diff options
| author | Theo Buehler <tb@cvs.openbsd.org> | 2020-10-02 19:38:40 +0000 |
|---|---|---|
| committer | Theo Buehler <tb@cvs.openbsd.org> | 2020-10-02 19:38:40 +0000 |
| commit | 6681af48c12adeb21e5a50dff3ed512c5c276b1f (patch) | |
| tree | a649266715299bcf6388714f04a8e60507c252c5 /regress | |
| parent | 451acab2a73bae142212f1761b81896d0d6b83e0 (diff) | |
spelling, punctuation, whitespace
Diffstat (limited to 'regress')
| -rw-r--r-- | regress/lib/libcrypto/x509/bettertls/Makefile | 4 | ||||
| -rw-r--r-- | regress/lib/libcrypto/x509/bettertls/README | 8 |
2 files changed, 6 insertions, 6 deletions
diff --git a/regress/lib/libcrypto/x509/bettertls/Makefile b/regress/lib/libcrypto/x509/bettertls/Makefile index 9b6efabbf7a..6d694f2e1cb 100644 --- a/regress/lib/libcrypto/x509/bettertls/Makefile +++ b/regress/lib/libcrypto/x509/bettertls/Makefile @@ -1,6 +1,6 @@ -# $OpenBSD: Makefile,v 1.4 2020/10/02 10:03:18 tb Exp $ +# $OpenBSD: Makefile,v 1.5 2020/10/02 19:38:39 tb Exp $ -PROGS = verify +PROGS = verify .ifdef EOPENSSL11 LDADD += -Wl,-rpath,/usr/local/lib/eopenssl11 -L/usr/local/lib/eopenssl11 diff --git a/regress/lib/libcrypto/x509/bettertls/README b/regress/lib/libcrypto/x509/bettertls/README index 722f5c18ef7..b55e90cfab7 100644 --- a/regress/lib/libcrypto/x509/bettertls/README +++ b/regress/lib/libcrypto/x509/bettertls/README @@ -4,7 +4,7 @@ Netflix "bettertls" suite from https://github.com/Netflix/bettertls cloned at commit 8950fdf2a46eaa357aa8d338c871f2cbc00e86e5 in July 2020. The certificates are in "certificates", generated by running the -generator with gradle as per the directions. they are named +generator with gradle as per the directions. They are named corresponding to the number of the test, currently from 1 to 3645. In the directory "scripts" are the "expects.json" which contains the @@ -17,13 +17,13 @@ converted to the simple output format used by us here using the "validate.c" runs X509_verify against each certificate, trying with both a required name of "localhost.local" for the "DNS" test and the ip of 127.0.0.1 for the "IP" test, so each cert is tested -twice (once expecting the DNS name to validate, and once for the IP) +twice (once expecting the DNS name to validate, and once for the IP). -the output from validate.c is checked by check.perl against "known" +The output from validate.c is checked by check.perl against "known" and "expected" -An expected value of OK means the cert is valid. --An expected value of ERROR means the cert is invalid +-An expected value of ERROR means the cert is invalid. -An expected value of WEAK-OK means the cert could be considered valid by may be rejected. |