# HG changeset patch # User Sergey Kandaurov # Date 1638202356 -10800 # Node ID b28f88e352dd3decc68d24ba1ec07434a6194c35 # Parent 34fc855982872973a15c7ad6a6e147f868952438 Tests: skip ssl_verify_depth.t with LibreSSL. It fails with the new X509 verifier appeared in LibreSSL 3.4.0 due to a chain depth not limited except by X509_VERIFY_MAX_CHAIN_CERTS (32). The other two tests ssl_crl.t and ssl_verify_client.t pass again after bug fixes in LibreSSL 3.4.2. diff --git a/ssl_verify_depth.t b/ssl_verify_depth.t --- a/ssl_verify_depth.t +++ b/ssl_verify_depth.t @@ -27,10 +27,11 @@ plan(skip_all => 'IO::Socket::SSL not in eval { IO::Socket::SSL::SSL_VERIFY_NONE(); }; plan(skip_all => 'IO::Socket::SSL too old') if $@; -my $t = Test::Nginx->new()->has(qw/http http_ssl/) - ->has_daemon('openssl')->plan(9); +my $t = Test::Nginx->new()->has(qw/http http_ssl/)->has_daemon('openssl'); -$t->write_file_expand('nginx.conf', <<'EOF'); +plan(skip_all => 'LibreSSL') if $t->has_module('LibreSSL'); + +$t->plan(9)->write_file_expand('nginx.conf', <<'EOF'); %%TEST_GLOBALS%%