On Mon, Nov 26, 2018 at 01:17:24PM +1300, Thomas Munro wrote: > On Wed, Oct 3, 2018 at 1:32 PM Michael Paquier <mich...@paquier.xyz> wrote: >> I find your suggestion quite tempting at the end instead of having to >> tweak the global system's configuration. That should normally work with >> any configuration. This would require regenerating the certs in the >> tree. Any thoughts from others? > > I don't really have opinion here, but I wanted to point out that > src/test/ldap/t/001_auth.pl creates new certs on the fly, which is a > bit inconsistent with the SSL test's approach of certs-in-the-tree. > Which is better?
When going up to 2k, it takes longer to generate the keys than to run the tests, so keeping them in the tree looks like a pretty good gain to me. -- Michael
signature.asc
Description: PGP signature