[16/16] t5559: make SSL/TLS the default

Message ID	Y/dJOa2k6HEIq6oD@coredump.intra.peff.net (mailing list archive)
State	Accepted
Commit	8f2146dbf15566fa60787a3261a048e4d5116d6a
Headers	show Return-Path: <git-owner@vger.kernel.org> Date: Thu, 23 Feb 2023 06:08:41 -0500 From: Jeff King <peff@peff.net> To: git@vger.kernel.org Subject: [PATCH 16/16] t5559: make SSL/TLS the default Message-ID: <Y/dJOa2k6HEIq6oD@coredump.intra.peff.net> References: <Y/dEYYWKy/o96vBG@coredump.intra.peff.net> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <Y/dEYYWKy/o96vBG@coredump.intra.peff.net> Precedence: bulk
Series	[01/16] t5541: run "used receive-pack service" test earlier \| expand [01/16] t5541: run "used receive-pack service" test earlier [02/16] t5541: stop marking "used receive-pack service" test as v0 only [03/16] t5541: simplify and move "no empty path components" test [04/16] t5551: drop redundant grep for Accept-Language [05/16] t5551: lower-case headers in expected curl trace [06/16] t5551: handle HTTP/2 when checking curl trace [07/16] t5551: stop forcing clone to run with v0 protocol [08/16] t5551: handle v2 protocol when checking curl trace [09/16] t5551: handle v2 protocol in upload-pack service test [10/16] t5551: simplify expected cookie file [11/16] t5551: handle v2 protocol in cookie test [12/16] t5551: drop curl trace lines without headers [13/16] t/lib-httpd: respect $HTTPD_PROTO in expect_askpass() [14/16] t/lib-httpd: enable HTTP/2 "h2" protocol, not just h2c [15/16] t5559: fix test failures with LIB_HTTPD_SSL [16/16] t5559: make SSL/TLS the default

Message ID

Y/dJOa2k6HEIq6oD@coredump.intra.peff.net (mailing list archive)

State

Accepted

Commit

8f2146dbf15566fa60787a3261a048e4d5116d6a

Headers

Date: Thu, 23 Feb 2023 06:08:41 -0500
From: Jeff King <peff@peff.net>
To: git@vger.kernel.org
Subject: [PATCH 16/16] t5559: make SSL/TLS the default
Message-ID: <Y/dJOa2k6HEIq6oD@coredump.intra.peff.net>
References: <Y/dEYYWKy/o96vBG@coredump.intra.peff.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
In-Reply-To: <Y/dEYYWKy/o96vBG@coredump.intra.peff.net>
Precedence: bulk

Series

[01/16] t5541: run "used receive-pack service" test earlier | expand

Commit Message

Jeff King Feb. 23, 2023, 11:08 a.m. UTC

The point of t5559 is run the regular t5551 tests with HTTP/2. But it
does so with the "h2c" protocol, which uses cleartext upgrades from
HTTP/1.1 to HTTP/2 (rather than learning about HTTP/2 support during the
TLS negotiation).

This has a few problems:

 - it's not very indicative of the real world. In practice, most servers
   that support HTTP/2 will also support TLS.

 - support for upgrading does not seem as robust. In particular, we've
   run into bugs in some versions of Apache's mod_http2 that trigger
   only with the upgrade mode. See:

     https://lore.kernel.org/git/Y8ztIqYgVCPILJlO@coredump.intra.peff.net/

So the upside is that this change makes our HTTP/2 tests more robust and
more realistic. The downside is that if we can't set up SSL for any
reason, we'll skip the tests (even though you _might_ have been able to
run the HTTP/2 tests the old way). We could probably have a conditional
fallback, but it would be complicated for little gain, and it's not even
clear it would help (i.e., would any test environment even have HTTP/2
but not SSL support?).

Signed-off-by: Jeff King <peff@peff.net>
---
 t/t5559-http-fetch-smart-http2.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/t/t5559-http-fetch-smart-http2.sh b/t/t5559-http-fetch-smart-http2.sh
index 9eece71c2c..54aa9d3bff 100755
--- a/t/t5559-http-fetch-smart-http2.sh
+++ b/t/t5559-http-fetch-smart-http2.sh
@@ -1,4 +1,5 @@ 
 #!/bin/sh
 
 HTTP_PROTO=HTTP/2
+LIB_HTTPD_SSL=1
 . ./t5551-http-fetch-smart.sh

[16/16] t5559: make SSL/TLS the default

Commit Message

Patch