[Privoxy-devel] privoxy-regression-test --check-ssl flaky
Roland Rosenfeld
roland at spinnaker.de
Mon Jun 29 16:16:13 CEST 2026
Hi,
in https://bugs.debian.org/1141069 I was informed, that
privoxy-regression-test --check-ssl
runs very flaky since ~1 month.
I run the test by hand several times now and can confirm the problem.
sometimes no-subject times out, then self-signed and no-subject return
503 instead of 403, next time expired, no-common-name and no-subject
return 503 and so on.
No idea, what changed (this worked okay before, except that the timing
looks of the beginning of the problem looks like the problems started
only days after our 4.2.0 release, but during the release cycle there
were no problems). Maybe some anti-AI mechanism on check.ssl.com,
which fails on several requests in a short time?
Any idea to fix this issue? Are there (better) alternatives to
badssl.com, that can be used for testing? Or does it make sense to
retry and/or skip a test, if it returns 503 or timeout instead of 403?
Running a local copy of badssl (the code is on
https://github.com/chromium/badssl.com), sounds like overkill at least
for the Debian CI-testing...
Greetings
Roland
More information about the Privoxy-devel
mailing list