Hey Andrey, Thanks for the help. I rebuilt NGINX with OpenSSL 3.0.8 sources, but the same tests still fail. Here is the output of nginx configuration:
nginx version: nginx/1.24.0 built by clang 14.0.0 (clang-1400.0.29.202) built with OpenSSL 3.0.8 7 Feb 2023 TLS SNI support enabled configure arguments: --with-debug --with-http_ssl_module --with-openssl=<my_path> Are these SSL tests supposed to be failing with these configure arguments? From: Andrey Kulikov <amde...@gmail.com> Date: Thursday, January 25, 2024 at 11:53 AM To: nginx-devel@nginx.org <nginx-devel@nginx.org> Cc: Mayerhofer, Austin <austin.mayerho...@forcepoint.com> Subject: [EXTERNAL] Re: nginx-tests SSL tests failing out of the box? Hello, Don't think your issue is specific to OpenSSL 3.2.0 or ARM64 arch. If you specify just --with-http_ssl_module flag, nginx will be compiled with system OpenSSL. What might be not what you expect (OpenSSL: 3.2.0) on MacOS. Try to specify --with-openssl=<path to your OpenSSL source dir> on nginx configure stage. Like --with-openssl=./../openssl-3.2.0/ for example. On Thu, Jan 25, 2024 at 10:00 PM Mayerhofer, Austin via nginx-devel <nginx-devel@nginx.org<mailto:nginx-devel@nginx.org>> wrote: Hi all, I have not made any changes to NGINX. Vanilla NGINX (./configure with no flags) passes all tests that run, but when compiling with SSL, not all SSL tests are passing. Is this expected, or do I need to configure nginx further aside from adding the --with-http_ssl_module flag? Do each of the failing tests below require separate fixes, or is there a one-size-fits-all solution for all of them? OS: MacOS 12.6.3 Chip: Apple M1 Max NGINX: 1.24.0 built from source code with ./configure --with-debug --with-http_ssl_module Nginx-tests: https://github.com/nginx/nginx-tests/tree/4c2ad8093952706f327d04887c5546bad91b75a6 OpenSSL: 3.2.0 (/opt/homebrew/bin/openssl) Perl: 5.30.3 (/usr/bin/perl) When I run ``` TEST_NGINX_BINARY=/usr/local/nginx/sbin/nginx prove -v ssl.t ``` I see ``` not ok 2 - session reused # Failed test 'session reused' # at ssl.t line 187. # 'HTTP/1.1 200 OK # Server: nginx/1.24.0 # Date: Thu, 25 Jan 2024 18:50:10 GMT # Content-Type: text/plain # Content-Length: 6 # Connection: close # # body .' # doesn't match '(?^m:^body r$)' ``` Thanks, Austin This message has been scanned for malware by Forcepoint. www.forcepoint.com<http://www.forcepoint.com/> _______________________________________________ nginx-devel mailing list nginx-devel@nginx.org<mailto:nginx-devel@nginx.org> https://mailman.nginx.org/mailman/listinfo/nginx-devel Click here<https://www.mailcontrol.com/sr/YRBN2jCkrXjGX2PQPOmvUgdxg59Y6Zac_2YUVZSk-fhKfM2P3Uu6Ex30fRJKDtbxj02zfFOBliH3KeH4_zzvzA==> to report this email as spam.
_______________________________________________ nginx-devel mailing list nginx-devel@nginx.org https://mailman.nginx.org/mailman/listinfo/nginx-devel
