Closed 0xhaven closed 10 years ago
Currently, all of testclient is being run against both ECDSA and RSA Keyservers. If this starts taking too long, it might make sense to just run --alive
connection tests against one of them.
Builds and tests pass for me.
But hold merging until I have finished debugging a problem seen by a customer with the current HEAD.
@jgrahamc Have you figured out that problem? Does this PR look fine?
Yes. This looks fine.
Set available ciphers to just
ECDHE-ECDSA-AES256-GCM-SHA384
andECDHE-RSA-AES256-GCM-SHA384
, removing--cipher-list
command line argument. Enabled use of ECDSA with curveprime256v1
(NIST P-256).Generated separate CAs for Keyserver and Keyless client certificates. Generated ECDSA and RSA certs to test each cipher suite. Corralled all certificates and keys into
testing/
directory.Updated
make test
to run against both ECDSA and RSA keyservers.