1 # OCSP stapling, server, LE variation
5 # '1: Server sends good staple on request'
7 exim -bd -oX PORT_D -DSERVER=server \
8 -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
11 -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
12 HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
25 mail from:<userx@test.ex>
27 rcpt to:<userx@test.ex>
36 # '2: Server does not staple an outdated response'
38 exim -bd -oX PORT_D -DSERVER=server \
39 -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.dated.resp
41 # XXX test sequence might not be quite right; this is for a server refusal
42 # and we're expecting a client refusal.
43 client-ssl -ocsp aux-fixed/exim-ca/expired1.example.com/CA.pem HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
61 # '3: Server does not staple a response for a revoked cert'
63 exim -bd -oX PORT_D -DSERVER=server \
64 -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.revoked.resp
67 -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
68 HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
86 # '4: Connection functions when server is prepared to staple but client does not request it'
88 exim -bd -oX PORT_D -DSERVER=server \
89 -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
93 HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2