Skip to content

Add NSS curl 8.0.0 test #112

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
dgarske merged 5 commits into from
Jul 22, 2025
Merged

Add NSS curl 8.0.0 test #112

dgarske merged 5 commits into from
Jul 22, 2025

Conversation

@mattia-moffa
Copy link
Contributor

@mattia-moffa mattia-moffa commented Jul 15, 2025
edited
Loading

Verifies that curl -v https://example.com/ runs successfully using curl-8.0.0+NSS+wolfPKCS11.

@mattia-moffa mattia-moffa self-assigned this Jul 15, 2025
@LinuxJedi
Copy link
Member

LinuxJedi commented Jul 21, 2025

There is a reason I resisted doing this direct conversion from the Dockerfile, and it is the fact that we are relying on an external service to exist / work. This external service does use some form of flood protection. I managed to trigger it during testing and get my IP temporarily banned. Even if it didn't, it doesn't feel right to me to hit it like this.

Some thoughts on how to solve this:

  • Maybe using a GH URL is OK? Given that it is GitHub Actions calling it.
  • Maybe start up a basic HTTPS server to test against.

@mattia-moffa
Copy link
Contributor Author

mattia-moffa commented Jul 21, 2025
edited
Loading

Agreed. Shall I just replace https://example.com/ with https://github.com/? I feel like setting up an HTTPS server with valid certs in the GitHub action is overkill in this situation, we're relying on APT repositories and on GitHub itself to install the software at the beginning anyway.

@LinuxJedi
Copy link
Member

LinuxJedi commented Jul 21, 2025

I think that should work

LinuxJedi
LinuxJedi approved these changes Jul 21, 2025
View reviewed changes
Copy link
Member

@LinuxJedi LinuxJedi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice work. Thanks for caching too.

Context for PR captain: Curl 8.0.0 is used because newer versions removed NSS support. But it makes for a good TLS test.

@dgarske dgarske merged commit afb67e6 into wolfSSL:master Jul 22, 2025
50 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@LinuxJedi LinuxJedi LinuxJedi approved these changes

@dgarske dgarske dgarske approved these changes

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mattia-moffa @LinuxJedi @dgarske @wolfSSL-Bot