Skip to content

doth max-age tests failing on ALPN negotiation MacOS (macports)

I:doth:checking max-age for positive answer (136)
I:doth:failed
I:doth:checking max-age for negative answer (137)
I:doth:failed
I:doth:exit status: 2
[ant-2875:bin/tests/system] marka% /opt/local/bin/curl -vkD headers 'https://10.53.0.1:5303/dns-query?dns=AAEAAAABAAAAAAAAB2V4YW1wbGUAAAYAAQ'
*   Trying 10.53.0.1:5303...
* Connected to 10.53.0.1 (10.53.0.1) port 5303 (#0)
* ALPN, offering http/1.1
* TLSv1.0 (OUT), TLS header, Certificate Status (22):
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS header, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS header, Finished (20):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.2 (OUT), TLS header, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (OUT), TLS header, Supplemental data (23):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server did not agree to a protocol
* Server certificate:
*  subject: C=AQ; O=BIND9 ephemeral certificate; CN=bind9.local
*  start date: Nov 19 01:27:08 2021 GMT
*  expire date: Nov 17 01:27:08 2031 GMT
*  issuer: C=AQ; O=BIND9 ephemeral certificate; CN=bind9.local
*  SSL certificate verify result: self-signed certificate (18), continuing anyway.
* TLSv1.2 (OUT), TLS header, Supplemental data (23):
> GET /dns-query?dns=AAEAAAABAAAAAAAAB2V4YW1wbGUAAAYAAQ HTTP/1.1
> Host: 10.53.0.1:5303
> User-Agent: curl/7.80.0
> Accept: */*
> 
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* old SSL session ID is stale, removing
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS alert, close notify (256):
* Empty reply from server
* Closing connection 0
* TLSv1.2 (OUT), TLS header, Supplemental data (23):
* TLSv1.3 (OUT), TLS alert, close notify (256):
curl: (52) Empty reply from server
[ant-2875:bin/tests/system] marka%

Nothing is logged in named.run.

Edited by Mark Andrews
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information