test/scripts/5600-OCSP-OpenSSL/5610

   1 # OCSP stapling, server, LE variation
   2 #
   3 #
   4 #
   5 # '1: Server sends good staple on request'
   6 #
   7 exim -bd -oX PORT_D -DSERVER=server \
   8  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
   9 ****
  10 client-ssl \
  11  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
  12  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
  13 ??? 220
  14 ehlo rhu.barb
  15 ??? 250-
  16 ??? 250-
  17 ??? 250-
  18 ??? 250-
  19 ??? 250-
  20 ??? 250
  21 starttls
  22 ??? 220
  23 mail from:<userx@test.ex>
  24 ??? 250
  25 rcpt to:<userx@test.ex>
  26 ??? 250
  27 quit
  28 ??? 221
  29 ****
  30 killdaemon
  31 #
  32 #
  33 #
  34 # '2: Server does not staple an outdated response'
  35 #
  36 exim -bd -oX PORT_D -DSERVER=server \
  37  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.dated.resp
  38 ****
  39 # XXX test sequence might not be quite right; this is for a server refusal
  40 # and we're expecting a client refusal.
  41 client-ssl -ocsp aux-fixed/exim-ca/expired1.example.com/CA.pem HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
  42 ??? 220
  43 ehlo rhu.barb
  44 ??? 250-
  45 ??? 250-
  46 ??? 250-
  47 ??? 250-
  48 ??? 250-
  49 ??? 250
  50 starttls
  51 ??? 220
  52 ****
  53 killdaemon
  54 #
  55 #
  56 #
  57 #
  58 #
  59 # '3: Server does not staple a response for a revoked cert'
  60 #
  61 exim -bd -oX PORT_D -DSERVER=server \
  62  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.revoked.resp
  63 ****
  64 client-ssl \
  65  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
  66  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
  67 ??? 220
  68 ehlo rhu.barb
  69 ??? 250-
  70 ??? 250-
  71 ??? 250-
  72 ??? 250-
  73 ??? 250-
  74 ??? 250
  75 starttls
  76 ??? 220
  77 ****
  78 killdaemon
  79 #
  80 #
  81 #
  82 #
  83 #
  84 # '4: Connection functions when server is prepared to staple but client does not request it'
  85 #
  86 exim -bd -oX PORT_D -DSERVER=server \
  87  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
  88 ****
  89 #
  90 client-ssl \
  91  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
  92 ??? 220
  93 ehlo rhu.barb
  94 ??? 250-
  95 ??? 250-
  96 ??? 250-
  97 ??? 250-
  98 ??? 250-
  99 ??? 250
 100 starttls
 101 ??? 220
 102 ehlo rhu.barb.tls
 103 ??? 250-
 104 ??? 250-
 105 ??? 250-
 106 ??? 250-
 107 ??? 250
 108 quit
 109 ****
 110 killdaemon
 111 #
 112 #
 113 #
 114 #
 115 #