Revert "DANE: do not trust a non-dnssec NXDOMAIN return for the TLSA lookup"
[exim.git] / test / scripts / 5650-OCSP-GnuTLS / 5650
1 # OCSP stapling, server
2 #
3 #
4 #
5 exim -z '1: Server sends good staple on request'
6 ****
7 #
8 exim -bd -oX PORT_D -DSERVER=server \
9  -DOPT=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp
10 ****
11 client-gnutls \
12  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
13  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
14 ??? 220
15 ehlo rhu.barb
16 ??? 250-
17 ??? 250-
18 ??? 250-
19 ??? 250-
20 ??? 250-
21 ??? 250
22 starttls
23 ??? 220
24 mail from:<userx@test.ex>
25 ??? 250
26 rcpt to:<userx@test.ex>
27 ??? 250
28 quit
29 ??? 221
30 ****
31 killdaemon
32 #
33 #
34 #
35 exim -z '2: Server does not staple an outdated response'
36 ****
37 #
38 exim -bd -oX PORT_D -DSERVER=server \
39  -DOPT=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.dated.resp
40 ****
41 # XXX test sequence might not be quite right; this is for a server refusal
42 # and we're expecting a client refusal.
43 client-gnutls -ocsp aux-fixed/exim-ca/expired1.example.com/CA.pem HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
44 ??? 220
45 ehlo rhu.barb
46 ??? 250-
47 ??? 250-
48 ??? 250-
49 ??? 250-
50 ??? 250-
51 ??? 250
52 starttls
53 ??? 220
54 ****
55 killdaemon
56 #
57 #
58 #
59 #
60 #
61 exim -z '3: Server does not staple a response for a revoked cert'
62 ****
63 #
64 exim -bd -oX PORT_D -DSERVER=server \
65  -DOPT=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.revoked.resp
66 ****
67 client-gnutls \
68  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
69  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
70 ??? 220
71 ehlo rhu.barb
72 ??? 250-
73 ??? 250-
74 ??? 250-
75 ??? 250-
76 ??? 250-
77 ??? 250
78 starttls
79 ??? 220
80 ****
81 killdaemon
82 #
83 #
84 #
85 #
86 #
87 exim -z '4: Connection functions when server is prepared to staple but client does not request it'
88 ****
89 #
90 exim -bd -oX PORT_D -DSERVER=server \
91  -DOPT=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp
92 ****
93 #
94 client-gnutls \
95  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
96 ??? 220
97 ehlo rhu.barb
98 ??? 250-
99 ??? 250-
100 ??? 250-
101 ??? 250-
102 ??? 250-
103 ??? 250
104 starttls
105 ??? 220
106 ehlo rhu.barb.tls
107 ??? 250-
108 ??? 250-
109 ??? 250-
110 ??? 250-
111 ??? 250
112 quit
113 ****
114 killdaemon
115 #
116 #
117 #
118 #
119 #