Author: brane
Date: Sat May 31 03:14:39 2025
New Revision: 1926000

URL: http://svn.apache.org/viewvc?rev=1926000&view=rev
Log:
* test/test_ssl.c (test_ssl_ocsp_verify_response_no_signer):
   Change the expected error code to make the test pass. This is actually
   not a cheap hack; the reason is documented in the source.

Modified:
    serf/trunk/test/test_ssl.c

Modified: serf/trunk/test/test_ssl.c
URL: 
http://svn.apache.org/viewvc/serf/trunk/test/test_ssl.c?rev=1926000&r1=1925999&r2=1926000&view=diff
==============================================================================
--- serf/trunk/test/test_ssl.c (original)
+++ serf/trunk/test/test_ssl.c Sat May 31 03:14:39 2025
@@ -2708,7 +2708,10 @@ static void test_ssl_ocsp_verify_respons
 {
 #ifndef OPENSSL_NO_OCSP
     apr_status_t status = verify_ocsp_response(tc, 1, 0, 0, 0);
-    CuAssertIntEquals(tc, SERF_ERROR_SSL_OCSP_RESPONSE_INVALID, status);
+    /* OCSP responses MUST be signed, we can't even cteate one
+       without a signature. This error doesn't come from response
+       validation but because OCSP_response_create() fails. */
+    CuAssertIntEquals(tc, APR_EGENERAL, status);
 #endif  /* OPENSSL_NO_OCSP */
 }
 


Reply via email to