Return-Path: X-Original-To: apmail-subversion-dev-archive@minotaur.apache.org Delivered-To: apmail-subversion-dev-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 3D62FDA50 for ; Mon, 13 Aug 2012 15:50:35 +0000 (UTC) Received: (qmail 51649 invoked by uid 500); 13 Aug 2012 15:50:35 -0000 Delivered-To: apmail-subversion-dev-archive@subversion.apache.org Received: (qmail 51614 invoked by uid 500); 13 Aug 2012 15:50:34 -0000 Mailing-List: contact dev-help@subversion.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@subversion.apache.org Received: (qmail 51607 invoked by uid 99); 13 Aug 2012 15:50:34 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 13 Aug 2012 15:50:34 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of ben@reser.org designates 192.242.17.19 as permitted sender) Received: from [192.242.17.19] (HELO mail.brain.org) (192.242.17.19) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 13 Aug 2012 15:50:29 +0000 Received: from localhost (localhost [127.0.0.1]) by mail.brain.org (Postfix) with ESMTP id 194ED179E133 for ; Mon, 13 Aug 2012 08:50:08 -0700 (PDT) X-Virus-Scanned: Debian amavisd-new at fornix.brain.org Received: from mail.brain.org ([127.0.0.1]) by localhost (fornix.brain.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dugpBGNFjf0D for ; Mon, 13 Aug 2012 08:50:05 -0700 (PDT) Received: from mail-lpp01m010-f43.google.com (mail-lpp01m010-f43.google.com [209.85.215.43]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by mail.brain.org (Postfix) with ESMTPSA id 09D07179E0DE for ; Mon, 13 Aug 2012 08:50:04 -0700 (PDT) Received: by lagk11 with SMTP id k11so4717009lag.16 for ; Mon, 13 Aug 2012 08:50:02 -0700 (PDT) MIME-Version: 1.0 Received: by 10.152.146.163 with SMTP id td3mr9129106lab.26.1344873002339; Mon, 13 Aug 2012 08:50:02 -0700 (PDT) Received: by 10.112.22.37 with HTTP; Mon, 13 Aug 2012 08:50:02 -0700 (PDT) In-Reply-To: <87ipcmylaf.fsf@stat.home.lan> References: <20120811185430.GA28598@tarsus.local2> <20120811203339.GA28714@tarsus.local2> <878vdjz1wy.fsf@stat.home.lan> <87mx1zx77y.fsf@stat.home.lan> <87ipcmylaf.fsf@stat.home.lan> Date: Mon, 13 Aug 2012 08:50:02 -0700 Message-ID: Subject: Re: running test-suite over https From: Ben Reser To: Subversion Development Content-Type: text/plain; charset=ISO-8859-1 X-Virus-Checked: Checked by ClamAV on apache.org Neon's test suite has some logic in it to generate certificates. We should probably do something similar for this. Side note: If someone implements it just please don't do what neon does and depend on the Gnu specific flag '-d' to the date command to figure out the right timestamp to set on the cert(s). I believe date -v is much more portable (though I haven't gotten around to checking more than OS X and Linux). On Mon, Aug 13, 2012 at 6:27 AM, Philip Martin wrote: > My mistake. In my case the certificate embedded in davautocheck.sh has > expired: > > W: Error validating server certificate for 'https://localhost:13864': > W: - The certificate is not issued by a trusted authority. Use the > W: fingerprint to validate the certificate manually! > W: - The certificate has expired. > > If I update the script to use an in-date certificate the tests PASS over > SSL.