickaP

Assignees

@wfurt wfurt

Labels

area-System.Net.Security test-bug Problem in test source code (most likely)

Projects

None yet

Milestone

5.0.0

4 participants

@wfurt @bartonjs @karelz @Dotnet-GitSync-Bot