Author: brane Date: Sat May 31 03:14:39 2025 New Revision: 1926000 URL: http://svn.apache.org/viewvc?rev=1926000&view=rev Log: * test/test_ssl.c (test_ssl_ocsp_verify_response_no_signer): Change the expected error code to make the test pass. This is actually not a cheap hack; the reason is documented in the source.
Modified: serf/trunk/test/test_ssl.c Modified: serf/trunk/test/test_ssl.c URL: http://svn.apache.org/viewvc/serf/trunk/test/test_ssl.c?rev=1926000&r1=1925999&r2=1926000&view=diff ============================================================================== --- serf/trunk/test/test_ssl.c (original) +++ serf/trunk/test/test_ssl.c Sat May 31 03:14:39 2025 @@ -2708,7 +2708,10 @@ static void test_ssl_ocsp_verify_respons { #ifndef OPENSSL_NO_OCSP apr_status_t status = verify_ocsp_response(tc, 1, 0, 0, 0); - CuAssertIntEquals(tc, SERF_ERROR_SSL_OCSP_RESPONSE_INVALID, status); + /* OCSP responses MUST be signed, we can't even cteate one + without a signature. This error doesn't come from response + validation but because OCSP_response_create() fails. */ + CuAssertIntEquals(tc, APR_EGENERAL, status); #endif /* OPENSSL_NO_OCSP */ }