Ensure that no-client-cert fails for right reason (i.e. not because client doesn't trust server cert).

Author: scr-oath

http/test/test_mtls_client.lua

@@ -4,7 +4,9 @@ function TestMTLS(t)
     assert(tURL, 'tURL global is not set')
 
     t:Run('no-client-cert fails', function(t)
-        local client = http.client()
+        local client = http.client{
+            insecure_ssl = true,
+        }
         local req, err = http.request("GET", tURL)
         assert(not err, tostring(err))
         local resp, err = client:do_request(req)

http/test/test_mtls_server_with_client.lua

@@ -9,6 +9,8 @@ function TestMTLSServerWithClient(t)
         local addr_ch = unpack(arg)
         local http = require 'http'
         local server, err = http.server {
+            client_cas_pem_file = "test/data/test.cert.pem",
+            client_auth = "RequireAndVerifyClientCert",
             server_public_cert_pem_file = "test/data/test.cert.pem",
             server_private_key_pem_file = "test/data/test.key.pem",
         }
@@ -30,7 +32,9 @@ function TestMTLSServerWithClient(t)
     local tURL = string.format("https://%s/", addr)
 
     t:Run('no-client-cert fails', function(t)
-        local client = http.client()
+        local client = http.client {
+            insecure_ssl = true,
+        }
         local req, err = http.request("GET", tURL)
         assert(not err, tostring(err))
         local resp, err = client:do_request(req)

http/test/test_server.lua

@@ -12,7 +12,6 @@ function Test_do_handle_function(t)
         assert(not err, tostring(err))
         addr_ch:send(server:addr())
         server:do_handle_function(function(response, request)
-            print(string.format("response = %s", response))
             response:code(200)
             response:write("OK\n")
             response:done()