TLS: Deprecate RFC 5114 DH params. Bug 1895
[exim.git] / test / scripts / 5650-OCSP-GnuTLS / 5650
1 # OCSP stapling, server
2 #
3 #
4 #
5 exim -z '1: Server sends good staple on request'
6 ****
7 #
8 exim -bd -oX PORT_D -DSERVER=server \
9  -DOPTION=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp
10 ****
11 client-gnutls \
12  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
13  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
14 ??? 220
15 ehlo rhu.barb
16 ??? 250-
17 ??? 250-
18 ??? 250-
19 ??? 250-
20 ??? 250-
21 ??? 250
22 starttls
23 ??? 220
24 helo test
25 ??? 250
26 mail from:<userx@test.ex>
27 ??? 250
28 rcpt to:<userx@test.ex>
29 ??? 250
30 quit
31 ??? 221
32 ****
33 killdaemon
34 #
35 #
36 #
37 exim -z '2: Server does not staple an outdated response'
38 ****
39 # This test fails on older GnuTLS versions, which do not check the resp on the server
40 #
41 exim -bd -oX PORT_D -DSERVER=server \
42  -DOPTION=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.dated.resp
43 ****
44 client-gnutls -ocsp aux-fixed/exim-ca/expired1.example.com/CA.pem HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
45 ??? 220
46 ehlo rhu.barb
47 ??? 250-
48 ??? 250-
49 ??? 250-
50 ??? 250-
51 ??? 250-
52 ??? 250
53 starttls
54 ??? 454
55 ****
56 killdaemon
57 #
58 #
59 #
60 #
61 #
62 exim -z '3: Server does not staple a response for a revoked cert'
63 ****
64 # This test fails on older GnuTLS versions, which do not check the resp on the server
65 #
66 exim -bd -oX PORT_D -DSERVER=server \
67  -DOPTION=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.revoked.resp
68 ****
69 client-gnutls \
70  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
71  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
72 ??? 220
73 ehlo rhu.barb
74 ??? 250-
75 ??? 250-
76 ??? 250-
77 ??? 250-
78 ??? 250-
79 ??? 250
80 starttls
81 ??? 454
82 ****
83 killdaemon
84 #
85 #
86 #
87 #
88 #
89 exim -z '4: Connection functions when server is prepared to staple but client does not request it'
90 ****
91 #
92 exim -bd -oX PORT_D -DSERVER=server \
93  -DOPTION=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp
94 ****
95 #
96 client-gnutls \
97  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
98 ??? 220
99 ehlo rhu.barb
100 ??? 250-
101 ??? 250-
102 ??? 250-
103 ??? 250-
104 ??? 250-
105 ??? 250
106 starttls
107 ??? 220
108 ehlo rhu.barb.tls
109 ??? 250-
110 ??? 250-
111 ??? 250-
112 ??? 250-
113 ??? 250
114 quit
115 ****
116 killdaemon
117 #
118 #
119 #
120 #
121 #