Docs: add note on DKIM verify disable
[exim.git] / test / scripts / 5600-OCSP-OpenSSL / 5610
1 # OCSP stapling, server, LE variation
2 #
3 #
4 #
5 # '1: Server sends good staple on request'
6 #
7 exim -bd -oX PORT_D -DSERVER=server \
8  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
9 ****
10 client-ssl \
11  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
12  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
13 ??? 220
14 ehlo rhu.barb
15 ??? 250-
16 ??? 250-
17 ??? 250-
18 ??? 250-
19 ??? 250-
20 ??? 250-
21 ??? 250
22 starttls
23 ??? 220
24 helo test
25 ??? 250
26 mail from:<userx@test.ex>
27 ??? 250
28 rcpt to:<userx@test.ex>
29 ??? 250
30 quit
31 ??? 221
32 ****
33 killdaemon
34 #
35 #
36 #
37 # '2: Server does not staple an outdated response'
38 #
39 exim -bd -oX PORT_D -DSERVER=server \
40  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.dated.resp
41 ****
42 # XXX test sequence might not be quite right; this is for a server refusal
43 # and we're expecting a client refusal.
44 client-ssl -ocsp aux-fixed/exim-ca/example.com/CA.pem HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
45 ??? 220
46 ehlo rhu.barb
47 ??? 250-
48 ??? 250-
49 ??? 250-
50 ??? 250-
51 ??? 250-
52 ??? 250-
53 ??? 250
54 starttls
55 ??? 220
56 ****
57 killdaemon
58 #
59 #
60 #
61 #
62 #
63 # '3: Server does not staple a response for a revoked cert'
64 #
65 exim -bd -oX PORT_D -DSERVER=server \
66  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.revoked.resp
67 ****
68 client-ssl \
69  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
70  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
71 ??? 220
72 ehlo rhu.barb
73 ??? 250-
74 ??? 250-
75 ??? 250-
76 ??? 250-
77 ??? 250-
78 ??? 250-
79 ??? 250
80 starttls
81 ??? 220
82 ****
83 killdaemon
84 #
85 #
86 #
87 #
88 #
89 # '4: Connection functions when server is prepared to staple but client does not request it'
90 #
91 exim -bd -oX PORT_D -DSERVER=server \
92  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
93 ****
94 #
95 client-ssl \
96  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
97 ??? 220
98 ehlo rhu.barb
99 ??? 250-
100 ??? 250-
101 ??? 250-
102 ??? 250-
103 ??? 250-
104 ??? 250-
105 ??? 250
106 starttls
107 ??? 220
108 ehlo rhu.barb.tls
109 ??? 250-
110 ??? 250-
111 ??? 250-
112 ??? 250-
113 ??? 250-
114 ??? 250
115 quit
116 ****
117 killdaemon
118 #
119 #
120 #
121 #
122 #