Skip to content

skip TLS verification during conformance tests#394

Merged
sudo-bmitch merged 1 commit intoopencontainers:mainfrom
imjasonh:insecure-skip-tls-verify
Apr 4, 2023
Merged

skip TLS verification during conformance tests#394
sudo-bmitch merged 1 commit intoopencontainers:mainfrom
imjasonh:insecure-skip-tls-verify

Conversation

@imjasonh
Copy link
Copy Markdown
Member

@imjasonh imjasonh commented Mar 22, 2023
edited
Loading

It can be useful in tests like this to point the test at an HTTPS endpoint, even though it won't actually serve valid HTTPS, for example because it's running in a test environment.

Making the test skip TLS verification should make it easier to run in such test environments. Conformance doesn't rely on TLS verification itself (explicitly, anyway), and any TLS configuration should be tested outside of OCI conformance, so I don't consider this a regression of the strictness of the test.

jdolitsky
jdolitsky reviewed Mar 22, 2023
View reviewed changes
jdolitsky
jdolitsky previously approved these changes Mar 22, 2023
View reviewed changes
jdolitsky
jdolitsky previously approved these changes Mar 22, 2023
View reviewed changes
@imjasonh
Copy link
Copy Markdown
Member Author

imjasonh commented Mar 22, 2023

Thanks @jdolitsky !

sudo-bmitch
sudo-bmitch requested changes Apr 4, 2023
View reviewed changes
mikebrow
mikebrow previously approved these changes Apr 4, 2023
View reviewed changes
Copy link
Copy Markdown
Member

@mikebrow mikebrow left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@jdolitsky jdolitsky requested a review from sudo-bmitch April 4, 2023 15:48
@imjasonh imjasonh dismissed stale reviews from mikebrow and jdolitsky via aab9867 April 4, 2023 16:29
@imjasonh imjasonh force-pushed the insecure-skip-tls-verify branch from 5f09a20 to aab9867 Compare April 4, 2023 16:29
jdolitsky
jdolitsky previously approved these changes Apr 4, 2023
View reviewed changes
@imjasonh
skip TLS verification during conformance tests
fa4a69a 
Signed-off-by: Jason Hall <jason@chainguard.dev>
@imjasonh imjasonh force-pushed the insecure-skip-tls-verify branch from 228e5be to fa4a69a Compare April 4, 2023 16:32
@sudo-bmitch sudo-bmitch merged commit 7fe7cbe into opencontainers:main Apr 4, 2023
@jdolitsky jdolitsky mentioned this pull request Apr 19, 2023
Closed
@sudo-bmitch sudo-bmitch mentioned this pull request Feb 1, 2024
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jdolitsky jdolitsky jdolitsky approved these changes

@sudo-bmitch sudo-bmitch sudo-bmitch approved these changes

@mikebrow mikebrow mikebrow left review comments

@dmcgowan dmcgowan Awaiting requested review from dmcgowan dmcgowan is a code owner

@jzelinskie jzelinskie Awaiting requested review from jzelinskie jzelinskie is a code owner

@jonjohnsonjr jonjohnsonjr Awaiting requested review from jonjohnsonjr jonjohnsonjr is a code owner

@stevvooe stevvooe Awaiting requested review from stevvooe stevvooe is a code owner

@vbatts vbatts Awaiting requested review from vbatts

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@imjasonh @jdolitsky @sudo-bmitch @mikebrow