daf29de742
* Add tests for zlint-clean CA building This test ensures that we can consistently pass ZLint's CA linting tests on a root certificate generated by Vault. In particular, nominal requirements are placed on the structure on the issuer's Subject, which we supply, and the remaining requirements pass. The one exception is we include both RFC and CA/BF BR lints in the default zlint checks; this means ECDSA P-521 (which isn't accepted by Mozilla's root store policies) is rejected, so we ignore to lints related to that. Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com> * Add options to copy to/from container, fix stopping Stopping the container takes a bit of time for some unknown reason so I've instead opted to shorten the sleep in the zlint tests to avoid consuming resources too long after the test finish. Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com> * Make zlint tests execute in parallel This improves the overall test time of the zlint tests, making the container build up front once (provisioning zlint), and then copying the cert into the new container image later. Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com> * make fmt Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com> Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com> |
||
|---|---|---|
| .. | ||
| benchhelpers | ||
| builtinplugins | ||
| constants | ||
| dhutil | ||
| fairshare | ||
| flag-kv | ||
| flag-slice | ||
| forwarding | ||
| hostutil | ||
| identity | ||
| metricsutil | ||
| monitor | ||
| namespace | ||
| osutil | ||
| parseip | ||
| pgpkeys | ||
| policies | ||
| proxyutil | ||
| random | ||
| storagepacker | ||
| testhelpers | ||
| timeutil | ||
| versions | ||