Travis fetch test should not pass for revoked certificates #19330

cschanaj · 2020-06-03T01:00:55Z

Type: code issue

RT, see #19329 . Note that Firefox shows a Secure Connection Failed message when visiting https://revoked.badssl.com .

It seems fairly feasible to check the CSL and detect revoked certificate used by websites on Travis.

The libcurl built-in checking is not very helpful, as it beaks all other checking.

Note that if this option is enabled but the server does not support the TLS extension, the verification will fail.

The text was updated successfully, but these errors were encountered:

pipboy96 added the bug label Jun 3, 2020

cschanaj added the ruleset-testing label Jun 3, 2020

pipboy96 assigned Hainish and zoracon Jun 3, 2020

cschanaj mentioned this issue Jun 3, 2020

Full Fetch Test: Pending for March 2020 #18866

Closed

6 tasks

Hainish removed their assignment Jun 4, 2020

zoracon mentioned this issue Jun 10, 2020

Fetch Test: Completely Disabled Rulesets #19339

Merged

cschanaj mentioned this issue Jun 29, 2020

Create Revoked.badssl.com.xml #19329

Closed

zoracon mentioned this issue Oct 29, 2020

Amend Check Rules Script for Future Fetch Tests #19714

Closed

3 tasks

zoracon closed this as completed Feb 1, 2022

Provide feedback