Skip curl tests For some reason the server created during the tests does not work against curl. Extracting it and putting it on a script to test against a real web browser (Firefox) does not work either. On the other hand, openssl s_client against that same server just work, so I assume this home made implementation of a HTTP server in the tests is broken and it says nothing about the actual functionality of the package.
Don't reuse ceritificate serial numbers I was testing a local HTTPS server using localhost. If for some reason you remove ~/.localhost, Firefox will reject the newly created certificate saying that it has the same serial number from a previously seen certificate, but it's a diffreent one. Just use the current UNIX epoch as the serial number to avoid this.
