Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:103652
To: internals@lists.php.net
Reply-To: Alexander Kurilo <alex@kurilo.me>
Date: Sun, 30 Dec 2018 23:23:02 +0300
Lines: 36
Message-ID: <q0b9b3$m4c$1@blaine.gmane.org>
References: <19588601-decc-1110-3d1d-21207b1908c0@gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
 Thunderbird/60.3.3
In-Reply-To: <19588601-decc-1110-3d1d-21207b1908c0@gmail.com>
Content-Language: en-US-large
Subject: Re: [PHP-DEV] Broken openssl tests on Travis
From: internals@lists.php.net ("Alexander Kurilo via internals")

On 02/12/2018 09:16, Stanislav Malyshev wrote:
> Hi!
> 
> I am seeing tons of broken openssl tests on Travis CI. Example:
> https://travis-ci.org/php/php-src/jobs/462367522
> 
> All errors seem to be the same:
> 001+ Warning: stream_socket_client(): SSL operation failed with code 1.
> OpenSSL Error messages:
> 002+ error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate
> verify failed in
> /home/travis/build/php/php-src/ext/openssl/tests/ServerClientTestCase.inc(96)
> : eval()'d code on line 10
> 
> Anybody knows anything about this?
> 

Ladies and gentlemen,

The day after tomorrow this is going to happen again.

There are 2 ways out:
* This PR https://github.com/php/php-src/pull/3698 aims to solve the 
root cause: it modifies tests in order to make them generate 
certificates on the fly and always be sure that their expiration date is 
in the future (and also unties lots of tests from single certificate)
* If the former doesn't work or not going to be merged (tomorrow or 
ever), I can prepare another PR like this 
https://github.com/php/php-src/pull/3693 with the same certificate 
extended for a decade rather than a month (well, I thought a month would 
be sufficient to come to a decision but I was wrong).

Let me know if I can help.

Cheers,
Alex.